From 1b55557cf72c705c5053eea01bfaeccc2bc85951 Mon Sep 17 00:00:00 2001
From: "dependabot-preview[bot]"
 <27856297+dependabot-preview[bot]@users.noreply.github.com>
Date: Wed, 28 Apr 2021 22:18:04 +0000
Subject: [PATCH] Upgrade to GitHub-native Dependabot

---
 .dependabot/config.yml | 46 ------------------------------------------
 .github/dependabot.yml | 18 +++++++++++++++++
 2 files changed, 18 insertions(+), 46 deletions(-)
 delete mode 100644 .dependabot/config.yml
 create mode 100644 .github/dependabot.yml

diff --git a/.dependabot/config.yml b/.dependabot/config.yml
deleted file mode 100644
index 486aa27..0000000
--- a/.dependabot/config.yml
+++ /dev/null
@@ -1,46 +0,0 @@
-# This is a dependabot configuration file. When this file is seen on github, a
-# dependabot configuration is created for the project. We can use this to
-# control various aspects of the automated dependency checking, such as the
-# frequency and the target_branch.
-#
-# Reference: https://dependabot.com/docs/config-file/
-version: 1
-update_configs:
-  # This configures dependency updates for one package manager. In some
-  # projects, such as warehouse, where we have Ruby and Python, there can be
-  # separate package_manager entries.
-  - package_manager: "ruby:bundler"
-    directory: "/"
-    update_schedule: "weekly"
-
-    default_labels:
-      - "dependencies"
-      - "Needs QA"
-
-    # Dependabot will use a repository's default branch. This will override
-    # that.
-    # target_branch: "master"
-
-    allowed_updates:
-      - match:
-          dependency_type: "direct"
-
-    automerged_updates:
-      # This allows all dependencies that are used for development, e.g., rspec,
-      # rspec-mock, vcr, etc, to be automatically updated. This is generally
-      # okay because the dependencies are not used in production.
-      - match:
-          dependency_type: "all"
-          update_type: "all"
-
-    #   # This is an example entry to enable automerging of a specific dependency
-    #   # when the update is only for minor or patch semantic versions.
-    #   #
-    #   # The dependency_name can also be a wildcard.
-    #   #
-    #   # This is left commented, but whitelisting a dependency for automatic
-    #   # merging is as simple as creating a new entry that looks like the below.
-    #   - match:
-    #       dependency_type: "all"
-    #       dependency_name: "aws-sdk-s3"
-    #       update_type: "semver:minor"
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..299b928
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,18 @@
+version: 2
+updates:
+- package-ecosystem: bundler
+  directory: "/"
+  schedule:
+    interval: weekly
+    time: "02:00"
+    timezone: America/New_York
+  open-pull-requests-limit: 99
+  labels:
+  - dependencies
+  - Needs QA
+  allow:
+  - dependency-type: direct
+  ignore:
+  - dependency-name: rubocop
+    versions:
+    - 1.9.1