Feedback thread: customDatasources

[secustor]

Tell us more.

Tell us how you like the new customDatasources experimental feature. What works for you, what doesn't work for you? Do you see anything we could improve?

Let us know what you think! 😉

[rakunoi]

I love the feature! I've already been experimenting with this and it proves to be really useful.

One thing, as far as I understand the implementation (see the remaining TODO), it expects the custom registry to return JSON document. In one of my use-cases, the API returns a plain text string that is supposed to represent latest version (GET on /custom api return body "1.0.0" or "123.123.asd-123.zxcase" or even "my-custom-versioning-scheme")

In that case, parsing it fails as it's not a valid JSON (I guess because the body is unquoted so it's not treated as string literal).

Is that something that can be worked around at a current state? Maybe we could have some kind of configuration option as to how to translate whatever comes from API to JSON literal?

[secustor]

Glad that you like it!

Currently this is not possible, but should be rather easy to implement.

Would you be interested to implement it, if I write up an feature request issue with the requirements?

[rakunoi]

sure thing, I think I'll be able to. We could discuss it further down the road :)

[secustor]

#23371

[secustor]

Idea: allow to run to external binaries to fetch data. The output is then fed into the current logic with Jsonata rules.
Like postUpdateTasks this should be limited to self hosted instances.

My use case here is aws CLI. It could be quite challenging to implement all the requirements of that API

cc @rarkins @viceice

[rarkins]

We can't use aws as a library instead, in a repology like way?

But for self-hosted I'm open to the idea of arbitrary CLI commands for datasource lookups

[secustor]

Should be possible, but I'm not sure if custom is the right place to that as datasource.

[viceice]

for self-hosted ok, but should be disabled by default like post upgrade tasks

[secustor]

#23410

[lenntt]

I'm new to renovate, I love it, it love the docs, but I feel there's a lot of concepts being thrown at me - I think I would really benefit from this custom data source, so some documentation more specific to my type of use case would help.

I feel I just need some url generator, a json parser for the content - its a bit hard to know which of the matchers and templates are relevant.
More details on my use case here: #23416

[Demivan]

I really like it. I'm using it to get releases of Hashicorp tools using their API and update Ansible playbooks.
It is cool that datasource even retrieves release notes.

[SirUli]

@Demivan great - thank you! Much appreciated!

[secustor]

@SirUli PRs to extend the docs are always welcome.

[SirUli]

@Demivan i assume your .yml file then has something along these lines?

# renovate: datasource=custom.hashicorp depName=vault
vault_version: "1.14.0"

In my case, renovate detects that there is "something" in the .yml as it lists the file in the dependency dashboard but it doesn't list the dependencies. So apparently i'm doing something wrong there or simply overlook something. I also tried the following (remove "custom" from the datasource):

# renovate: datasource=hashicorp depName=vault
vault_version: "1.14.0"

but that didn't help. Any idea? Thanks in advance!

[Demivan]

@SirUli With your yml format matchStrings extracts version as "1.14.0" and not 1.14.0. That could be the cause of the issue.
I recommend trying regex preview site to check it, for example: https://regex101.com/

Here is my yml definition:

# renovate: depName=nomad
nomad_version: 1.6.0

datasource is not needed as datasourceTemplate will set it if not present.

[SirUli]

Yehhhaaaawww - not it worked ;) You are right, it was a bit more picky than i anticipated. I made the double quotes to be optionally there and now it went through nicely. Also i had to use loose versioning for my usecase but that is a different story. The final setup for me i

In the *.yml files of ansible:

# renovate: datasource=custom.nexus_generic depName=something versioning=loose
something_version: "77"

In Renovate:

