Dependabot takes a probabilistic approach to compatibility: how many other projects failed CI when upgrading? It's neat, but I wonder what the base rate for spurious CI failures is.