Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / dependabot/dependabot-core issues and pull requests

#12642 - Use common variable for PHP version

Pull Request - State: closed - Opened by sachin-sandhu 11 days ago
Labels: L: php:composer

#12640 - Bump Microsoft.Build.Tasks.Core and Microsoft.Build.Utilities.Core

Pull Request - State: open - Opened by dependabot[bot] 11 days ago
Labels: dependencies, .NET

#12637 - Update labels for `dotnet-sdk`, `rust-toolchain`, and `vcpkg`

Pull Request - State: closed - Opened by JamieMagee 11 days ago
Labels: L: dotnet:dotnet-sdk, L: cpp:vcpkg, L: rust:rust-toolchain

#12636 - Install `vcpkg` cli in `vcpkg` ecosystem container image

Pull Request - State: open - Opened by JamieMagee 11 days ago

#12635 - use initial project directory when computing updated file paths from project discovery

Pull Request - State: closed - Opened by brettfo 11 days ago
Labels: L: dotnet:nuget

#12634 - Downgrade pip to 24.2 due to issue in >25

Pull Request - State: closed - Opened by sachin-sandhu 11 days ago
Labels: L: python

#12633 - Not working properly if project includes Maui

Issue - State: closed - Opened by MarkusRodler 12 days ago - 1 comment
Labels: T: bug 🐞, L: dotnet:nuget

#12631 - Remove cooldown feature flag for `vcpkg` and `rust_toolchain`

Pull Request - State: closed - Opened by JamieMagee 12 days ago - 1 comment

#12629 - v0.321.2

Pull Request - State: closed - Opened by dependabot-core-action-automation[bot] 12 days ago

#12628 - DEBUG: allow triggering releases via workflow_dispatch

Pull Request - State: open - Opened by jeffwidman 12 days ago

#12627 - cleanup nuget pr body text

Pull Request - State: open - Opened by brettfo 12 days ago
Labels: L: dotnet:nuget

#12627 - cleanup nuget pr body text

Pull Request - State: closed - Opened by brettfo 12 days ago
Labels: L: dotnet:nuget

#12626 - UV update to version 0.7.20

Pull Request - State: closed - Opened by sachin-sandhu 12 days ago
Labels: L: python:uv

#12625 - Upgrade uv version to 0.7.20

Pull Request - State: closed - Opened by sachin-sandhu 12 days ago
Labels: L: python:uv

#12624 - Upgrade PIP to 25.0.1

Pull Request - State: closed - Opened by sachin-sandhu 12 days ago
Labels: L: python

#12623 - Bump Microsoft.Build.Tasks.Core from 17.12.6 to 17.12.35

Pull Request - State: closed - Opened by dependabot[bot] 12 days ago - 2 comments
Labels: dependencies, L: dotnet:nuget, .NET

#12623 - Bump Microsoft.Build.Tasks.Core from 17.12.6 to 17.12.35

Pull Request - State: open - Opened by dependabot[bot] 12 days ago
Labels: dependencies, L: dotnet:nuget, .NET

#12622 - Bump DiffPlex and 21 others

Pull Request - State: open - Opened by dependabot[bot] 13 days ago
Labels: dependencies, L: dotnet:nuget, .NET

#12621 - Bump the dev-dependencies group across 1 directory with 7 updates

Pull Request - State: open - Opened by dependabot[bot] 13 days ago
Labels: dependencies, ruby

#12620 - Bump dotnet-sdk from 9.0.203 to 9.0.302 in /nuget/helpers/lib/NuGetUpdater

Pull Request - State: open - Opened by dependabot[bot] 13 days ago
Labels: dependencies, L: dotnet:nuget, dotnet_sdk_package_manager

#12619 - Bump nuget/helpers/lib/dotnet-core from `218ef74` to `4156c64`

Pull Request - State: open - Opened by dependabot[bot] 13 days ago
Labels: dependencies, L: dotnet:nuget, submodules

#12618 - Bump nuget/helpers/lib/NuGet.Client from `42bfb45` to `2948e02`

Pull Request - State: open - Opened by dependabot[bot] 13 days ago
Labels: dependencies, L: dotnet:nuget, submodules

#12617 - Bump golang.org/x/mod from 0.19.0 to 0.26.0 in /go_modules/helpers

Pull Request - State: open - Opened by dependabot[bot] 13 days ago
Labels: dependencies, L: go:modules, go

