Dependabot doesn't update version string in comments to .yml files #427

maxfisher-g · 2022-10-27T10:22:52Z

When dependabot updates a dependency version in a github action ,yml files, it only changes the commit hash. This means that the version number in the inline comment becomes stale.

Can dependabot be configured to update the comment too?

The text was updated successfully, but these errors were encountered:

maxfisher-g · 2022-12-05T12:44:34Z

Seems to be implemented upstream: https://github.blog/changelog/2022-10-31-dependabot-now-updates-comments-in-github-actions-workflows-referencing-action-versions/

Relevant PR: dependabot/dependabot-core#5951

maxfisher-g added enhancement New feature or request github actions Pull requests that update Github Actions labels Oct 27, 2022

maxfisher-g removed the enhancement New feature or request label Dec 5, 2022

maxfisher-g self-assigned this Dec 5, 2022

maxfisher-g mentioned this issue Dec 16, 2022

update version comment for github action dependencies #545

Merged

maxfisher-g closed this as completed in #545 Dec 19, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dependabot doesn't update version string in comments to .yml files #427

Dependabot doesn't update version string in comments to .yml files #427

maxfisher-g commented Oct 27, 2022

maxfisher-g commented Dec 5, 2022

Dependabot doesn't update version string in comments to .yml files #427

Dependabot doesn't update version string in comments to .yml files #427

Comments

maxfisher-g commented Oct 27, 2022

maxfisher-g commented Dec 5, 2022