This PR adds a baseline configuration file for Dependabot to setup both interval to daily (as starting point) and reviewers to timberwolf (as policy maintainers).
Why was this change made?
As part of our switch to Dependabot we have enabled it in the repo.It gives us vulnerability detection and remediation however PRs are not assigned so could be missed.
How did you validate the change?
Validated with another repo but it would be needed to validate the whole flow once merged
Part of https://github.com/weaveworks/corp/issues/3627
What changed?
This PR adds a baseline configuration file for Dependabot to setup both interval to daily (as starting point) and reviewers to timberwolf (as policy maintainers).
Why was this change made?
As part of our switch to Dependabot we have enabled it in the repo.It gives us vulnerability detection and remediation however PRs are not assigned so could be missed.
How did you validate the change? Validated with another repo but it would be needed to validate the whole flow once merged
Release notes
Using dependabot for vulnerability management
Documentation Changes
Not required