From 711c867cccc25f07e34cee1e13864dc02cb4f43f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Gast=C3=B3n=20Fournier?= <gaston@getunleash.ai>
Date: Thu, 5 Jan 2023 12:45:48 +0100
Subject: [PATCH] feat: wait for deps to be somewhat stable (#2768)

## About the changes
Some dependency updates we receive are recent releases with a low
adoption rate. It's fine to be early adopters but this can also
introduce unintended bugs. This PR adds a 7 days grace period before we
consider a dependency as ready to be upgraded. It doesn't guarantee its
stability but it improves it.

Ideally, I'd like to also use adoption and confidence to automatically
merge or delay the creation of the PR, but I haven't found a way of
doing that

It also protects us from:
> npm packages less than 72 hours (3 days) old can be unpublished

Documentation:
https://docs.renovatebot.com/configuration-options/#stabilitydays

### Examples

![image](https://user-images.githubusercontent.com/455064/209797881-6fb34546-9c76-44f6-a276-9d897daa1257.png)

![image](https://user-images.githubusercontent.com/455064/209797919-046bb577-4dc8-444e-8515-0b8e9a6cbcbf.png)
---
 renovate.json | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/renovate.json b/renovate.json
index a2434d8347..dee1bbb81f 100644
--- a/renovate.json
+++ b/renovate.json
@@ -4,7 +4,9 @@
     {
       "matchUpdateTypes": ["minor", "patch"],
       "matchPackagePatterns": ["*"],
-      "automerge": true
+      "automerge": true,
+      "stabilityDays": 7,
+      "internalChecksFilter": "strict"
     }
   ]
 }