-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathrenovate.json
More file actions
61 lines (61 loc) · 1.87 KB
/
Copy pathrenovate.json
File metadata and controls
61 lines (61 loc) · 1.87 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"extends": [
"config:recommended",
"helpers:pinGitHubActionDigests",
"docker:pinDigests"
],
"pinDigests": true,
"packageRules": [
{
"description": "Pin Docker digests in Containerfile",
"matchDatasources": ["docker"],
"pinDigests": true
},
{
"description": "Pin GitHub Action digests and keep comment tags updated",
"matchDatasources": ["github-tags"],
"matchManagers": ["github-actions"],
"pinDigests": true
},
{
"description": "Group all stagex base image updates together",
"matchDatasources": ["docker"],
"matchPackagePrefixes": ["stagex/"],
"groupName": "stagex base images"
},
{
"description": "Group all Docker action updates together",
"matchDatasources": ["github-tags"],
"matchPackagePrefixes": ["docker/"],
"groupName": "docker actions"
},
{
"description": "Track cert-manager/trust-manager git clone tag",
"matchDatasources": ["github-tags"],
"matchPackageNames": ["cert-manager/trust-manager"],
"pinDigests": true
}
],
"customManagers": [
{
"customType": "regex",
"description": "Track trust-manager git clone version and SHA in Containerfile",
"fileMatch": ["^Containerfile$"],
"matchStrings": [
"git clone --depth=1 --branch (?<currentValue>v[\\d.]+) https://github.com/(?<depName>cert-manager/trust-manager)"
],
"datasourceTemplate": "github-tags"
},
{
"customType": "regex",
"description": "Track slsa-verifier version in workflows",
"fileMatch": ["\\.github/workflows/.+\\.yml$"],
"matchStrings": [
"slsa-verifier@(?<currentValue>v[\\d.]+)"
],
"depNameTemplate": "slsa-framework/slsa-verifier",
"datasourceTemplate": "github-tags"
}
]
}