diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index c11f1d976..6c651bfb5 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,72 +1,83 @@
 version: 2
 updates:
+  - package-ecosystem: gradle
+    directory: "/"
+    schedule:
+      interval: weekly
+      time: "10:00"
+      timezone: Europe/London
+    open-pull-requests-limit: 10
+    labels:
+      - "type/dependencies"
+      - "scope/backend"
+    groups:
+      spring-boot-dependencies:
+        patterns:
+          - "org.springframework.boot:*"
+          - "io.spring.dependency-management"
+        # We will handle major upgrades manually
+        update-types:
+          - "patch"
+          - "minor"
+      confluent-minor-patch-dependencies:
+        patterns:
+          - "io.confluent:*"
+          - "org.apache.kafka:*"
+        update-types:
+          - "patch"
+          - "minor"
+      confluent-major-upgrade:
+        patterns:
+          - "io.confluent:*"
+          - "org.apache.kafka:*"
+        update-types:
+          - "major"
+      other-dependencies:
+        patterns:
+          - "*"
+        update-types:
+          - "patch"
+          - "minor"
+  - package-ecosystem: docker
+    directory: "/api"
+    schedule:
+      interval: weekly
+      time: "10:00"
+      timezone: Europe/London
+    open-pull-requests-limit: 10
+    ignore:
+      - dependency-name: "azul/zulu-openjdk-alpine"
+        update-types: ["version-update:semver-major"]
+    labels:
+      - "type/dependencies"
+      - "scope/backend"
 
-- package-ecosystem: gradle
-  directory: "/"
-  schedule:
-    interval: weekly
-    time: "10:00"
-    timezone: Europe/London
-  open-pull-requests-limit: 10
-  labels:
-    - "type/dependencies"
-    - "scope/backend"
-  groups:
-    spring-boot-dependencies:
-      patterns:
-        - "org.springframework.boot:*"
-        - "io.spring.dependency-management"
-      # We will handle major upgrades manually
-      update-types:
-        - "patch"
-        - "minor"
-    other-dependencies:
-      patterns:
-        - "*"
-      update-types:
-        - "patch"
-        - "minor"
+  - package-ecosystem: npm
+    directory: "/frontend"
+    schedule:
+      interval: weekly
+      time: "10:00"
+      timezone: Europe/London
+    open-pull-requests-limit: 10
+    versioning-strategy: increase-if-necessary
+    labels:
+      - "type/dependencies"
+      - "scope/frontend"
+    groups:
+      pnpm-dependencies:
+        patterns:
+          - "*"
+        update-types:
+          - "patch"
+          - "minor"
 
-- package-ecosystem: docker
-  directory: "/api"
-  schedule:
-    interval: weekly
-    time: "10:00"
-    timezone: Europe/London
-  open-pull-requests-limit: 10
-  ignore:
-  - dependency-name: "azul/zulu-openjdk-alpine"
-    update-types: ["version-update:semver-major"]
-  labels:
-    - "type/dependencies"
-    - "scope/backend"
-
-- package-ecosystem: npm
-  directory: "/frontend"
-  schedule:
-    interval: weekly
-    time: "10:00"
-    timezone: Europe/London
-  open-pull-requests-limit: 10
-  versioning-strategy: increase-if-necessary
-  labels:
-    - "type/dependencies"
-    - "scope/frontend"
-  groups:
-    pnpm-dependencies:
-      patterns:
-        - "*"
-      update-types:
-        - "patch"
-        - "minor"
-
-- package-ecosystem: "github-actions"
-  directory: "/"
-  schedule:
-    interval: weekly
-    time: "10:00"
-    timezone: Europe/London
-  open-pull-requests-limit: 10
-  labels:
-    - "type/dependencies"
-    - "scope/infra"
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: weekly
+      time: "10:00"
+      timezone: Europe/London
+    open-pull-requests-limit: 10
+    labels:
+      - "type/dependencies"
+      - "scope/infra"
diff --git a/.github/workflows/branch-deploy.yml b/.github/workflows/branch-deploy.yml
index ef2758953..7f8159bd9 100644
--- a/.github/workflows/branch-deploy.yml
+++ b/.github/workflows/branch-deploy.yml
@@ -52,7 +52,7 @@ jobs:
           restore-keys: |
             ${{ runner.os }}-buildx-
       - name: Configure AWS credentials for Kafka-UI account
-        uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502  # infered from @v4
+        uses: aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a  # infered from @v4
         with:
           aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
diff --git a/.github/workflows/build-public-image.yml b/.github/workflows/build-public-image.yml
index ca13bae2b..379074c6c 100644
--- a/.github/workflows/build-public-image.yml
+++ b/.github/workflows/build-public-image.yml
@@ -50,7 +50,7 @@ jobs:
           restore-keys: |
             ${{ runner.os }}-buildx-
       - name: Configure AWS Credentials
-        uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502  # infered from @v4
+        uses: aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a  # infered from @v4
         with:
           aws-region: us-east-1
           role-to-assume: ${{ secrets.AWS_ROLE }}
diff --git a/.github/workflows/delete-public-image.yml b/.github/workflows/delete-public-image.yml
index af20d99d0..918ac1b65 100644
--- a/.github/workflows/delete-public-image.yml
+++ b/.github/workflows/delete-public-image.yml
@@ -15,7 +15,7 @@ jobs:
           tag='${{ github.event.pull_request.number }}'
           echo "tag=${tag}" >> $GITHUB_OUTPUT
       - name: Configure AWS credentials for Kafka-UI account
-        uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502  # infered from @v4
+        uses: aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a  # infered from @v4
         with:
           aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
diff --git a/.github/workflows/docker_publish.yml b/.github/workflows/docker_publish.yml
index a71a3652b..6499c0bbd 100644
--- a/.github/workflows/docker_publish.yml
+++ b/.github/workflows/docker_publish.yml
@@ -64,7 +64,7 @@ jobs:
 
       - name: Configure AWS credentials
         if: matrix.registry == 'ecr'
-        uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502  # infered from @v4
+        uses: aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a  # infered from @v4
         with:
           aws-region: us-east-1 # This region only for public ECR
           role-to-assume: ${{ secrets.AWS_ROLE }}
diff --git a/.github/workflows/separate_env_public_create.yml b/.github/workflows/separate_env_public_create.yml
index 760449b68..e8b3830cc 100644
--- a/.github/workflows/separate_env_public_create.yml
+++ b/.github/workflows/separate_env_public_create.yml
@@ -52,7 +52,7 @@ jobs:
           restore-keys: |
             ${{ runner.os }}-buildx-
       - name: Configure AWS credentials for Kafka-UI account
-        uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502  # infered from @v4
+        uses: aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a  # infered from @v4
         with:
           aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}