{
  "regexManagers": [
    {
      "fileMatch": ["\\.yml$"],
      "datasourceTemplate": "custom.nexus_generic",
      "matchStrings": [
        "#\\s*renovate:\\s*(datasource=(?<datasource>.*?) )?depName=(?<depName>.*?)( versioning=(?<versioning>.*?))?\\s*\\w*:\\s*\"?(?<currentValue>.+?)\"?\\s"
      ],
      "versioningTemplate": "{{#if versioning}}{{{versioning}}}{{else}}semver{{/if}}"
    }
  ],
  "customDatasources": {
    "nexus_generic": {
      "defaultRegistryUrlTemplate": "https://nexus.mycompany.com/repository/versiontrackers/{{packageName}}/versiontracker.json",
      "transformTemplates": [
        "{ \"releases\": $map($, function($v) { { \"version\": $v.version, \"sourceUrl\": $v.filelink } }) }"
      ]
    }
  },
}

And in each of the versiontracker.json files the following content:

[
    {
        "version": "77",
        "filelink": "https://nexus.mycompany.com/repository/software/something-77.zip"
    },
    {
        "version": "76",
        "filelink": "https://nexus.mycompany.com/repository/software/something-76.zip"
    },
]

Awesome work by the renovate makers!

[Shegox]

I used the custom datasource to extract supported kubernetes versions from Gardener and that worked great. Big thanks for adding this! Especially combining this as well with hostRules for authentication did work fully as expected.

Only thing, which did cost me some time and might benefit from improving is the documentation about the transformTemplates and the usage of JSONata, I think adding a set of documented examples might be beneficial for others to easier know how to use it for different use cases.
For me using https://try.jsonata.org/ to figure out the correct syntax of the transformTemplates helped a lot.

Here e.g. the configuration we use to track available and supported kubernetes versions in Gardener:

const config = {
    hostRules: [
        {
            matchHost: "https://api.gardener.company.com",
            token: "<gardenerToken>",
        }
    ],
    customDatasources: {
        "gardener-k8s-supported": {
            defaultRegistryUrlTemplate: 'https://api.gardener.company.com/apis/core.gardener.cloud/v1beta1/cloudprofiles/aws',
            transformTemplates: [
                `{"releases": $$.spec.kubernetes.versions[classification = 'supported'].{"version": $.version, "sourceUrl":"https://github.com/kubernetes/kubernetes", "changelogUrl":$join(["https://github.com/kubernetes/kubernetes/releases/tag/",$.version])},"sourceUrl": "https://github.com/kubernetes/kubernetes","homepage": "https://github.com/kubernetes/kubernetes"}`
            ],
        },
        "gardener-k8s-available": {
            defaultRegistryUrlTemplate: 'https://api.gardener.company.com/apis/core.gardener.cloud/v1beta1/cloudprofiles/aws',
            transformTemplates: [
                `{"releases": $$.spec.kubernetes.versions.{"version": $.version, "sourceUrl":"https://github.com/kubernetes/kubernetes", "changelogUrl":$join(["https://github.com/kubernetes/kubernetes/releases/tag/",$.version])},"sourceUrl": "https://github.com/kubernetes/kubernetes","homepage": "https://github.com/kubernetes/kubernetes"}`
            ],
        },
    }
}

[dl-mai]

Great feature. I also love that it works with host rules which does not seem to be documented. That enables i.e. fetching data from the gitlab api.
I have troubles getting the customDatasources configured in the renovate.json of the repository though. I can only configure it successfully in the main renovate config. Otherwise I get an error stating it does not find the custom data source.

[dl-mai]

I have copy paste the the same customdatasource between the configs with no success.
actually I tried a few combinations. I.e. placing the regex manager config in the Repo but the custom datasource in the main config. The error not finding the custom datasource also appears.
Only when I place all of the configs in the main config it actually works as expected.

[secustor]

Can you share a reproduction repo?
Then we can investigate what is happening.

[dl-mai]

I indeed havent escaped my transformTemplate properly. Thank you very much for giving me the hint.
The error log stating the datasource custom.<name> was not found was not really clear to me though.

[secustor]

Not sure why you get this message. A reproduction repo would be helpful here.

