feat(ci): Add GitHub Action to validate dependabot config

[mark-stopka]

• Add GitHub Action to validate dependabot.yml

[mark-stopka]

Following GitHub action has an issue https://github.com/marocchino/validate-dependabot/issues/233

[mark-stopka]

Issue is related to upstream https://github.com/dependabot/dependabot-core/issues/4605

[scarmuega]

the dependabot config is rarely updated, adding a whole new CI workflow for validating changes on that single file seems excessive.

Am I missing something? Do you foresee frequent changes in the dependabot config? If we do need some kind of validation, couldn't it be ran as part of existing linting step?

[mark-stopka]

It would indeed be part of an existing linting, however the GH Action that does that is currently broken, so I am just waiting for upstream to fix it, should not take long, the dev said "few weeks". So it would be just one more step after .editorconfig validation.