Skip to content

fix: add Dependabot config for gomod + github-actions weekly updates (PILOT-384)#10

Merged
TeoSlayer merged 1 commit into
mainfrom
openclaw/pilot-384-20260602-220300
Jun 6, 2026
Merged

fix: add Dependabot config for gomod + github-actions weekly updates (PILOT-384)#10
TeoSlayer merged 1 commit into
mainfrom
openclaw/pilot-384-20260602-220300

Conversation

@matthew-pilot
Copy link
Copy Markdown
Collaborator

@matthew-pilot matthew-pilot commented Jun 2, 2026

Summary

Add .github/dependabot.yml to enable automated weekly dependency updates for:

  • Go modules (gomod) — limit 5 PRs, labeled dependencies + go
  • GitHub Actions — limit 5 PRs, labeled dependencies + ci

Scope

  • 1 file, +19/-0 lines (small tier)
  • .github/workflows/notify-canary.yml is intentionally NOT included — blocked by global paths_denied policy (.github/workflows/**). Needs operator creation.

Verification

  • go build ./...
  • go vet ./... ⚠️ pre-existing issues in internal/server (not from this change)
  • go test ./... pending (cosift test suite is large)

Jira

https://vulturelabs.atlassian.net/browse/PILOT-384

@codecov
Copy link
Copy Markdown

codecov Bot commented Jun 2, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

@matthew-pilot
Copy link
Copy Markdown
Collaborator Author

matthew-pilot commented Jun 2, 2026

🤖 PR Status Check

PR #10: fix: add Dependabot config for gomod + github-actions weekly updates (PILOT-384)
State: open | Mergeable: MERGEABLE (clean) ✅
CI: 2/2 ✅ all passing
Changes: +19/−0 in 1 file(s)
Labels: (none)

matthew-pr-worker • 2026-06-02T22:18:00Z

@matthew-pilot
Copy link
Copy Markdown
Collaborator Author

matthew-pilot commented Jun 2, 2026

🤖 PR Explanation

fix: add Dependabot config for gomod + github-actions weekly updates (PILOT-384)

Summary

Summary

Add .github/dependabot.yml to enable automated weekly dependency updates for:

  • Go modules (gomod) — limit 5 PRs, labeled dependencies + go
  • GitHub Actions — limit 5 PRs, labeled dependencies + ci

Scope

  • 1 file, +19/-0 lines (small tier)
  • .github/workflows/notify-canary.yml is intentionally NOT included — blocked by global paths_denied policy (.github/workflows/**). Needs operator creation.

Verification

  • go build ./...
  • go vet ./... ⚠️ pre-existi...

Changes

+19/−0 lines across 1 file(s):

  • .github/dependabot.yml (+19/−0): version: 2

Files Changed

.github/dependabot.yml

matthew-pr-worker • 2026-06-02T22:18:00Z

@matthew-pilot
Copy link
Copy Markdown
Collaborator Author

matthew-pilot commented Jun 2, 2026

📊 PR Status — Self-Review

PR #10: fix: add Dependabot config for gomod + github-actions weekly updates (PILOT-384)
State: open · Mergeable: ✅ yes (clean)
CI: ✅ test passed · ✅ codecov/patch passed · ✅ snyk passed
Canary: not triggered (.github/workflows/** blocked by paths_denied)
Jira: PILOT-384
Created: 2026-06-02 22:09 UTC · Branch: openclaw/pilot-384-...
Scope: 1 file, +19/-0 (small tier — dependabot config)

Self-authored config-only PR. All CI green. Ready for operator review.

@TeoSlayer TeoSlayer merged commit f6685b4 into main Jun 6, 2026
3 checks passed
@TeoSlayer TeoSlayer deleted the openclaw/pilot-384-20260602-220300 branch June 6, 2026 08:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@matthew-pilot @TeoSlayer