Add dependabot config to open PRs for security updates

asatwal · asatwal · commit db0d5cbd343e · 2026-03-31T17:42:16.000+01:00
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,21 @@
+version: 2
+updates:
+  - package-ecosystem: bundler
+    directories:
+      - "/"
+      - "/gemfiles"
+    schedule:
+      interval: weekly
+    open-pull-requests-limit: 5
+    labels:
+      - dependencies
+      - ruby
+  - package-ecosystem: github-actions
+    directory: "/"
+    schedule:
+      interval: weekly
+    open-pull-requests-limit: 5
+    labels:
+      - DevOps
+      - dependencies
+      - github_actions
