Você gerencia pull requests criadas por Dependabot da mesma forma que outras pull requests, mas existem algumas opções extras.
Examples of how you can use GitHub Actions to automate common Dependabot related tasks.
You can use Dependabot to keep the actions you use updated to the latest versions.
You can store sensitive information, like passwords and access tokens, as encrypted secrets and then reference these in the Dependabot configuration file.
If the dependency information reported by GitHub is not what you expected, there are a number of points to consider, and various things you can check.
Sometimes Dependabot is unable to raise a pull request to update your dependencies. You can review the error and unblock Dependabot.