Skip to content

v0.0.8

Latest
Latest

Choose a tag to compare

View all tags
@github-actions github-actions released this 22 Jan 14:53
v0.0.8
7898774
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

🩹[Patch]: Update dependabot schedule and pin workflow to SHA (#14)

Dependabot now checks for updates daily with a 7-day cooldown period, reducing noise while maintaining timely security updates. The Process-PSModule workflow is pinned to a specific commit SHA with version comment for enhanced security and reproducibility.

Dependabot Configuration

Updated the schedule from weekly to daily with a cooldown of 7 days. This means Dependabot will check for updates daily but will wait 7 days after a new version is released before creating a PR, helping to avoid early adoption of potentially unstable releases.

schedule:
  interval: daily
cooldown:
  default-days: 7

Pinned Workflows

The reusable workflow is now pinned to a specific commit SHA with version tag comment for traceability:

Workflow Version Commit SHA
PSModule/Process-PSModule v5.4.1 be7d5dcbceec14855d325fdd34f2a7c2f05a7f57
Assets 2
Loading