chore(dependabot): improve dependency grouping

[avivkeller]

This PR adds more Dependabot groups. To prevent the existing Dependabot PRs from having issues. This also updates any dependencies that need to be updated (although, ideally, all the dependabot PRs should land first).

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

1 Skipped Deployment

Name	Status	Preview	Updated (UTC)
nodejs-org	⬜️ Ignored (Inspect)	Visit Preview	May 4, 2025 4:03pm

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 74.84%. Comparing base (b30c979) to head (46e27d3).

✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #7719      +/-   ##
==========================================
- Coverage   74.86%   74.84%   -0.02%     
==========================================
  Files          98       98              
  Lines        7888     7888              
  Branches      200      200              
==========================================
- Hits         5905     5904       -1     
- Misses       1982     1983       +1     
  Partials        1        1              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[Copilot]

Pull Request Overview

This PR improves the Dependabot configuration by introducing expanded dependency grouping and updating existing update rules to prevent conflicts with ongoing Dependabot PRs.

• Added and refined dependency groups for npm.
• Updated key values and formatting for clarity.
• Modified the ignore configuration for specific dependency updates.

Files not reviewed (4)

• apps/site/package.json: Language not supported
• package.json: Language not supported
• packages/i18n/package.json: Language not supported
• packages/ui-components/package.json: Language not supported

[Copilot]

Pull Request Overview

This PR improves the grouping of dependencies managed by Dependabot. Key changes include updating the lint group's dependency patterns, adding new groups for mdx, orama, radix, and reorganizing or renaming existing groups like storybook, styling, testing, and vercel.

Files not reviewed (4)

• apps/site/package.json: Language not supported
• package.json: Language not supported
• packages/i18n/package.json: Language not supported
• packages/ui-components/package.json: Language not supported

[ovflowd]

LGTM

[ovflowd]

OOC - Do we feel there are deps we can remove? We definitely have a good chunk of dependencies nowadays.

[avivkeller]

We have a little over 110 dependencies / devDependencies¹ in our project. Looking at a cursory glance of the deps, I see it:

We only use acorn, remark-parse, and unified to make sure our JavaScript md snippets is parseable, however, we might be able to replace this with @eslint/markdown](https://github.com/eslint/markdown) (which supports TypeScript snippets) (I'll work on this)

We use css-loader, style-loader, and postcss-loader for Stylebook, but I wonder if there is a simpler way? Maybe one dependency?

glob can be replaced with fs, but it's experimental

Footnotes

1. Not including dependencies of dependencies, that number is waaaay higher ↩

[ovflowd]

Yea, I bet we can remove some of the devDependencies even further and unify things. Also maybe some of the runtime ones 🤔

I also wish eventually for us to have incremental builds of the code itself, so that CI and Vercel doesn't need to build all other packages that did not get modified.

[avivkeller]

Okay. I'm going to merge the open Dependabot PRs, rebase this, and merge.