From b1801f21d40e2132706b1a9a33b0ce8c5b017e30 Mon Sep 17 00:00:00 2001
From: Alan Agius <17563226+alan-agius4@users.noreply.github.com>
Date: Mon, 12 May 2025 15:53:32 +0000
Subject: [PATCH 1/2] fix(github-actions): move `angular/**` to
 `matchPackageNames`

This change ensures that `angular/dev-infra` update in WORKSPACE files is grouped with `cross-repo angular dependencies` instead of `bazel` to reduce the amount of PRs opened.
---
 renovate-presets/default.json5 | 9 ++-------
 1 file changed, 2 insertions(+), 7 deletions(-)

diff --git a/renovate-presets/default.json5 b/renovate-presets/default.json5
index 84047c4c4..e0bdd613c 100644
--- a/renovate-presets/default.json5
+++ b/renovate-presets/default.json5
@@ -60,13 +60,8 @@
       followTag: 'next',
       separateMajorMinor: false,
       schedule: ['at any time'],
-      matchDepNames: [
-        '@angular-devkit/**',
-        '@angular/**',
-        '@schematics/**',
-        'angular/**',
-        'ng-packagr',
-      ],
+      matchDepNames: ['@angular-devkit/**', '@angular/**', '@schematics/**', 'ng-packagr'],
+      matchPackageNames: ['angular/**'],
     },
 
     // Disable 'next' tag tracking on non-main branches

From e4a684f03728a22f7f6d188556aa445eb6843a38 Mon Sep 17 00:00:00 2001
From: Alan Agius <17563226+alan-agius4@users.noreply.github.com>
Date: Mon, 12 May 2025 16:08:48 +0000
Subject: [PATCH 2/2] refactor: disable vulnerability alerts and automerge due
 to lack of required permissions

GitHub's vulnerability alert feature and automerge are turned off as the necessary permissions are not granted in this context.
---
 renovate-presets/default.json5 | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/renovate-presets/default.json5 b/renovate-presets/default.json5
index e0bdd613c..3a244ca91 100644
--- a/renovate-presets/default.json5
+++ b/renovate-presets/default.json5
@@ -3,6 +3,7 @@
   extends: ['group:monorepos'],
   dependencyDashboard: true,
   rangeStrategy: 'replace',
+  automerge: false,
 
   // Schedule Renovate to run during off-peak hours
   schedule: ['after 10:00pm every weekday', 'before 5:00am every weekday', 'every weekend'],
@@ -21,6 +22,11 @@
     enabled: true,
   },
 
+  // Feature disabled: permission to enable vulnerability alerts is not granted
+  'vulnerabilityAlerts': {
+    'enabled': false,
+  },
+
   // Ignored dependencies in all repositories
   ignoreDeps: [
     'build_bazel_rules_nodejs',