fix: update dependabot.yml to add applies-to (#345)

I am not sure how exclude-patterns works with group. But it seems `applies-to: "security-updates"` seems to work from this example 

https://github.com/hashicorp/golang-lru/blob/1ecdc13547b564bf736db9161ed89f1864010108/.github/dependabot.yml#L19-L36

Author: shenxianpeng

.github/dependabot.yml

@@ -27,9 +27,7 @@ updates:
           - "mypy"
           - "pre-commit"
           - "ruff"
-        update-types:
-          - "major"
-          - "minor"
+        applies-to: "security-updates"
       docs:
         patterns:
           - "mkdocs-gen-files"
@@ -38,6 +36,4 @@ updates:
           - "mkdocs-material"
           - "mkdocs"
           - "pyyaml"
-        update-types:
-          - "major"
-          - "minor"
+        applies-to: "security-updates"