configure dependabot automerge

Author: swa-ds

.github/dependabot.yml

@@ -12,11 +12,3 @@ updates:
     ignore:
       - dependency-name: "*"
         update-types: ["version-update:semver-major"]
-    groups:
-       # Specify a name for the group, which will be used in pull request titles
-       # and branch names
-       dev-dependencies:
-          # Define patterns to include dependencies in the group (based on
-          # dependency name)
-          patterns:
-            - "*"

.github/workflows/maven.yml

@@ -14,6 +14,10 @@ on:
   pull_request:
     branches: [ "master" ]
 
+permissions:
+  contents: write
+  pull-requests: write
+
 jobs:
   build:
 
@@ -30,3 +34,17 @@ jobs:
     - name: Build with Maven
       run: mvn -B -V package
 
+    - name: Approve Dependabot PRs
+      if: github.actor == 'dependabot[bot]'
+      run: gh pr review --approve "$PR_URL"
+      env:
+        PR_URL: ${{github.event.pull_request.html_url}}
+        GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
+
+    - name: Enable auto-merge for Dependabot PRs
+      if: github.actor == 'dependabot[bot]'
+      run: gh pr merge --auto --merge "$PR_URL"
+      env:
+        PR_URL: ${{github.event.pull_request.html_url}}
+        GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
+