[dl-mai]

I have created very basic example since i cannot share the private repository.
Here is the repository with the configuration for the custom data source
https://github.com/dl-mai/renovate-custom-datasource-repo
The config for renovate-cli is very plain:
https://github.com/dl-mai/renovate-custom-datasource-main/blob/main/config.js

When I use a transformTemplate that does not match I get the following error message:

DEBUG: Datasource connection error (repository=dl-mai/renovate-custom-datasource-repo)
       "datasource": "custom",
       "packageName": "k3s",
       "url": undefined,
       "errCode": "S0201"
DEBUG: Failed to look up custom.k3s package k3s (repository=dl-mai/renovate-custom-datasource-repo, packageFile=k3s.version, dependency=k3s)

[mikutas]

This feature is useful for me to lock aws-for-fluent-bit to stable.

https://github.com/aws/aws-for-fluent-bit#guidance-on-consuming-versions

The best practice for consuming AWS for Fluent Bit is to check the AWS_FOR_FLUENT_BIT_STABLE_VERSION file and lock your prod deployments to that specific version tag. For example, if the current stable is 2.28.4, your deployment should use public.ecr.aws/aws-observability/aws-for-fluent-bit:2.28.4 not public.ecr.aws/aws-observability/aws-for-fluent-bit:stable.

{
  "packageRules": [
    {
      "matchDepNames": ["public.ecr.aws/aws-observability/aws-for-fluent-bit"],
      "matchDatasources": ["docker"],
      "matchManagers": ["helm-values"],
      "enabled": false
    }
  ],
  "regexManagers": [
    {
      "customType": "regex",
      "fileMatch": [
        "values\\.yaml"
      ],
      "matchStrings": [
        "public\\.ecr\\.aws\\/aws-observability\\/aws-for-fluent-bit:(?<currentValue>.*)"
      ],
      "datasourceTemplate": "custom.aws-for-fluent-bit-stable",
      "depNameTemplate": "public.ecr.aws/aws-observability/aws-for-fluent-bit"
    }
  ],
  "customDatasources": {
    "aws-for-fluent-bit-stable": {
      "defaultRegistryUrlTemplate": "https://raw.githubusercontent.com/aws/aws-for-fluent-bit/mainline/AWS_FOR_FLUENT_BIT_STABLE_VERSION",
      "format": "plain"
    }
  }
}

[mhutter]

Is there a way to debug your datasources?

I tried pulling in CoreOS updates via their stream JSON APIs. I validated the transformers against the data in https://try.jsonata.org/, but still Renovate insists that the currently used version is the latest one.

  "regexManagers": [
    {
      "fileMatch": [
        "template-x86_64.pkr.hcl"
      ],
      "matchStrings": [
        "coreos_release = \"(?<currentValue>\\S+)\""
      ],
      "depNameTemplate": "coreos",
      "datasourceTemplate": "custom.coreos-stable"
    }
  ],
  "customDatasources": {
    "coreos-stable": {
      "defaultRegistryUrlTemplate": "https://builds.coreos.fedoraproject.org/streams/stable.json",
      "transformTemplates": [
        "{\"releases\": [{\"version\": $$.(architectures.x86_64.artifacts.metal.release),\"changelogUrl\": \"https://fedoraproject.org/coreos/release-notes/?arch=x86_64&stream=stable\"}]}"
      ]
    }
  }

https://github.com/mhutter/hcloud-packer-coreos/blob/3f301613adeed5cc4b922ab5862d83520d696146/renovate.json

[mhutter]

The DEBUG logs confirm that the manager is picking up the dependency, and correctly prints its current version.

The repository linked above reproduces the issue, but I recreated it in a separate repo: https://github.com/mhutter/renovate-sandbox

[mhutter]

Transformer Expression: https://try.jsonata.org/Gkb9PSPeB

[secustor]

Reproduced: https://github.com/renovate-reproductions/23286-1

It is not a customDatasource issue.
The versioning, semver-coerced in that case, finds no valid versions as it does not support 4 digit versions.

[mhutter]

Aha! Would be interesting to have this in the debug logs though. As it DOES output the current version, I just assumed that this was not the issue.

Thanks to your input the fix was straight-forward:

"versioningTemplate": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)\\.(?<revision>\\d+)$",

I love the feature, it is just what I needed right now 👍

[secustor]

Glad that you like it.

