mirror of
https://github.com/astral-sh/ty.git
synced 2025-12-23 08:48:09 +00:00
55 lines
1.8 KiB
Text
55 lines
1.8 KiB
Text
{
|
|
$schema: "https://docs.renovatebot.com/renovate-schema.json",
|
|
dependencyDashboard: true,
|
|
suppressNotifications: ["prEditedNotification"],
|
|
extends: ["github>astral-sh/renovate-config"],
|
|
labels: ["internal"],
|
|
schedule: ["before 4am on Monday"],
|
|
semanticCommits: "disabled",
|
|
separateMajorMinor: false,
|
|
prHourlyLimit: 10,
|
|
enabledManagers: ["github-actions", "pre-commit"],
|
|
"pre-commit": {
|
|
enabled: true,
|
|
},
|
|
packageRules: [
|
|
// Pin GitHub Actions to immutable SHAs.
|
|
{
|
|
matchDepTypes: ["action"],
|
|
pinDigests: true,
|
|
},
|
|
// Annotate GitHub Actions SHAs with a SemVer version.
|
|
{
|
|
extends: ["helpers:pinGitHubActionDigests"],
|
|
extractVersion: "^(?<version>v?\\d+\\.\\d+\\.\\d+)$",
|
|
versioning: "regex:^v?(?<major>\\d+)(\\.(?<minor>\\d+)\\.(?<patch>\\d+))?$",
|
|
},
|
|
{
|
|
// Group upload/download artifact updates, the versions are dependent
|
|
groupName: "Artifact GitHub Actions dependencies",
|
|
matchManagers: ["github-actions"],
|
|
matchDatasources: ["gitea-tags", "github-tags"],
|
|
matchPackageNames: ["actions/.*-artifact"],
|
|
description: "Weekly update of artifact-related GitHub Actions dependencies",
|
|
},
|
|
{
|
|
// This package rule disables updates for GitHub runners:
|
|
// we'd only pin them to a specific version
|
|
// if there was a deliberate reason to do so
|
|
groupName: "GitHub runners",
|
|
matchManagers: ["github-actions"],
|
|
matchDatasources: ["github-runners"],
|
|
description: "Disable PRs updating GitHub runners (e.g. 'runs-on: macos-14')",
|
|
enabled: false,
|
|
},
|
|
{
|
|
groupName: "pre-commit dependencies",
|
|
matchManagers: ["pre-commit"],
|
|
description: "Weekly update of pre-commit dependencies",
|
|
}
|
|
],
|
|
vulnerabilityAlerts: {
|
|
commitMessageSuffix: "",
|
|
labels: ["internal", "security"],
|
|
},
|
|
}
|