diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 39640b8..59c9d51 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Winni Neessen <wn@neessen.dev>
+#
+# SPDX-License-Identifier: MIT
+
 version: 2
 updates:
   - package-ecosystem: github-actions
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index ff1f3a6..fe53231 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Winni Neessen <wn@neessen.dev>
+#
+# SPDX-License-Identifier: MIT
+
 # For most projects, this workflow file will not need changing; you simply need
 # to commit it to your repository.
 #
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index 07e185e..5c735d4 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -1,7 +1,7 @@
 # SPDX-FileCopyrightText: 2023 Winni Neessen <wn@neessen.dev>
 #
 # SPDX-License-Identifier: MIT
-#
+
 # Dependency Review Action
 #
 # This Action will scan dependency manifest files that change as part of a Pull Request,