A debug log for this scenarios has been added with this PR: #24514

[rjacks24]

Very glad for this feature! Thank you!
Though I was unsuccessfull getting it to use a host rule with a token, when using a defaultRegistryUrlTemplate. Even though urls were matched. I was thinking that maybe becuase we had multiple host rules applied on the same base url using different paths, that this might have been the issue. Still unclear, but I read above that it does work with host rules?

[secustor]

Yes, it should work the same as with other datasources.

The best way to understand your problem would be a new discussion with a reproduction repo.

[Shegox]

Not sure if related, but I noticed our custom datasources breaking since fadf1f2, which added e.g. to the GITEA_API_USING_HOST_TYPES resource the custom host type (which is used for custom datasources as well), which causes Renovate to use an authorization header like token abc instead of the expected Bearer abc. Even explicitly setting authType: "Bearer" doesn't make a difference:

renovate/lib/util/http/auth.ts

Lines 31 to 36 in 69f7240

	if (options.token) {
	if (
	options.hostType &&
	GITEA_API_USING_HOST_TYPES.includes(options.hostType)
	) {
	options.headers.authorization = `token ${options.token}`;

Edit: Created #24671 as follow up

[lenntt]

I've returned and managed to get a lot further.

A few things on my wish list:

• more examples, something using the artifactory API would be awesome (I'd be happy to submit one, just point me to a place?)
• being able to set more explicit logging (see below)
• reproritizing 'default' (registry) smartness (see below)

To give an example, my latest struggle:
I have a custom data source with a default registry template. I didn't configure a registry in the packagerules.

All I had was: "Failed to look up custom.X package Y".
(It turned out, a few traces earlier, it logged a HTTP error, which I ignored, as the registry wasn't one I recognized) It seems, it made up its own registry, which caused my template to be ignored :/. It took me a while to see the link between 'failed lookup' and the real reason.

[lenntt]

Config to update an (ivy) dependency, using the artifactory API, hope it helps someone

 packageRules.push({
        matchPackagePrefixes: ["com.mygroup."],
        // This should make the changes group into one PR
        groupName: "com.mygroup",
        datasource: `custom.localivy`,
        enabled: true,
        // needs to be set empty, otherwise it will make up with own and
        // the defaultregistry in the custom datasource is ignored.
        registryUrls: []
    })
   

customDatasources.localivy = {
      // We split the package name in group and artifact name
      defaultRegistryUrlTemplate: `https://<myartifactory>/api/search/versions?repos=local-ivy-repo&g={{{replace ":.*" "" packageName}}}&a={{{replace ".*:" "" packageName}}}`,
      transformTemplates: [
          '{"releases": [$map($.results, function($v) { { "version": $v.version }})]}',
      ]
  }

[secustor]

Regarding docs, you can find them for the custom manager here: https://github.com/renovatebot/renovate/tree/main/lib/modules/datasource/custom

Currently we have only special logging in the custom datasource for schema issues. If you can give us some specific what information would have helped you, we can consider it.

registryUrls: [] should be handled the same as registryUrls: null, tough this is not part of the custom datasources but from Renovate as a whole.
Please create a reproduction repo for that.

[GSeibt]

An Odyssey: Trying To Use Custom Datasources To Query APT-Repositories

So, we have two repositories on GitLab:

• D: Contains code in various languages and a lot of dependencies.
• R: Runs the Renovate Docker image once a day in GitLab CI. We currently use the renovate/renovate:37.173.0 image.

Renovate works perfectly fine for a large portion of our dependencies. We can update Docker image tags in Dockerfiles, Gitlab CI files, and Helm values.yml files. We can update Helm chart versions, Pipenv dependencies, and Terraform and Terragrunt dependencies. Great experience all around.

