From 864cde4e3279e6105baec7332353c917cd5503bd Mon Sep 17 00:00:00 2001
From: Steel Wagstaff <steel@pressbooks.com>
Date: Mon, 31 Oct 2022 16:39:05 -0700
Subject: [PATCH] Add dependabot config for GA

Add dependabot config for GitHub Actions and check weekly
---
 .github/dependabot.yml | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 2007095..c62eb3c 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -4,9 +4,9 @@ updates:
   - package-ecosystem: "npm"
     # Look for `package.json` and `package-lock.json` files in the root directory
     directory: "/"
-    # Check for updates daily
+    # Check for updates weekly
     schedule:
-      interval: "daily"
+      interval: "weekly"
     allow:
       # Allow direct updates only (for packages named in package.json)
       - dependency-type: "direct"
@@ -17,11 +17,19 @@ updates:
   - package-ecosystem: "composer"
     # Look for `composer.json` and `composer.lock` files in the root directory
     directory: "/"
-    # Check for updates daily
+    # Check for updates weekly
     schedule:
-      interval: "daily"
+      interval: "weekly"
     allow:
       # Allow direct updates only (for packages named in composer.json)
       - dependency-type: "direct"
     # Allow up to 10 open pull requests for composer dependencies
     open-pull-requests-limit: 10
+
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    allow:
+      - dependency-type: "direct"
+    open-pull-requests-limit: 10