#12616 - add deploy command for branch images workflow

Pull Request - State: closed - Opened by sachin-sandhu 15 days ago

#12615 - Ssandhu/codespell fix

Pull Request - State: open - Opened by sachin-sandhu 15 days ago

#12614 - Adds lock files to actions-codespell ignore list

Pull Request - State: closed - Opened by sachin-sandhu 15 days ago

#12613 - Image tag in docker-compose will not get updated

Issue - State: open - Opened by gmile 15 days ago
Labels: T: bug 🐞, L: github:actions, L: docker, L: javascript

#12612 - filter out non-version tags in Helm update checker

Pull Request - State: open - Opened by abn 16 days ago
Labels: L: helm

#12611 - Cooldown feature flag removal for Dotnet SDK

Pull Request - State: closed - Opened by sachin-sandhu 16 days ago
Labels: L: dotnet-sdk

#12610 - fix: update the file extensions that indicate and archive for http url module sources

Pull Request - State: open - Opened by bcpeinhardt 16 days ago
Labels: L: terraform

#12609 - uv pyproject.toml

Issue - State: open - Opened by phaabe 16 days ago
Labels: L: python, L: python:uv

#12608 - v0.321.1

Pull Request - State: closed - Opened by dependabot-core-action-automation[bot] 16 days ago

#12607 - Add rust_toolchain and vcpkg gemspecs to the GEMSPECS list

Pull Request - State: closed - Opened by markhallen 16 days ago

#12606 - [dummy] for testing

Pull Request - State: open - Opened by sachin-sandhu 16 days ago
Labels: L: php:composer, L: javascript

#12605 - Sorbet type check added to cargo helper class.

Pull Request - State: closed - Opened by thavaahariharangit 17 days ago
Labels: L: rust:cargo

#12604 - Upgrade nodejs to 22.x.x, npm to 10.5.0

Pull Request - State: closed - Opened by sachin-sandhu 17 days ago
Labels: L: javascript

#12603 - v0.321.0

Pull Request - State: closed - Opened by dependabot-core-action-automation[bot] 17 days ago

#12602 - Remove composer feature flag

Pull Request - State: closed - Opened by AbhishekBhaskar 17 days ago
Labels: L: php:composer

#12601 - updates to app.config can sometimes cause version downgrades

Issue - State: open - Opened by brettfo 17 days ago
Labels: L: dotnet:nuget

#12600 - add experimental nuget file writer

Pull Request - State: open - Opened by brettfo 17 days ago
Labels: L: dotnet:nuget

#12599 - Upgrades Yarn to latest version 4.9.2

Pull Request - State: closed - Opened by sachin-sandhu 17 days ago
Labels: L: javascript

#12598 - Npm and Yarn : Upgrades Yarn to latest version 4.9.2

Pull Request - State: closed - Opened by sachin-sandhu 17 days ago
Labels: L: javascript

#12597 - Remove deprecated cooldown feature flag for Python ecosystems: python, uv

Pull Request - State: closed - Opened by kbukum1 17 days ago
Labels: L: python, L: python:uv

#12596 - Fix security fix version selection for `npm_and_yarn`, and `bun`

Pull Request - State: open - Opened by kbukum1 17 days ago
Labels: L: javascript

#12594 - How do I know which version of dependabot is being used in Actions?

Issue - State: open - Opened by Frulfump 17 days ago - 1 comment
Labels: L: github:actions, L: dotnet:nuget, L: javascript

#12593 - Composer : Deprecates composer V1 code

Pull Request - State: closed - Opened by sachin-sandhu 17 days ago
Labels: L: php:composer

#12592 - draft changes for composer

Pull Request - State: closed - Opened by sachin-sandhu 18 days ago
Labels: L: php:composer

#12591 - v0.320.1

Pull Request - State: closed - Opened by dependabot-core-action-automation[bot] 18 days ago

#12590 - Fix gems-bump-version workflow by removing sorbet-runtime

Pull Request - State: closed - Opened by markhallen 18 days ago

#12589 - Track local dependencies from uv tool sources

Pull Request - State: open - Opened by Sly1029 18 days ago
Labels: L: python:uv

#12588 - Fix uv installation in uv ecosystem Dockerfile

Pull Request - State: closed - Opened by kbukum1 18 days ago - 1 comment
Labels: L: python:uv

#12587 - Cooldown feature flag removal for ecosystems

Pull Request - State: open - Opened by sachin-sandhu 18 days ago
Labels: L: php:composer, L: dotnet-sdk

#12586 - remove unnecessary test fixtures

Pull Request - State: closed - Opened by brettfo 18 days ago
Labels: L: dotnet:nuget

#12585 - [Draft] Fix Nuget Submission Issue on CI Pipeline

Pull Request - State: closed - Opened by kbukum1 18 days ago
Labels: L: dotnet:nuget

