During December 2024, Nicolás Pazos Méndez developed a manual-approval indicator for Dependabot pull requests in the grafana/security-github-actions repository. He enhanced the automerge workflow by introducing a requires-manual-approval label, ensuring that minor and major production dependency updates requiring manual review are clearly signaled. Using YAML and leveraging GitHub Actions and CI/CD practices, Nicolás automated the governance process to reduce the risk of unintended merges and improve compliance visibility. His work focused on integrating labeling strategies within Git operations, resulting in a workflow that enables faster, safer decision-making for security stakeholders while maintaining minimal operational friction.