Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/samsmithnz/dependabot-configuration-builder

Given a repository, scan all files for packages and generate the Dependabot configuration file
https://github.com/samsmithnz/dependabot-configuration-builder

dependabot poc

Last synced: about 1 month ago
JSON representation

Given a repository, scan all files for packages and generate the Dependabot configuration file

Awesome Lists containing this project

README 

          
# Dependabot-Configuration-Builder

Given a repository, scan all files for packages and generate the Dependabot configuration file



[![.NET](https://github.com/samsmithnz/Dependabot-Configuration-Builder/actions/workflows/dotnet.yml/badge.svg)](https://github.com/samsmithnz/Dependabot-Configuration-Builder/actions/workflows/dotnet.yml)

[![Coverage Status](https://coveralls.io/repos/github/samsmithnz/Dependabot-Configuration-Builder/badge.svg?branch=main)](https://coveralls.io/github/samsmithnz/Dependabot-Configuration-Builder?branch=main)

[![Code Smells](https://sonarcloud.io/api/project_badges/measure?project=samsmithnz_Dependabot-Configuration-Builder&metric=code_smells)](https://sonarcloud.io/summary/new_code?id=samsmithnz_Dependabot-Configuration-Builder)

[![Current Release](https://img.shields.io/github/release/samsmithnz/Dependabot-Configuration-Builder/all.svg)](https://github.com/samsmithnz/Dependabot-Configuration-Builder/releases)



Currently scans for



| File | System | Package |

|--|--|--|

| nuget.config, *.csproj, *.vbproj | .NET | NuGet |

| pom.xml | Java | Maven |

| package.json | JavaScript | NPM |

| Gemfile, Gemfile.lock | Ruby | bundler |

| requirements.txt | Python | pip |

| *.yml | GitHub Actions | GitHub Actions |



See issues for details.



See the [official Dependabot docs](https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/configuration-options-for-dependency-updates) for more options



## Usage



```C#

DCB [-d|--directory ] [-a|--assignees ]

```



## Example



Given this projects root directory + samples, produces the output:

```YAML

version: 2

updates:

- package-ecosystem: nuget

  directory: /samples/dotnet/

  schedule:

    interval: daily

- package-ecosystem: maven

  directory: /samples/java/

  schedule:

    interval: daily

- package-ecosystem: npm

  directory: /samples/javascript/

  schedule:

    interval: daily

- package-ecosystem: pip

  directory: /samples/python/

  schedule:

    interval: daily

- package-ecosystem: bundler

  directory: /samples/ruby/

  schedule:

    interval: daily

- package-ecosystem: nuget

  directory: /src/DCB.Tests/

  schedule:

    interval: daily

- package-ecosystem: nuget

  directory: /src/DCB/

  schedule:

    interval: daily

- package-ecosystem: github-actions

  directory: /

  schedule:

    interval: daily

```