Skip to content

Chore: [AEA-0000] - add dependabot approve schedule#19

Merged
anthony-nhs merged 1 commit intomainfrom
add_dependabot_schedule
Apr 20, 2026
Merged

Chore: [AEA-0000] - add dependabot approve schedule#19
anthony-nhs merged 1 commit intomainfrom
add_dependabot_schedule

Conversation

@anthony-nhs
Copy link
Copy Markdown
Contributor

Add Dependabot schedule to the repository

Copilot AI review requested due to automatic review settings April 20, 2026 14:22
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds a scheduled GitHub Actions workflow to automatically approve/enable auto-merge for Dependabot updates, and adjusts the existing PR workflow accordingly.

Changes:

  • Removed the Dependabot auto-approve/merge reusable-workflow job from the PR workflow.
  • Added a new scheduled workflow (auto_approve_dependabot.yml) that runs an auto-approve/auto-merge action on a cron cadence.
  • Reformatted the existing PR workflow YAML.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 3 comments.

File Description
.github/workflows/pull_request.yml Removes Dependabot auto-approve/merge job and reformats workflow structure.
.github/workflows/auto_approve_dependabot.yml Introduces a scheduled workflow to auto-approve/enable auto-merge for dependency update PRs.

Comment on lines 1 to 5
name: pull_request

on:
pull_request:
branches: [ main ]
pull_request:
branches: [main]
permissions: {}
Copy link

Copilot AI Apr 20, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The indentation/formatting in this workflow (2-space nesting, [main]) is inconsistent with other workflows in this repo (e.g., .github/workflows/ci.yml and release.yml use 4-space nesting and [ main ]). Consider keeping formatting consistent to reduce noisy diffs and make workflows easier to scan side-by-side.

Copilot uses AI. Check for mistakes.
Comment on lines +1 to +7
name: Auto-approve dependency updates

on:
workflow_dispatch:
schedule:
- cron: '*/30 * * * *'

Copy link

Copilot AI Apr 20, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The PR title/description says "add Dependabot schedule", but the repo already has scheduled Dependabot updates in .github/dependabot.yml. This workflow instead schedules an auto-approve/auto-merge job; please update the PR title/description to match the actual change (or clarify what schedule is being added).

Copilot uses AI. Check for mistakes.
on:
workflow_dispatch:
schedule:
- cron: '*/30 * * * *'
Copy link

Copilot AI Apr 20, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The scheduled trigger runs every 30 minutes, which will consume runner minutes and GitHub API calls even when there are no Dependabot PRs to approve. Consider reducing the cadence (e.g., hourly/daily) or adding logic to skip quickly when there is nothing to do, to avoid unnecessary operational load.

Suggested change
- cron: '*/30 * * * *'
- cron: '0 * * * *'

Copilot uses AI. Check for mistakes.
@anthony-nhs anthony-nhs changed the title Docs: [AEA-0000] - add Dependabot schedule Chore: [AEA-0000] - add dependabot approve schedule Apr 20, 2026
@anthony-nhs anthony-nhs merged commit ae0e408 into main Apr 20, 2026
12 checks passed
@anthony-nhs anthony-nhs deleted the add_dependabot_schedule branch April 20, 2026 15:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants