Dependency Dashboard
Introduction
The Dependency Dashboard is a crucial tool for managing dependencies in your project. It provides a comprehensive overview of the dependencies in your project, including their versions, updates, and potential security risks. In this article, we will explore the Dependency Dashboard, its features, and how to use it effectively.
Awaiting Schedule
The Awaiting Schedule section of the Dependency Dashboard lists the updates that are awaiting their schedule. These updates are pending and have not been scheduled for deployment yet. Clicking on a checkbox next to an update will trigger the update to be scheduled for deployment.
| Update | Description |
|---|---|
| qbittorrent: Update ghcr.io/home-operations/qbittorrent:5.0.4 Docker digest to 25ec493 | Update the qbittorrent Docker image to version 5.0.4 with digest 25ec493 |
| argocd: Update Helm release argo-cd to v7.8.27 | Update the argocd Helm release to version 7.8.27 |
| home-assistant: Update ghcr.io/home-operations/home-assistant Docker tag to v2025.4.3 | Update the home-assistant Docker image to version 2025.4.3 |
| prestashop-elsuenodediana-db: Update Helm release mariadb to v20.4.3 | Update the mariadb Helm release to version 20.4.3 |
| prowlarr: Update ghcr.io/home-operations/prowlarr Docker tag to v1.34.1.5021 | Update the prowlarr Docker image to version 1.34.1.5021 |
| radarr: Update ghcr.io/home-operations/radarr Docker tag to v5.22.3.9889 | Update the radarr Docker image to version 5.22.3.9889 |
| templates: Update hashicorp/vault Docker tag to v1.19.2 | Update the hashicorp/vault Docker image to version 1.19.2 |
| radarr: Update ghcr.io/onedr0p/exportarr Docker tag to v2.2.0 | Update the onedr0p/exportarr Docker image to version 2.2.0 |
| reloader: Update Helm release reloader to v2.1.1 | Update the reloader Helm release to version 2.1.1 |
| sonarr: Update ghcr.io/onedr0p/exportarr Docker tag to v2.2.0 | Update the onedr0p/exportarr Docker image to version 2.2.0 |
Edited/Blocked
The Edited/Blocked section of the Dependency Dashboard lists the updates that have been manually edited or blocked. These updates will not be made by Renovate and will require manual intervention to update.
| Update | Description |
|---|---|
| readarr: Update ghcr.io/home-operations/readarr Docker tag to v0.4.15 | Update the readarr Docker image to version 0.4.15 |
| workflows: Update renovatebot/github-action action to v41.0.21 | Update the renovatebot/github-action action to version 41.0.21 |
| external-secrets: Update Helm release external-secrets to v0.16.1 | Update the external-secrets Helm release to version 0.16.1 |
| k3s: Update dependency k3s-io/k3s to v1.32.3+k3s1 | Update the k3s-io/k3s dependency to version 1.32.3+k3s1 |
| pre-commit: Update pre-commit hook renovatebot/pre-commit-hooks to v39.253.1 | Update the pre-commit hook renovatebot/pre-commit-hooks to version 39.253.1 |
| keycloak: Update Helm release keycloak to v24 | Update the keycloak Helm release to version 24 |
| nextcloud: Update nextcloud Docker tag to v31 | Update the nextcloud Docker image to version 31 |
| velero: Update Helm release velero to v9 | Update the velero Helm release to version 9 |
Detected dependencies
The Detected dependencies section of the Dependency Dashboard lists the dependencies that have been detected in the project. These dependencies are listed by category and include their versions and potential security risks.
