From 72ace83bea4fc0a795db4521108fa3ed1ea8ef1a Mon Sep 17 00:00:00 2001
From: Daniel Banks_ONS <daniel.banks@ons.gov.uk>
Date: Wed, 14 Aug 2024 09:53:12 +0100
Subject: [PATCH] SDCSRM-582 Dependabot Fix Security Labels (#118)

---
 .github/dependabot.yml | 23 ++++++++++++++++++++---
 1 file changed, 20 insertions(+), 3 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 6f20aa9..0e86e74 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -14,6 +14,23 @@ updates:
     labels:
       - "patch"
       - "dependencies"
-    ignore:
-      - dependency-name: "*"
-        update-types: [ "version-update:semver-patch", "version-update:semver-minor", "version-update:semver-major" ]
+    open-pull-requests-limit: 0
+
+# Update GitHub actions in workflows
+  - package-ecosystem: github-actions
+    directory: /
+    # Every week
+    schedule:
+      interval: weekly
+
+    labels:
+      - "patch"
+      - "dependencies"
+
+    groups:
+      # Group updates into fewer pull requests
+      gh-security-updates:
+        applies-to: security-updates
+        patterns:
+          - "*"
+    open-pull-requests-limit: 0
\ No newline at end of file