Dependabot can be configured to ignore gradle upgrades: https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference#ignore--
