From 2c28d64977edf98359d245d9eb9b41aaa8a55a9a Mon Sep 17 00:00:00 2001
From: StepSecurity Bot <bot@stepsecurity.io>
Date: Tue, 6 Jun 2023 14:10:51 +0000
Subject: [PATCH 1/2] [StepSecurity] Apply security best practices

resolve: #112

Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
---
 .github/dependabot.yml | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 .github/dependabot.yml

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..6dd15c8
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,11 @@
+version: 2
+updates:
+  - package-ecosystem: maven
+    directory: /api
+    schedule:
+      interval: daily
+
+  - package-ecosystem: maven
+    directory: /spec
+    schedule:
+      interval: daily

From 288f1a7a028e99203b2d14cfa9cc729b1c09ba9e Mon Sep 17 00:00:00 2001
From: Francisco Perez <francisco.perez@eclipse-foundation.org>
Date: Tue, 6 Jun 2023 16:44:36 +0200
Subject: [PATCH 2/2] Adding comment header section resolve: #112

---
 .github/dependabot.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 6dd15c8..9ef9e51 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,3 +1,16 @@
+#
+# Copyright (c) 2021, 2022 Contributors to the Eclipse Foundation
+#
+# This program and the accompanying materials are made available under the
+# terms of the Eclipse Public License v. 2.0 which is available at
+# http://www.eclipse.org/legal/epl-2.0,
+# or the Eclipse Distribution License v. 1.0 which is available at
+# http://www.eclipse.org/org/documents/edl-v10.php.
+#
+# SPDX-License-Identifier: EPL-2.0 OR BSD-3-Clause
+#
+
+
 version: 2
 updates:
   - package-ecosystem: maven