Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Address Automated Bots Pull Requests #2033

Open
vaporwavie opened this issue Oct 25, 2024 · 0 comments
Open

Address Automated Bots Pull Requests #2033

vaporwavie opened this issue Oct 25, 2024 · 0 comments
Labels
proposal Proposals for enhancements to the software

Comments

@vaporwavie
Copy link
Contributor

vaporwavie commented Oct 25, 2024
edited
Loading

Problem

Currently, our repo has a considerably high amount of PRs made by an automated bot, mostly coming from Renovate. While important to detect and propose version updates, it doesn't necessarily cover the upgrade factors, meaning that breaking changes can occur by simply bumping the lib version. The lack of sanity checks makes those PRs somewhat dangerous from a maintenance perspective, and requires additional layers of verification from the maintainers (either for merging/closing)

image

Solution

Our next steps would be doing research on how this can be either circumvented or completely replaced. Both are heavy-lifts and may require milestones on doing so.

Usage examples

No response

Dependencies

No response

References

@matheusps proposed Taze as a potential alternative to our current scenario.
@vaporwavie vaporwavie added the proposal Proposals for enhancements to the software label Oct 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
proposal Proposals for enhancements to the software
Projects
Shoreline
Status: No status
Milestone
No milestone
Development

No branches or pull requests
1 participant
@vaporwavie