diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index f2f3ac52e..ce15ee090 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -8,75 +8,127 @@ updates:
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+
   - package-ecosystem: "gradle"
     target-branch: "master"
     directory: "/g11n-ws/vip-manager-lite-i18n/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "gradle"
     target-branch: "master"
     directory: "/g11n-ws/vip-manager-l10n/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "npm"
     target-branch: "g11n-angular-client"
     directory: "/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "gradle"
     target-branch: "g11n-cldr-pattern"
     directory: "/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "nuget"
     target-branch: "g11n-csharp-client"
     directory: "/singletonclient"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "gomod"
     target-branch: "g11n-go-client"
     directory: "/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "gomod"
     target-branch: "g11n-go-service"
     directory: "/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "gradle"
     target-branch: "g11n-java-client"
     directory: "/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "npm"
     target-branch: "g11n-js-client"
     directory: "/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "npm"
     target-branch: "g11n-js-sdk"
     directory: "/"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "pip"
     target-branch: "g11n-python-client"
     directory: "/sgtn4python"
     schedule:
       interval: "weekly"
       day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
   - package-ecosystem: "bundler"
     target-branch: "g11n-ruby-client"
     directory: "/"
     schedule:
       interval: "weekly"
-      day: "monday"
\ No newline at end of file
+      day: "monday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch"]
+        
\ No newline at end of file
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 96a038ed3..2e8ace4b2 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -1,5 +1,6 @@
 name: main
 on: [pull_request, push]
+
 jobs:
   pre-process:
     name: Pre process
@@ -19,6 +20,7 @@ jobs:
         uses: ./.github/actions/were-only-docs-updated-action
         with:
           commit-range: ${{ steps.get-commit-range-action.outputs.commit-range }}
+
   check-header:
     name: Check Header
     runs-on: ubuntu-latest
@@ -40,6 +42,7 @@ jobs:
           git diff ${{ steps.get-commit-range-action.outputs.commit-range }} --stat
           git diff --name-only --diff-filter=d ${{ steps.get-commit-range-action.outputs.commit-range }}
           python ./check_headers.py -f "$(git diff --name-only --diff-filter=d ${{ steps.get-commit-range-action.outputs.commit-range }})"
+
   unit-test:
     name: Unit Test
     runs-on: ubuntu-latest
@@ -72,6 +75,7 @@ jobs:
         with:
           files: ./g11n-ws/vip-manager-lite-i18n/build/reports/jacoco.xml
           flags: vip-manager-lite-i18n
+
   security-analysis:
     name: Security Analysis
     runs-on: ubuntu-latest
@@ -90,13 +94,12 @@ jobs:
           distribution: 'adopt'
           java-version: '17'
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v1
+        uses: github/codeql-action/init@v2
       - name: Autobuild
-        uses: github/codeql-action/autobuild@v1
+        uses: github/codeql-action/autobuild@v2
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v1
+        uses: github/codeql-action/analyze@v2
 
-  
   codacy-analysis-cli:
     name: Codacy Analysis CLI
     runs-on: ubuntu-latest
@@ -108,12 +111,8 @@ jobs:
         with:
           output: results.sarif
           format: sarif
-          # Adjust severity of non-security issues
           gh-code-scanning-compat: true
-          # Force 0 exit code to allow SARIF file generation
-          # This will handover control about PR rejection to the GitHub side
           max-allowed-issues: 2147483647  
-      # Upload the SARIF file generated in the previous step  
       - name: Upload SARIF results file
         uses: github/codeql-action/upload-sarif@main
         with: