Delay dependabot updates by 5 days (#281)

erikdubbelboer · web-flow · commit 5c987cb10c77 · 2025-09-18T14:31:46.000+02:00
Wait 5 days to get updates. We hope supply chain attacks are detected
before these 5 days.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -8,6 +8,8 @@ updates:
       github-actions:
         patterns:
           - "*"
+    cooldown:
+      default-days: 5
   - package-ecosystem: "gomod"
     directory: "/"
     schedule:
@@ -16,6 +18,8 @@ updates:
       gomod:
         patterns:
           - "*"
+    cooldown:
+      default-days: 5
   - package-ecosystem: "docker"
     directory: "/"
     schedule:
@@ -24,6 +28,8 @@ updates:
       docker:
         patterns:
           - "*"
+    cooldown:
+      default-days: 5
   - package-ecosystem: "npm"
     directory: "/"
     schedule:
@@ -32,3 +38,5 @@ updates:
       npm:
         patterns:
           - "*"
+    cooldown:
+      default-days: 5
