I am currently thinking about the best way to organize libraries in my team&#39;s projects.
A colleague of mine has set up <a target='_blank' rel='noopener noreferrer' href="https://renovatebot.com/">renovate</a> to update dependencies automatically, which seems very optimistic to me: you have to trust that updating the dependency does not break the code.
Even if you configure renovate to update dependencies only when the semantic version update is a minor or bugfix.
Renovate floods my github notifications, especially when the dependencies are internal libraries that we often update because we are in the development phase.
I smell something wrong in it and I would like to catch advices from different point of view.
<img src="http://i.imgur.com/dP0TkC2.png" alt="a small part of my github notification">

I am currently thinking about the best way to organize libraries in my team's projects.

A colleague of mine has set up [renovate](https://renovatebot.com/) to update dependencies automatically, which seems very optimistic to me: you have to trust that updating the dependency does not break the code.
Even if you configure renovate to update dependencies only when the semantic version update is a minor or bugfix.

Renovate floods my github notifications, especially when the dependencies are internal libraries that we often update because we are in the development phase.

I smell something wrong in it and I would like to catch advices from different point of view.

![a small part of my github notification](http://i.imgur.com/dP0TkC2.png)

Do you use a bot to manage your project's dependencies?

Product

Explore

Company

Blogs

Support