Min Versions
dependencies.min-versions
Ensures dependencies meet minimum safe version requirements. Validates that project dependencies are at or above specified versions to enforce security patches and compatibility standards.
Compatible Integrations
This guardrail works with the following integrations. Click to see how to use Min Versions with each collector.
Enable This Guardrail
Add the parent policy to your lunar-config.yml to enable this guardrail.
policies:
- uses: github://earthly/lunar-lib/policies/dependencies@v1.0.0
include: [min-versions]
# with: ...How This Guardrail Works
This guardrail is part of the Dependency Guardrails policy. It evaluates data collected by integrations and produces a pass/fail check with actionable feedback.
When enabled, this check runs automatically on every PR and in AI coding workflows, providing real-time enforcement of your engineering standards.
Learn How Lunar Works →Configuration Options
These inputs can be configured in your lunar-config.yml to customize
how the parent policy (and this guardrail) behaves.
| Input | Required | Default | Description |
|---|---|---|---|
language
|
Required | — | Programming language to check (e.g., "go", "java", "python", "nodejs") |
min_versions
|
Optional |
{}
|
JSON object mapping dependency paths to minimum safe versions (e.g., {"github.com/example/lib": "1.0.0"}) |
include_indirect
|
Optional |
false
|
Whether to also check indirect (transitive) dependencies |
Dependency Guardrails
This guardrail is part of the Dependency Guardrails policy, which includes 1 guardrail for security and compliance.
Ready to Automate Your Standards?
See how Lunar can turn your engineering wiki, compliance docs, or postmortem action items into automated guardrails with our 100+ built-in guardrails.
Infrastructure conventions
Post-mortem action items
Security & compliance policies
Testing & quality requirements