Update Dependabot Setup

[wangerekaharun]

User description

Story: https://app.shortcut.com/smileid/story/15609

Summary

Setup Dependabot

Known Issues

Any shortcomings in your work. This may include corner cases not correctly handled or issues related
to but not within the scope of your PR. Design compromises should be discussed here if they were not
already discussed above.

Test Instructions

Concise test instructions on how to verify that your feature works as intended. This should include
changes to the development environment (if applicable) and all commands needed to run your work.

Screenshot

If applicable (e.g. UI changes), add screenshots to help explain your work.

---

PR Type

Other

---

Description

• Consolidate Dependabot configuration into single YAML file
• Add Gradle package ecosystem with Android plugin grouping
• Standardize timezone and schedule formatting across ecosystems
• Remove duplicate pub ecosystem configuration file

---

Changes walkthrough 📝

Relevant files

Configuration changes

dependabot.yaml Remove duplicate Dependabot configuration file                      .github/dependabot.yaml • Remove entire file containing pub package ecosystem configuration +0/-9      dependabot.yml Enhance Dependabot with multiple package ecosystems            .github/dependabot.yml • Add comprehensive header comment with documentation link • Standardize GitHub Actions configuration with timezone and time • Add pub package ecosystem with weekly schedule • Add Gradle ecosystem with Android plugin grouping +32/-10

---

Need help?

Type /help how to ... in the comments thread for any questions about PR-Agent usage.

Check out the documentation for more information.

[prfectionist]

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

⏱️ Estimated effort to review: 2 🔵🔵⚪⚪⚪

🧪 No relevant tests

🔒 No security concerns identified

⚡ Recommended focus areas for review Configuration Issue The pub ecosystem configuration lacks grouping while gradle has grouping for Android plugins. Consider if pub dependencies should also be grouped for better PR management. - package-ecosystem: "pub" directory: "/" schedule: interval: "weekly" time: "10:00" timezone: "America/Los_Angeles" Incomplete Config The gradle AGP group configuration appears incomplete - it defines the group but doesn't specify update patterns for other gradle dependencies outside the Android plugin group. groups: # https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#groups # Group updates together, so that they are all applied in a single PR. agp: # We often want to hold off on AGP updates, so bump this separately patterns: - "com.android.*"

[prfectionist]

PR Code Suggestions ✨

No code suggestions found for the PR.