chore: Add Dependabot#5380
Conversation
runningcode
requested review from
0xadam-brown,
adinauer,
markushi and
romtsn
as code owners
📲 Install BuildsAndroid
|
runningcode
changed the title
Performance metrics 🚀
|
| Revision | Plain | With Sentry | Diff |
|---|---|---|---|
| 2195398 | 319.02 ms | 342.38 ms | 23.36 ms |
| d364ace | 411.72 ms | 430.81 ms | 19.10 ms |
| d15471f | 286.65 ms | 314.68 ms | 28.03 ms |
| ff8eea4 | 313.42 ms | 337.08 ms | 23.66 ms |
| 17a0955 | 372.53 ms | 446.70 ms | 74.17 ms |
| 23d6b12 | 354.10 ms | 408.38 ms | 54.28 ms |
| cf708bd | 408.35 ms | 458.98 ms | 50.63 ms |
| 6edfca2 | 305.52 ms | 432.78 ms | 127.26 ms |
| 72020f8 | 312.32 ms | 370.94 ms | 58.62 ms |
| 6b019b7 | 343.31 ms | 417.23 ms | 73.91 ms |
App size
| Revision | Plain | With Sentry | Diff |
|---|---|---|---|
| 2195398 | 0 B | 0 B | 0 B |
| d364ace | 1.58 MiB | 2.11 MiB | 539.75 KiB |
| d15471f | 1.58 MiB | 2.13 MiB | 559.54 KiB |
| ff8eea4 | 1.58 MiB | 2.28 MiB | 718.64 KiB |
| 17a0955 | 1.58 MiB | 2.10 MiB | 533.20 KiB |
| 23d6b12 | 1.58 MiB | 2.10 MiB | 532.31 KiB |
| cf708bd | 1.58 MiB | 2.11 MiB | 539.71 KiB |
| 6edfca2 | 1.58 MiB | 2.13 MiB | 559.07 KiB |
| 72020f8 | 1.58 MiB | 2.19 MiB | 620.21 KiB |
| 6b019b7 | 0 B | 0 B | 0 B |
| username: dummy # Required by dependabot | ||
| password: dummy # Required by dependabot | ||
| updates: | ||
| - package-ecosystem: "gradle" |
There was a problem hiding this comment.
l/m: Thoughts about using groups to reduce the number of PRs generated (and the pain of sequential merges) + ensure we only get a single PR for deps that need to be bumped together?
We could even have dependabot group everything into a single PR...
There was a problem hiding this comment.
That's a good point. I think the issue here is that some of our version numbers are explicitly set to be older versions in order to ensure compatibility like the spring boot.
There was a problem hiding this comment.
Ah, good to exclude those versions so we don't get pinged for them repeatedly.
There was a problem hiding this comment.
I added the exclusion for spring boot. I know there are others. We can add them as they come in.
| directory: "/" | ||
| registries: | ||
| - gradle-plugin-portal | ||
| schedule: |
There was a problem hiding this comment.
I think we need a custom commit message to match our chore(deps) convention:
commit-message:
prefix: "chore"
prefix-development: "chore"
There was a problem hiding this comment.
good point, will update
| registries: | ||
| - gradle-plugin-portal | ||
| schedule: | ||
| interval: "daily" |
There was a problem hiding this comment.
l: My vote would be for weekly and we can see about increasing cadence as we go, esp as we were getting by with nothing.
There was a problem hiding this comment.
im curious what other think here. i would favor the daily at first so we can catch up and then we can adjust it later once we've caught up.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
runningcode
force-pushed
the
no/add-dependabot-gradle
branch
from
313b27a to
652d56f
Compare
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2 participants
Summary
gradlepackage ecosystem to Dependabot config with the Gradle Plugin Portal registry so plugin/dependency updates are tracked automatically.gradleandgithub-actionsecosystems to run daily.🤖 Generated with Claude Code