diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index d202a33..d0bf4e4 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -5,3 +5,5 @@ updates:
     schedule:
       # Check for updates to GitHub Actions every week
       interval: "weekly"
+    cooldown: # Reduce supply chain attack risk
+      default-days: 7