From 7037c4575fdfa4a2abcefd06f576327cc8237e53 Mon Sep 17 00:00:00 2001
From: a9s-concourse <concourse@anynines.com>
Date: Mon, 27 Nov 2023 12:37:00 +0000
Subject: [PATCH] update dependabot.yml

---
 .github/dependabot.yml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 9bea451..fb2c723 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -3,7 +3,8 @@ updates:
   - package-ecosystem: "bundler"
     vendor: true
     directory: "/"
-    open-pull-requests-limit: 5
+    # Disable version updates, only security updates
+    open-pull-requests-limit: 0
     schedule:
       interval: weekly
       time: "04:00"
@@ -11,6 +12,8 @@ updates:
       timezone: "Europe/Berlin"
     labels:
       - "unit-test"
+      - "cve"
+      - "dependabot"
     groups:
       all_dependencies:
         patterns: