dependabot-pr-manager 1.1.0

.NET 7.0

dotnet tool install --global dependabot-pr-manager --version 1.1.0

This package contains a .NET tool you can call from the shell/command line.

dotnet new tool-manifest # if you are setting up this repo
dotnet tool install --local dependabot-pr-manager --version 1.1.0

This package contains a .NET tool you can call from the shell/command line.

#tool dotnet:?package=dependabot-pr-manager&version=1.1.0

The NuGet Team does not provide support for this client. Please contact its maintainers for support.

nuke :add-package dependabot-pr-manager --version 1.1.0

The NuGet Team does not provide support for this client. Please contact its maintainers for support.

Dependabot PRs Manager

This small console app manages the dependabot PRs of list of repositories or a given repository.

The tool goes through all the configured repositories and for a each of them fetches the PRs raised by dependabot and executes one of the following actions:

if the PR is green (meaning it can be merged), the tool approves and merges it. After sending the command, the tool waits until the PR is merged.
if the PR is marked as dirty or behind, the tool asks dependabot to recreate it.
if the PR is waiting for checks to complete, the tool shows the list of checks that are not done yet and if there is a failing one, it remove the PR from the list of PRs to manage. This is to prevent the tool to be stuck on a specific PR if there are failing checks that can be manage manually.

Dependencies

Download and install dotnet sdk v7.0.201+
Create a github classic access_token
- Allow all repo permissions except delete repo
Authorise your github personal token
- There is a configure sso button on your github access token page that needs to be used

How to install it

You can either install it from nuget with the command:

dotnet tool install dependabot-pr-manager --global

or from a local build with the command:

dotnet tool install dependabot-pr-manager --add-source ./nupkg --global

How to use it

From the solution run the command:

dotnet run

In case you have installed the global tool you can run the following command:

manage-dbot-prs

At the very first run you will be prompted to configure the tool with:

Github access token with repo permissions
the github owner/org that owns the repositories
the list of repositories (comma separated)

(the following options were added just for a personal use-case 😅)

whether you want the tool to remove the do-not-auto-tag label on the last PR of a repo
the label do-not-auto-tag label's name in case it is different from the default one

Known Issues

Sometimes dependabot gets stuck and doesn't apply the requested command. In this case we suggest to manually merge one PR to trigger the checks on the open PRs.

Product	Compatible and additional computed target framework versions.
.NET	net7.0 is compatible. net7.0-android was computed. net7.0-ios was computed. net7.0-maccatalyst was computed. net7.0-macos was computed. net7.0-tvos was computed. net7.0-windows was computed. net8.0 was computed. net8.0-android was computed. net8.0-browser was computed. net8.0-ios was computed. net8.0-maccatalyst was computed. net8.0-macos was computed. net8.0-tvos was computed. net8.0-windows was computed.

Product

.NET

Compatible target framework(s)

Included target framework(s) (in package)

Learn more about Target Frameworks and .NET Standard.

This package has no dependencies.

Version	Downloads	Last updated
1.1.0	128	6/23/2023
1.0.0	197	3/2/2023

See https://github.com/maurofranchi/dependabot-pr-manager/releases for details.