This is an automated email from the ASF dual-hosted git repository.
github-bot pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/datafusion.git
The following commit(s) were added to refs/heads/main by this push:
new d03601547a chore: group minor dependencies into single PR (#20457)
d03601547a is described below
commit d03601547ae9622805550ebcc5a5422909b327b0
Author: Oleks V <[email protected]>
AuthorDate: Sat Feb 21 14:14:22 2026 -0800
chore: group minor dependencies into single PR (#20457)
## Which issue does this PR close?
<!--
We generally require a GitHub issue to be filed for all bug fixes and
enhancements and this helps us generate change logs for our releases.
You can link an issue to this PR using the GitHub syntax. For example
`Closes #123` indicates that this PR will close issue #123.
-->
- Closes #.
## Rationale for this change
- **Reduce Dependabot PR noise without reducing coverage**
Grouping most *minor* and *patch* Cargo updates into a single PR keeps
routine churn manageable while still ensuring updates are applied
regularly.
- **Keep riskier updates isolated**
*Major* version bumps can include breaking changes, so we intentionally
**do not group major updates**. This preserves **one PR per crate** for
majors, simplifying review, CI triage, and rollback.
- **Preserve existing special handling for Arrow/Parquet**
- Arrow/Parquet updates are higher impact and often coordinated, so we
keep their **minor/patch** updates grouped together for consistency.
- Arrow/Parquet **major** bumps are handled manually (and ignored by
Dependabot) to avoid surprise large-scale breakage.
- **Ensure `object_store` and `sqlparser` remain easy to diagnose**
These dependencies can have outsized downstream impact in DataFusion.
Excluding them from the catch-all group ensures their updates land as
**individual PRs**, making it easier to attribute regressions and bisect
failures.
- **Maintain targeted grouping where it’s beneficial**
Protocol-related crates (`prost*`, `pbjson*`) are commonly updated
together, so grouping their minor/patch updates reduces churn while
keeping changes cohesive.
<!--
Why are you proposing this change? If this is already explained clearly
in the issue then this section is not needed.
Explaining clearly why changes are proposed helps reviewers understand
your changes and offer better suggestions for fixes.
-->
## What changes are included in this PR?
<!--
There is no need to duplicate the description in the issue here but it
is sometimes worth providing a summary of the individual changes in this
PR.
-->
## Are these changes tested?
<!--
We typically require tests for all PRs in order to:
1. Prevent the code from being accidentally broken by subsequent changes
2. Serve as another way to document the expected behavior of the code
If tests are not included in your PR, please explain why (for example,
are they covered by existing tests)?
-->
## Are there any user-facing changes?
<!--
If there are user-facing changes then we may require documentation to be
updated before approving the PR.
-->
<!--
If there are any breaking changes to public APIs, please add the `api
change` label.
-->
---
.github/dependabot.yml | 17 +++++++++++++++++
1 file changed, 17 insertions(+)
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index dfeb15ddaa..2cd4bdfdd7 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -45,6 +45,23 @@ updates:
patterns:
- "prost*"
- "pbjson*"
+
+ # Catch-all: group only minor/patch into a single PR,
+ # excluding deps we want always separate (and excluding arrow/parquet
which have their own group)
+ all-other-cargo-deps:
+ applies-to: version-updates
+ patterns:
+ - "*"
+ exclude-patterns:
+ - "arrow*"
+ - "parquet"
+ - "object_store"
+ - "sqlparser"
+ - "prost*"
+ - "pbjson*"
+ update-types:
+ - "minor"
+ - "patch"
- package-ecosystem: "github-actions"
directory: "/"
schedule:
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
