Skip to content

build(deps): hold easy-paging at < 0.5 in the SB3 demo block #54

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
jlc488 merged 1 commit into from
May 23, 2026
Merged

build(deps): hold easy-paging at < 0.5 in the SB3 demo block #54

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 8 additions & 2 deletions .github/dependabot.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -63,10 +63,16 @@ updates:
# — dependabot bumped to 0.5.0 across the SB3 demos and CI went
# red on all 4). Hold easy-paging majors so the SB3 demos stay
# on the 0.4.x line that matches their Spring Boot pin.
#
# Because the starter is pre-1.0, 0.4 → 0.5 reads to Dependabot
# as a *minor* bump but is actually the SB3 → SB4 release-line
# jump. The semver-major ignore alone isn't enough — PR #50
# (2026-05-23) snuck through it. Pin "< 0.5" explicitly via the
# versions: filter so 0.4.x patches still flow but 0.5+ doesn't.
- dependency-name: "kr.devslab:easy-paging-spring-boot-starter"
update-types: ["version-update:semver-major"]
versions: [">= 0.5"]
- dependency-name: "kr.devslab:easy-paging-spring-boot-starter-reactive"
update-types: ["version-update:semver-major"]
versions: [">= 0.5"]
# Same shape applies to ssrf-guard's hypothetical SB4-only major
# release, if/when it ships — guard against it in advance.
- dependency-name: "kr.devslab:ssrf-guard"
Expand Down
Loading