This repository provides centralised configuration and automation for the bootc-dev organisation. It is designed to simplify and standardise infrastructure, with Renovate as one part of the overall setup. The repository will grow to support additional infrastructure and automation purposes in the future as needed.
The main goal of this repository is to:
- Centralise configuration for CI and automation tools across the organisation.
- Simplify onboarding for new repositories and maintainers.
- Enable strict configuration inheritance for consistency, with flexibility for overrides.
- Group and manage dependencies and automation for easier review and maintenance.
This section describes how Renovate Bot is configured and used in this repository to manage dependency updates across multiple repositories in the organisation.
- Autodiscovery: Renovate is configured to automatically find all repositories the GitHub App token has access to.
- Shared Configuration: The
renovate-shared-config.jsonfile defines base rules, grouping strategies, and custom package rules. All repositories inherit these settings unless they opt out. - No Onboarding PRs: Onboarding PRs are disabled, so repositories start using the shared config immediately.
- Branch Naming: All Renovate branches are prefixed for easy identification.
- Platform Support: The configuration is tailored for GitHub, with support for forked repositories and platform-specific features.
If your repository is part of the bootc-dev GitHub organisation:
- Inherit the central config: By default, your repository will use the shared configuration from this repo. No additional setup is required unless you want to override specific settings.
- Customise if needed: You can add your own
renovate.jsonor similar config file in your repository to override or extend the shared settings. - Review dependency PRs: Renovate will create PRs for dependency updates according to the shared rules, grouping, and strategies defined here.
- Update shared config: To change organisation-wide Renovate behaviour, edit the configuration files in this repository. Changes will propagate to all inheriting repositories.
- Monitor and audit: Use the central config to ensure compliance and best practices across all projects.
You can manually trigger the Renovate workflow from the GitHub Actions tab:
- Go to the Actions tab in this repository.
- Select the Renovate workflow.
- Click Run workflow.
- Optionally, set the log level (
infoordebug) before starting.
This is useful for testing configuration changes or running Renovate outside the scheduled times.
- Best-practices base config: Extends Renovate's recommended settings for reliability and security.
- Commit sign-off: Ensures all dependency update commits are signed off for traceability.
- Dependency grouping: Groups updates for GitHub Actions, Rust, Docker, and more for easier review.
- Custom rules: Includes rules for disabling certain updates (e.g., Fedora OCI images) and controlling digest pinning.
- Ensure your repository is part of the organisation and Renovate is installed.
- Review the Renovate documentation for advanced usage and customisation options.
For questions or improvements, open an issue or pull request in this repository. Contributions to the shared configuration are welcome and help improve dependency management for all projects in the organisation.
MIT OR Apache-2.0
![@bootc-bot[bot]](https://avatars.githubusercontent.com/u/202312630?s=64&v=4){kind=small}