|
|
|
|
|
|
by mmarian
54 days ago
|
|
|
Are you saying that Dependabot/Renovate... - raises PRs for security fixes immediately, regardless of cooldown configs - flags the PRs as security fixes - does the above when actions are pinned by commit SHA ? If so, mind sharing some documentation and examples please? I don't mind being proven wrong, but I genuinely couldn't find anything that demonstrates this happens. Dependabot docs actually point to the contrary (see my blog posts). |
|
|