feat: implement issue #173 — Compliance: wrong-limit-npm#298
Conversation
|
Warning You have reached your daily quota limit. Please wait up to 24 hours and I will start processing your requests again! |
|
Warning Rate limit exceeded
You’ve run out of usage credits. Purchase more in the billing tab. ⌛ How to resolve this issue?After the wait time has elapsed, a review can be triggered using the We recommend that you space out your commits to avoid hitting the rate limit. 🚦 How do rate limits work?CodeRabbit enforces hourly rate limits for each developer per organization. Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout. Please see our FAQ for further information. ✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 7733aa2eba
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
There was a problem hiding this comment.
Pull request overview
Updates this repository’s Dependabot configuration to comply with the organization’s “security-only” policy for npm by limiting npm update PRs to zero.
Changes:
- Set
open-pull-requests-limit: 0for thenpmDependabot ecosystem. - Kept
github-actionsDependabot settings unchanged (including limit 10), consistent with existing policy.
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 543fb4ee4d
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| .dev-lead/ | ||
| .dev-lead/ | ||
| # compliance-ci-trigger | ||
| # ci-trigger-298 |
There was a problem hiding this comment.
Fix npm Dependabot limit in workflow config
This commit only adds # ci-trigger-298 to .gitignore, so it does not address the npm Dependabot regression the issue references; open-pull-requests-limit: 0 remains in .github/dependabot.yml (line 7 at this commit), which disables npm version-update PRs. Fresh evidence in this revision is that the diff contains no changes outside .gitignore, so the compliance/security update path stays broken after this commit.
Useful? React with 👍 / 👎.
|



Closes #173
Implemented by dev-lead agent. Please review.