For an overview of all available workflows, see the main README.
Bundle Dependabot alerts into grouped pull requests with full dependency updates
The Dependabot PR Bundler workflow checks for Dependabot alerts, groups updates, updates dependencies to latest versions, tests compatibility, and creates bundled pull requests.
# Install the 'gh aw' extension
gh extension install github/gh-aw
# Add the workflow to your repository
gh aw add-wizard githubnext/agentics/dependabot-pr-bundlerThis walks you through adding the workflow to your repository.
graph LR
A[Check Dependabot Alerts] --> B[Group Updates]
B --> C[Update Dependencies]
C --> D[Run Tests]
D --> E{Tests Pass?}
E -->|Yes| F[Create Bundled PR]
E -->|No| G[Report Issues]
This workflow requires no configuration and works out of the box.
After editing run gh aw compile to update the workflow and commit all changes to the default branch.
You can start a run immediately:
gh aw run dependabot-pr-bundlerTo automatically trigger CI checks on PRs created by this workflow, configure an additional repository secret GH_AW_CI_TRIGGER_TOKEN. See the triggering CI documentation for setup instructions.
- Review dependency update PRs for breaking changes
- Test updated dependencies for compatibility
- Monitor for issues after updates are deployed