fix: dependabot github-actions ecosystem config and bump ci-workflows to v0.2.15 by Copilot · Pull Request #78 · go-openapi/testify (original) (raw)

The github-actions ecosystem in dependabot was configured with directories: ["**/*"] which is not a valid pattern for that ecosystem — dependabot only supports "/" to scan .github/workflows/. This meant workflow action versions were never auto-updated.

Changes

• .github/dependabot.yaml: Replace "**/*" with "/" for the github-actions ecosystem
• .github/workflows/*.yml: Update all go-openapi/ci-workflows references from v0.2.9 → v0.2.15 (84f8f9c → e8e6599)

Affected workflows: go-test, codeql, contributors, auto-merge, bump-release, scanner, tag-release.

📍 Connect Copilot coding agent with Jira, Azure Boards or Linear to delegate work to Copilot in one click without leaving your project management tool.