Skip to content

validate-dependabot

Actions
validate dependabot yaml
v3.0.0
Latest
By marocchino
Star (26)

Tags

 (1)
dependency-management

typescript-action status

Why?

If you get a validation error when editing your config, you won't know if there's a problem until the next dependabot runs. Even if the cycle is long and the alarm is not set, it may be detected much later. This library allows you to find problems in the PR stage.

Usage

name: dependabot validate

on:
  pull_request:
    paths:
      - '.github/dependabot.yml'
      - '.github/workflows/dependabot-validate.yml'
jobs:
  validate:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: marocchino/validate-dependabot@v3
        id: validate
      - uses: marocchino/sticky-pull-request-comment@v2
        if: always()
        with:
          header: validate-dependabot
          message: ${{ steps.validate.outputs.markdown }}

Inputs

path

Required path of config file. Default ".github/dependabot.yml".

success_message

Required display on success. Default "✅dependabot config looks good 👍".

failure_message

Required display on failure. Default "🚫 dependabot errors".

Outputs

raw

response body as json string

markdown

errors as markdown table

Any problem?

Feel free to report issues. 😃

Contributors (5)

@marocchino@dependabot@smolse@corneliusroemer@lgtm-migrator

Resources

validate-dependabot is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.

About

validate dependabot yaml
v3.0.0
Latest
By marocchino

Tags

 (1)
dependency-management

Contributors (5)

@marocchino@dependabot@smolse@corneliusroemer@lgtm-migrator

Resources

validate-dependabot is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.