jbampton opened a new issue, #2245: URL: https://github.com/apache/sedona/issues/2245
We can optimize the Dependabot updates to reduce PR noise by grouping some updates togethor. We need to investigate this and find the best process for Sedona. See below: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/optimizing-pr-creation-version-updates "Learn how to streamline and efficiently manage your Dependabot pull requests. By default, Dependabot opens a new pull request to update each dependency. When you enable security updates, new pull requests are opened when a vulnerable dependency is found. When you configure version updates for one or more ecosystems, new pull requests are opened when new versions of dependencies are available, with the frequency defined in the dependabot.yml file. If your project has many dependencies, you might find that you have a very large number of Dependabot pull requests to review and merge, which can quickly become difficult to manage. There are a couple of customization options you can implement to optimize Dependabot update pull requests to align with your processes, such as: Controlling the frequency with which Dependabot checks for newer versions of your dependencies with schedule. Prioritize meaningful updates with groups." -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
