58 lines
1.5 KiB
JSON
58 lines
1.5 KiB
JSON
{
|
|
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
|
|
"extends": [
|
|
"config:recommended",
|
|
":semanticCommits",
|
|
":dependencyDashboard"
|
|
],
|
|
"labels": ["renovate"],
|
|
"timezone": "America/Sao_Paulo",
|
|
"prHourlyLimit": 0,
|
|
"prConcurrentLimit": 0,
|
|
"rangeStrategy": "pin",
|
|
"lockFileMaintenance": {
|
|
"enabled": true,
|
|
"schedule": ["before 5am on the first day of the month"]
|
|
},
|
|
"docker-compose": { "enabled": true },
|
|
"dockerfile": { "enabled": true },
|
|
"github-actions": { "enabled": true },
|
|
"packageRules": [
|
|
{
|
|
"matchDatasources": ["docker"],
|
|
"matchPackageNames": [
|
|
"postgres",
|
|
"mariadb",
|
|
"redis",
|
|
"codeberg.org/forgejo/forgejo"
|
|
],
|
|
"matchUpdateTypes": ["major"],
|
|
"enabled": false,
|
|
"description": "Block major bumps for stateful services — they need a migration plan, not an autopilot PR"
|
|
},
|
|
{
|
|
"matchDatasources": ["docker"],
|
|
"matchUpdateTypes": ["digest"],
|
|
"automerge": false,
|
|
"addLabels": ["digest-pin"]
|
|
},
|
|
{
|
|
"matchDatasources": ["docker"],
|
|
"matchPackageNames": [
|
|
"traefik",
|
|
"code.forgejo.org/forgejo/runner",
|
|
"ghcr.io/goauthentik/server"
|
|
],
|
|
"addLabels": ["critical-infra"]
|
|
},
|
|
{
|
|
"matchUpdateTypes": ["minor", "patch"],
|
|
"matchDepTypes": ["devDependencies"],
|
|
"automerge": true
|
|
}
|
|
],
|
|
"vulnerabilityAlerts": {
|
|
"labels": ["security"],
|
|
"automerge": false
|
|
}
|
|
}
|