#12584 - Add missing checksum for commonmarker arm64-darwin platform

Pull Request - State: closed - Opened by kbukum1 18 days ago - 2 comments

#12583 - Fix npm version detection logic for improved accuracy and compatibility

Pull Request - State: closed - Opened by kbukum1 18 days ago
Labels: L: javascript

#12582 - Remove deprecated cooldown feature flag for JavaScript ecosystems: npm_and_yarn, bun

Pull Request - State: open - Opened by kbukum1 18 days ago - 7 comments
Labels: L: javascript, L: python, L: python:uv

#12581 - Publish new ecosystems dependabot-rust_toolchain and depenadbot-vcpkg on rubygems.org

Issue - State: open - Opened by markhallen 18 days ago - 3 comments
Labels: L: ruby:bundler, L: github:actions, L: rust:cargo, L: dart:pub, T: new-ecosystem, L: javascript

#12580 - Adding support for dependency-groups (PEP 735) in pyproject.toml

Pull Request - State: open - Opened by SMoraisAnsys 18 days ago - 4 comments
Labels: L: python, L: python:uv

#12579 - uv dependabot not working

Issue - State: open - Opened by kaihendry 19 days ago
Labels: T: bug 🐞, L: github:actions, L: python, L: python:uv

#12578 - dependabot does not add 'license' key to package-lock.json on dependency update

Issue - State: open - Opened by anatawa12 19 days ago
Labels: T: bug 🐞, L: go:modules, L: github:actions, L: rust:cargo, L: javascript

#12577 - Cooldown feature flag removal

Pull Request - State: closed - Opened by sachin-sandhu 19 days ago
Labels: L: elixir:hex, L: java:gradle, L: go:modules, L: github:actions, L: elm, L: git:submodules, L: docker, L: rust:cargo, L: java:maven, L: dart:pub, L: devcontainers

#12572 - FF for cooldown clean up from swift and terraform.

Pull Request - State: closed - Opened by randhircs 19 days ago
Labels: L: terraform, L: swift

#12571 - Handle UTF-8 BOM in `dotnet-sdk` ecosystem

Pull Request - State: closed - Opened by JamieMagee 19 days ago
Labels: L: dotnet-sdk

#12570 - Composer ecosystem upgrade, PHP 8.4.x, Composer 2.8.9

Pull Request - State: closed - Opened by sachin-sandhu 19 days ago
Labels: L: php:composer

#12569 - updates php to 8.4 and composer to 2.8.9

Pull Request - State: closed - Opened by sachin-sandhu 19 days ago - 1 comment
Labels: L: php:composer

#12567 - Dependabot groups updates, eventhough group is not set

Issue - State: open - Opened by benjaminoerskov 20 days ago
Labels: T: bug 🐞, L: dotnet:nuget

#12566 - Target latest Python versions

Pull Request - State: open - Opened by wktk 20 days ago
Labels: L: python, L: python:uv

#12565 - Bump friendsofphp/php-cs-fixer from 3.75.0 to 3.78.1 in /composer/helpers/v2 in the dev-dependencies group across 1 directory

Pull Request - State: open - Opened by dependabot[bot] 20 days ago - 1 comment
Labels: dependencies, L: php:composer, php

#12564 - Bump DiffPlex and 20 others

Pull Request - State: closed - Opened by dependabot[bot] 20 days ago - 1 comment
Labels: dependencies, L: dotnet:nuget, .NET

#12563 - Bump nuget/helpers/lib/dotnet-core from `218ef74` to `a68b2ff`

Pull Request - State: closed - Opened by dependabot[bot] 20 days ago - 1 comment
Labels: dependencies, L: dotnet:nuget, submodules

#12562 - Remove `T.must` check from `details_for_library_dependency`

Pull Request - State: closed - Opened by JamieMagee 21 days ago
Labels: L: java:gradle, sorbet 🍦

#12560 - Add dependabot-vcpkg to root `Gemfile`

Pull Request - State: closed - Opened by JamieMagee 21 days ago

#12559 - Gradle dependabot updates failing with "unknown_error" and RuntimeError "no files changed" when update detected after 20 June

Issue - State: open - Opened by chadlwilson 22 days ago - 2 comments
Labels: T: bug 🐞, L: ruby:bundler, L: java:gradle, L: go:modules, L: github:actions, L: java:maven

#12558 - Dependabot fails -> gradle: Passed `nil` into T.must

Issue - State: closed - Opened by diduseetheocean 23 days ago - 4 comments
Labels: T: bug 🐞, L: java:gradle, sorbet 🍦

#12553 - v0.320.0

Pull Request - State: closed - Opened by dependabot-core-action-automation[bot] 23 days ago

#12552 - Fix Maven Regex that detects `pom.xml` indentation.

