diff --git a/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md b/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md
index 95c7bf7fb99b..75386e3f00dd 100644
--- a/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md
+++ b/content/code-security/concepts/supply-chain-security/about-the-dependabot-yml-file.md
@@ -46,7 +46,7 @@ The `dependabot.yml` file controls how {% data variables.product.prodname_depend
 
 ## Where to store the `dependabot.yml` file
 
-You must store this file in the `.github` directory of your repository in the default branch (typically `main`). The path is:  `.github/dependabot.yml`.
+You must store this file in the `.github` directory of your repository in the default branch (typically `main`). The path is:  `.github/dependabot.yml` (you can also use `.github/dependabot.yaml`).
 
 ## How the `dependabot.yml` file works