From 6405a6acaf0dd168f787ad8576f13ad14e769172 Mon Sep 17 00:00:00 2001
From: yoanm <4410697+yoanm@users.noreply.github.com>
Date: Fri, 23 Aug 2024 21:09:44 +0200
Subject: [PATCH] Create dependabot.yml

---
 .github/dependabot.yml | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 .github/dependabot.yml

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..f77e711
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,27 @@
+version: 2
+updates:
+#
+#
+# [GHAction]
+# Based on https://github.com/yoanm/shared-config/blob/master/GitHub/dependabot/github-action.yml file
+#
+  - package-ecosystem: github-actions
+    directory: /
+    schedule:
+      interval: weekly
+      day: sunday # Create PRs during week-ends, they will be ready on monday morning
+    commit-message:
+      prefix: '[dependabot][ghaction] - ' # No need to specify prod/dev for GHAction as there is only "production" updates !
+      include: scope
+    groups:
+# Group all basic updates inside the a single PR
+# No need to split prod/dev as there is only prod updates
+      all-actions:
+        applies-to: version-updates
+        patterns: ['*']
+# Group all security updates inside the a single PR
+# No need to split prod/dev as there is only prod updates
+# +Most likely no need to split major and other updates either
+      SECURITY-all:
+        applies-to: security-updates
+        patterns: ['*']