fix cargo not authenticating with org-level config due to no "registry" property by @jakecoffman in https://github.com/dependabot/dependabot-core/pull/14030
Replace usages of http with excon by @yeikel in https://github.com/dependabot/dependabot-core/pull/13800
Improved error handling for uv lock file updates by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/14034
Handling the required-version constraint error in the uv ecosystem. by @thavaahariharangit in https://github.com/dependabot/dependabot-core/pull/14055
Update Dependabot Proxy container name by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/14052
Add support for parsing registries in vcpkg-configuration.json by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/13001
Combine base path with request path by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/14058
honor ranges in transitive pinning by @brettfo in https://github.com/dependabot/dependabot-core/pull/13987
Add a unit test to ensure base URL with a path is handled correctly by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/14063
Upgrade Node.js version to 22 in devcontainers/Dockerfile by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/14064
feat: Add cross-directory support for group_by_dependency_name by @markhallen in https://github.com/dependabot/dependabot-core/pull/14046
Set executable flag only for Unix version of the gradle wrapper by @yeikel in https://github.com/dependabot/dependabot-core/pull/14056
Preserve file mode when updating pull requests by @kbukum1 in https://github.com/dependabot/dependabot-core/pull/14081
fix: check versions across all the defined maven registries by @yeikel in https://github.com/dependabot/dependabot-core/pull/13747
Fix Gradle lockfile support against Gradle's version catalog (Fix #12557) by @dmikurube in https://github.com/dependabot/dependabot-core/pull/12853
docker: add support for org.opencontainers.image.version and org.opencontainers.image.revision by @yeikel in https://github.com/dependabot/dependabot-core/pull/13855
[SECURITY] Address CodeQL regex alert by @corsonknowles in https://github.com/dependabot/dependabot-core/pull/14012
Remove OpenStruct by @corsonknowles in https://github.com/dependabot/dependabot-core/pull/14011
Fix github actions versions comment not updated in an edge case by @yeikel in https://github.com/dependabot/dependabot-core/pull/13985
Prevent mislabeling pub issues by @yeikel in https://github.com/dependabot/dependabot-core/pull/13407
Honoring configured networkTimeout when calling ./gradle wrapper by @gmazzo in https://github.com/dependabot/dependabot-core/pull/14043
Updates terraform to 1.14.4 by @VolkerK in https://github.com/dependabot/dependabot-core/pull/14100
test: Add tests for dynamic subgroup branch naming and refresh by @markhallen in https://github.com/dependabot/dependabot-core/pull/14086
report package as compatible if it contains no assemblies by @brettfo in https://github.com/dependabot/dependabot-core/pull/14090
Consider JRE/JDK suffixes and semantics for Maven/Gradle by @yeikel in https://github.com/dependabot/dependabot-core/pull/13999
limit target framework restore parallelism by @brettfo in https://github.com/dependabot/dependabot-core/pull/13875
add test to ensure scenario works by @brettfo in https://github.com/dependabot/dependabot-core/pull/13867
Bump the all-actions group across 1 directory with 6 updates by @dependabot[bot] in https://github.com/dependabot/dependabot-core/pull/14068
Bump xunit.runner.visualstudio from 3.1.2 to 3.1.3 by @dependabot[bot] in https://github.com/dependabot/dependabot-core/pull/12665
Update TOFU_VERSION to 1.11.4 by @aochsner in https://github.com/dependabot/dependabot-core/pull/14092
Bump library/rust from 1.89.0-bookworm to 1.93.0-bookworm in /cargo by @dependabot[bot] in https://github.com/dependabot/dependabot-core/pull/14014
Add digest pinning for Docker images by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/14071
Bump lodash from 4.17.21 to 4.17.23 in /npm_and_yarn/helpers by @dependabot[bot] in https://github.com/dependabot/dependabot-core/pull/13994
v0.360.0 by @dependabot-core-action-automation[bot] in https://github.com/dependabot/dependabot-core/pull/14109
New Contributors
@dmikurube made their first contribution in https://github.com/dependabot/dependabot-core/pull/12853
@corsonknowles made their first contribution in https://github.com/dependabot/dependabot-core/pull/14012
@VolkerK made their first contribution in https://github.com/dependabot/dependabot-core/pull/14100
@aochsner made their first contribution in https://github.com/dependabot/dependabot-core/pull/14092
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.359.0...v0.360.0