diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 00000000..8373337f
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,11 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "daily"
diff --git a/.github/workflows/dependency-review-action.yml b/.github/workflows/dependency-review-action.yml
new file mode 100644
index 00000000..b1f804b3
--- /dev/null
+++ b/.github/workflows/dependency-review-action.yml
@@ -0,0 +1,26 @@
+name: Dependency review for pull requests
+
+on:
+  workflow_dispatch:
+  pull_request:
+
+permissions:
+  contents: write
+
+jobs:
+  dependency-submission:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v4
+    - uses: actions/setup-java@v4
+      with:
+        distribution: temurin
+        java-version: 17
+
+    - name: Generate and submit dependency graph
+      uses: gradle/actions/dependency-submission@v3
+      with:
+        build-scan-publish: false
+
+    - name: Perform dependency review
+      uses: actions/dependency-review-action@v3
diff --git a/.github/workflows/dependency-submission.yml b/.github/workflows/dependency-submission.yml
new file mode 100644
index 00000000..272dde6d
--- /dev/null
+++ b/.github/workflows/dependency-submission.yml
@@ -0,0 +1,26 @@
+name: Dependency Submission
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - master
+
+permissions:
+  contents: write
+
+jobs:
+  dependency-submission:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout sources
+      uses: actions/checkout@v4
+    - name: Setup Java
+      uses: actions/setup-java@v4
+      with:
+        distribution: 'temurin'
+        java-version: 17
+    - name: Generate and submit dependency graph
+      uses: gradle/actions/dependency-submission@v3
+      with:
+        build-scan-publish: false
diff --git a/gradle/verification-metadata.xml b/gradle/verification-metadata.xml
index 6174ff64..16fb5edb 100644
--- a/gradle/verification-metadata.xml
+++ b/gradle/verification-metadata.xml
@@ -40,8 +40,8 @@
             <pgp value="7615ad56144df2376f49d98b1669c4bb543e0445"/>
          </artifact>
       </component>
-      <component group="com.gradle" name="develocity-gradle-plugin" version="3.17.5">
-         <artifact name="develocity-gradle-plugin-3.17.5.jar">
+      <component group="com.gradle" name="develocity-gradle-plugin" version="3.18.1">
+         <artifact name="develocity-gradle-plugin-3.18.1.jar">
             <pgp value="7b79add11f8a779fe90fd3d0893a028475557671"/>
          </artifact>
       </component>
@@ -50,9 +50,9 @@
             <sha256 value="a0a054c6c621788765e9cb2a722aa3206f11122f86181594c4f768b794b5eab9" origin="Generated by Gradle because artifact wasn't signed"/>
          </artifact>
       </component>
-      <component group="io.github.gradle" name="gradle-enterprise-conventions-plugin" version="0.10.1">
-         <artifact name="gradle-enterprise-conventions-plugin-0.10.1.jar">
-            <sha256 value="69487b9158b5ec4620a9adbd5cc63fdfd1b00ce482bfa595f0340594ae10e388" origin="Verified" reason="Artifact is not signed"/>
+      <component group="io.github.gradle" name="gradle-enterprise-conventions-plugin" version="0.10.2">
+         <artifact name="gradle-enterprise-conventions-plugin-0.10.2.jar">
+            <sha256 value="48d4b3bb8337998f191f2d2a5d7afbdeaed39dd248c7c2d2ab2fcdde76b365e9" origin="Verified" reason="Artifact is not signed"/>
          </artifact>
       </component>
       <component group="junit" name="junit" version="4.12">
diff --git a/settings.gradle.kts b/settings.gradle.kts
index 56d4a3e4..c31f7460 100644
--- a/settings.gradle.kts
+++ b/settings.gradle.kts
@@ -1,6 +1,6 @@
 plugins {
-    id("com.gradle.develocity").version("3.17.5")
-    id("io.github.gradle.gradle-enterprise-conventions-plugin").version("0.10.1")
+    id("com.gradle.develocity").version("3.18.1")
+    id("io.github.gradle.gradle-enterprise-conventions-plugin").version("0.10.2")
 }
 
 rootProject.name = "native-platform"