Dependabot for GitHub Actions
Dependabot creates pull requests to keep your GitHub Action references up-to-date.
Updating GitHub Action references is one of Dependabot's newest features and we're actively looking for beta testers. Alongside Dependabot's core features we already have support for:
Support for GitHub sources
Dependabot will update references in a workflow file that look like `uses: email@example.com`. In future it will also update references to Docker containers.
Custom branches and labels
By default, Dependabot will create PRs against your default branch and label them with "dependencies". Want to use a different branch or label? No problem.