Update dependabot.yml

Signed-off-by: Aaron Lippold <[email protected]>
mitre · Jan 6, 2024 · 5ee61e8 · 5ee61e8
1 parent 293e58a
commit 5ee61e8
Showing 1 changed file with 8 additions and 6 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -1,11 +1,13 @@
-# To get started with Dependabot version updates, you'll need to specify which
-# package ecosystems to update and where the package manifests are located.
-# Please see the documentation for all configuration options:
-# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+# Basic `dependabot.yml` file with
+# minimum configuration for two package managers
 
 version: 2
 updates:
-  - package-ecosystem: "npm" # See documentation for possible values
-    directory: "/" # Location of package manifests
+  # Enable version updates for npm
+  - package-ecosystem: "npm"
+    # Look for `package.json` and `lock` files in the `root` directory
+    directory: "/"
+    # Check the npm registry for updates every day (weekdays)
     schedule:
       interval: "daily"
+