Skip to content

chore: update dependabot config to ignore @types/node major versions#1295

Merged
Garbee merged 3 commits into
developfrom
copilot/update-dependabot-config-again
Apr 8, 2026
Merged

chore: update dependabot config to ignore @types/node major versions#1295
Garbee merged 3 commits into
developfrom
copilot/update-dependabot-config-again

Conversation

Copy link
Copy Markdown
Contributor

Copilot AI commented Mar 6, 2026
edited by Garbee
Loading

@types/node major versions track Node.js major versions. Allowing dependabot to bump @types/node across majors introduces type definitions for a runtime the project doesn't develop against — silently expanding the apparent API surface and risking broken builds when Node removes or renames APIs.

Changes

  • .github/dependabot.yml: Added an ignore rule for @types/node scoped to version-update:semver-major in the npm ecosystem block. Minor and patch updates continue to flow through normally.

No QA Required

@CLAassistant
Copy link
Copy Markdown

CLAassistant commented Mar 6, 2026
edited
Loading

CLA assistant check
All committers have signed the CLA.

@Garbee
chore: update dependabot config to ignore @types/node major versions
25545ed 
Co-authored-by: Garbee <868301+Garbee@users.noreply.github.com>
Copilot AI changed the title [WIP] fix(dependabot): avoid updating @types/node major versions chore: update dependabot config to ignore @types/node major versions Mar 6, 2026
@Garbee Garbee marked this pull request as ready for review March 6, 2026 12:14
@Garbee Garbee requested a review from a team as a code owner March 6, 2026 12:14
@Garbee Garbee requested review from Garbee and Copilot March 6, 2026 12:14
Copilot AI reviewed Mar 6, 2026
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates Dependabot configuration to prevent automatic major version bumps of @types/node, keeping TypeScript Node typings aligned with the project’s intended Node.js major version and reducing the risk of type-level breaking changes.

Changes:

  • Add a Dependabot ignore rule for @types/node limited to version-update:semver-major in the npm ecosystem config.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@Garbee Garbee marked this pull request as draft April 8, 2026 13:43
@Garbee Garbee marked this pull request as ready for review April 8, 2026 14:06
@scottmries scottmries self-requested a review April 8, 2026 14:18
@Garbee Garbee merged commit 6d6dd29 into develop Apr 8, 2026
38 checks passed
@Garbee Garbee deleted the copilot/update-dependabot-config-again branch April 8, 2026 15:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@scottmries scottmries scottmries approved these changes

+1 more reviewer

@Garbee Garbee Garbee approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@Garbee Garbee

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@CLAassistant @Garbee @scottmries