affidavit 26.6.22

Provenance Layer — receipt assembly and certification (verify a witness against a format standard; never decide honesty).
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34

# dependabot.yml — weekly dependency updates across the repo's ecosystems.
#
# Three ecosystems live here:
#   * cargo          — the Rust crate at the repo root (Cargo.toml / Cargo.lock)
#   * npm            — the self-contained Next.js app under web/
#   * github-actions — the workflows under .github/workflows/
version: 2
updates:
  # Rust crate at the repository root.
  - package-ecosystem: cargo
    directory: "/"
    schedule:
      interval: weekly
    open-pull-requests-limit: 10
    commit-message:
      prefix: "cargo"

  # Next.js web app (self-contained Node 22 project).
  - package-ecosystem: npm
    directory: "/web"
    schedule:
      interval: weekly
    open-pull-requests-limit: 10
    commit-message:
      prefix: "npm"

  # GitHub Actions used by the workflows in this repo.
  - package-ecosystem: github-actions
    directory: "/"
    schedule:
      interval: weekly
    open-pull-requests-limit: 10
    commit-message:
      prefix: "ci"