From 4bd6a0a39f5e31b96ad8724b3b1bb6e199c42597 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 14 May 2026 01:58:55 +0000
Subject: [PATCH] revert: restore .github/dependabot.yml to previous version

---
 .github/dependabot.yml | 24 +++++++++++++++++++++++-
 1 file changed, 23 insertions(+), 1 deletion(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index cbcb8a5..665ccc6 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -27,4 +27,26 @@ updates:
       actions-security:
         applies-to: security-updates
         patterns:
-          - "*"
\ No newline at end of file
+          - "*"
+
+  # NPM dependencies (Hugo site and tooling)
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      # Monthly scheduled updates to balance freshness with maintenance effort; security updates can still be raised separately
+      interval: "monthly"
+    commit-message:
+      prefix: "chore(deps)"
+    versioning-strategy: increase-if-necessary
+    reviewers:
+      - "github/cse-intelligence-engine-squad"
+    # Group version and security updates separately.
+    groups:
+      npm-version:
+        applies-to: version-updates
+        patterns:
+          - "*"
+      npm-security:
+        applies-to: security-updates
+        patterns:
+          - "*"