Add Dependabot config for weekly npm and Actions updates

[ejntaylor]

Summary

• Adds .github/dependabot.yml modeled on the hub repo's setup
• Weekly npm checks at / and weekly github-actions checks at /
• Groups minor/patch bumps into a single PR (non-major group); labels dependencies + frontend/ci
• Ignores routine major version bumps; Dependabot security updates still bypass this rule, so vulnerability-driven majors will come through

Test plan

• Once merged to main, confirm Dependabot runs on schedule (Insights → Dependency graph → Dependabot)
• Verify first PR batch is grouped as non-major and labeled correctly
• Confirm no standalone major-version PRs appear for routine releases

🤖 Generated with Claude Code

[ejntaylor]

/review

[netlify]

✅ Deploy Preview for deluxe-meerkat-8daf24 ready!

Name	Link
🔨 Latest commit	8e99bfd
🔍 Latest deploy log	https://app.netlify.com/projects/deluxe-meerkat-8daf24/deploys/69e9fd2d335b350008e23387
😎 Deploy Preview	https://deploy-preview-28--deluxe-meerkat-8daf24.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[ejntaylor]

/review

[coderbuds]

Add Dependabot config for weekly npm and GitHub Actions updates.

🎯 Quality: 94% Elite · 📦 Size: Small

📈 This month: Your 92nd PR — above team average · Averaging Excellent

_{See how your team is trending →}