Pull Request - State: open - Opened by ByAgenT 23 days ago
Labels: L: java:maven

#12551 - Update expected version of PHP from `8.2.28` to `8.2.29`

Pull Request - State: closed - Opened by JamieMagee 23 days ago
Labels: L: php:composer

#12550 - log all errors to the console before sending upstream

Pull Request - State: open - Opened by brettfo 23 days ago
Labels: L: dotnet:nuget

#12549 - helm - Error fetching chart releases: Error: no repositories configured

Issue - State: open - Opened by julien-michaud 24 days ago - 1 comment
Labels: T: bug 🐞, L: php:composer, L: ruby:bundler, L: elixir:hex, L: java:gradle, L: go:modules, L: github:actions, L: elm, L: git:submodules, L: docker, L: rust:cargo, L: dotnet:nuget, L: java:maven, L: dart:pub, L: javascript, L: python, L: python:uv, L: helm

#12548 - Add missing `require` in `vcpkg`

Pull Request - State: closed - Opened by JamieMagee 24 days ago

#12547 - v0.320.0

Pull Request - State: closed - Opened by dependabot-core-action-automation[bot] 24 days ago - 1 comment

#12546 - Dependency auto-submission for NuGet failing

Issue - State: closed - Opened by JamieMagee 24 days ago
Labels: L: dotnet:nuget, T: tech-debt ⚙️

#12545 - Failure to install `gpgme` using GCC 15

Issue - State: open - Opened by JamieMagee 24 days ago
Labels: L: ruby:bundler, T: tech-debt ⚙️

#12544 - Dependabot has stopped finding nuget updates

Issue - State: open - Opened by cjda1 25 days ago - 6 comments
Labels: T: bug 🐞, L: dotnet:nuget, L: python

#12543 - Dependabot configuration

Issue - State: open - Opened by neob91-close 25 days ago
Labels: T: bug 🐞, L: docker, L: python, L: python:uv

#12542 - Updates Hex package manager to version '2.2.1'

Pull Request - State: closed - Opened by sachin-sandhu 25 days ago
Labels: L: elixir:hex

#12541 - Fixes failing git_submodules ecosystem cooldown test cases

Pull Request - State: closed - Opened by sachin-sandhu 25 days ago
Labels: L: git:submodules

#12540 - Updates terraform version to 1.12.2

Pull Request - State: closed - Opened by sachin-sandhu 25 days ago
Labels: L: terraform

#12539 - Broken hex.pm support for private registries in latest version (v2.0.20250701035701)

Issue - State: open - Opened by bforchhammer 26 days ago - 4 comments
Labels: T: bug 🐞, L: elixir:hex, L: dart:pub

#12538 - Dependabot does not propose to widen range on a library

Issue - State: closed - Opened by SMoraisAnsys 26 days ago - 1 comment
Labels: T: bug 🐞, L: go:modules, L: github:actions, L: python

#12537 - Update Swift version to 6.1.2

Pull Request - State: closed - Opened by sachin-sandhu 26 days ago
Labels: L: swift

#12536 - only close with `up_to_date` if there are no operations to perform

Pull Request - State: closed - Opened by brettfo 26 days ago
Labels: L: dotnet:nuget

#12535 - Dependabot uses Node.js v20.19.3 and NPM 10.8.2. Due to the engine-strict setting, the update will not succeed

Issue - State: closed - Opened by chris48s 26 days ago - 7 comments
Labels: T: bug 🐞, L: go:modules, L: github:actions, L: javascript

#12533 - Bump regclient to 0.9.0

Pull Request - State: closed - Opened by yeikel 26 days ago - 1 comment
Labels: L: docker

#12532 - Add exclude_paths option to dependabot.yml

Pull Request - State: open - Opened by dnlfm 27 days ago
Labels: L: java:gradle, L: github:actions

#12531 - Dependabot has stopped providing the changelog of updated dependencies

Issue - State: open - Opened by patrickomeara 27 days ago - 16 comments
Labels: T: bug 🐞, L: php:composer, L: github:actions

#12530 - Bump nuget/helpers/lib/dotnet-core from `218ef74` to `2bc6d26`

Pull Request - State: closed - Opened by dependabot[bot] 27 days ago - 1 comment
Labels: dependencies, L: dotnet:nuget, submodules