Commit Graph

13 Commits

Author SHA1 Message Date
Jérémy Benoist
adc79d0578
Fix symfony pattern for dependabot
`*symfony*` matches to much deps (ie `phpstan-symfony`) which aren't related to Symfony release.
`symfony/*` will properly match Symfony release better.
2023-10-02 09:17:32 +02:00
Jérémy Benoist
7cbe1dafb3
Avoid deps for Symfony/*
Until we release official support for Symfony 5+
2023-10-02 08:35:01 +02:00
Jérémy Benoist
944461d67c
Move grouping deps in the right place
I put npm grouped deps inside the composer section, which is why it wasn't working.
I move it in the right place and also added one grouped deps for Symfony*
2023-09-12 09:52:43 +02:00
Jeremy Benoist
5db058ff72
Update assets & add grouped update 2023-09-04 09:42:56 +02:00
Jérémy Benoist
c19a0c6fe5
Ignore lcobucci/jwt > 4.2.0 2022-12-16 13:40:12 +01:00
Jeremy Benoist
b3099f68c5
Update all Doctrine deps
Also update these deps to be compatible with latest Doctrine version:
- `friendsofsymfony/oauth-server-bundle`
- `lexik/form-filter-bundle`
- `dama/doctrine-test-bundle`
2022-12-16 10:29:42 +01:00
Jeremy Benoist
33267f0736
Update to FOSUserBundle 3.1
Also remove some deprecation from Symfony.
Use `LegacyEventDispatcherProxy` to handle Symfony 4 dispatch from FOSUser
2022-12-14 09:42:17 +01:00
Jeremy Benoist
14cbe0975d
Upgrade PHPStan 2022-11-23 15:22:00 +01:00
naveensrinivasan
d52f00132a
Included githubactions in the dependabot config
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.

Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot

GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot

https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-19 13:55:41 -05:00
Jeremy Benoist
0afd91a160
Remove dead test
The URL seems to be down now.
Move to a more frequent deps update
2022-01-05 13:25:50 +01:00
Kevin Decherf
4d43f79b34 dependabot: change schedule to check updates once a month
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2021-05-03 13:30:34 +02:00
Jérémy Benoist
93e7c57101
Update dependabot.yml
Remove old lock in NPM after WebPack 5 update.
Add `materialize-css` because the update looks like to complex.
Remove `symfony/phpunit-bridge` lock
2020-12-07 09:30:25 +01:00
dependabot-preview[bot]
4ea7290441
Create Dependabot config file 2020-10-16 10:44:49 +00:00