Skip to content

Dependabot - CI & Infrastructure Dependencies #6703

Closed
Task
Closed
Dependabot - CI & Infrastructure Dependencies#6703
Task
Assignees
ppawlowski
Labels
area:infrastructureAnything related to the FF platform infrastructuretaskA piece of work that isn't necessarily tied to a specific Epic or Story.time:1h
Milestone
2.28
@allthedoll

Description

@allthedoll
allthedoll
opened on Feb 13, 2026

Description

What

Review and update open Dependabot PRs related to CI, tooling, and infrastructure dependencies.

Timebox: 30 minutes.

Why

  • Keep automation secure
  • Prevent CI breakage from outdated actions
  • Maintain compatibility with platform updates
  • Reduce long-term infra risk

Scope (CI / Infra Only)

Includes:

  • GitHub Actions version bumps
  • Docker base image updates
  • Terraform providers
  • CI tooling packages
  • Dev dependencies
  • Linting / formatting / build tooling

Excludes:

  • Runtime application dependencies

Acceptance Criteria

  • Review all open CI/infra Dependabot PRs
  • Merge safe patch/minor updates
  • Confirm CI passes after merge
  • Flag any Docker base image or major infra upgrades
  • Leave summary comment of actions taken

Notes

  • Prioritize GitHub Actions version bumps
  • Be cautious with Docker base image changes
  • Do not exceed 30 minutes

Epic/Story

No response

Have you provided an initial effort estimate for this issue?

I have provided an initial effort estimate

Metadata

Metadata

Assignees

Labels

area:infrastructureAnything related to the FF platform infrastructuretaskA piece of work that isn't necessarily tied to a specific Epic or Story.time:1h

Type

Task

Projects

🛠 Development

Status

Done

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions