Problem
Dependabot currently opens a separate pull request for each individual dependency update. This creates noisy review traffic and makes routine dependency maintenance harder to process.
Recent examples include separate open pull requests for individual uv dependency updates.
Proposal
Configure Dependabot groups so updates are consolidated by package ecosystem:
- uv dependency updates should be grouped into one uv pull request.
- GitHub Actions updates should be grouped into one github-actions pull request.
- The two ecosystems should remain separate for review clarity.
Validation
Validate the updated Dependabot configuration with the repository YAML check.
Problem
Dependabot currently opens a separate pull request for each individual dependency update. This creates noisy review traffic and makes routine dependency maintenance harder to process.
Recent examples include separate open pull requests for individual uv dependency updates.
Proposal
Configure Dependabot groups so updates are consolidated by package ecosystem:
Validation
Validate the updated Dependabot configuration with the repository YAML check.