-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update go.mod dependencies at the start of each release #932
Labels
Comments
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further |
Related #931 |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This will ensure that any patched security issues in Go dependencies are included in each relevant release, will reduce/eliminate the need for manually checking the scanners and sending CVE bumps before the release (which can slow things down).
The ideal mechanism would be to trigger Dependabot at the start of a release to handle these updates for us, as we already have configuration for the bot about which version we don't want to update.
The text was updated successfully, but these errors were encountered: