-
Notifications
You must be signed in to change notification settings - Fork 31
Expand file tree
/
Copy pathrenovate.json
More file actions
36 lines (32 loc) · 881 Bytes
/
renovate.json
File metadata and controls
36 lines (32 loc) · 881 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
// Create PRs only for GitHub Security Alerts (Dependabot advisories)
"vulnerabilityAlerts": {
"enabled": true
},
// Prevent the extra Dependency Dashboard issue
"extends": [
":disableDependencyDashboard"
],
// Disable all regular updates (major/minor/patch/digest/pin/etc.)
// Security alert PRs remain allowed.
"packageRules": [
{
"description": "Disable all non-security updates across all managers",
// Applies to all managers when not specifying matchManagers
"matchUpdateTypes": [
"major",
"minor",
"patch",
"pin",
"digest",
"rollback",
"bump",
"lockFileMaintenance"
],
"enabled": false
}
],
// Optional: add labels to security PRs
"labels": ["security", "renovate"]
}