Review dependabot usage #18200
Description
Describe the feature request
We want to make sure that we are keeping our dependencies up-to-date, while minimising disruption / breaks.
Review our dependabot process, testing, and look at options that may be more appropriate for our needs: https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference