Only suggest updates that have been out for a week

This makes Dependabot not suggest dependency updates until those
dependencies have been out for at least eight days. Hopefully in
that time, potential (security) issues have been found and fixed
either by automated scanners, or projects with faster dependency
updates.

Author: Vinnl

.github/dependabot.yml

@@ -7,10 +7,14 @@ updates:
     directory: "/"
     schedule:
       interval: "weekly"
+    cooldown:
+      default-days: 8
   - package-ecosystem: "npm"
     directory: "/"
     schedule:
       interval: "weekly"
+    cooldown:
+      default-days: 8
     open-pull-requests-limit: 10
     groups:
       eslint:
@@ -68,6 +72,8 @@ updates:
     directory: "/"
     schedule:
       interval: "weekly"
+    cooldown:
+      default-days: 8
     allow:
       - dependency-type: "all"
     ignore: