(cxf) branch main updated: Add a cooldown of 5 days to mitigate the risk of updating to a compromised package (#2758)

coheigea Mon, 01 Dec 2025 00:22:34 -0800

This is an automated email from the ASF dual-hosted git repository.

coheigea pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/cxf.git



The following commit(s) were added to refs/heads/main by this push:
     new f23f666e34 Add a cooldown of 5 days to mitigate the risk of updating 
to a compromised package (#2758)
f23f666e34 is described below

commit f23f666e3463c0d7978b3562b552ffc0d569f79c
Author: Colm O hEigeartaigh <[email protected]>
AuthorDate: Mon Dec 1 08:21:59 2025 +0000

    Add a cooldown of 5 days to mitigate the risk of updating to a compromised 
package (#2758)
---
 .github/dependabot.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index c122f32fd5..24008165aa 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -18,9 +18,13 @@ updates:
     directory: "/"
     schedule:
       interval: "daily"
+    cooldown:
+      default-days: 5
 
   - package-ecosystem: github-actions
     directory: /
     schedule:
       interval: weekly
+    cooldown:
+      default-days: 5

(cxf) branch main updated: Add a cooldown of 5 days to mitigate the risk of updating to a compromised package (#2758)

Reply via email to