From 342db6beeb0c86a38a83c8b1f1d44fb8aa09cde1 Mon Sep 17 00:00:00 2001 From: DevCats Date: Mon, 15 Jun 2026 15:44:22 +0000 Subject: [PATCH] ci(.github/dependabot.yaml): switch npm ecosystem to bun The previous configuration declared package-ecosystem: "npm", which updates package.json plus npm, yarn, or pnpm lockfiles but never touches bun.lock. That caused the awesome-lint 0.18.6 -> 2.3.0 bump in #11 to fail CI on `bun install --frozen-lockfile` because the lockfile was left stale. Dependabot has supported the bun ecosystem since it went GA in February 2025 and writes the text bun.lock format used in this repo, so flipping the ecosystem is the targeted fix. Also adds conventional commit prefixes so Dependabot PRs land as "ci: bump " for GitHub Actions updates and "chore(deps): bump " for bun updates. This change was prepared by Coder Agents. --- .github/dependabot.yaml | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/.github/dependabot.yaml b/.github/dependabot.yaml index e557ad2..92e87e8 100644 --- a/.github/dependabot.yaml +++ b/.github/dependabot.yaml @@ -4,16 +4,20 @@ updates: directory: "/" schedule: interval: "weekly" + commit-message: + prefix: "ci" groups: github-actions: patterns: - "*" - - package-ecosystem: "npm" + - package-ecosystem: "bun" directory: "/" schedule: interval: "weekly" + commit-message: + prefix: "chore(deps)" groups: - npm: + bun: patterns: - "*"