diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 000000000..b8f2648f3
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,33 @@
+# See help here: https://docs.github.com/en/free-pro-team@latest/github/administering-a-repository/enabling-and-disabling-version-updates
+
+version: 2
+updates:
+  #
+  # Python dependencies
+  #
+  - package-ecosystem: pip
+    directory: "/"
+    schedule:
+      interval: "daily"
+      time: "09:00"
+      timezone: "Europe/Dublin"
+    open-pull-requests-limit: 3
+    assignees:
+      - "apaniukov"
+      - "mryzhov"
+    versioning-strategy: increase-if-necessary
+
+  #
+  # Github actions - CI
+  #
+  - package-ecosystem: github-actions
+    directory: "/"
+    schedule:
+      interval: "daily"
+      time: "09:00"
+      timezone: "Europe/Dublin"
+    assignees:
+      - "apaniukov"
+      - "mryzhov"
+      - "ilya-lavrenov"
+    open-pull-requests-limit: 3
diff --git a/.github/workflows/sdl.yml b/.github/workflows/sdl.yml
index 650575251..2d65a2567 100644
--- a/.github/workflows/sdl.yml
+++ b/.github/workflows/sdl.yml
@@ -54,6 +54,7 @@ jobs:
           scan-ref: '.'
 
       - name: Dependency Review
+        if: ${{ github.event_name == 'pull_request' }}
         uses: actions/dependency-review-action@v4
         with:
           config-file: './.github/dependency_review.yml'