Skip to content

Configure Renovate

gl-renovate requested to merge renovate/configure into main

Welcome to Renovate! This is an onboarding MR to help you understand and configure settings before regular Merge Requests begin.

🚦 To activate Renovate, merge this Merge Request. To disable Renovate, simply close this Merge Request unmerged.

Detected Package Files

  • docker-compose.dev.yml (docker-compose)
  • docker-compose.yml (docker-compose)
  • Dockerfile (dockerfile)
  • .gitlab-ci.yml (gitlabci)
  • .gitlab-ci.yml (gitlabci-include)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding MR is merged
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Pin Docker digests.
  • Pin github-action digests.
  • Enable Renovate configuration migration MRs when needed.
  • Pin dependency versions for devDependencies.
  • Raise MR when vulnerability alerts are detected with label 'security'.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Merge Request description the next time it runs.

What to Expect

With your current configuration, Renovate will create 3 Merge Requests:

Pin dependencies
  • Schedule: ["at any time"]
  • Branch name: renovate/pin-dependencies
  • Merge into: main
  • Upgrade docker.io/nginx to sha256:2140dad235c130ac861018a4e13a6bc8aea3a35f3a40e20c1b060d51a7efd250
  • Upgrade gcr.io/kaniko-project/executor to sha256:c3109d5926a997b100c4343944e06c6b30a6804b2f9abe0994d3de6ef92b028e
  • Upgrade mgoltzsche/podman to sha256:ef34af940a829ef8bd6f44692cd6fc5f2a39da6ffd4b1a8d3750d9d1b7f2efe8
  • Upgrade registry.gitlab-forge.din.developpement-durable.gouv.fr/pub/dnumarchi/welcome-page/welcome-page to sha256:823f874aa422269293638772e8af054f105637f24a1ca5a9dee8713234cf98f7
Update mgoltzsche/podman Docker tag to v4.9.5
  • Schedule: ["at any time"]
  • Branch name: renovate/mgoltzsche-podman-4.x
  • Merge into: main
  • Upgrade mgoltzsche/podman to sha256:53ebe1a09db65d8c3064f70cff69aeb1bc81995366c85c5e729161f77cea7d2d
Update mgoltzsche/podman Docker tag to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/mgoltzsche-podman-5.x
  • Merge into: main
  • Upgrade mgoltzsche/podman to sha256:5bedacf6cb0ce040f3649769a924a6d52521db5a88f1a82d69192f5022d30181

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

Got questions? Check out Renovate's Docs, particularly the Getting Started section. If you need any further assistance then you can also request help here.

This MR has been generated by Renovate Bot.

Edited by gl-renovate

Merge request reports