From aa72c0f387d9c7bff22b565efa56a64356156cbe Mon Sep 17 00:00:00 2001
From: StepSecurity Bot <bot@stepsecurity.io>
Date: Tue, 8 Jul 2025 14:41:41 +0000
Subject: [PATCH 1/2] [StepSecurity] Apply security best practices

Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
---
 .github/dependabot.yml  | 5 +++++
 .pre-commit-config.yaml | 4 ++++
 2 files changed, 9 insertions(+)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index a89a968a8c..4172cc1d73 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -8,3 +8,8 @@ updates:
     directory: /.github/
     schedule:
       interval: weekly
+
+  - package-ecosystem: pip
+    directory: /.github/workflows
+    schedule:
+      interval: daily
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index f517e8ae28..d109fecca0 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -16,3 +16,7 @@ repos:
   rev: v2.17.2
   hooks:
   - id: pylint
+- repo: https://github.com/jumanjihouse/pre-commit-hooks
+  rev: 3.0.0
+  hooks:
+  - id: shellcheck

From b1937d8fbaeef50e7f480a9a94d38f51eca7a26a Mon Sep 17 00:00:00 2001
From: berndgassmann <bernd.gassmann@intel.com>
Date: Tue, 8 Jul 2025 16:43:53 +0200
Subject: [PATCH 2/2] Update dependabot.yml

---
 .github/dependabot.yml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 4172cc1d73..a89a968a8c 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -8,8 +8,3 @@ updates:
     directory: /.github/
     schedule:
       interval: weekly
-
-  - package-ecosystem: pip
-    directory: /.github/workflows
-    schedule:
-      interval: daily