Skip to content

Configure Renovate

Nathan RODET requested to merge renovate/configure into master

Welcome to Renovate! This is an onboarding MR to help you understand and configure settings before regular Merge Requests begin.

🚦 To activate Renovate, merge this Merge Request. To disable Renovate, simply close this Merge Request unmerged.

Detected Package Files

  • docker-compose.yml (docker-compose)
  • Dockerfile (dockerfile)
  • .gitlab-ci.yml (gitlabci)
  • go.mod (gomod)
  • miscellaneous/bulma/package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding MR is merged
  • Enable Renovate Dependency Dashboard creation
  • If semantic commits detected, use semantic commit type fix for dependencies and chore for all others
  • Ignore node_modules, bower_components, vendor and various test/tests directories
  • Autodetect whether to pin dependencies or maintain ranges
  • Rate limit MR creation to a maximum of two per hour
  • Limit to maximum 20 open MRs at any time
  • Group known monorepo packages together
  • Use curated list of recommended non-monorepo package groupings
  • Fix some problems with very old Maven commons versions
  • Ignore spring cloud 1.x releases
  • Ignore http4s digest-based 1.x milestones
  • Use node versioning for @types/node
  • Limit concurrent requests to reduce load on Repology servers until we can fix this properly, see issue 10133
  • Preserve (but continue to upgrade) any existing SemVer ranges
  • Enable Renovate Dependency Dashboard creation
  • Rebase existing MRs any time the base branch has been updated
  • Raise MR when vulnerability alerts are detected with label 'security'
  • Use curated list of recommended non-monorepo package groupings

🔡 Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Merge Requests in the "What to Expect" section below will be updated the next time Renovate runs.

What to Expect

With your current configuration, Renovate will create 5 Merge Requests:

Update module github.com/oschwald/maxminddb-golang to v1.13.1
Update dependency bulma to v1
  • Schedule: ["at any time"]
  • Branch name: renovate/bulma-1.x
  • Merge into: master
  • Upgrade bulma to ^1.0.0
Update dependency clean-css-cli to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/clean-css-cli-5.x
  • Merge into: master
  • Upgrade clean-css-cli to ^5.0.0
Update dependency node-sass to v9
  • Schedule: ["at any time"]
  • Branch name: renovate/node-sass-9.x
  • Merge into: master
  • Upgrade node-sass to ^9.0.0
Update dependency rimraf to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/rimraf-6.x
  • Merge into: master
  • Upgrade rimraf to ^6.0.0

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or spam the project. See docs for prhourlylimit for details.

Dependency Lookup Warnings

Please correct - or verify that you can safely ignore - these lookup failures before you merge this MR.

  • Failed to look up dependency golang.org/x/crypto
  • Failed to look up dependency golang.org/x/oauth2

Files affected: go.mod

Got questions? Check out Renovate's Docs, particularly the Getting Started section. If you need any further assistance then you can also request help here.

This MR has been generated by Renovate Bot.

Merge request reports