From b65df861e85f6cc9f782a5cc97ea4ba21d101b5a Mon Sep 17 00:00:00 2001
From: Lucas Werkmeister <lucas.werkmeister@wikimedia.de>
Date: Tue, 14 Nov 2023 17:06:59 +0100
Subject: [PATCH 1/2] Add note about not updating lint-staged to README.md

Bug: T350664
---
 README.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/README.md b/README.md
index 3a224a49..cdbb1892 100644
--- a/README.md
+++ b/README.md
@@ -111,6 +111,9 @@ The following dependencies should be ignored:
 - Vue Test Utils (`@vue/test-utils`):
   Seems to require a newer Vue.js version (see [#492](https://github.com/wmde/new-lexeme-special-page/pull/492)),
   though it’s worth checking whether that’s still the case in newer VTU versions.
+- lint-staged:
+  [v15.0.0](https://github.com/lint-staged/lint-staged/releases/tag/v15.0.0) drops compatibility with Node 16,
+  which we still use in CI (see also “Prerequisites” above; Node 18 upgrade pending in [T331180](https://phabricator.wikimedia.org/T331180)).
 
 All other dependencies should generally be updated to the latest version.
 If you discover that a dependency should not be updated for some reason, please add it to the above list.

From a3f80bb702b28d3b4a66c7e3bf983e16e40b0921 Mon Sep 17 00:00:00 2001
From: Lucas Werkmeister <lucas.werkmeister@wikimedia.de>
Date: Wed, 15 Nov 2023 12:44:38 +0100
Subject: [PATCH 2/2] Add dependabot update hint to README.md
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Dependabot PRs are much easier to merge than custom PRs (don’t need a
separate second reviewer), so here’s how to create more of them. This
somewhat contradicts the previous paragraphs about grouping commits
together, but in my experience during recent chores, there are quite
many outdated packages that don’t really need to be grouped with
anything else, and where merging the dependabot PR is actually fine.

Bug: T350664
---
 README.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/README.md b/README.md
index cdbb1892..b0561360 100644
--- a/README.md
+++ b/README.md
@@ -133,6 +133,11 @@ For example, this can be one commit for each of:
 
 Make sure that all checks still pass for every commit.
 
+If you’re working with dependabot,
+and it ran into the limit of open pull requests or its PRs are otherwise outdated,
+you can trigger a new run at
+[Insights > Dependency graph > Dependabot](https://github.com/wmde/new-lexeme-special-page/network/updates) > Recent update jobs > Check for updates.
+
 Once all dependency updates are merged, update the submodule version in WikibaseLexeme (see below).
 
 ## Updating the submodule version in WikibaseLexeme