From a4330821186761743252b96bf125316d40f7facc Mon Sep 17 00:00:00 2001
From: James Wilson <james@jsdw.me>
Date: Wed, 11 Jan 2023 12:33:40 +0000
Subject: [PATCH] Make dependabot less aggressive (#771)

* Make dependabot less aggressive

And ignore sp- crates, since they need to be updated together, and dependabot can't yet do grouped PRs.

We should periodically just keep on top of this anyway, but I don't think we need to be constantly updating them.

* dependency-name

* Try weekly instead of monthly
---
 .github/dependabot.yml | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index fc4483685f..1ccfdde27c 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -3,8 +3,16 @@ updates:
   - package-ecosystem: "cargo"
     directory: "/"
     schedule:
-      interval: "daily"
+      interval: weekly
+    ignore:
+    # these need to be updated together, so dependabot PRs 
+    # are just noise. So, ignore them:
+    - dependency-name: sp-core
+    - dependency-name: sp-keyring
+    - dependency-name: sp-runtime
+    - dependency-name: sp-core-hashing
+    - dependency-name: sp-version
   - package-ecosystem: github-actions
     directory: '/'
     schedule:
-      interval: daily
+      interval: weekly