1- # Enable Dependabot NPM updates for all dependencies on a weekly basis
1+ # -------------------
2+ # DSpace's dependabot rules. Enables npm updates for all dependencies on a weekly basis
3+ # for main and any maintenance branches. Security updates only apply to main.
4+ # -------------------
25version : 2
36updates :
47 # ##############
58 # # Main branch
69 # ##############
10+ # NOTE: At this time, "security-updates" rules only apply if "target-branch" is unspecified
11+ # So, only this first section can include "applies-to: security-updates"
712 - package-ecosystem : " npm"
813 directory : " /"
9- target-branch : main
1014 schedule :
1115 interval : " weekly"
1216 # Allow up to 10 open PRs for dependencies
@@ -159,14 +163,6 @@ updates:
159163 update-types :
160164 - " minor"
161165 - " patch"
162- # Group together all security updates for Angular. Only accept minor/patch types.
163- angular-security :
164- applies-to : security-updates
165- patterns :
166- - " @angular*"
167- update-types :
168- - " minor"
169- - " patch"
170166 # Group together all minor/patch version updates for NgRx in a single PR
171167 ngrx :
172168 applies-to : version-updates
@@ -175,14 +171,6 @@ updates:
175171 update-types :
176172 - " minor"
177173 - " patch"
178- # Group together all security updates for NgRx. Only accept minor/patch types.
179- ngrx-security :
180- applies-to : security-updates
181- patterns :
182- - " @ngrx*"
183- update-types :
184- - " minor"
185- - " patch"
186174 # Group together all patch version updates for eslint in a single PR
187175 eslint :
188176 applies-to : version-updates
@@ -192,15 +180,6 @@ updates:
192180 update-types :
193181 - " minor"
194182 - " patch"
195- # Group together all security updates for eslint.
196- eslint-security :
197- applies-to : security-updates
198- patterns :
199- - " @typescript-eslint*"
200- - " eslint*"
201- update-types :
202- - " minor"
203- - " patch"
204183 # Group together any testing related version updates
205184 testing :
206185 applies-to : version-updates
@@ -213,18 +192,6 @@ updates:
213192 update-types :
214193 - " minor"
215194 - " patch"
216- # Group together any testing related security updates
217- testing :
218- applies-to : security-updates
219- patterns :
220- - " @cypress*"
221- - " cypress*"
222- - " jasmine*"
223- - " karma*"
224- - " ng-mocks"
225- update-types :
226- - " minor"
227- - " patch"
228195 # Group together any postcss related version updates
229196 postcss :
230197 applies-to : version-updates
@@ -233,23 +200,7 @@ updates:
233200 update-types :
234201 - " minor"
235202 - " patch"
236- # Group together any postcss related security updates
237- postcss :
238- applies-to : security-updates
239- patterns :
240- - " postcss*"
241- update-types :
242- - " minor"
243- - " patch"
244203 # Group together any sass related version updates
245- sass :
246- applies-to : version-updates
247- patterns :
248- - " sass*"
249- update-types :
250- - " minor"
251- - " patch"
252- # Group together any sass related security updates
253204 sass :
254205 applies-to : version-updates
255206 patterns :
@@ -265,14 +216,6 @@ updates:
265216 update-types :
266217 - " minor"
267218 - " patch"
268- # Group together any webpack related seurity updates
269- webpack :
270- applies-to : security-updates
271- patterns :
272- - " webpack*"
273- update-types :
274- - " minor"
275- - " patch"
276219 ignore :
277220 # Ignore all major version updates for all dependencies. We'll only automate minor/patch updates.
278221 - dependency-name : " *"
@@ -297,14 +240,6 @@ updates:
297240 update-types :
298241 - " minor"
299242 - " patch"
300- # Group together all security updates for Angular. Only accept minor/patch types.
301- angular-security :
302- applies-to : security-updates
303- patterns :
304- - " @angular*"
305- update-types :
306- - " minor"
307- - " patch"
308243 # Group together all minor/patch version updates for NgRx in a single PR
309244 ngrx :
310245 applies-to : version-updates
@@ -313,14 +248,6 @@ updates:
313248 update-types :
314249 - " minor"
315250 - " patch"
316- # Group together all security updates for NgRx. Only accept minor/patch types.
317- ngrx-security :
318- applies-to : security-updates
319- patterns :
320- - " @ngrx*"
321- update-types :
322- - " minor"
323- - " patch"
324251 # Group together all patch version updates for eslint in a single PR
325252 eslint :
326253 applies-to : version-updates
@@ -330,15 +257,6 @@ updates:
330257 update-types :
331258 - " minor"
332259 - " patch"
333- # Group together all security updates for eslint.
334- eslint-security :
335- applies-to : security-updates
336- patterns :
337- - " @typescript-eslint*"
338- - " eslint*"
339- update-types :
340- - " minor"
341- - " patch"
342260 # Group together any testing related version updates
343261 testing :
344262 applies-to : version-updates
@@ -351,18 +269,6 @@ updates:
351269 update-types :
352270 - " minor"
353271 - " patch"
354- # Group together any testing related security updates
355- testing :
356- applies-to : security-updates
357- patterns :
358- - " @cypress*"
359- - " cypress*"
360- - " jasmine*"
361- - " karma*"
362- - " ng-mocks"
363- update-types :
364- - " minor"
365- - " patch"
366272 # Group together any postcss related version updates
367273 postcss :
368274 applies-to : version-updates
@@ -371,14 +277,6 @@ updates:
371277 update-types :
372278 - " minor"
373279 - " patch"
374- # Group together any postcss related security updates
375- postcss :
376- applies-to : security-updates
377- patterns :
378- - " postcss*"
379- update-types :
380- - " minor"
381- - " patch"
382280 # Group together any sass related version updates
383281 sass :
384282 applies-to : version-updates
@@ -387,14 +285,6 @@ updates:
387285 update-types :
388286 - " minor"
389287 - " patch"
390- # Group together any sass related security updates
391- sass :
392- applies-to : version-updates
393- patterns :
394- - " sass*"
395- update-types :
396- - " minor"
397- - " patch"
398288 ignore :
399289 # 7.x Cannot update Webpack past v5.76.1 as later versions not supported by Angular 15
400290 # See also https://github.com/DSpace/dspace-angular/pull/3283#issuecomment-2372488489
0 commit comments