+1 for Renovate for JavaScript dependencies, for the reasons you have pointed out: it does a better job of combining multiple updates together, increasing the success rate of the resulting proposed change.
Is there a compelling reason to prefer Renovate for Jenkins core Java dependencies? I can think of one reason to prefer Dependabot in this scenario: it is consistent with our technology choice for managing Jenkins plugin Java dependencies. Using the same technology to manage Jenkins core Java dependencies and Jenkins plugin Java dependencies buys us the advantage of consistency and familiarity. For example, over the years I have become familiar with Dependabot's implementation, includings both its strengths and weaknesses, and I have stepped through its Ruby code in a debugger on more than one occasion to solve some mysteries (despite the fact that I am not much of a Ruby programmer). Switching to a new technology stack for managing Jenkins core Java dependencies while retaining the existing technology stack for managing Jenkins plugin Java dependencies would increase cognitive load by forcing developers to learn a new technology stack (Renovate) while not allowing them to forget the technology stack they already know (Dependabot). This wouldn't be out of the question if the advantages were compelling enough, but you did not present an argument that they were. -- You received this message because you are subscribed to the Google Groups "Jenkins Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-dev/CAFwNDjr_DJ8zvbUZGSER97wCU0ce-L50jvTNGeykWYf10ORhWg%40mail.gmail.com.
