From bbee8fe4f4330512a68d0cb72044a59725fb1078 Mon Sep 17 00:00:00 2001
From: Andy Kenward <andy@unlike.dev>
Date: Tue, 16 Sep 2025 18:27:26 +0000
Subject: [PATCH 1/2] ci: codeql actions

---
 .github/workflows/codeql.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index f0f810e4..846e69e1 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -19,7 +19,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: ['javascript-typescript']
+        language: ['javascript-typescript', 'actions']
     steps:
       - name: Checkout repository
         uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #v5.0.0

From fd2c7ad5e8dba286875f0ce86bd7d6c245a112fc Mon Sep 17 00:00:00 2001
From: Andy Kenward <andy@unlike.dev>
Date: Tue, 16 Sep 2025 18:30:39 +0000
Subject: [PATCH 2/2] ci: delete dependabot-meta

---
 .github/workflows/dependabot-meta.yml | 20 --------------------
 1 file changed, 20 deletions(-)
 delete mode 100644 .github/workflows/dependabot-meta.yml

diff --git a/.github/workflows/dependabot-meta.yml b/.github/workflows/dependabot-meta.yml
deleted file mode 100644
index 2c4b19b2..00000000
--- a/.github/workflows/dependabot-meta.yml
+++ /dev/null
@@ -1,20 +0,0 @@
-# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
-
-name: Dependabot fetch metadata
-on: pull_request_target
-jobs:
-  dependabot:
-    permissions:
-      pull-requests: write
-      issues: write
-      repository-projects: write
-    runs-on: ubuntu-latest
-    if: github.actor == 'dependabot[bot]'
-    steps:
-      - name: Dependabot metadata
-        id: metadata
-        uses: dependabot/fetch-metadata@08eff52bf64351f401fb50d4972fa95b9f2c2d1b #v2.4.0
-        with:
-          alert-lookup: true
-          compat-lookup: true
-          github-token: '${{ secrets.GITHUB_TOKEN }}'