Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge branch '6.3.x' into 6.4.x

- remove update-dependabot action
Rob Winch 3 months ago
parent
6dc8cd1f60 9710492619
commit
b5e1c3770b
2 changed files with 0 additions and 76 deletions
Split View Show Diff Stats
  1. 0 40
      .github/dependabot.template.yml
  2. 0 36
      .github/workflows/update-dependabot.yml

+ 0 - 40
.github/dependabot.template.yml
View File 

@@ -1,40 +0,0 @@
 
-version: 2
 
-
 
-registries:
 
-  spring-milestones:
 
-    type: maven-repository
 
-    url: https://repo.spring.io/milestone
 
-
 
-updates:
 
-
 
-  - package-ecosystem: "gradle"
 
-    target-branch: "main"
 
-    directory: "/"
 
-    schedule:
 
-      interval: "daily"
 
-      time: "03:00"
 
-      timezone: "Etc/UTC"
 
-    labels: [ "type: dependency-upgrade" ]
 
-    registries:
 
-      - "spring-milestones"
 
-    ignore:
 
-      - dependency-name: "com.nimbusds:nimbus-jose-jwt" # nimbus-jose-jwt gets updated when oauth2-oidc-sdk is updated to ensure consistency
 
-      - dependency-name: "org.python:jython" # jython updates break integration tests
 
-      - dependency-name: "org.apache.directory.server:*" # ApacheDS version > 1.5.5 contains break changes
 
-      - dependency-name: "org.junit:junit-bom"
 
-        update-types: [ "version-update:semver-major" ]
 
-      - dependency-name: "org.mockito:mockito-bom"
 
-        update-types: [ "version-update:semver-major" ]
 
-      - dependency-name: "*"
 
-        update-types: [ "version-update:semver-major", "version-update:semver-minor" ]
 
-
 
-  #    GitHub Actions
 
-
 
-  - package-ecosystem: github-actions
 
-    target-branch: "main"
 
-    directory: "/"
 
-    schedule:
 
-      interval: weekly
 
-    ignore:
 
-      - dependency-name: "spring-io/*"
 
-      - dependency-name: "spring-security-release-tools/*"

+ 0 - 36
.github/workflows/update-dependabot.yml
View File 

@@ -1,36 +0,0 @@
 
-name: Update dependabot.yml
 
-
 
-on:
 
-  workflow_dispatch:
 
-
 
-permissions:
 
-  contents: read
 
-
 
-jobs:
 
-
 
-  get-supported-branches:
 
-    uses: spring-io/spring-security-release-tools/.github/workflows/retrieve-spring-supported-versions.yml@actions-v1
 
-    with:
 
-      project: spring-security
 
-      type: oss
 
-      repository_name: spring-projects/spring-security
 
-
 
-  main:
 
-    runs-on: ubuntu-latest
 
-    needs: [get-supported-branches]
 
-    if: ${{ (github.repository == 'spring-projects/spring-security') && (github.ref == 'refs/heads/main') }}
 
-    permissions:
 
-      contents: write
 
-    steps:
 
-      - uses: actions/checkout@v4
 
-        with:
 
-          fetch-depth: 1
 
-      - uses: spring-io/spring-security-release-tools/.github/actions/generate-dependabot-yml@actions-v1
 
-        name: Update dependabot.yml
 
-        with:
 
-          gradle-branches: ${{ needs.get-supported-branches.outputs.supported_versions }},main
 
-          github-actions-branches: ${{ needs.get-supported-branches.outputs.supported_versions }},main,docs-build
 
-          gh-token: ${{ secrets.GITHUB_TOKEN }}
 
-      - uses: stefanzweifel/git-auto-commit-action@v5
 
-        with:
 
-          commit_message: Update dependabot.yml