Packages out of Date

[Sweetdevil144]

I recently found 7 PRs over my for of web of DependableBots as shown in image below. I think a number of packages are out of date. Is there a way to automate the process to keep them up to date?
A number of packages offer a feature in package.json such as package@latest take Vite for example. But many don't.
Any approach or Suggestions ?

[Sweetdevil144]

@RohanSasne check this out :

[allgandalf]

Busy for at-least the end of this month, can you bump me early next month @Sweetdevil144 ?

[Sweetdevil144]

Yeah sure. I too am busy and have been since last month. Sems and stuff :)
I'll come up with a PR and notify you by the start of March.

[allgandalf]

I too am busy and have been since last month. Sems and stuff :)

I know, life happens to everyone of us, but end of day it’s important that we stay put to our commitments and show up sooner rather than later :)

please wait for the PR, I want to review the scope of this issue and can collaborate with you if we are covering this for larger project scope

[Sweetdevil144]

Any Updates @GandalfGwaihir

[allgandalf]

A number of packages offer a feature in package.json such as package@latest take Vite for example

@Sweetdevil144 , i would rather prefer @stable branch that the latest one :)

Any approach or Suggestions ?

Only way to deal with this package upgrades is to use automation in place:
https://docs.github.com/en/code-security/dependabot/dependabot-version-updates

I got this awesome read about how to implement dependabot, do go through it and see if you can implement this, if you require any contributor access, ping me here, I'll grant it to you

And thanks a lot for the bump, this went out of my mind

[Sweetdevil144]

@GandalfGwaihir below is the following instruction for configuring dependabot :

People with write permissions to a repository can enable or disable Dependabot version updates for the repository.

[allgandalf]

i guess i don't have access to settings, @robkooper , can you help here please :), either enable the bot or can you give me access to repository settings so that i can configure it myself, thanks

[robkooper]

this is now enabled, lets see what happens.

[Sweetdevil144]

Thanks @robkooper . I guess the issue is fixed now. So, we can close this issue for now. I will reopen this issue if I face any issues related to dependabot

[robkooper]

I'd like to keep it open until we get the first PR by dependabot.

[allgandalf]

this didn't work, PR closed in cyclic loop, anyway I am opening a PR in the main website repository over the weekend, I let's take this discussion over there :) (We are migrating the website, FINALLY!!!!!)