Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Migration from explicit inputs to configuration file for multiple repositories in single pipeline

See original GitHub issue

To resolve the warnings regarding migration of the inputs we ran into a couple of issues.

The first is already covered in #327

The other problem that we have is that we use a single Azure DevOps pipeline to run the DependaBot task for multiple repositories in our project, for example:

steps:
  - task: dependabot@1 
    displayName: Dependabot | API
    inputs:
      packageManager: 'nuget'
      azureDevOpsAccessToken: $(pat)
      directory: api/
      targetRepositoryName: 'ado-project/api/'
      setAutoComplete: true
      extraEnvironmentVariables: AZURE_PROJECT=ado-project

  - task: dependabot@1
    displayName: Dependabot | Webapps
    inputs:
      packageManager: 'npm'
      azureDevOpsAccessToken: $(pat)
      directory: 'webapps/'
      targetRepositoryName: 'ado-project/webapps'
      setAutoComplete: true
      extraEnvironmentVariables: AZURE_PROJECT=ado-project

How would we differentiate between the multiple repositories that we are targeting on our pipeline?

Issue Analytics

State:
Created a year ago
Reactions:4
Comments:16 (7 by maintainers)

Top GitHub Comments

2reactions

mburumaxwellcommented, Dec 21, 2022

@mburumaxwell just to clarify: this pr fixes that you can now use targetRepositoryName and useConfigFile and it will look for that config file in the repository of targetRepositoryName ?

Correct

2reactions

mburumaxwellcommented, Dec 21, 2022

Removal of explicit inputs in favour of the configuration file is still planned though having been pushed ahead since July/August.

In #444, support for multiple repositories (via targetRepositoryName) when using dependabot.yml was added which works by making a HTTP request to Azure DevOps API.

You will still need to add dependabot.yml file to each repository that needs to be updated even though the pipeline is shared.

Top Results From Across the Web

Check out multiple repositories in your pipeline - Azure ...

To do this, declare the repository resources in the YAML files as in the examples above, and configure a branch policy in the...

Migrating from Azure Pipelines to GitHub Actions

GitHub Actions and Azure Pipelines share several configuration similarities, which makes migrating to GitHub Actions relatively straightforward.

Publish and download pipeline Artifacts - Azure

A single download step can download one or more artifacts. To download multiple artifacts, leave the artifact name field empty and use file...

Use CI/CD configuration from other files

Use CI/CD configuration from other files. You can use include to include external YAML files in your CI/CD jobs. Include a single configuration...

Migrating from Jenkins with GitHub Actions Importer

The instructions below will guide you through configuring your environment to use GitHub Actions Importer to migrate Jenkins pipelines to GitHub Actions.