Enable dependabot for security updates

observIQ · Dec 18, 2023 · efc0d1c · efc0d1c
1 parent 693bf75
commit efc0d1c
Showing 1 changed file with 12 additions and 13 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -1,15 +1,14 @@
 version: 2
 updates: []
-  # Disabling dependabot for now
-  ##############################
-  # - package-ecosystem: "gomod"
-  #   directory: "/"
-  #   schedule:
-  #     interval: "weekly"
-  #   ignore:
-  #     # AWS we want to ignore nightly patch releases
-  #     - dependency-name: "github.com/aws/aws-sdk-go"
-  #       update-types: ["version-update:semver-patch"]
-  #   commit-message:
-  #     prefix: "deps"
-  #     include: "scope"
+  - package-ecosystem: "gomod"
+    open-pull-requests-limit: 0
+    directory: "/"
+    schedule:
+      interval: "monthly"
+    ignore:
+      # AWS we want to ignore nightly patch releases
+      - dependency-name: "github.com/aws/aws-sdk-go"
+        update-types: ["version-update:semver-patch"]
+    commit-message:
+      prefix: "deps"
+      include: "scope"