Skip to content

chore: Configure Renovate #17

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
meysam81 merged 1 commit into from
Oct 29, 2024
Merged

chore: Configure Renovate #17

meysam81 merged 1 commit into from
Oct 29, 2024

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Oct 9, 2024

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 Renovate will begin keeping your dependencies up-to-date only once you merge or close this Pull Request.

Detected Package Files

  • Cargo.toml (cargo)
  • Dockerfile (dockerfile)
  • .github/workflows/ci.yml (github-actions)
  • kustomize/overlays/dev/kustomization.yml (kustomize)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Show all Merge Confidence badges for pull requests.
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

What to Expect

With your current configuration, Renovate will create 4 Pull Requests:

fix(deps): update rust crate serde to v1.0.210
  • Schedule: ["at any time"]
  • Branch name: renovate/serde-monorepo
  • Merge into: main
  • Upgrade serde to 1.0.210
fix(deps): update rust crate actix-web to v4.9.0
  • Schedule: ["at any time"]
  • Branch name: renovate/actix-web-4.x-lockfile
  • Merge into: main
  • Upgrade actix-web to 4.9.0
fix(deps): update rust crate tokio to v1.40.0
  • Schedule: ["at any time"]
  • Branch name: renovate/tokio-1.x-lockfile
  • Merge into: main
  • Upgrade tokio to 1.40.0
chore(deps): update ghcr.io/developer-friendly/echo-server docker tag to v11227006167

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

This PR was generated by Mend Renovate. View the repository job log.

@github-actions
Copy link

github-actions bot commented Oct 9, 2024

🔍 Vulnerabilities of ghcr.io/developer-friendly/echo-server:11257137676

📦 Image Reference ghcr.io/developer-friendly/echo-server:11257137676
digestsha256:fe1be01759ff0fd1e5a3b387a11f5d43100cd8d2d1171dc4a220fd122d789c2e
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
size12 MB
packages11
📦 Base Image gcr.io/distroless/static:nonroot
digestsha256:bc539c0f2a6047152f4b919c04be587fcb935a1e550dac7debe94cff0be02ddb
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0

@github-actions
Copy link

github-actions bot commented Oct 9, 2024

Overview

Image reference ghcr.io/developer-friendly/echo-server:latest ghcr.io/developer-friendly/echo-server:11257137676
- digest afbb57194f06 fe1be01759ff
- tag latest 11257137676
- provenance 272ef58 8d8b49a
- vulnerabilities critical: 0 high: 0 medium: 0 low: 0 critical: 0 high: 0 medium: 0 low: 0
- platform linux/amd64 linux/amd64
- size 12 MB 12 MB (+9.7 kB)
- packages 11 11
Base Image distroless/static:latest distroless/static:latest
- vulnerabilities critical: 0 high: 0 medium: 0 low: 0 critical: 0 high: 0 medium: 0 low: 0
Labels (3 changes)
  • ± 3 changed
  • 5 unchanged
-org.opencontainers.image.created=2024-06-27T06:48:37.964Z
+org.opencontainers.image.created=2024-10-09T14:30:37.365Z
 org.opencontainers.image.description=
 org.opencontainers.image.licenses=Apache-2.0
-org.opencontainers.image.revision=272ef5863de17ed6f1f316865f9c216e5772c2e1
+org.opencontainers.image.revision=8d8b49a5d7d4b8b84eb20b8d119c8ab0007b86cb
 org.opencontainers.image.source=https://github.com/developer-friendly/echo-server
 org.opencontainers.image.title=echo-server
 org.opencontainers.image.url=https://github.com/developer-friendly/echo-server
-org.opencontainers.image.version=main
+org.opencontainers.image.version=pr-17
Packages and Vulnerabilities (5 package changes and 0 vulnerability changes)
  • ♾️ 5 packages changed
  • 6 packages unchanged
Changes for packages of type deb (5 changes)
Package Version
ghcr.io/developer-friendly/echo-server:latest		 Version
ghcr.io/developer-friendly/echo-server:11257137676
♾️ base-files 12.4+deb12u5 12.4+deb12u7
♾️ glibc 2.36-9+deb12u7 2.36-9+deb12u8
♾️ libc6 2.36-9+deb12u7 2.36-9+deb12u8
♾️ libssl3 3.0.11-1~deb12u2 3.0.14-1~deb12u2
♾️ openssl 3.0.11-1~deb12u2 3.0.14-1~deb12u2

@meysam81 meysam81 merged commit 28e66e5 into main Oct 29, 2024
@meysam81 meysam81 deleted the renovate/configure branch October 29, 2024 13:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@meysam81 meysam81 meysam81 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@meysam81