From 8bcfe99f65c2035df2fc925236804d1231e9137f Mon Sep 17 00:00:00 2001
From: Dasun Pubudumal <dp27@sanger.ac.uk>
Date: Mon, 2 Jun 2025 15:38:56 +0100
Subject: [PATCH] Update dependabot.yml

---
 .github/dependabot.yml | 48 ++++++++++++++++++++++++++++++++++++------
 1 file changed, 41 insertions(+), 7 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index fe40530..5769cd9 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,9 +1,43 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
 version: 2
 updates:
-- package-ecosystem: pip
-  directory: "/"
-  schedule:
-    interval: daily
-    time: "07:00"
-    timezone: Europe/London
-  open-pull-requests-limit: 10
+  - package-ecosystem: pip
+    directory: "/"
+    schedule:
+      interval: daily
+      time: "07:00"
+      timezone: Europe/London
+    open-pull-requests-limit: 10
+    labels:
+      - "dependencies"
+      - "Technical Debt"
+      - "python"
+  - package-ecosystem: pip
+    directory: "/examples"
+    schedule:
+      interval: daily
+      time: "07:00"
+      timezone: Europe/London
+    open-pull-requests-limit: 10
+    labels:
+      - "dependencies"
+      - "Technical Debt"
+      - "python"
+      - "python"
+  - package-ecosystem: "pip"
+    directory: "/"
+    schedule:
+      interval: daily
+      time: "07:00"
+      timezone: Europe/London
+    labels:
+      - "Security Updates"
+      - "Technical Debt"
+      - "python"
+    allow:
+      - dependency-type: "direct"
+    # Only security updates
+    security-updates-only: true