Setup dependabot for weekly bumps

[saskliutas]

Added dependabot config for weekly dep bumps.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 16ab250

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[Copilot]

Pull request overview

Adds a Dependabot configuration to perform weekly npm dependency bumps grouped into a single PR, and updates cspell ignore list to skip the new config file.

Changes:

• New .github/dependabot.yml configuring weekly npm updates with a 1-day cooldown and a single "all-dependencies" group.
• Adds dependabot.yml to the cspell ignore list.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.

File	Description
.github/dependabot.yml	New Dependabot config for weekly grouped npm bumps.
cspell.json	Ignore dependabot.yml from spell checking.