automated update of dependencies.. i guess it got turned up :)

On Fri, Jul 8, 2022 at 11:39 AM Harbs <harbs.li...@gmail.com> wrote:

> What’s all this dependabot activity?
>
> Anyone know?
>
> > On Jul 8, 2022, at 2:05 AM, GitBox <g...@apache.org> wrote:
> >
> >
> > dependabot[bot] opened a new pull request, #9:
> > URL: https://github.com/apache/flex-blazeds/pull/9
> >
> >   Bumps xalan from 2.6.0 to 2.7.2.
> >
> >
> >   [![Dependabot compatibility score](
> https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=xalan:xalan&package-manager=maven&previous-version=2.6.0&new-version=2.7.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores
> )
> >
> >   Dependabot will resolve any conflicts with this PR as long as you
> don't alter it yourself. You can also trigger a rebase manually by
> commenting `@dependabot rebase`.
> >
> >   [//]: # (dependabot-automerge-start)
> >   [//]: # (dependabot-automerge-end)
> >
> >   ---
> >
> >   <details>
> >   <summary>Dependabot commands and options</summary>
> >   <br />
> >
> >   You can trigger Dependabot actions by commenting on this PR:
> >   - `@dependabot rebase` will rebase this PR
> >   - `@dependabot recreate` will recreate this PR, overwriting any edits
> that have been made to it
> >   - `@dependabot merge` will merge this PR after your CI passes on it
> >   - `@dependabot squash and merge` will squash and merge this PR after
> your CI passes on it
> >   - `@dependabot cancel merge` will cancel a previously requested merge
> and block automerging
> >   - `@dependabot reopen` will reopen this PR if it is closed
> >   - `@dependabot close` will close this PR and stop Dependabot
> recreating it. You can achieve the same result by closing it manually
> >   - `@dependabot ignore this major version` will close this PR and stop
> Dependabot creating any more for this major version (unless you reopen the
> PR or upgrade to it yourself)
> >   - `@dependabot ignore this minor version` will close this PR and stop
> Dependabot creating any more for this minor version (unless you reopen the
> PR or upgrade to it yourself)
> >   - `@dependabot ignore this dependency` will close this PR and stop
> Dependabot creating any more for this dependency (unless you reopen the PR
> or upgrade to it yourself)
> >   - `@dependabot use these labels` will set the current labels as the
> default for future PRs for this repo and language
> >   - `@dependabot use these reviewers` will set the current reviewers as
> the default for future PRs for this repo and language
> >   - `@dependabot use these assignees` will set the current assignees as
> the default for future PRs for this repo and language
> >   - `@dependabot use this milestone` will set the current milestone as
> the default for future PRs for this repo and language
> >
> >   You can disable automated security fix PRs for this repo from the
> [Security Alerts page](
> https://github.com/apache/flex-blazeds/network/alerts).
> >
> >   </details>
> >
> >
> > --
> > This is an automated message from the Apache Git Service.
> > To respond to the message, please log on to GitHub and use the
> > URL above to go to the specific comment.
> >
> > To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org
> >
> > For queries about this service, please contact Infrastructure at:
> > us...@infra.apache.org
> >
>
>

Reply via email to