enable dependabot for GitHub actions

[ranocha]

This allows to get updates for GitHub actions automatically. I have used this for my own packages, the Trixi.jl framework, and the SciML organization. After merging this, you could also enable other Dependabot actions in 'Settings -> Code security and analysis -> Dependabot alerts' and '... -> Dependabot security updates'.

See SciML/MuladdMacro.jl#37

[codecov]

Codecov Report

Patch and project coverage have no change.

Comparison is base (1592fe9) 87.28% compared to head (6a5ff58) 87.28%.

Additional details and impacted files

@@           Coverage Diff           @@
##           master     #635   +/-   ##
=======================================
  Coverage   87.28%   87.28%           
=======================================
  Files          10       10           
  Lines         912      912           
=======================================
  Hits          796      796           
  Misses        116      116           

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.