-
Notifications
You must be signed in to change notification settings - Fork 8
Expand file tree
/
Copy pathrenovate-config.json
More file actions
116 lines (116 loc) · 4.49 KB
/
Copy pathrenovate-config.json
File metadata and controls
116 lines (116 loc) · 4.49 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"branchPrefix": "renovate-updates/",
"extends": ["config:recommended", ":disableDependencyDashboard"],
"username": "renovate-release",
"gitAuthor": "Renovate Bot <bot@renovateapp.com>",
"onboarding": false,
"requireConfig": "ignored",
"platform": "github",
"repositories": ["canyongbs/aidingapp"],
"enabledManagers": ["custom.regex", "docker-compose"],
"reviewers": ["orrison"],
"vulnerabilityAlerts": {
"enabled": true
},
"customManagers": [
{
"customType": "regex",
"description": "Docker images in GitHub Actions workflows",
"managerFilePatterns": ["/^\\.github/workflows/.+\\.yml$/"],
"matchStrings": [
"image:\\s*(?<depName>[^:\\s]+):(?<currentValue>[^@\\s]+)@(?<currentDigest>sha256:[a-f0-9]+)"
],
"datasourceTemplate": "docker",
"versioningTemplate": "docker"
},
{
"customType": "regex",
"description": "ImageMagick Version Updates",
"managerFilePatterns": ["/^Dockerfile$/"],
"matchStrings": ["ARG IMAGEMAGICK_VERSION=['\"]?(?<currentValue>[\\d.]+-\\d+)['\"]?"],
"extractVersionTemplate": "^v?(?<version>.*)$",
"datasourceTemplate": "github-releases",
"depNameTemplate": "ImageMagick/ImageMagick",
"versioningTemplate": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-(?<build>\\d+)$"
},
{
"customType": "regex",
"description": "NVM Version Updates",
"managerFilePatterns": ["/^Dockerfile$/"],
"matchStrings": ["ENV NVM_VERSION=v(?<currentValue>[\\d.]+)"],
"datasourceTemplate": "github-releases",
"depNameTemplate": "nvm-sh/nvm"
},
{
"customType": "regex",
"description": "Node.js Version Updates (Dockerfile)",
"managerFilePatterns": ["/^Dockerfile$/"],
"matchStrings": ["ENV NODE_VERSION=(?<currentValue>[\\d.]+)"],
"datasourceTemplate": "node-version",
"depNameTemplate": "node"
},
{
"customType": "regex",
"description": "Node.js Version Updates (.nvmrc)",
"managerFilePatterns": ["/^\\.nvmrc$/"],
"matchStrings": ["(?<currentValue>\\d+\\.\\d+\\.\\d+)"],
"datasourceTemplate": "node-version",
"depNameTemplate": "node"
},
{
"customType": "regex",
"description": "NPM Version Updates",
"managerFilePatterns": ["/^Dockerfile$/"],
"matchStrings": ["ENV NPM_VERSION=\\^(?<currentValue>[\\d.]+)"],
"datasourceTemplate": "npm",
"depNameTemplate": "npm"
}
],
"packageRules": [
{
"description": "7-day cooldown for non-security Docker image updates",
"matchDatasources": ["docker"],
"matchUpdateTypes": ["major", "minor", "patch", "digest"],
"minimumReleaseAge": "7 days"
},
{
"description": "No cooldown for security-related Docker updates",
"matchDatasources": ["docker"],
"matchUpdateTypes": ["patch"],
"isVulnerabilityAlert": true,
"minimumReleaseAge": "0 days"
},
{
"description": "7-day cooldown for non-Docker dependency updates (supply-chain protection)",
"matchDatasources": ["github-releases", "node-version", "npm"],
"minimumReleaseAge": "7 days"
},
{
"description": "No cooldown for security-related non-Docker updates",
"matchDatasources": ["github-releases", "node-version", "npm"],
"isVulnerabilityAlert": true,
"minimumReleaseAge": "0 days"
},
{
"description": "Constrain PostgreSQL to 16.x",
"matchDepNames": ["postgres"],
"allowedVersions": "/^16\\./"
},
{
"description": "Constrain Redis to 7.4.x",
"matchDepNames": ["redis"],
"allowedVersions": "/^7\\.4/"
},
{
"matchDepNames": ["nvm-sh/nvm", "node", "npm"],
"matchUpdateTypes": ["major"],
"enabled": false
},
{
"matchDepNames": ["nvm-sh/nvm", "node", "npm"],
"groupName": "Node.js toolchain",
"groupSlug": "node-toolchain"
}
]
}