From 996fce374163c1346903ba86db75aa5f6127565d Mon Sep 17 00:00:00 2001
From: Saurabh Chopra <sc@saurabhchopra.co.uk>
Date: Thu, 14 Mar 2024 06:33:01 +0000
Subject: [PATCH 1/2] add dependabot for pip and gitHub-actions

---
 .github/dependabot.yml | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 .github/dependabot.yml

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 000000000..9f850fed9
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,22 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    reviewers:
+      - "saurbhc"
+      - "JBWilkie"
+    open-pull-requests-limit: 5
+    labels:
+      - "github-actions-updates"
+  - package-ecosystem: "pip"
+    directory: "/"
+    schedule:
+      interval: "daily"
+    reviewers:
+      - "saurbhc"
+      - "JBWilkie"
+    open-pull-requests-limit: 5
+    labels:
+      - "dependencies"

From ee9ef98683406452df044b967de5ff0f64db9fdc Mon Sep 17 00:00:00 2001
From: Saurabh Chopra <sc@saurabhchopra.co.uk>
Date: Thu, 14 Mar 2024 08:26:21 +0000
Subject: [PATCH 2/2] weekly updates, ignore ignore all major updates in pip
 dependencies

---
 .github/dependabot.yml | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 9f850fed9..5662ec67c 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -10,10 +10,16 @@ updates:
     open-pull-requests-limit: 5
     labels:
       - "github-actions-updates"
+
   - package-ecosystem: "pip"
     directory: "/"
     schedule:
-      interval: "daily"
+      interval: "weekly"
+    ignore:
+      # For all packages, ignore all major updates
+      - dependency-name: "*"
+        update-types:
+          - "version-update:semver-major"
     reviewers:
       - "saurbhc"
       - "JBWilkie"