I'd like to add dependabot to the git repo to tell us about dependencies
updates.
dependabot sends PRs to the project, including gathering documentation
and explanation if available so we get to review the proposed changes.
I've a very simple setup on another project:
https://github.com/afs/rdf-delta/blob/main/.github/dependabot.yml
The github documentation:
https://docs.github.com/en/free-pro-team@latest/github/administering-a-repository/keeping-your-dependencies-updated-automatically
The first time it runs we will likely get quite a few updates because we
have quite a few dependencies.
We don't have to acceet the recommendations!
Andy
