kbukum1

The issue has been reproduced internally and are currently analyzing the cause between the package manager and Dependabot.

The issue regarding lower bound is fixed. As mentioned in the [document ](https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file). The minimum version is going to be increased to match the new version.

> pologies to raise this issue so late. Thank @sanderr . I am looking into the widening issue as well. I am planing to come up a sollution for widening...

@sanderr , Sorry for late reply. I found a issue that will effect other strategies. Going to create changes for that. Reopening the issue and going to apply the changes.

@deivid-rodriguez, @sanderr, I have created a Draft PR to ensure the changes apply only to the increase strategy. I would appreciate it if you could review it: [Draft PR #10154](https://github.com/dependabot/dependabot-core/pull/10154).

@dependabot recreate