Use spring-github-workflows Auto-Merge

.github/workflows/auto-merge-dependabot.yml

@@ -1,25 +1,16 @@
-name: Dependabot Auto-Merge
+name: Merge Dependabot PR
+
 on:
   pull_request:
     branches:
-      - 'main'
+      - main
+      - '*.x'
 
-permissions:
+run-name: Merge Dependabot PR ${{ github.ref_name }}
-  contents: write
-  pull-requests: write
 
 jobs:
-  dependabot:
+  merge-dependabot-pr:
-    runs-on: ubuntu-latest
+    permissions: write-all
-    if: github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == 'spring-projects/spring-security'
+    uses: spring-io/spring-github-workflows/.github/workflows/spring-merge-dependabot-pr.yml@v7
-    steps:
+    with:
-      - name: Dependabot metadata
+      mergeArguments: --auto --rebase
-        id: metadata
-        uses: dependabot/fetch-metadata@d7267f607e9d3fb96fc2fbe83e0af444713e90b7
-        with:
-          github-token: ${{ github.token }}
-      - name: Enable auto-merge for Dependabot PRs
-        run: gh pr merge --auto --merge "$PR_URL"
-        env:
-          PR_URL: ${{ github.event.pull_request.html_url }}
-          GH_TOKEN: ${{ github.token }}