Skip to content
This repository was archived by the owner on Apr 20, 2026. It is now read-only.

chore(deps): add 7 day dependency cooldown#369

Merged
zerosnacks merged 1 commit intomainfrom
zerosnacks/dependabot-cooldown
Apr 13, 2026
Merged

chore(deps): add 7 day dependency cooldown#369
zerosnacks merged 1 commit intomainfrom
zerosnacks/dependabot-cooldown

Conversation

@decofe
Copy link
Copy Markdown
Contributor

@decofe decofe commented Apr 13, 2026

Adds a 7 day cooldown to Dependabot version updates. This delays PRs for newly released dependency versions until they are at least 7 days old, reducing noise and exposure to supply chain attacks.

Security updates bypass the cooldown and are unaffected.

Prompted by: zerosnacks

@decofe @zerosnacks
chore(deps): add 7 day dependency cooldown
ed44c07 
Co-authored-by: zerosnacks <95942363+zerosnacks@users.noreply.github.com>
Amp-Thread-ID: https://ampcode.com/threads/T-019d8715-2406-741e-9104-f2eed109d3a1
@zerosnacks zerosnacks enabled auto-merge (squash) April 13, 2026 13:48
@zerosnacks zerosnacks merged commit d19a5e6 into main Apr 13, 2026
18 checks passed
@zerosnacks zerosnacks deleted the zerosnacks/dependabot-cooldown branch April 13, 2026 13:51
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@DaniPopes DaniPopes Awaiting requested review from DaniPopes DaniPopes is a code owner

@klkvr klkvr Awaiting requested review from klkvr klkvr is a code owner

@mattsse mattsse Awaiting requested review from mattsse mattsse is a code owner

@grandizzy grandizzy Awaiting requested review from grandizzy grandizzy is a code owner

@onbjerg onbjerg Awaiting requested review from onbjerg onbjerg is a code owner

@0xrusowsky 0xrusowsky Awaiting requested review from 0xrusowsky 0xrusowsky is a code owner

1 more reviewer

@zerosnacks zerosnacks zerosnacks approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@decofe @zerosnacks