From 80968606b21409a1395227014de49e110b42acb2 Mon Sep 17 00:00:00 2001 From: "Tony Arcieri (iqlusion)" Date: Fri, 22 Aug 2025 09:48:31 -0600 Subject: [PATCH] dependabot: perform consolidated lockfile updates (#626) Update all dependencies in Cargo.lock, rather than opening individual PRs for each of them --- .github/dependabot.yml | 23 +++++++++++++++++------ 1 file changed, 17 insertions(+), 6 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 6a216e5..5af50ff 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,8 +1,19 @@ version: 2 updates: -- package-ecosystem: cargo - directory: "/" - schedule: - interval: weekly - time: '13:00' - open-pull-requests-limit: 10 + - package-ecosystem: cargo + versioning-strategy: lockfile-only + directory: "/" + allow: + - dependency-type: "all" + groups: + all-deps: + patterns: + - "*" + schedule: + interval: weekly + open-pull-requests-limit: 10 + - package-ecosystem: github-actions + directory: "/" + schedule: + interval: weekly + open-pull-requests-limit: 10