diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 54bdf82..91154de 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -57,8 +57,13 @@ updates:
       - "_bot"
       - "dependencies"
 
-# This is a temporary fix until we update the global sync workflow
-  - package-ecosystem: "uv"
+  # In repo settings we have configured dependabot to open PRs for security updates.
+  # Here we configure custom labels to be applied to security update PRs,
+  # while still preventing regular version update PRs.
+  # See https://docs.github.com/en/code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates#overriding-the-default-behavior-with-a-configuration-file
+  # Note: this configuration only has an effect in repositories that have
+  # a requirements.txt file / use python / pip.
+  - package-ecosystem: "pip"
     directory: "/"
     schedule:
       interval: "weekly"