diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index ca868bfa..d387c941 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -13,6 +13,11 @@ updates:
         applies-to: security-updates
         patterns:
           - "*"
+    ignore:
+      # Remove this when Trunk uses v19 for Commitlint
+      - dependency-name: wagoid/commitlint-github-action
+        update-types:
+          - version-update:semver-major
   - package-ecosystem: gomod
     directory: /
     schedule:
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
index 81d26da8..618e03d1 100644
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -15,7 +15,7 @@ jobs:
       - uses: actions/checkout@v4
         with:
           fetch-depth: 0
-      - uses: wagoid/commitlint-github-action@v6
+      - uses: wagoid/commitlint-github-action@v5
   trunk:
     runs-on: ubuntu-latest
     permissions:
diff --git a/commitlint.config.mjs b/commitlint.config.js
similarity index 86%
rename from commitlint.config.mjs
rename to commitlint.config.js
index 791f3dcd..2ef25a15 100644
--- a/commitlint.config.mjs
+++ b/commitlint.config.js
@@ -1,4 +1,4 @@
-export default {
+module.exports = {
   extends: ["@commitlint/config-conventional"],
   ignores: [(msg) => /Signed-off-by: dependabot\[bot]/m.test(msg)],
 };