Would you be up for doing these kind of update automatically? I built Dependabot to create PRs each time a new dependency version is released, and just added a "security-updates-only" option. It's free for open source (and always will be) - would love your feedback if you give it a try.
Would you be up for doing these kind of update automatically? I built Dependabot to create PRs each time a new dependency version is released, and just added a "security-updates-only" option. It's free for open source (and always will be) - would love your feedback if you give it a try.