Skip to content

Trigger lock.yml workflow through dependabot #565

New issue
New issue
Open
Enhancement
#566
Open
Trigger lock.yml workflow through dependabot#565
Enhancement
#566
Assignees
redeboer
Labels
⚙️ EnhancementImprovements and optimizations of existing features❗ BehaviorChanges that may affect the framework output
Milestone
0.8.2
@redeboer

Description

@redeboer
redeboer
opened on Jan 12, 2026

Now that Dependabot supports uv and supports Julia we can use it as a trigger for upgrading lock files. This would largely fix #346.

For now, we solve #346 for public repositories by triggering the lock upgrade with pre-commit.ci autoupdate, but this is not available for private repositories and also does not support a semiannual schedule. Dependabot does work for private repositories, supports more schedules, and is integrated into the GitHub dependency graph interface. Once available, we can add more triggers, like for Pixi and for pre-commit itself.

Note that Dependabot does not update dependencies once the PR has been made. For this reason, the lock.yml workflow itself is not yet reduntant.

Metadata

Metadata

Assignees

Labels

⚙️ EnhancementImprovements and optimizations of existing features❗ BehaviorChanges that may affect the framework output

Type

Enhancement

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions