diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 6c5049e2..2e5499a6 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -8,3 +8,28 @@ updates:
       github-actions:
         patterns:
           - "*"
+  - package-ecosystem: gomod
+    directory: /
+    schedule:
+      interval: weekly
+    allow:
+      - dependency-type: all
+    ignore:
+      - dependency-name: "k8s.io/*"
+        update-types:
+          - version-update:semver-major
+          - version-update:semver-minor
+      - dependency-name: "*.k8s.io/*"
+        update-types:
+          - version-update:semver-major
+          - version-update:semver-minor
+    groups:
+      gomod-k8s.io:
+        patterns:
+          - "k8s.io/*"
+          - "*.k8s.io/*"
+        update-types:
+          - patch
+      gomod:
+        patterns:
+          - "*"
diff --git a/build/common/Makefile.common.mk b/build/common/Makefile.common.mk
index 1b0491c8..d0cb3cd4 100755
--- a/build/common/Makefile.common.mk
+++ b/build/common/Makefile.common.mk
@@ -13,7 +13,7 @@ GOFUMPT_VERSION := v0.9.1
 # https://github.com/daixiang0/gci/releases/latest
 GCI_VERSION := v0.13.7
 # https://github.com/securego/gosec/releases/latest
-GOSEC_VERSION := v2.22.9
+GOSEC_VERSION := v2.22.10
 # https://github.com/kubernetes-sigs/kubebuilder/releases/latest
 KBVERSION := 4.9.0
 # https://github.com/alexfalkowski/gocovmerge/releases/latest