Merge pull request #146 from Staffbase/ci-1108/add-dependabot-cooldown

CI-1108: Add Dependabot cooldown to mitigate supply-chain attacks

Author: maximizeIT

.github/dependabot.yml

@@ -6,6 +6,8 @@ updates:
       interval: "daily"
       time: "08:00"
       timezone: "Europe/Berlin"
+    cooldown:
+      default-days: 7
     target-branch: "main"
     open-pull-requests-limit: 10
     labels:
@@ -28,6 +30,8 @@ updates:
       interval: "daily"
       time: "08:00"
       timezone: "Europe/Berlin"
+    cooldown:
+      default-days: 7
     target-branch: "main"
     open-pull-requests-limit: 10
     labels: