From 567fb680d4cc75118b983ffc859673d0141e130d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ond=C5=99ej=20Budai?= <ondrej@budai.cz>
Date: Tue, 22 Aug 2023 10:26:19 +0200
Subject: [PATCH] dependabot: group go package updates
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Imho, this is much saner than having so many PRs for all individual
dependencies. Taken from osbuild/images.

Signed-off-by: Ondřej Budai <ondrej@budai.cz>
---
 .github/dependabot.yml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 619b600a3..d647e0da7 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -18,5 +18,9 @@ updates:
     schedule:
       interval: "daily"
       time: "04:00"
-    open-pull-requests-limit: 5
-    rebase-strategy: "disabled"
+    groups:
+      go-deps:
+        patterns:
+          - "*"  # group all dependency updates into one PR
+    open-pull-requests-limit: 1
+    rebase-strategy: "auto"