Skip to content

EFI: Automatic security and update #190

New issue
New issue
Closed
Closed
EFI: Automatic security and update#190
@sheplu

Description

@sheplu
sheplu
opened on Feb 21, 2024

Motivation

Tools like Renovate or Dependabot can be of a great help to automatically bump version of dependencies for simple update or security. They can also be configured to not overwhelm contributors - and we can automatise the process with github action to automatically merge if all tests are successful (and even publish a new version if needed)

Expectation

Take the point about the level of automation we want
Choose a right implementation (if we want one)

Implementation

Status

Part: Technical

Draft

With the sheer size of all the projects maintaining everything by hand would be time consuming for all maintainers and not very rewarding. By building an automatic (fully?) process for updating dependencies, we would be able to operate faster, reducing overload/workload and give time to the community to focus.
Renovate or dependabot
Automatically run full pipeline
If valid merge (test, benchmark) then release

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions