Skip to content

Commit

Permalink
Update Socket config (#9005)
Browse files Browse the repository at this point in the history 
This PR updates the configuration for [Socket](https://socket.dev/), our
supply chain security tool. The change:

- Prevents Socket from commenting on PRs with dependency alerts.
- Stops Socket from showing dependency overviews within PRs
- Keeps Socket running in the background.

The intention is to reduce potential noise in PRs, while still giving us
overall health and supply chain security insights behind the scenes.

To Review
- [ ] Check the docs here: https://docs.socket.dev/docs/socket-yml, and
verify that the behavior described in the docs matches what I have
described above.
- [ ] Check I've not made any silly syntax errors in the config.
  • Loading branch information
@jackwilson323
jackwilson323 committed Aug 14, 2024
1 parent e2e1841 commit 1d4f77c
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions socket.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,12 @@
# top level version field is required
version: 2

githubApp:
enabled: true
pullRequestAlertsEnabled: false
dependencyOverviewEnabled: false
projectReportsEnabled: true

projectIgnorePaths:
- turborepo-tests
- packages/turbo-codemod/__tests__/
Expand Down

0 comments on commit 1d4f77c

Please sign in to comment.