However, we also had to setup a customManager to handle some dependencies in our Dockerfile. We configured it like this:

{
    customType: "regex",
    fileMatch: [
      "(^|/|\\.)([Dd]ocker|[Cc]ontainer)file$",
      "(^|/)([Dd]ocker|[Cc]ontainer)file[^/]*$"
    ],
    matchStrings: [
      "#[ \\t]+Renovate:[ \\t]+datasource=(?<datasource>[.-_a-z]+?)[ \\t]+depName=(?<depName>\\S+?)(?:[ \\t]+(lookupName|packageName)=(?<packageName>\\S+?))?(?:[ \\t]+versioning=(?<versioning>\\S+?|regex:\\/.*?\\/))?(?:[ \\t]+extractVersion=(?<extractVersion>\\S+?))?(?:[ \\t]+registryUrl=(?<registryUrl>\\S+?))?(\\r|\\n|\\r\\n)(?:ENV|ARG)[ \\t]+.+?_VERSION[ =]\"?(?<currentValue>\\S+?)\""
    ],
    versioningTemplate: "{{#if versioning}}{{{versioning}}}{{else}}semver{{/if}}"
}

This is basically the example from the docs with some adjustments. I.e., it allows for something like

# Renovate: datasource=repology depName=ubuntu_22_04/git
ENV GIT_VERSION="2.34.1"

in our Dockerfile. Again, where we can use built-in datasources, this works fine.

Tools from custom APT repositories - Approach 1

Here's the issue: We build a Docker image that contains tools which are installed from custom APT repositories (e.g., google-cloud-cli), not from the default package sources of any distribution. I.e., the closest thing we could use is Repology here but most of the tools we install are not present there and if they are, it's the package manager of something like Arch Linux and we don't use that as a base image.

So my first workaround was this: Renovate can use GitHub releases and Git tags as a datasource. All the tools we install are available from accessible repositories so we can examine them and use the release names / Git tags as versions. This didn't work because the names of the releases / tags don't correspond directly to the version notation used in the APT repositories. We tried to map versions (which worked but was very messy) but then you run into the issue that versions published on GitHub take a while until they show up in the APT repositories. So Repology would propose an updated Dockerfile which then couldn't be built because the version wasn't present in the APT repository.

Wishlist:

Ideally, what we would need is a datasource that is given a URL to an APT repository plus the distribution and component and then figures out the available versions from the Packages file present in the repository.

Tools from custom APT repositories - Approach 2

So, since Renovate doesn't have such a datasource, I tried using the customDatasource instead. None of the formats work for a Packages file. It's not YAML, JSON or HTML. The Plain format also doesn't work because a Packages file contains a lot of lines that don't indicate versions. Also, it may contain more than one dependency (package) and thus you would have to filter / associate versions found in the Packages file. Even if you were to use the Plain format and then try and filter the versions using JSONata rules, that notation is not powerful enough.

Right, so my approach is this:

• Repository D will contain a script that can download and parse the Packages file given an APT sources.list entry. This script will produce files that simply contain the versions, one per line, available for a package in the repository. We will use the filename / folder structure to encode repository url, distribution, component, and package name. That info uniquely identifies a package.
• Repository D will have a GitLab CI job that can be triggered externally. The job runs this script for all APT sources.list entries found in our Dockerfile and produces files containing the versions for all packages as its artifacts.
• Repository R will trigger this job before it runs the Renovate job for D.
• We now need to get the Renovate customDatasource with type Plain to read these files.
• In Approach 2 I tried to use the GitLab CI job dependency notation to transfer these files from D to R. That worked out great, I could verify that I was getting the right files and I was now going to use a file:// URL in the customDatasource defaultRegistryUrlTemplate to have Renovate read the file.

Here come the issues with this approach:

The only template variable that we have access to in defaultRegistryUrlTemplate is packageName. At first, I used depName, packageName and registryUrl to encode the APT repository URL, distribution, component and package name. Now it is mentioned in the docs that only packageName is available (it's an easily missed sidenote in my oppinion), so my bad here. I now have to encode all info that identifies the package into packageName. Looks like this:

# Renovate: datasource=custom.local_apt_versions_file depName=google-cloud packageName=https://packages.cloud.google.com/apt/cloud-sdk/main/google-cloud-cli versioning=deb
ENV GCLOUD_VERSION="462.0.1-0"

Of course, the packageName is not a valid URL, its simply a concatenation of all identifying info for a package.
The script would produce a file named https___packages.cloud.google.com_apt_cloud_sdk_main_google_cloud_cli (some regex replacement here to make the packageName a valid file name).

