Commits on Jun 13, 2024

1. Don't limit number of open Dependabot pull requests …

   The Dependabot service is used to keep the project dependencies updated.
   
   Thanks to the project's high quality validation infrastructure, the human effort required to complete a trivial version
   bump is minimal. However, some bumps may introduce breaking changes that would require a significant amount of effort to
   accommodate, or are blocked by external tasks. In this case, the Dependabot pull request can't be merged, but should be
   left open to track the need to perform the bump when it is feasible. This means that it should be expected that there
   will be regularly be a small number of Dependabot pull requests left open in the repository over long periods of time.
   The automated system is here to assist the human project maintainers, not as a tyrannical overlord, so this is the
   system working exactly as intended.
   
   By default, Dependabot is configured to stop submitting pull requests if it already has five open pull requests. This
   means that if it happens that the accumulation of intentionally on-hold pull requests reaches that number, the project
   stops receiving the easily handled trivial update PRs. This is very harmful because it results in the completely
   unnecessary use of outdated dependencies, and unnecessary challenging large bumps when pull requests start being
   submitted once more after the backlog is cleared.
   
   The harmful default configuration is hereby overridden by configuring the maximum open pull request limit at 100. This
   value was chosen as an arbitrary large number simply to functionally disable the limiting, rather than from any
   expectation that the actual number of open PRs can ever reach that count.

   

   per1234 committed Jun 13, 2024
   Configuration menu

   • View commit details
   • Copy full SHA for 0ae7d87
   • Browse repository at this point

   Copy the full SHA

   0ae7d87 View commit details

   Browse the repository at this point in the history