Skills

fix-dependabot

Installation
SKILL.md

Dependabot PRs only update one package.json and never run bun install, so the bun.lock file is out of date and other packages in the monorepo still reference the old version. This skill fixes both problems.

Steps

  1. Get PR info — Use gh pr view <number> --json headRefName,files,title,body to identify the branch name, which dependency was bumped, and the old/new versions.

  2. Checkout the branch:

git fetch origin <branch>
git checkout <branch>
  1. Update all monorepo instances — Dependabot only touches one package. Search for all other package.json files that reference the same dependency at the old version and update them too:
rg '"<dependency>": "[~^]?<old-version>"' --glob '**/package.json'
Installs
444
Repository
remotion-dev/remotion
GitHub Stars
51.3K
First Seen
Apr 20, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykWarn
fix-dependabot — remotion-dev/remotion