Merge pull request #153 from Tradeshift/auto-update-dependencies-294bc6a

chore: update dependency tree
Tradeshift · Jan 2, 2023 · d30bde1 · d30bde1
2 parents 78a27ef + 6dc5d34
commit d30bde1
Show file tree

Hide file tree

Showing 3 changed files with 88 additions and 61 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -2,21 +2,24 @@
 version: 2
 updates:
   # Enable version updates for npm
-  - package-ecosystem: 'npm'
+  - package-ecosystem: "npm"
     # Look for `package.json` and `lock` files in the `root` directory
-    directory: '/'
+    directory: "/"
     # Check the npm registry for updates every day (weekdays)
     schedule:
-      interval: 'daily'
+      interval: "daily"
     commit-message:
-      prefix: 'fix'
-      prefix-development: 'build'
-      include: 'scope'
+      prefix: "fix"
+      prefix-development: "build"
+      include: "scope"
+    ignore:
+      - dependency-name: "*"
+        update-types: [version-update:semver-minor, version-update:semver-patch]
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
       interval: "weekly"
     commit-message:
-      prefix: 'fix'
-      prefix-development: 'build'
-      include: 'scope'
+      prefix: "fix"
+      prefix-development: "build"
+      include: "scope"
diff --git a/.github/workflows/sonar.yml b/.github/workflows/sonar.yml
@@ -22,4 +22,3 @@ jobs:
           client-cert: ${{ secrets.MTLS_CERT }}
           client-key: ${{ secrets.MTLS_KEY }}
           token: ${{ secrets.SONAR_TOKEN }}
-          host: 'https://sonar.ts.sv'
diff --git a/package-lock.json b/package-lock.json