github-actions
| Dependency | Version | Security Risk |
|---|---|---|
| actions/checkout | v4 | Low |
| tibdex/github-app-token | v2 | Medium |
| renovatebot/github-action | v41.0.12@9ad1a8e771c002ece340d1ff028fae4503fe041b | Low |
helm-values
| Dependency | Version | Security Risk |
|---|---|---|
| ghcr.io/flaresolverr/flaresolverr | v3.3.21 | Low |
| ghcr.io/home-operations/home-assistant | 2025.4.2@sha256:a0da02d5929788d34e589f0d7e185f9263204c7406ec64fae3a792223906e511 | Low |
| debian | 12.10-slim | Low |
| acockburn/appdaemon | 4.4.2 | Medium |
| pando85/wyoming-whisper | 2.4.0 | Low |
| rhasspy/wyoming-piper | 1.5.0 | Low |
| rhasspy/wyoming-openwakeword | 1.10.0 | Low |
kustomize
| Dependency | Version | Security Risk |
|---|---|---|
| app-template | 3.7.3 | Low |
| keycloak | 22.2.6 | Medium |
| nvidia-device-plugin | 0.17.1 | Low |
| loki | 6.29.0 | Medium |
| promtail | 6.16.6 | Low |
| kube-prometheus-stack | 70.7.0 | Medium |
| prometheus-blackbox-exporter | 9.4.0 | Low |
| prometheus-smartctl-exporter | 0.13.0 | Low |
| snapscheduler | 3.4.0 | Low |
pre-commit
| Dependency | Version | Security Risk |
|---|---|---|
| pre-commit/pre-commit-hooks | v5.0.0 | Low |
| adrienverge/yamllint | v1.37.0 | Medium |
| gruntwork-io/pre-commit | v0.1.28 | Low |
| renovatebot/pre-commit-hooks | 39.227.2 | Low |
| alessandrojcm/commitlint-pre-commit-hook | v9.22.0 | Medium |
regex
| Dependency | Version | Security Risk |
|---|---|---|
| k3s-io/k3s | v1.31.7+k3s1 | Low |
| hashicorp/vault | 1.19.1 | Medium |
| quay.io/prometheus/prometheus | v3.3.0 | Medium |
| quay.io/prometheus/prometheus | v3.3.0 | Medium |
| rancher/system-upgrade-controller | v0.15.2 | Medium |
Conclusion
The Dependency Dashboard is a powerful tool for managing dependencies in your project. It provides a comprehensive overview of the dependencies in your project, including their versions, updates, and potential security risks. By using the Dependency Dashboard, you can ensure that your project is up-to-date and secure, and that you are aware of any potential security risks.
Introduction
The Dependency Dashboard is a crucial tool for managing dependencies in your project. It provides a comprehensive overview of the dependencies in your project, including their versions, updates, and potential security risks. In this article, we will answer some frequently asked questions about the Dependency Dashboard.
Q: What is the Dependency Dashboard?
A: The Dependency Dashboard is a tool that provides a comprehensive overview of the dependencies in your project. It lists all the dependencies in your project, including their versions, updates, and potential security risks.
Q: What are the benefits of using the Dependency Dashboard?
A: The Dependency Dashboard provides several benefits, including:
- A comprehensive overview of the dependencies in your project
- Identification of potential security risks
- Easy management of dependencies
- Improved project stability and reliability
Q: How do I use the Dependency Dashboard?
A: To use the Dependency Dashboard, follow these steps:
- Log in to your project's dashboard
- Click on the "Dependencies" tab
- Review the list of dependencies in your project
- Update dependencies as needed
- Monitor dependencies for potential security risks
Q: What are the different types of dependencies listed in the Dependency Dashboard?
A: The Dependency Dashboard lists the following types of dependencies:
- GitHub Actions: These are dependencies that are used in GitHub Actions workflows.
- Helm Values: These are dependencies that are used in Helm charts.
- Kustomize: These are dependencies that are used in Kustomize configurations.
- Pre-Commit: These are dependencies that are used in pre-commit hooks.
- Regex: These are dependencies that are used in regular expressions.
Q: How do I update dependencies in the Dependency Dashboard?
A: To update dependencies in the Dependency Dashboard, follow these steps:
- Log in to your project's dashboard
- Click on the "Dependencies" tab
- Review the list of dependencies in your project
- Click on the "Update" button next to the dependency you want to update
- Select the new version of the dependency
- Click "Update" to apply the changes
Q: What are the potential security risks listed in the Dependency Dashboard?
A: The Dependency Dashboard lists the following potential security risks:
- Vulnerabilities: These are known vulnerabilities in dependencies that could potentially be exploited by attackers.
- Outdated dependencies: These are dependencies that are no longer supported or have known security issues.
- Untrusted dependencies: These are dependencies that are not trusted or have a history of security issues.
Q: How do I monitor dependencies for potential security risks in the Dependency Dashboard?
A: To monitor dependencies for potential security risks in the Dependency Dashboard, follow these steps:
- Log in to your project's dashboard
- Click on the "Dependencies" tab
- Review the list of dependencies in your project
- Click on the "Security Risks" tab
- Review the list of potential security risks
- Take action to address any security risks you find
Q: Can I customize the Dependency Dashboard to fit my project's needs?
A: Yes, you can customize the Dependency Dashboard to fit your project's needs. You can add or remove dependencies, customize the layout, and more.
Q: Is the Dependency Dashboard available for all projects?
A: Yes, the Dependency Dashboard is available for all projects. However, some features may not be available for all projects, depending on the project's configuration and dependencies.
Q: How do I get support for the Dependency Dashboard?
A: You can get support for the Dependency Dashboard by contacting our support team. We are available 24/7 to help with any questions or issues you may have.