Added Dependbot yml file for auto scan packages and raised the PR

Signed-off-by: DeepakNemad <deepak.nemade@ayanworks.com>

Author: DeepakNemad

.github/workflows/dependabot.yml

@@ -0,0 +1,23 @@
+# .github/dependabot.yml
+
+version: 2
+
+updates:
+  # 1) Update GitHub Actions used in workflows (.github/workflows/*.yml)
+  - package-ecosystem: "github-actions"
+    directory: "/"              # Looks in .github/workflows/**/*.yml
+    schedule:
+      interval: "weekly"
+      day: "monday"             # Run every Monday
+    open-pull-requests-limit: 10
+
+  # 2) Update Yarn dependencies (yarn.lock + package.json)
+  - package-ecosystem: "yarn"
+    directory: "/"              # Or "/client" if your package.json is inside a subfolder
+    schedule:
+      interval: "weekly"
+      day: "monday"             # Run every Monday
+      time: "09:00"             # Optional: set specific time
+      timezone: "Asia/Kolkata"  # Optional: your timezone
+    open-pull-requests-limit: 20
+    target-branch: "main"       # Branch to target