diff --git a/.github/workflows/release-pr.yaml b/.github/workflows/release-pr.yaml
index 9d7bf855d..008203449 100644
--- a/.github/workflows/release-pr.yaml
+++ b/.github/workflows/release-pr.yaml
@@ -19,7 +19,8 @@ permissions:
 
 env:
   # Specify this here because these tests rely on ktf to run kind for cluster creation.
-  KIND_VERSION: v0.23.0
+  # renovate: datasource=github-releases depName=kubernetes-sigs/kind
+  KIND_VERSION: "0.23.0"
 
 jobs:
   ensure-actions-sha-pin:
diff --git a/renovate.json b/renovate.json
index 4c4d588e9..742f5438b 100644
--- a/renovate.json
+++ b/renovate.json
@@ -23,6 +23,16 @@
       "matchStrings": [
         "# renovate: datasource=(?<datasource>.*?) depName=(?<depName>.*?)\\n.+\"(?<currentValue>.*?)\""
       ]
+    },
+    {
+      "description": "Match dependencies in .github/workflows/* that are properly annotated with `# renovate: datasource={} depName={}.`",
+      "customType": "regex",
+      "fileMatch": [
+        "\\.github/workflows/.*\\.yaml$"
+      ],
+      "matchStrings": [
+        "# renovate: datasource=(?<datasource>.*?) depName=(?<depName>.*?)\\n.+:\\s*\"?(?<currentValue>[0-9]+\\.[0-9.]+)\"?\\n"
+      ]
     }
   ],
   "packageRules": [