chore(deps): enable Go toolchain updates in Dependabot

Configure Dependabot to track Go toolchain versions in addition to
Go module dependencies. This ensures stdlib CVEs are caught and fixed
automatically via Dependabot PRs.

Changes:
- Set interval to "daily" (was "weekly") for faster security response
- Add "allow: dependency-type: all" to enable Go toolchain tracking
- Apply to both root and examples/sdk/helm-template directories

Context:
Previously, Dependabot only tracked Go module dependencies (like
github.com/opencontainers/selinux) but not the Go version itself.
This meant stdlib CVEs in go.mod (e.g., go 1.24.6 → 1.24.9) were
not automatically detected.

With this change, Dependabot will create PRs for Go version updates
when new patch releases contain security fixes.

Related: replicated-collab/git-guardian-kots#287

Author: Bishibop

.github/dependabot.yml

@@ -12,7 +12,10 @@ updates:
       - "go"
       - "type::security"
     schedule:
-      interval: "weekly"
+      interval: "daily"
+    # Enable Go toolchain updates to catch stdlib CVEs
+    allow:
+      - dependency-type: "all"
     groups:
       security:
         update-types:
@@ -25,7 +28,10 @@ updates:
       - "go"
       - "type::security"
     schedule:
-      interval: "weekly"
+      interval: "daily"
+    # Enable Go toolchain updates to catch stdlib CVEs
+    allow:
+      - dependency-type: "all"
     groups:
       security:
         update-types: