Add grouping for pip dependencies, Docker and Github Actions Dependabot configs

nifadyev · web-flow · commit 35be28bd755c · 2024-12-09T09:50:19.000+03:00
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -1,11 +1,28 @@
-# To get started with Dependabot version updates, you'll need to specify which
-# package ecosystems to update and where the package manifests are located.
-# Please see the documentation for all configuration options:
-# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
-
 version: 2
 updates:
-  - package-ecosystem: "pip" # See documentation for possible values
-    directory: "/" # Location of package manifests
+  - package-ecosystem: "pip"
+    schedule:
+      interval: "weekly"
+    groups:
+      production-security-updates:
+        applies-to: security-updates
+        dependency-type: "production"
+        update-types:
+          - "major"
+          - "patch"
+      production-version-updates:
+        applies-to: version-updates
+        dependency-type: "production"
+        update-types:
+          - "major"
+          - "patch"
+      development-dependencies:
+        dependency-type: "development"
+
+  - package-ecosystem: "docker"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "github-actions"
     schedule:
       interval: "weekly"
