diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 00000000..24615639
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,18 @@
+version: 2
+updates:
+  # disable checking python requirements files because there are too
+  # many updates and dependabot will not ignore requirements-min.txt
+  # until https://github.com/dependabot/dependabot-core/issues/2883 is resolved
+  # workaround is to continue updating these files manually
+
+  # - package-ecosystem: "pip"
+  #   directory: "/"
+  #   schedule:
+  #     # Check for updates to requirements files and pyproject.toml every week
+  #     interval: "weekly"
+
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      # Check for updates to GitHub Actions every week
+      interval: "weekly"