From 0c21711ff7343dd4b070827c50e7f0c48769598b Mon Sep 17 00:00:00 2001
From: William Storey <wstorey@maxmind.com>
Date: Wed, 31 Dec 2025 14:19:22 -0800
Subject: [PATCH] Add workflow to check for updates to pseudo-versioned
 dependencies
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Dependabot does not support updating Go dependencies pinned to commits
(pseudo-versions). This workflow fills that gap by checking if newer
commits are available on the default branch.

See: https://github.com/dependabot/dependabot-core/issues/2028

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .github/workflows/check-untagged-deps.yml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 .github/workflows/check-untagged-deps.yml

diff --git a/.github/workflows/check-untagged-deps.yml b/.github/workflows/check-untagged-deps.yml
new file mode 100644
index 0000000..3243e87
--- /dev/null
+++ b/.github/workflows/check-untagged-deps.yml
@@ -0,0 +1,20 @@
+name: Check Untagged Dependencies
+
+on:
+  push:
+  pull_request:
+  schedule:
+    - cron: '0 14 * * *'
+  workflow_dispatch:
+
+permissions: {}
+
+jobs:
+  check:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+        with:
+          persist-credentials: false
+
+      - uses: horgh/check-untagged-go-deps@b2bec8a7a0c8da55e64b092013f7bf5dff1006ca # v1.0.1