Create dependabot.yml

This will assist with version updates and vulnerability scans. Dependabot scans will need to be enabled in the repo itself under https://github.com/AmruthPillai/Reactive-Resume/settings/security_analysis It would also be worthwhile pairing this with Snyk (https://app.snyk.io/) for vulnerability monitoring.
2022-03-23 22:55:48 +00:00 · 2022-03-23 22:55:48 +00:00 · d5fa49172a
parent 884975dda6
commit d5fa49172a
1 changed files with 62 additions and 0 deletions
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@ -0,0 +1,62 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/configuration-options-for-dependency-updates
+
+version: 2
+updates:
+  - package-ecosystem: "docker" # See documentation for possible values
+    directory: "/server" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"
+
+  - package-ecosystem: "docker" # See documentation for possible values
+    directory: "/client" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"
+
+  - package-ecosystem: "npm" # See documentation for possible values
+    directory: "/" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"
+
+  - package-ecosystem: "npm" # See documentation for possible values
+    directory: "/client" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"
+
+  - package-ecosystem: "npm" # See documentation for possible values
+    directory: "/server" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"
+
+  - package-ecosystem: "npm" # See documentation for possible values
+    directory: "/schema" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"
+
+  - package-ecosystem: "npm" # See documentation for possible values
+    directory: "/docs" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"
+
+  - package-ecosystem: "github-actions"
+    directory: "/" # Location of package manifests
+    schedule:
+      interval: "daily"
+    assignees:
+      - "AmruthPillai"