diff --git a/.github/dependabot.yml b/.github/dependabot.yml
deleted file mode 100644
index d4d24d416..000000000
--- a/.github/dependabot.yml
+++ /dev/null
@@ -1,18 +0,0 @@
-version: 2
-updates:
-  - package-ecosystem: "github-actions"
-    directory: "/"
-    schedule:
-      interval: "weekly"
-    labels: ["internal"]
-    groups:
-      artifacts:
-        # Group upload/download artifact updates, the versions are dependent
-        patterns:
-          - "actions/*-artifact"
-
-  - package-ecosystem: "cargo"
-    directory: "/"
-    schedule:
-      interval: "weekly"
-    labels: ["internal"]
diff --git a/.github/renovate.json5 b/.github/renovate.json5
new file mode 100644
index 000000000..905640561
--- /dev/null
+++ b/.github/renovate.json5
@@ -0,0 +1,39 @@
+{
+  "$schema": "https://docs.renovatebot.com/renovate-schema.json",
+  "dependencyDashboard": true,
+  "suppressNotifications": ["prEditedNotification"],
+  "extends": ["config:recommended"],
+  "labels": ["internal"],
+  "schedule": ["before 4am on Monday"],
+  "separateMajorMinor": false,
+  "enabledManagers": [
+    "github-actions",
+    "pre-commit",
+    "cargo",
+  ],
+  "cargo": {
+    // See https://docs.renovatebot.com/configuration-options/#rangestrategy
+    "rangeStrategy": "update-lockfile",
+  },
+  "pre-commit": {
+    "enabled": true,
+  },
+  "packageRules": [
+    {
+      // Group upload/download artifact updates, the versions are dependent
+      "groupName": "Artifact GitHub Actions dependencies",
+      "matchManagers": ["github-actions"],
+      "matchPackagePatterns": ["actions/.*-artifact"],
+      "description": "Weekly update of artifact-related GitHub Actions dependencies",
+    },
+    {
+      "groupName": "pre-commit dependencies",
+      "matchManagers": ["pre-commit"],
+      "description": "Weekly update of pre-commit dependencies",
+    },
+  ],
+  "vulnerabilityAlerts": {
+    "commitMessageSuffix": "",
+    "labels": ["internal", "security"],
+  },
+}