Our great sponsors
-
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
I believe the intent is to have a github action upload the dependency manifest during a build, so that it can be evaluated by dependabot. Similarly to sarif reports by static analysis tools. See the current proposal and github issue.
In the meantime you can use the gradle-versions-plugin or one of its extensions. I wrote it a decade ago and naively hoped they would have offered something built-in and better by now. Maybe they finally will if the above moved forward.
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a more popular project.
Related posts
- Dependency management made easy with Dependabot and GitHub Actions
- How to configure Dependabot with Gradle
- Is there anyway We can make Android Studio or Dependabot ( or anything like that ) check for updated versions of dependencies while using buildSrc
- Automate Flutter package upgrades with GitHub Actions(a Dependabot alternative)
- CI for Dotnet project with GitHub Action