From 5d1a28f68e4b4675a1f80dd2d060fbe8bbc47542 Mon Sep 17 00:00:00 2001
From: Alex Zenla <alex@edera.dev>
Date: Thu, 16 May 2024 07:14:13 +0000
Subject: [PATCH] chore(dependabot): group some dependency updates

We have a need to ensure great security while also ensuring that dependabot
does not constantly provide multiple PRs. After all, when something becomes
too time consuming it risks not being handled with care. With grouped updates,
version bumps will get grouped together, but security updates will still be
indvidualized. This makes it safer for us to enable grouped dependency updates.
---
 .github/dependabot.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 3f4f6f8..8502676 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -4,7 +4,15 @@ updates:
   directory: "/"
   schedule:
     interval: "daily"
+  groups:
+    version-updates:
+      dependency-type: "all"
+      applies-to: "version-updates"
 - package-ecosystem: "cargo"
   directory: "/"
   schedule:
     interval: "daily"
+  groups:
+    version-updates:
+      dependency-type: "all"
+      applies-to: "version-updates"