diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 9baf9be81a..1aa904a83a 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -20,6 +20,8 @@ updates:
       - dependency-name: "github.com/moby/buildkit"
       - dependency-name: "github.com/spdx/tools-golang"
       - dependency-name: "github.com/subosito/gotenv"
+      # go-getter is used to fetch remote policies from various sources which occasionally has security fixes
+      - dependency-name: "github.com/hashicorp/go-getter"
     schedule:
       interval: "daily"