diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 74d64620eb..ab57725142 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -12,6 +12,36 @@ updates: open-pull-requests-limit: 99 allow: - dependency-type: direct + ignore: + # This version needs to match Rails major version, so stick to 6.x only + - dependency-name: '@rails/ujs' + versions: + - '7.x' + # TODO: This version got stuck in https://github.com/mastodon/mastodon/pull/14004 and this should be deleted to fix + - dependency-name: 'pg' + versions: + - '8.x' + # TODO: This was ignored in https://github.com/mastodon/mastodon/pull/19120 + - dependency-name: 'uuid' + versions: + - '9.x' + # TODO: This version got stuck in https://github.com/mastodon/mastodon/pull/14073 and this should be deleted to fix + - dependency-name: 'history' + versions: + - '5.x' + # TODO: This requires code changes for migration + - dependency-name: 'tesseract.js' + versions: + - '3.x' + - '4.x' + # TODO: This version needs manual updates for breaking changes + - dependency-name: 'react-hotkeys' + versions: + - '2.x' + # TODO: This version got stuck in https://github.com/mastodon/mastodon/pull/15206 and this should be deleted to fix + - dependency-name: 'terser' + versions: + - '5.x' - package-ecosystem: bundler directory: '/' @@ -20,6 +50,15 @@ updates: open-pull-requests-limit: 99 allow: - dependency-type: direct + ignore: + # This version needs to match Rails major version, so stick to 6.x only + - dependency-name: 'rails-i18n' + versions: + - '7.x' + # This version needs manual updates https://github.com/rails/sprockets/blob/master/UPGRADING.md#guide-to-upgrading-from-sprockets-3x-to-4x + - dependency-name: 'sprockets' + versions: + - '4.x' - package-ecosystem: github-actions directory: '/'