Skip to content

chore: Configure Renovate #122

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore: Configure Renovate #122

wants to merge 1 commit into from

Conversation

@stackable-bot
Copy link

@stackable-bot stackable-bot commented Oct 16, 2024
edited
Loading

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

  • tools/harbor-garbage-collector/Cargo.toml (cargo)
  • tools/harbor-sbom-browser/Cargo.toml (cargo)
  • tools/monitor-oci-artifacts/Cargo.toml (cargo)
  • tools/nexus-garbage-collector/Cargo.toml (cargo)
  • apps/docker/jenkins-job-builder/Dockerfile (dockerfile)
  • apps/docker/operator-test-runner/Dockerfile (dockerfile)
  • tools/harbor-garbage-collector/Dockerfile (dockerfile)
  • tools/harbor-sbom-browser/Dockerfile (dockerfile)
  • tools/matterbridge/Dockerfile (dockerfile)
  • tools/monitor-oci-artifacts/Dockerfile (dockerfile)
  • tools/nexus-garbage-collector/Dockerfile (dockerfile)
  • .github/workflows/build_harbor_garbage_collector.yml (github-actions)
  • .github/workflows/build_harbor_sbom_browser.yml (github-actions)
  • .github/workflows/build_matterbridge.yml (github-actions)
  • .github/workflows/build_nexus_garbage_collector.yml (github-actions)
  • .github/workflows/build_oci_monitor.yml (github-actions)
  • .github/workflows/renovate.yml (github-actions)
  • renovate.json (renovate-config-presets)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Show only the Age and Confidence Merge Confidence badges for pull requests.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Pin Docker digests.
  • Pin github-action digests.
  • Enable Renovate configuration migration PRs when needed.
  • Pin dependency versions for development dependencies.
  • Enable Renovate Dependency Dashboard approval workflow.
  • Remove limit for open PRs at any time.
  • Removes rate limit for PR creation per hour.
  • Convert pinned GitHub Action digests to SemVer.
  • Run Renovate on following schedule:

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

What to Expect

With your current configuration, Renovate will create 16 Pull Requests:

fix(deps): update rust crate tokio to v1.38.2 [security]
  • Branch name: renovate/crate-tokio-vulnerability
  • Merge into: main
  • Upgrade tokio to 1.38.2
chore(deps): pin dependencies
  • Branch name: renovate/pin-dependencies
  • Merge into: main
  • Upgrade actions/checkout to f43a0e5ff2bd294095638e18286ca9a3d1956744
  • Upgrade oci.stackable.tech/sdp/ubi8-rust-builder to sha256:8ad6fa16363d789a58053dd99cbccf40a5f8c73f48f342522fa9111f819766e6
  • Upgrade python to sha256:4ea77121eab13d9e71f2783d7505f5655b25bb7b2c263e8020aae3b555dbc0b2
  • Upgrade registry.access.redhat.com/ubi8/ubi-minimal to sha256:af9b4a20cf942aa5bce236fedfefde887a7d89eb7c69f727bd0af9f5c80504ab
  • Upgrade ubuntu to sha256:a08e551cb33850e4740772b38217fc1796a66da2506d312abe51acda354ff061
chore(deps): update registry.access.redhat.com/ubi8/ubi-minimal:8.9 docker digest to 2fa47fa
  • Branch name: renovate/registry.access.redhat.com-ubi8-ubi-minimal-8.9
  • Merge into: main
  • Upgrade registry.access.redhat.com/ubi8/ubi-minimal to sha256:2fa47fa9df7b98e2776f447855699c01d06c3271b2d7259b8b314084580cf591
chore(deps): update ubuntu docker digest to a08e551
  • Branch name: renovate/ubuntu
  • Merge into: main
  • Upgrade ubuntu to sha256:a08e551cb33850e4740772b38217fc1796a66da2506d312abe51acda354ff061
fix(deps): update all dependencies (patch only)
chore(deps): update docker/login-action action to v3.5.0
  • Branch name: renovate/docker-login-action-3.x
  • Merge into: main
  • Upgrade docker/login-action to 184bdaa0721073962dff0199f1fb9940f07167d1
chore(deps): update registry.access.redhat.com/ubi8/ubi-minimal docker tag to v8.10-1753978370
  • Branch name: renovate/registry.access.redhat.com-ubi8-ubi-minimal-8.x
  • Merge into: main
  • Upgrade registry.access.redhat.com/ubi8/ubi-minimal to sha256:af9b4a20cf942aa5bce236fedfefde887a7d89eb7c69f727bd0af9f5c80504ab
chore(deps): update sigstore/cosign-installer action to v3.9.2
  • Branch name: renovate/sigstore-cosign-installer-3.x
  • Merge into: main
  • Upgrade sigstore/cosign-installer to d58896d6a1865668819e1d91763c7751a165e159
fix(deps): update axum monorepo
  • Branch name: renovate/axum-monorepo
  • Merge into: main
  • Upgrade axum to 0.8.0
  • Upgrade axum-extra to 0.10.0
fix(deps): update rust crate lazy_static to v1.5.0
  • Branch name: renovate/lazy_static-1.x-lockfile
  • Merge into: main
  • Upgrade lazy_static to 1.5.0
fix(deps): update rust crate regex to v1.11.1
  • Branch name: renovate/regex-1.x-lockfile
  • Merge into: main
  • Upgrade regex to 1.11.1
fix(deps): update rust crate reqwest to 0.12.0
  • Branch name: renovate/reqwest-0.x
  • Merge into: main
  • Upgrade reqwest to 0.12.0
fix(deps): update rust crate strum to 0.27.0
  • Branch name: renovate/strum-monorepo
  • Merge into: main
  • Upgrade strum to 0.27.0
chore(deps): update actions/checkout action to v4.2.2
  • Branch name: renovate/actions-checkout-4.x
  • Merge into: main
  • Upgrade actions/checkout to 11bd71901bbe5b1630ceea73d27597364c9af683
chore(deps): update docker/build-push-action action to v6
  • Branch name: renovate/docker-build-push-action-6.x
  • Merge into: main
  • Upgrade docker/build-push-action to 263435318d21b8e681c14492fe198d362a7d2c83
chore(deps): lock file maintenance
  • Branch name: renovate/lock-file-maintenance
  • Merge into: main
  • Regenerate lock files to use latest dependency versions

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

This PR has been generated by Renovate Bot.

@stackable-bot stackable-bot added the dependencies Pull requests that update a dependency file label Oct 16, 2024
@stackable-bot stackable-bot requested a review from a team October 16, 2024 08:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@stackable-bot