Composer updates not picked up by dependabot

I’ve configured a .github/dependabot.yml file to get insight in normal non-security updates from dependabot, for composer and npm (and github actions). For npm updates this works fine and PRs are created, however for composer updates no PRs are created. Does anyone know any gotchas for composer? Did I mis-configure anything? This is how my configuration looks like:

version: 2
updates:
  - package-ecosystem: "composer"
    directory: "/"
    versioning-strategy: "increase-if-necessary"
    schedule:
      interval: "daily"
    allow:
      - dependency-type: "direct"
  
  - package-ecosystem: "github-actions"
    directory: "/"
    schedule:
      interval: "weekly"
    allow:
      - dependency-type: "direct"
  
  - package-ecosystem: "npm"
    directory: "/"
    versioning-strategy: "increase-if-necessary"
    schedule:
      interval: "weekly"
    allow:
      - dependency-type: "direct"

Hi there;

Can you try this commands:

version: 2
updates:
    # Maintain dependencies for GitHub Actions.
    - package-ecosystem: "github-actions"
      directory: "/"
      schedule:
          interval: "daily"
      # Too noisy. See https://github.community/t/increase-if-necessary-for-github-actions-in-dependabot/179581
      open-pull-requests-limit: 0

    # Maintain dependencies for Composer
    - package-ecosystem: "composer"
      directory: "/"
      schedule:
          interval: "daily"
      versioning-strategy: increase-if-necessary

P.S: this command works currently at the composer-config-plugin/.github at master · yiisoft/composer-config-plugin · GitHub repository.