Skip to content

Block all Dependabot updates for jupyter-book#44

Merged
elcorto merged 2 commits intomainfrom
copilot/update-dependabot-ignore-rule
Jan 28, 2026
Merged

Block all Dependabot updates for jupyter-book#44
elcorto merged 2 commits intomainfrom
copilot/update-dependabot-ignore-rule

Conversation

Copy link
Contributor

Copilot AI commented Jan 28, 2026
edited
Loading

The current ignore rule only blocks major version updates via update-types: ["version-update:semver-major"], but Dependabot still creates PRs for constraint updates (e.g., PR #43 changing < 2 to < 3).

Changes

  • Removed update-types field from jupyter-book ignore rule in .github/dependabot.yml

When update-types is omitted, Dependabot ignores all updates for that dependency:

ignore:
  - dependency-name: "jupyter-book"
    # No update-types = ignore everything

This prevents any PRs from Dependabot for jupyter-book, maintaining the < 2 constraint required by doc/requirements.txt (see issue #12).

Original prompt

Problem

The current .github/dependabot.yml configuration is not preventing Dependabot from creating PRs to update jupyter-book. Despite having an ignore rule with update-types: ["version-update:semver-major"], Dependabot still created PR #43 to update the version constraint from < 2 to < 3.

Solution

Update .github/dependabot.yml to ignore all updates for jupyter-book by removing the update-types field from the ignore configuration.

Changes Required

In .github/dependabot.yml, change:

ignore:
  # See doc/requirements.txt for why
  - dependency-name: "jupyter-book"
    update-types: ["version-update:semver-major"]

To:

ignore:
  # Prevent any updates to jupyter-book (see doc/requirements.txt for why)
  - dependency-name: "jupyter-book"

When update-types is not specified, Dependabot ignores all updates for that dependency, which is the desired behavior given the constraint in doc/requirements.txt where we need to keep jupyter-book < 2.

Context

This pull request was created from Copilot chat.

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

@elcorto
Update dependabot.yml to ignore all jupyter-book updates
6f69ef1 
Co-authored-by: elcorto <13417423+elcorto@users.noreply.github.com>
Copilot AI changed the title [WIP] Update Dependabot configuration to ignore all updates for jupyter-book Block all Dependabot updates for jupyter-book Jan 28, 2026
Copilot AI requested a review from elcorto January 28, 2026 11:07
elcorto
elcorto approved these changes Jan 28, 2026
View reviewed changes
Copy link
Owner

@elcorto elcorto left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This issue has nothing to do with #12, but the changes here are still relevant to prevent things like #43.

@elcorto elcorto marked this pull request as ready for review January 28, 2026 11:17
@elcorto elcorto merged commit 73afef1 into main Jan 28, 2026
9 checks passed
@elcorto elcorto deleted the copilot/update-dependabot-ignore-rule branch January 28, 2026 11:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@elcorto elcorto elcorto approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@elcorto elcorto

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@elcorto