diff --git a/.github/dependabot.yml b/.github/dependabot.yml index ff0b3514..fac123de 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -9,6 +9,18 @@ updates: open-pull-requests-limit: 10 labels: - "dependencies" + groups: + # Bundle all patch/minor updates of the same dependency type into one + # weekly PR. Prevents partial bumps of sibling packages that share + # peer dependencies (e.g. lexical + @lexical/*), which otherwise + # install two copies of the core package and break type-checking. + # Majors stay as individual PRs (and are ignored below anyway). + production-dependencies: + dependency-type: "production" + update-types: ["patch", "minor"] + development-dependencies: + dependency-type: "development" + update-types: ["patch", "minor"] ignore: # Ignore major version bumps — review those manually - dependency-name: "*"