👷 Configure dependabot workflow

Signed-off-by: ff137 <[email protected]>

Author: ff137

.github/dependabot.yml

@@ -0,0 +1,19 @@
+# For details on how this file works refer to:
+#   - https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+version: 2
+updates:
+  # Maintain dependencies for GitHub Actions
+  #  - Check for updates once a week
+  #  - Group all updates into a single PR
+  - package-ecosystem: github-actions
+    directory: /
+    schedule:
+      interval: weekly
+    groups:
+      all-actions:
+        patterns: ["*"]
+
+  # Maintain pip dependencies
+  - package-ecosystem: pip
+    schedule:
+      interval: daily