Date: 2023-05-01
Accepted
We need a tool that helps us update the project dependencies automatically, keeping it as secure as possible.
We are going to use Renovate bot as the dependency maintainer: it is a GitHub app that simplifies the update process, opening new Pull Requests when new dependencies' updates are available.
This will allow us to keep our codebase dependecies updated at a lower cost, and it possibly help avoiding security issues.