diff --git a/.github/workflows/dependabot-auto-merge.yml b/.github/workflows/dependabot-auto-merge.yml
deleted file mode 100644
index fccc0f6..0000000
--- a/.github/workflows/dependabot-auto-merge.yml
+++ /dev/null
@@ -1,30 +0,0 @@
-name: Automerge Dependabot Updates
-
-on:
-  check_suite:
-    types:
-      - completed
-
-jobs:
-  auto_merge:
-    runs-on: ubuntu-latest
-
-    needs:
-      - build_and_test
-
-    steps:
-      - name: auto-merge
-        uses: ridedott/merge-me-action@v1.1.34
-        with:
-          # Depending on branch protection rules, a  manually populated
-          # `GITHUB_TOKEN_WORKAROUND` environment variable with permissions to
-          # push to a protected branch must be used. This variable can have an
-          # arbitrary name, as an example, this repository uses
-          # `GITHUB_TOKEN_DOTTBOTT`.
-          #
-          # When using a custom token, it is recommended to leave the following
-          # comment for other developers to be aware of the reasoning behind it:
-          #
-          # This must be used as GitHub Actions token does not support
-          # pushing to protected branches.
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN_DOTTBOTT }}
diff --git a/.github/workflows/review_dependabot.yml b/.github/workflows/review_dependabot.yml
new file mode 100644
index 0000000..30c7765
--- /dev/null
+++ b/.github/workflows/review_dependabot.yml
@@ -0,0 +1,19 @@
+name: Dependabot reviewer
+
+on: pull_request_target
+
+permissions:
+  pull-requests: write
+  contents: write
+
+jobs:
+  review-dependabot-pr:
+    name: Review Dependabot PR
+    runs-on: ubuntu-latest
+    steps:
+      - name: Review Dependabot PR
+        uses: pwshrc/actions-review-dependabot@v0.6.3
+        with:
+          github_token: "${{ secrets.GITHUB_TOKEN }}"
+          required-pr-user-login: 'dependabot[bot]'
+          merge-mode: 'rebase'