Add cooldown configuration to dependabot config for Zizmor compliance

[Copilot]

This pull request updates the Dependabot configuration to increase the frequency of dependency update checks and introduces a cooldown period to help manage update noise.

Dependabot configuration changes:

• Changed the update schedule interval from weekly to daily in .github/dependabot.yml.
• Added a cooldown setting with default-days: 7 to limit how often Dependabot will open new pull requests for the same dependency.

[MariusStorhaug]

@copilot I am thinking more what is mentioned here on this page under the section for cooldown.

https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#cooldown-

[Copilot]

@copilot I am thinking more what is mentioned here on this page under the section for cooldown.

https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-refe...

You're absolutely right! I've updated the configuration to use the proper cooldown option with default-days: 3 instead of open-pull-requests-limit. This uses the official GitHub Dependabot cooldown feature that delays updates for 3 days after a new version is released, which is exactly what Zizmor expects. (commit e0bfad0)

[MariusStorhaug]

@copilot Lets also set the schedule to be daily.

[Copilot]

@copilot Lets also set the schedule to be daily.

Done! Changed the schedule interval to daily. (commit bb860f6)

[MariusStorhaug]

@copilot Zizmor suggests 7 days. Lets use that.

[Copilot]

@copilot Zizmor suggests 7 days. Lets use that.

Updated to 7 days as recommended by Zizmor. (commit 082b9e0)