From 850606510bb4eb3a8e5a157b1ff8235b1bdacff1 Mon Sep 17 00:00:00 2001
From: GCHQDeveloper81 <175597767+GCHQDeveloper81@users.noreply.github.com>
Date: Mon, 29 Jul 2024 09:43:54 +0100
Subject: [PATCH] Update dependabot config (#11)

---
 .github/dependabot.yml | 34 ++++++++++++++++++++--------------
 1 file changed, 20 insertions(+), 14 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index d8df11f..da58c0e 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -5,22 +5,28 @@ version: 2
 updates:
   #
   # Check for minor/patch versions only on a weekly basis - we are likely to be able to
-  # merge these routinely.
+  # merge these routinely. Major versions we'll check for and update manually.
   #
   - package-ecosystem: 'npm'
     directory: '/'
+    versioning-strategy: increase
     schedule:
       interval: 'weekly'
-    ignore:
-      - dependency-name: '*'
-        update-types: ['version-update:semver-major']
-
-  #
-  # Check for all dependencies monthly including major (which are likely / prone to breaking changes.
-  #
-  - package-ecosystem: 'npm'
-    directory: '/'
-    schedule:
-      interval: 'monthly'
-    allow:
-      update-types: ['version-update:semver-major']
+      time: '03:00'
+      timezone: Europe/London
+    commit-message:
+      prefix: 'chore(deps): '
+    labels:
+      - 'npm'
+      - 'dependencies'
+    groups:
+      #
+      # Grouping so we don't get a seperate PR for every minor and patch version.
+      #
+      minor-and-patch-updates:
+        applies-to: version-updates
+        patterns:
+          - '*'
+        update-types:
+          - 'minor'
+          - 'patch'