From a8dded40d34fe068e98706b9f6fdc5aa9dade781 Mon Sep 17 00:00:00 2001
From: skye rogers <skyero@amazon.com>
Date: Mon, 24 Mar 2025 09:52:25 -0700
Subject: [PATCH] added required properties of package-ecosystem and
 schedule.interval

---
 .github/dependabot.yml | 45 +++++++++++++++++++++++-------------------
 1 file changed, 25 insertions(+), 20 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 6602e87d..e46f33d8 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -30,27 +30,32 @@ updates:
     schedule:
       interval: "weekly"
 
-  #Dependabot auto-merge PRs for patch/minor versions that are related to critical vulnerabilities
-  - name: Dependabot auto-merge
+  #Dependabot auto-merge PRs for patch/minor versions that are related to critical vulnerabilities (maven)
+  - package-ecosystem: "maven"
+    directory: "/"
+    target-branch: "master"
+    schedule:
+      interval: "daily"
+    name: Dependabot auto-merge
     on: pull_request
     permissions:
       pull-requests: write
       contents: write
-    jobs:
-      dependabot:
-        runs-on: ubuntu-latest #needed?
-        if: github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == 'owner/my_repo' #edit?
-        steps:
-          - name: Fetch Dependabot metadata
-            id: dependabot-metadata
-            uses: dependabot/fetch-metadata@v2
-            with:
-              alert-lookup: true
-              github-token: "${{ secrets.PAT_TOKEN }}"
-          - name: Enable auto-merge for security critical Dependabot PRs
-            #if: ${{contains(steps.dependabot-metadata.outputs.dependency-names, 'rails') && steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch'}}
-            if: steps.dependabot-metadata.outputs.cvss != '0'
-            run: gh pr merge --auto --merge "$PR_URL"
-            env:
-              PR_URL: ${{github.event.pull_request.html_url}}
-              GH_TOKEN: ${{secrets.GITHUB_TOKEN}}
\ No newline at end of file
+      jobs:
+        dependabot:
+          runs-on: ubuntu-latest #needed?
+          if: github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == 'owner/my_repo' #edit?
+          steps:
+            - name: Fetch Dependabot metadata
+              id: dependabot-metadata
+              uses: dependabot/fetch-metadata@v2
+              with:
+                alert-lookup: true
+                github-token: "${{ secrets.PAT_TOKEN }}"
+            - name: Enable auto-merge for security critical Dependabot PRs
+              #if: ${{contains(steps.dependabot-metadata.outputs.dependency-names, 'rails') && steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch'}}
+              if: steps.dependabot-metadata.outputs.cvss != '0'
+              run: gh pr merge --auto --merge "$PR_URL"
+              env:
+                PR_URL: ${{github.event.pull_request.html_url}}
+                GH_TOKEN: ${{secrets.GITHUB_TOKEN}}