.github/dependabot.yml - tomcat-maven-plugin - Git at Google

 # To get started with Dependabot version updates, you'll need to specify which
 # package ecosystems to update and where the package manifests are located.
 # Please see the documentation for all configuration options:
 # https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file

 version: 2
 updates:
   - package-ecosystem: "maven"
     directory: "/" # Location of package manifests
     # Disable scanning of archetype POMs for now
     # Hopefully fixed by https://github.com/dependabot/dependabot-core/issues/13988
     exclude-paths:
       - "**/archetype-resources/**"
     schedule:
       interval: "weekly"
 # Disable chekcing GitHub actions until we have some
 #  - package-ecosystem: "github-actions"
 #    directory: "/"
 #    schedule:
 #      # Check for updates to GitHub Actions every week
 #      interval: "weekly"
	# To get started with Dependabot version updates, you'll need to specify which
	# package ecosystems to update and where the package manifests are located.
	# Please see the documentation for all configuration options:
	# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file

	version: 2
	updates:
	- package-ecosystem: "maven"
	directory: "/" # Location of package manifests
	# Disable scanning of archetype POMs for now
	# Hopefully fixed by https://github.com/dependabot/dependabot-core/issues/13988
	exclude-paths:
	- "/archetype-resources/"
	schedule:
	interval: "weekly"
	# Disable chekcing GitHub actions until we have some
	# - package-ecosystem: "github-actions"
	# directory: "/"
	# schedule:
	# # Check for updates to GitHub Actions every week
	# interval: "weekly"