moazreyad opened a new pull request #780: URL: https://github.com/apache/singa/pull/780
Dependabot is a native tool in github that automatically checks the dependencies of the project and creates pull requests for outdated or insecure dependencies. See how it works from [here](https://dependabot.com/#how-it-works). Currently it will analyze only the dependencies defined in [pom.xml ](https://github.com/apache/singa/blob/master/java/pom.xml)in SINGA because other dependencies are hard coded in configuration or shell scripts which are not supported by this tool. In future commits, the dependencies will be moved to standard files such as python requirements.txt so that they become available to dependabot and similar tools. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
