Update dependabot weekly instead of daily

Also bump version of go used by vulnerability scanner
transparency-dev · Jun 5, 2024 · e740730 · e740730
1 parent 25cfe1f
commit e740730
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -7,7 +7,7 @@ updates:
       patterns:
         - "*"
   schedule:
-    interval: daily
+    interval: weekly
   commit-message:
     prefix: ":seedling:"
     include: "scope"
@@ -19,7 +19,7 @@ updates:
       patterns:
         - "*"
   schedule:
-    interval: daily
+    interval: weekly
   commit-message:
     prefix: ":seedling:"
     include: "scope"
diff --git a/.github/workflows/govulncheck.yml b/.github/workflows/govulncheck.yml
@@ -19,5 +19,5 @@ jobs:
       - id: govulncheck
         uses: golang/govulncheck-action@dd0578b371c987f96d1185abb54344b44352bd58 # v1.0.3
         with:
-          go-version-input: 1.20.8
-          go-package: ./...
+          go-version-input: 1.21.11
+          go-package: ./...