Report on difficulty of dependency upgrades

Problem to solve

https://help.github.com/en/github/managing-security-vulnerabilities/configuring-automated-security-updates#about-compatibility-scores

Intended users

Further details

Proposal

Permissions and Security

Documentation

Availability & Testing

What does success look like, and how can we measure that?

What is the type of buyer?

Links / references