You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Manifest location and content before the Dependabot update
No response
dependabot.yml content
version: 2updates:
- package-ecosystem: "npm"# See documentation for possible valuesdirectory: "/ui"# Location of package manifestsschedule:
interval: "monthly"commit-message:
prefix: "UI: "allow:
- dependency-type: directignore:
# Ignore all @theia/*, electron and electron-* since we are staying in lock-step with versions from Rigel
- dependency-name: "@theia/*"
- dependency-name: "typescript"
- dependency-name: "electron"
- dependency-name: "electron-chromedriver"
- package-ecosystem: "pip"# See documentation for possible valuesdirectory: "/engine"# Location of package manifestsschedule:
interval: "monthly"commit-message:
prefix: "Engine: "allow:
- dependency-type: direct# Maybe this is needed to allow Poetry to run?insecure-external-code-execution: allow
- package-ecosystem: "pip"# See documentation for possible valuesdirectory: "/cli"# Location of package manifestsschedule:
interval: "monthly"commit-message:
prefix: "CLI: "allow:
- dependency-type: direct# Maybe this is needed to allow Poetry to run?insecure-external-code-execution: allow
Updated dependency
This happens for all dependencies that aren't up to date.
What you expected to see, versus what you actually saw
We are trying to get dependabot to scan our Python projects that make use of poetry.
When dependabot finds a dep version to be outdated, it seems to try updating it but then immediately fails with below message.
Could someone help guide me as to what the problem might be or how I might go about debugging it?
NOTE - Dependabot is being run on a GHE v3.8 instance.
Is there an existing issue for this?
Package ecosystem
pip
Package manager version
poetry 1.3.1
Language version
Python 3.11.4
Manifest location and content before the Dependabot update
No response
dependabot.yml content
Updated dependency
This happens for all dependencies that aren't up to date.
What you expected to see, versus what you actually saw
We are trying to get dependabot to scan our Python projects that make use of poetry.
When dependabot finds a dep version to be outdated, it seems to try updating it but then immediately fails with below message.
Could someone help guide me as to what the problem might be or how I might go about debugging it?
NOTE - Dependabot is being run on a GHE v3.8 instance.
pyproject.toml file
Native package manager behavior
No response
Images of the diff or a link to the PR, issue, or logs
No response
Smallest manifest that reproduces the issue
No response
The text was updated successfully, but these errors were encountered: