GH-500 - Configure and use supply chain security - Section 3.4
Configure advanced dependency update rules with dependabot.yml, including grouping, scheduling, and update strategies.
Configure advanced Dependabot version updates using a dependabot.yml file, specifying ecosystems, scheduling, and update strategies. Apply grouped updates to consolidate related dependency pull requests and reduce review overhead across large repositories.
Dependabot version updatesdependabot.ymlgrouped updatesupdate strategies
More in this domain
Back to all Configure and use supply chain security objectives, or the GH-500 cert hub.
Examworthy is not affiliated with or endorsed by GitHub. Original, blueprint-aligned practice material only.