Automated Dependency Security Monitoring with Dependabot

[coderabbitai]

🔒 Dependency Vulnerability Management

Description

Configure Dependabot to automatically monitor and update dependencies, improving the project's security posture with minimal effort.

Tasks

• Create .github/dependabot.yml configuration file
• Set up weekly dependency update schedule
• Configure security-only alerts
• Auto-label dependency PRs (e.g., dependencies, security)
• Document the dependency update policy in CONTRIBUTING.md or SECURITY.md

Difficulty: 🟢 Easy / Beginner-Friendly

Labels: security easy beginner SSoC26

This is one of the fastest ways to improve the project's security posture and a great first issue for new contributors!

[rach-kanc]

i would also like to take this issue under Ssoc'26. could you please assign is to me?