Recommend Renovate as an alternative to dependabot

[paddyroddy]

I think it should be viable to have Renovate or dependabot to manage updates. If you aren't aware it's a highly configurable dependency manager https://docs.renovatebot.com.

[henryiii]

I'd be fine to mention it as well as update the checks to detect it, but am not familiar enough with it to do so yet. Pointers/suggestions welcome.

[paddyroddy]

I have a short talk on it, https://paddyroddy.github.io/talks/renovate-automating-dependency-management. Here are some example parent configs I maintain: https://github.com/paddyroddy/.github/blob/main/renovate/default-config.json5, https://github.com/UCL-ARC/.github/blob/main/renovate/default-config.json. It's just very powerful, and can debug easily with https://developer.mend.io. I've contributed too, and the maintainers are helpful/response. I'm not affiliated by the way.

[lucascolley]

also dropping https://github.com/data-apis/array-api-extra/blob/main/renovate.json in case it is helpful. Checking for the existence of renovate.json (or one of the other standard config locations) would probably be sufficient for GH200. GH212 and GH210 are handled by the default renovate config, I think.

[henryiii]

Existence checking is easy. "one of the other standard config locations" doesn't tell me much, though. ;)

[lucascolley]

https://docs.renovatebot.com/configuration-options/#configuration-options