From 6ae935b91bb273ff1c9568b26d7315149587ad6c Mon Sep 17 00:00:00 2001
From: brandon s allbery kf8nh <allbery.b@gmail.com>
Date: Wed, 21 Aug 2024 23:58:29 -0400
Subject: [PATCH] validate dependabot configuration

Borrowed from Ubuntu
(https://github.com/ubuntu/authd/commit/3f9df8f21d952cd33fd44d3834d0edeec1f5766f)

Sadly, this won't check our existing config unless I make a dummy
update.
---
 .github/dependabot.yml           |  1 +
 .github/workflows/dependabot.yml | 26 ++++++++++++++++++++++++++
 2 files changed, 27 insertions(+)
 create mode 100644 .github/workflows/dependabot.yml

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index b3b2315d909..b1c8bd9d9d8 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -13,3 +13,4 @@ updates:
     schedule:
       # Check for updates to GitHub Actions every week
       interval: "weekly"
+
diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml
new file mode 100644
index 00000000000..3edcf1f625b
--- /dev/null
+++ b/.github/workflows/dependabot.yml
@@ -0,0 +1,26 @@
+# copied from https://github.com/ubuntu/authd/commit/3f9df8f21d952cd33fd44d3834d0edeec1f5766f
+
+name: Dependabot rules validation
+
+permissions:
+  pull-requests: write
+
+on:
+  pull_request:
+    paths:
+      - '.github/dependabot.yml'
+
+jobs:
+  validate:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: marocchino/validate-dependabot@v3
+        id: validate
+
+      - uses: marocchino/sticky-pull-request-comment@v2
+        if: always()
+        with:
+          header: validate-dependabot
+          message: ${{ steps.validate.outputs.markdown }}