Wishlist:

The defaultRegistryUrlTemplate should have access to all groups produced by the regex custom manager.

Now, Renovate and file:// URLs. The Docs contain an example where the URL is file://dependencies/{{packageName}}/versiontracker.json. I have to be pedantic here. This may look like a relative path to a file, but it is not. There are no URLs with the file schema that denote a relative path. In this URL, dependencies is the host on which to locate the resource with the absolute path /{{packageName}}/versiontracker.json. Renovate misuses the URL format by simply cutting off the file:// part and using the rest as a path. This is very bad practice in my opinion.

But lets run with it, everything after the file:// is the path Renovate will check. Two options:

1. The path is absolute, i.e., the URL really starts with file:///. (This is a valid URL with an empty host part). Turns out Renovate doesn't allow absolute paths to files outside of a "base directory". Surprisingly, this is not the baseDir that one can configure but a repository specific directory under that. Ok, so I figured out that path and copied my files into that folder.
2. The path is "relative". In this case it is interpreted against the base folder from 1.

So I put my files into the base folder, I verified that the file URL was correct given how it was handled, ran Renovate and... nothing. The files were gone. Well, turns out that Renovate will git clean the folder before cloning into it. Ok, that makes sense but it means that when using file:// URLs, the files pointed to have to have been committed to the repository. In our scenario, that doesn't make sense. These files change frequently and I don't want them in my repository, they are dynamically generated. I don't see under which circumstances it would make sense to have files like this committed to a repo.

Wishlist:

Renovate shouldn't misuse URLs like this. At least, the nonstandard behavior should be documented.

Wishlist:

It's good practice to restrict the folders from which files can be read via file:// URLs. If that is done, there needs to be a way of white-listing folders from which files may be read.

Tools from custom APT repositories - Approach 3

So we can't use file:// URLs. What about regular https://, the Plain manager can deal with those too.
Well, it's inconvenient that we can't use the GitLab CI features to transfer the files but alright, you can access the artifacts of a job via https:// URLs as well. I wrote code to figure out the ID of the triggered pipeline and from that the ID of the job that ran the script that produced the version files. I construct a defaultRegistryUrlTemplate that is an https:// URL to the file which I previously had a file:// URL pointing to.

Of course, accessing these artifacts requires an authentication header. Renovate already has a token defined that gives us access to the repository so we can use that. For validation I curl the URL, using the token, prior to running Renovate. This works. I configured hostRules to use that token for the URLs queried by the custom datasource:

{
  matchHost: `${process.env.RENOVATE_ENDPOINT}/projects/${process.env.PROJECT_ID}/jobs/${process.env.APT_VERSIONS_JOB_ID}/artifacts/${process.env.APT_VERSIONS_FOLDER}`,

  token: `${process.env.TOKEN}`,
  authType: "Bearer"
}

I run Renovate and... nothing. I get a 404 for the URL which in this case indicates an invalid authentication header. If the header had the correct format but the token was wrong, I would get 401.

By the way, the trace log shows "Adding Bearer authentication for URL" but this is not done.
The log is produced in applyHostRule but the (wrong) authentication header is added in applyAuthorization. The trace log shows everything is fine but in the end, the request fails. After some investigation, I found this discussion talking about the issue.

Wishlist:

Improve logging here. Logging shouldn't be disconnected from the thing being logged The actual format of the header being added should be in the TRACE log. As it is, the issue can only be diagnosed by examining the code.

Wishlist:

Create an issue to resolve this bug.

Finally, I tried to work around this issue by adding the authentication header myself. I added

allowedHeaders: [
    "Authorization",
    "X-*"
]

and to the hostRules instead of token and authType

headers: {
  Authorization: `Bearer ${process.env.TOKEN}`
}

This workaround also doesn't work. I don't know why, I stopped investigating due to time constraints at this point. I think it's because the repository we are working with is also on GitLab and Renovate internally adds hostRules to handle authentication. The matchHost for the hostRules is longer (i.e., more specific) and thus should win out but... it's not. Maybe the header is filtered out but I couldn't find any code doing that. Also, even if Renovate adds hostRules for the repository, the URL I am trying to add authentication to here is sub this repository and the token used to clone should work for getting the artifacts.

Wishlist:

It looks like we can't manually add an Authorization header. Is this a bug or a feature? Am I doing this wrong? Please clarify.

Conclusion / TLDR

I'd appreciate if you would take the time to look at this @secustor and tell me where / if I went wrong here. For now, we can't use Renovate to update APT backed dependencies. I think my approach should be doable but I am blocked by the issues that I described. My proposals for remediation are quoted.

[secustor]

Thanks for the walk through and sry for coming back this late.

Happy to review a PR for such a datasource.

For such usecases I can see adding a regex format which will transform each full match into an entry and groups into fields.
Would that solve your usecase?

Forwarding all capture groups is from an architectural point not so desired as managers and datasources are only lightly coupled.

The custom datasource is currently gated to files inside of the same repository and references are always in reference to that root.

Create a separate discussion with a reproduction for this, tough the OTEL integration may help you debug this.

[github-actions[bot]]

Hi there,

Please do not unnecessarily @ mention maintainers like @rarkins or @viceice. Doing so causes annoying notifications and makes it harder to maintain this repository.

For example, never @ mention a maintainer when you are creating a discussion if your desire is to get attention. This is rude behavior, just like shouting out your coffee order in a Starbucks before it's your turn.

It's OK to comment in an issue or discussion after multiple days or weeks. But please, still don't @ mention people. The maintainers try to answer most discussions, but they can't answer all discussions. If you're still not getting an answer, take a look at the information you've given us and see if you can improve it.

Thanks, the Renovate team

[viceice]

Found an additional interesting use case for k3s

https://github.com/visualon/renovate-config/pull/10/files
https://github.com/visualon/renovate-config/blob/main/.github/renovate.json#L8

[mikaello]

Custom datasources have been very helpful to us. Some general remarks:

• Debugging malformed transform templates is a bit hard. Better error messages when something is not correct would be helpful.
• What about a collection of user contributed custom datasources? I am sure many have found interesting usecases that may be helpful to others.
• When creating the JSONata transforms, the site https://try.jsonata.org/ was very helpful.

Some of our usecases:

• We had problems with Repology, so we created our custom homebrew datasources which have worked very well:

  "customDatasources": {
    "homebrew-core": {
      "defaultRegistryUrlTemplate": "https://formulae.brew.sh/api/formula/{{packageName}}.json",
      "transformTemplates": [
        "{ \"releases\": [{ \"version\": versions.stable, \"digest\": $type(urls.stable.revision) = 'null' ? undefined : urls.stable.revision, \"isDeprecated\": deprecated, \"sourceUrl\": urls.head.url } ], \"sourceUrl\": urls.head.url, \"homepage\": homepage }"
      ]
    },
    "homebrew-cask": {
      "defaultRegistryUrlTemplate": "https://formulae.brew.sh/api/cask.json",
      "transformTemplates": [
        "$[token = '{{packageName}}']",
        "{ \"releases\": [{ \"version\": $split(version, ',')[0], \"digest\": sha256, \"isDeprecated\": deprecated, \"sourceUrl\": url }], \"sourceUrl\": url, \"homepage\": homepage }"
      ]
    }
  }

• To get only the LTS version of Promethus, we have created a custom datasource with EndOfLife Date (I know about the Endoflife Date datasource, but it got no information about if a version is LTS or not):

  "customDatasources": {
    "prometheus-lts": {
      "defaultRegistryUrlTemplate": "https://endoflife.date/api/prometheus.json",
      "transformTemplates": [
        "{\"releases\": $[lts=true].{\"version\": \"v\" & latest,\"sourceUrl\": \"https://github.com/prometheus/prometheus\"},\"homepage\": \"https://prometheus.io\"}"
      ]
    }
  }

[secustor]

1. Regarding the error message we are dependong the jsonata package :/
2. There is a tracking issue for that Create a preset for custom datasources  #26852
3. We have links to that page at different points of the documentation, tough seems maybe not explicit enough. Doc PRs are always welcome.