Context: I know some updates are needed to the GHA workflows due to new major releases of action runners. May as well set up Dependabot now to get those updates in (which automatically tests the config).
This commit adds an initial Dependabot configuration to:
Submit pull requests for security updates and version updates for GH Action runner dependencies.
At a later point in time, we could consider enabling it for Composer dependencies as well.
The configuration has been set up to:
Run weekly (for now).
Submit a maximum of 5 pull requests at a time. If additional pull requests are needed, these will subsequently be submitted the next time Dependabot runs after one or more of the open pull requests have been merged.
The commit messages for PRs submitted by Dependabot will be prefixed according the unofficial conventions used in this repo up to now.
Context: I know some updates are needed to the GHA workflows due to new major releases of action runners. May as well set up Dependabot now to get those updates in (which automatically tests the config).
This commit adds an initial Dependabot configuration to:
At a later point in time, we could consider enabling it for Composer dependencies as well.
The configuration has been set up to:
Refs: