Skip to content

docs(renovate): document hash fields not updated by custom manager#315

Merged
JacobPEvans merged 1 commit into
mainfrom
fix/renovate-hash-docs
May 15, 2026
Merged

docs(renovate): document hash fields not updated by custom manager#315
JacobPEvans merged 1 commit into
mainfrom
fix/renovate-hash-docs

Conversation

@JacobPEvans
Copy link
Copy Markdown
Owner

@JacobPEvans JacobPEvans commented May 15, 2026

Summary

  • Documents in the custom Nix regex manager description that hash fields (hash = "sha256-...") are NOT updated by Renovate
  • Directs maintainers to fix-renovate-hashes.yml in each repo for automated hash correction
  • Explains that new fetchPypi/fetchurl packages need to be added to both the nix-update workflow and flake packages output

Why

Renovate's custom regex manager silently leaves hash fields stale after version bumps. Without this documentation, the gap is invisible — maintainers don't know to wire up hash automation when adding new Nix-packaged dependencies.

Test plan

  • Verify renovate-presets.json is valid JSON
  • Confirm Renovate can parse the preset (no schema errors in next Renovate run)

Assisted-by: Claude noreply@anthropic.com

@JacobPEvans
docs(renovate): document that hash fields are not updated by custom m…
d4a0f80 
…anager

The Renovate-annotated version pins custom manager updates version
strings only. Adjacent hash = "sha256-..." fields require nix-update
automation (fix-renovate-hashes.yml) in each affected repo. Add this
to the description so engineers know to wire up nix-update when adding
new fetchPypi/fetchurl packages with Renovate annotations.

Assisted-by: Claude <noreply@anthropic.com>
Copilot AI review requested due to automatic review settings May 15, 2026 11:59
@gemini-code-assist
Copy link
Copy Markdown

gemini-code-assist Bot commented May 15, 2026

Summary of Changes

Hello, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request improves the documentation for the Nix custom regex manager within the Renovate configuration. By clarifying that Renovate only handles version strings and not hash fields, it helps prevent stale hash issues and guides maintainers on the necessary steps to maintain build integrity after automated version bumps.

Highlights

  • Documentation Update: Added a clear warning to the Nix custom manager description regarding the limitation that hash fields are not automatically updated by Renovate.
  • Maintenance Guidance: Provided explicit instructions for maintainers to utilize the fix-renovate-hashes.yml workflow and update flake outputs when adding new dependencies.
Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature Command Description
Code Review /gemini review Performs a code review for the current pull request in its current state.
Pull Request Summary /gemini summary Provides a summary of the current pull request in its current state.
Comment @gemini-code-assist Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help /gemini help Displays a list of available commands.

Customization

To customize the Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counterproductive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

A version bump is not the end, the hash remains, a broken friend. Update the workflow, fix the key, to keep the build in harmony.

Footnotes

  1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution.

Copilot AI reviewed May 15, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Documentation-only change clarifying that the custom Nix regex manager in the org-wide Renovate preset updates only version strings, not adjacent hash = "sha256-..." fields, and pointing maintainers to the per-repo fix-renovate-hashes.yml workflow plus the need to register new fetchPypi/fetchurl packages in the nix-update workflow and flake outputs.

Changes:

  • Expands the description of the Nix custom regex manager to document the hash-update gap and remediation path.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@JacobPEvans JacobPEvans merged commit c544ed7 into main May 15, 2026
6 checks passed
@JacobPEvans JacobPEvans deleted the fix/renovate-hash-docs branch May 15, 2026 12:13
@github-actions github-actions Bot mentioned this pull request May 15, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@JacobPEvans