Disable dependabot for auto-request-review for now

because you have to manually update the version tag comment. It feels unsafe to trust third party git tags when you need to pass MATZBOT_GITHUB_TOKEN to it. Git commit sha alone isn't human-readable and I'm reluctant to remove the comment either. It doesn't seem worth the effort to review changes for every release of this action.
author: Takashi Kokubun <takashikkbn@gmail.com> 2022-10-16 22:47:49 -0700
committer: Takashi Kokubun <takashikkbn@gmail.com> 2022-10-16 22:47:49 -0700
commit: b7de04d161726fbb277eaa95fb0d658dbb6a9536 (patch)
tree: 11b911fa28ab2ef72e5558792f1bb32d52624906 /.github/dependabot.yml
parent: bfc6c1f1cb7a2dd381688999d635e3532f35bfef (diff)
download: ruby-b7de04d161726fbb277eaa95fb0d658dbb6a9536.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index b18fd29357..97adcabffe 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -4,3 +4,6 @@ updates:
     directory: '/'
     schedule:
       interval: 'weekly'
+    ignore:
+      # It doesn't update the version comment for us
+      - dependency-name: 'necojackarc/auto-request-review'
author	Takashi Kokubun <takashikkbn@gmail.com>	2022-10-16 22:47:49 -0700
committer	Takashi Kokubun <takashikkbn@gmail.com>	2022-10-16 22:47:49 -0700
commit	b7de04d161726fbb277eaa95fb0d658dbb6a9536 (patch)
tree	11b911fa28ab2ef72e5558792f1bb32d52624906 /.github/dependabot.yml
parent	bfc6c1f1cb7a2dd381688999d635e3532f35bfef (diff)
download	ruby-b7de04d161726fbb277eaa95fb0d658dbb6a9536.tar.gz