Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Do we want dependabot-style PRs? #103

Open
sgibson91 opened this issue May 13, 2022 · 0 comments
Open

Do we want dependabot-style PRs? #103

sgibson91 opened this issue May 13, 2022 · 0 comments
Labels
enhancement New feature or request

Comments

@sgibson91
Copy link
Owner

Context

At the moment, the Action changes all tags in a single commit, pushes to a single branch, and opens a single PR. An alternative way to manage this would be to follow the dependabot pattern where a new branch/PR is created for each dependency being updated during that run of the bot.

Pros:

  • Would allow for more easy management of dependency upgrading for maintainers - merging a single PR represents making a single change to your code, as opposed to lots of dependencies being upgraded at the same time

Cons:

  • Lots of repeated calls to the API
  • Multiple PRs can be noisy (provide a max_pull_request variable like dependabot)
  • We will need a more "clever" way to identify previously opened PRs
@sgibson91 sgibson91 added the enhancement New feature or request label May 13, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sgibson91