Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Activity Type:
Quality / Stability / Reliability
Epic Link:
4.9.0 release and follow-up Stable Stream must-haves
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Color Status:
Not Selected
Intelligence Requested:
Market:

Sprint:
Rox Sprint 4.11A

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Dependabot creates updates for pip requirements files in https://github.com/stackrox/stackrox/tree/master/operator/bundle_helpers by default.

This can lead to Konflux build issues, like https://redhat-internal.slack.com/archives/CMH5M8MHN/p1769612279536409?thread_ts=1769611402.157919&cid=CMH5M8MHN.

We should add an explicit pip configuration to the dependabot.yaml to forbid updates to these files.

is related to

ROX-32945 Revert Dependabot security alert rule overwrite

New

ROX-27677 Rewrite operator bundle helper tooling in Go

Review

Assignee:: Tom Martensen

Reporter:: Tom Martensen

Team:: ACS Automation

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2026/01/30 8:29 AM

Updated:: 2026/02/03 12:06 PM

Resolved:: 2026/02/03 12:06 PM