github: add a dependabot config

This was another security recommendation for projects by Google employees.
2022-03-16 20:44:00 -07:00 · 2022-03-16 20:44:00 -07:00 · 8b6932f837
commit 8b6932f837
parent b5659ec680
1 changed files with 16 additions and 0 deletions
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@ -0,0 +1,16 @@
+version: 2
+updates:
+- package-ecosystem: "cargo"
+  directory: "/"
+  schedule:
+    interval: "daily"
+  open-pull-requests-limit: 10
+  commit-message:
+    prefix: "cargo:"
+- package-ecosystem: "github-actions"
+  directory: "/"
+  schedule:
+    interval: "daily"
+  open-pull-requests-limit: 10
+  commit-message:
+    prefix: "github:"