From a82db57b46cbd8fec8f2e2c87eafa7bbf35f8d1a Mon Sep 17 00:00:00 2001
From: saptarshimandal1 <saptarshi.mandal1@nhs.net>
Date: Thu, 12 Feb 2026 17:08:30 +0000
Subject: [PATCH] Enabling auto merge for dependabot

---
 .github/dependabot.yml                      |  1 +
 .github/workflows/dependabot-auto-merge.yml | 22 +++++++++++++++++----
 2 files changed, 19 insertions(+), 4 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 1d08a57..165bef3 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,3 +1,4 @@
+# .github/dependabot.yml
 version: 2
 updates:
 
diff --git a/.github/workflows/dependabot-auto-merge.yml b/.github/workflows/dependabot-auto-merge.yml
index dc65f78..d845a23 100644
--- a/.github/workflows/dependabot-auto-merge.yml
+++ b/.github/workflows/dependabot-auto-merge.yml
@@ -9,22 +9,36 @@ permissions:
 
 jobs:
   dependabot:
+    name: Approve & auto-merge Dependabot PRs
     runs-on: ubuntu-latest
+
+    # Only run for PRs opened by Dependabot
     if: github.event.pull_request.user.login == 'dependabot[bot]'
+
     steps:
+      # 1) Fetch Dependabot metadata (pinned SHA + tag comment for humans/renovators)
       - name: Dependabot metadata
         id: metadata
-        uses: dependabot/fetch-metadata@21025c7d3b7c1eb5122b2f4f30b18d6c8b8c52df # v2.5.0
+        uses: dependabot/fetch-metadata@21025c7d3b7c1eb5122b2f4f30b18d6c8b8c52df
         with:
-          github-token: "${{ secrets.GITHUB_TOKEN }}"
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+
+      # 2) (Optional) Log what’s being updated for troubleshooting
+      - name: Summarize update
+        run: |
+          echo "Dependencies: ${{ steps.metadata.outputs.dependency-names }}"
+          echo "Update type:  ${{ steps.metadata.outputs.update-type }}"
 
-      - name: Approve PR
+      # 3) Approve the PR (required if code owner reviews are enforced)
+      - name: Approve Dependabot PR
         run: gh pr review --approve "$PR_URL"
         env:
           PR_URL: ${{ github.event.pull_request.html_url }}
           GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
-      - name: Enable auto-merge
+      # 4) Enable auto-merge for safe updates (patch + minor).
+      #    Adjust the condition if you want patch-only or include majors.
+      - name: Enable auto-merge (patch/minor)
         if: |
           steps.metadata.outputs.update-type == 'version-update:semver-patch' ||
           steps.metadata.outputs.update-type == 'version-update:semver-minor'