[openstreetmap/openstreetmap-website] Turn off dependabot? (#2992)

Nicholas La Roux notifications at github.com
Mon Aug 18 14:53:29 UTC 2025


larouxn left a comment (openstreetmap/openstreetmap-website#2992)

👋 Considering Dependabot has since added support for [groups](https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference?learn=dependency_version_updates#groups--) and much more since 2020, is it worth considering enabling Dependabot for Ruby? Understandable that the noise can be a lot but it's also a long-term risk to fall behind on dependency upgrades, even non-security related ones.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/2992#issuecomment-3197266313
You are receiving this because you are subscribed to this thread.

Message ID: <openstreetmap/openstreetmap-website/issues/2992/3197266313 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20250818/1559652f/attachment.htm>


More information about the rails-dev mailing list