Get the latest tech news
Turn Dependabot off
I recommend turning Dependabot off and replacing it with a pair of scheduled GitHub Actions, one running govulncheck, and the other running CI against the latest version of your dependencies.
None
Or read this on Hacker News

