kbukum1
Follow
Popular repositories Loading
-
dependabot-core
dependabot-core PublicForked from dependabot/dependabot-core
🤖 Dependabot's core logic for creating update PR's.
Ruby 1
-
dependabot-script
dependabot-script PublicForked from dependabot/dependabot-script
A simple script that demonstrates how to use Dependabot Core
Ruby 1
-
cli
cli PublicForked from dependabot/cli
A tool for testing and debugging Dependabot update jobs.
Go
-
-
ruby_npm_example
ruby_npm_example Public templateForked from dependabot/demo
🤖 Fork me to try out Dependabot
Ruby
-
Contribution activity
April 2025
Created 34 commits in 2 repositories
Created 1 repository
-
kbukum1/dependabot_yarn_issue_format_change
This contribution was made on Apr 9
Created a pull request in dependabot/dependabot-core that received 6 comments
Fix Version Update Behavior for Versions with Dashes in Maven Ecosystem
What are you trying to accomplish? This PR fixes an issue in the Maven ecosystem where Dependabot fails to propose updates when the version string …
+42
−2
lines changed
•
6
comments
Opened 20 other pull requests in 1 repository
dependabot/dependabot-core
1
open
18
merged
1
closed
-
Support Update from npm 6 (lockfile v1) to npm 8, 10 (lockfile v3) and Cleanup
npm_fallback_version_above_v6Feature FlagThis contribution was made on Apr 24 -
Ensure Cooldown Filter is Not Applied to Security Updates
This contribution was made on Apr 23
-
Add more specs for Maven dependency files URL construction
This contribution was made on Apr 21
-
Fix Docker Compose Specs Related to Requirements Digest with Sha256
This contribution was made on Apr 17
-
Fix Docker Compose Digest Handling for sha256 and Normal Digests
This contribution was made on Apr 17
-
Refactor Cooldown Period Check into a Separate Function for Reusability
This contribution was made on Apr 17
-
Pass Cooldown and Extend Generic Version Finder for Maven Ecosystem
This contribution was made on Apr 15
-
Enforce Sorbet Typings in Changed Ruby Files
This contribution was made on Apr 15
-
Update PR Template: Refactor Checklist
This contribution was made on Apr 15
-
Refactor: Consistent Filtering of Releases in PackageLatestVersionFinder
This contribution was made on Apr 15
-
Refactor: Update Bundler Versioning to Use Bundler::Version Instead of Gem::Version
This contribution was made on Apr 14
-
Sorbet: Update Returned Version Types for Generic PackageLatestVersionFinder
This contribution was made on Apr 14
-
Add
PackageReleaseFiltering for Security Vulnerability CheckThis contribution was made on Apr 12 -
Standardize Maven Package Fetcher to Support Generic Package Release Details
This contribution was made on Apr 10
-
Remove feature flag
enable_beta_ecosystemscheck from bun ecosystemThis contribution was made on Apr 9 -
Fix Sorbet Typings for Maven Ecosystem in Update Checker and Latest Version Finder
This contribution was made on Apr 9
-
Refine VersionResolver for Bun
This contribution was made on Apr 7
-
Apply Cooldown Logic for
bunEcosystem (Similar tonpm_and_yarn)This contribution was made on Apr 4 -
Remove Incorrect Bundler Import in Common to Fix PackageLatestVersionFinder Issue
This contribution was made on Apr 2
-
Apply Cooldown for Release Tags in
npm_and_yarnEcosystemThis contribution was made on Apr 2
Reviewed 31 pull requests in 2 repositories
dependabot/dependabot-core
25 pull requests
-
Revert "Merge pull request #11977 from jpinz/docker-version-digest-fix"
This contribution was made on Apr 24
-
Strict type most of
npm_and_yarnThis contribution was made on Apr 23 -
Make Sorbet
strictmode opt-out at the file-levelThis contribution was made on Apr 23 -
Adds cooldown options for go_modules
This contribution was made on Apr 22
-
mark_as_processedapi endpoint should use thePATCHverbThis contribution was made on Apr 21 -
Strict type the
swiftecosystemThis contribution was made on Apr 21 -
Update the go_modules package fetcher to standardize format
This contribution was made on Apr 18
-
v0.309.0
This contribution was made on Apr 17
-
Apply strict sorbet typings for python files
This contribution was made on Apr 16
-
Excluding the handled dependencies check for consecutive group updates
This contribution was made on Apr 16
-
Prevent
simplecovfrom spammingstdoutThis contribution was made on Apr 16 -
Enforce Sorbet Typings in Changed Ruby Files
This contribution was made on Apr 16
-
maintain BOM status for dependency files
This contribution was made on Apr 16
-
Strict type remaining files in
mavenecosystemThis contribution was made on Apr 16 -
Pass Cooldown and Extend Generic Version Finder for Maven Ecosystem
This contribution was made on Apr 16
-
Update PR Template: Refactor Checklist
This contribution was made on Apr 15
-
Standardize Maven Package Fetcher to Support Generic Package Release Details
This contribution was made on Apr 14
-
Remove redundant flag enable_file_parser_python_local from uv
This contribution was made on Apr 10
-
Adding cooldown option for docker and docker compose
This contribution was made on Apr 10
-
Terraform update-registry-declaration method fixes
This contribution was made on Apr 9
-
Add bundler lockfile checksums
This contribution was made on Apr 9
-
Update the cargo package fetcher to standardize format
This contribution was made on Apr 8
-
Provided bug fix issue no 9166.
This contribution was made on Apr 7
-
Apply Cooldown Logic for
bunEcosystem (Similar tonpm_and_yarn)This contribution was made on Apr 7 -
Convert oci to https when fetching index.yaml files
This contribution was made on Apr 7
- Some pull request reviews not shown.
dependabot/cli
1 pull request
-
Add
go mod tidy -diffto CI to ensure go modules files remain tidyThis contribution was made on Apr 17