I wanna be a good #rust library maintainer, and this is a lot of the little busy work that I would like to see automated.
@ebel From what I've seen, the common solution is to host the code on GitHub and enable Dependabot's Cargo integration. It will send you PRs that bump your direct dependencies, and you can release manually afterwards.
No idea for crates that are hosted elsewhere, sorry.
@minoru all my stuff is hosted on github (and at least mirrored there). I thought I had enabled depedabot, but it doesn't seem to be doing anything.... Weird
@minoru I think depedabot on my github thinks that it's "depedabot preview" or something. 🤷🏻♀️ Typical corporate closed source saas being opaque and unclear
@ebel Yeah, the original Dependabot was a separate company, but it was bought by GitHub. The original thing is what's called a "preview" I think. I believe you have to move the config from .dependabot.yml to .github/dependabot.yml, or something like that.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!