kbukum1
Follow
Popular repositories Loading
-
dependabot-core
dependabot-core PublicForked from dependabot/dependabot-core
🤖 Dependabot's core logic for creating update PR's.
Ruby 1
-
dependabot-script
dependabot-script PublicForked from dependabot/dependabot-script
A simple script that demonstrates how to use Dependabot Core
Ruby 1
-
cli
cli PublicForked from dependabot/cli
A tool for testing and debugging Dependabot update jobs.
Go
-
-
ruby_npm_example
ruby_npm_example Public templateForked from dependabot/demo
🤖 Fork me to try out Dependabot
Ruby
-
Contribution activity
April 2025
Created 29 commits in 2 repositories
Created 1 repository
-
kbukum1/dependabot_yarn_issue_format_change
This contribution was made on Apr 9
Created a pull request in dependabot/dependabot-core that received 4 comments
Remove Incorrect Bundler Import in Common to Fix PackageLatestVersionFinder Issue
What are you trying to accomplish?
This change removes an incorrect import of Bundler from the common module, which was causing issues in the Packa…
+0
−1
lines changed
•
4
comments
Opened 16 other pull requests in 1 repository
dependabot/dependabot-core
15
merged
1
closed
-
Fix Docker Compose Specs Related to Requirements Digest with Sha256
This contribution was made on Apr 17
-
Fix Docker Compose Digest Handling for sha256 and Normal Digests
This contribution was made on Apr 17
-
Refactor Cooldown Period Check into a Separate Function for Reusability
This contribution was made on Apr 17
-
Pass Cooldown and Extend Generic Version Finder for Maven Ecosystem
This contribution was made on Apr 15
-
Enforce Sorbet Typings in Changed Ruby Files
This contribution was made on Apr 15
-
Update PR Template: Refactor Checklist
This contribution was made on Apr 15
-
Refactor: Consistent Filtering of Releases in PackageLatestVersionFinder
This contribution was made on Apr 15
-
Refactor: Update Bundler Versioning to Use Bundler::Version Instead of Gem::Version
This contribution was made on Apr 14
-
Sorbet: Update Returned Version Types for Generic PackageLatestVersionFinder
This contribution was made on Apr 14
-
Add
PackageReleaseFiltering for Security Vulnerability CheckThis contribution was made on Apr 12 -
Standardize Maven Package Fetcher to Support Generic Package Release Details
This contribution was made on Apr 10
-
Remove feature flag
enable_beta_ecosystemscheck from bun ecosystemThis contribution was made on Apr 9 -
Fix Sorbet Typings for Maven Ecosystem in Update Checker and Latest Version Finder
This contribution was made on Apr 9
-
Refine VersionResolver for Bun
This contribution was made on Apr 7
-
Apply Cooldown Logic for
bunEcosystem (Similar tonpm_and_yarn)This contribution was made on Apr 4 -
Apply Cooldown for Release Tags in
npm_and_yarnEcosystemThis contribution was made on Apr 2
Reviewed 25 pull requests in 2 repositories
dependabot/dependabot-core
24 pull requests
-
Update the go_modules package fetcher to standardize format
This contribution was made on Apr 18
-
v0.309.0
This contribution was made on Apr 17
-
Apply strict sorbet typings for python files
This contribution was made on Apr 16
-
Excluding the handled dependencies check for consecutive group updates
This contribution was made on Apr 16
-
Prevent
simplecovfrom spammingstdoutThis contribution was made on Apr 16 -
Enforce Sorbet Typings in Changed Ruby Files
This contribution was made on Apr 16
-
maintain BOM status for dependency files
This contribution was made on Apr 16
-
Strict type remaining files in
mavenecosystemThis contribution was made on Apr 16 -
Pass Cooldown and Extend Generic Version Finder for Maven Ecosystem
This contribution was made on Apr 16
-
Update PR Template: Refactor Checklist
This contribution was made on Apr 15
-
Standardize Maven Package Fetcher to Support Generic Package Release Details
This contribution was made on Apr 14
-
Remove redundant flag enable_file_parser_python_local from uv
This contribution was made on Apr 10
-
Adding cooldown option for docker and docker compose
This contribution was made on Apr 10
-
Terraform update-registry-declaration method fixes
This contribution was made on Apr 9
-
Add bundler lockfile checksums
This contribution was made on Apr 9
-
Update the cargo package fetcher to standardize format
This contribution was made on Apr 8
-
Provided bug fix issue no 9166.
This contribution was made on Apr 7
-
Apply Cooldown Logic for
bunEcosystem (Similar tonpm_and_yarn)This contribution was made on Apr 7 -
Convert oci to https when fetching index.yaml files
This contribution was made on Apr 7
-
Update dry-run to pass cooldown config
This contribution was made on Apr 4
-
Revert "Update go mod version before running
go mod tidy -e"This contribution was made on Apr 4 -
Handle when the version is an empty string
This contribution was made on Apr 2
-
Don't coerce
nilto""if no non-vulnerable version foundThis contribution was made on Apr 2 -
Update the digest tests to better reflect real world scenarios
This contribution was made on Apr 2
dependabot/cli
1 pull request
-
Add
go mod tidy -diffto CI to ensure go modules files remain tidyThis contribution was made on Apr 17