Add 5-day cooldown on updates to mitigate supply-chain attacks
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
parent
30056f54e5
commit
c66a1ee936
1 changed files with 5 additions and 0 deletions
|
|
@ -17,6 +17,11 @@
|
|||
"enabled": true,
|
||||
"automerge": true
|
||||
},
|
||||
"minimumReleaseAge": "5 days",
|
||||
"internalChecksFilter": "strict",
|
||||
"vulnerabilityAlerts": {
|
||||
"minimumReleaseAge": "0"
|
||||
},
|
||||
"packageRules": [
|
||||
{
|
||||
"matchManagers": ["npm", "pnpm", "yarn"],
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue