Limit Dependabot for Python to security updates

2024-06-14 11:52:32 +03:00 · 2023-09-14 10:00:59 +02:00
parent ef5a04a324
commit 49ebe51475
1 changed files with 3 additions and 1 deletions
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -28,7 +28,9 @@ updates:
    interval: weekly
    time: "04:00"
 - package-ecosystem: pip
-  open-pull-requests-limit: 10
+  # We only want to bump versions of packages in case of security updates, as
+  # we want to keep maximum compatibility - see https://t.ly/INSR_
+  open-pull-requests-limit: 0
  directory: "/"
  labels: []
  schedule: