From f24c544018302958849325e56b46b8f981cd2fbf Mon Sep 17 00:00:00 2001
From: Xuan Hu <i@huxuan.org>
Date: Tue, 20 Feb 2024 12:31:07 +0800
Subject: [PATCH 1/5] chore: add initial version of renovate config

---
 .github/workflows/renovate.yml     | 29 +++++++++++++++++++++++++++++
 .gitlab/workflows/ci.yml           |  2 +-
 .gitlab/workflows/commitlint.yml   |  2 +-
 .gitlab/workflows/devcontainer.yml |  3 ++-
 .gitlab/workflows/renovate.yml     | 27 +++++++++++++++++++++++++++
 .renovaterc.json                   | 10 ++++++++++
 .vscode/settings.json              |  1 +
 7 files changed, 71 insertions(+), 3 deletions(-)
 create mode 100644 .github/workflows/renovate.yml
 create mode 100644 .gitlab/workflows/renovate.yml
 create mode 100644 .renovaterc.json

diff --git a/.github/workflows/renovate.yml b/.github/workflows/renovate.yml
new file mode 100644
index 00000000..fd92c918
--- /dev/null
+++ b/.github/workflows/renovate.yml
@@ -0,0 +1,29 @@
+name: Renovate
+jobs:
+  renovate:
+    container:
+      env:
+        LOG_LEVEL: debug
+        RENOVATE_BRANCH_PREFIX: renovate-github/
+        RENOVATE_ENABLED_MANAGERS: '["pep621", "github-actions"]'
+        RENOVATE_GIT_AUTHOR: Renovate GitHub Bot <github@renovatebot.com>
+        RENOVATE_OPTIMIZE_FOR_DISABLED: 'true'
+        RENOVATE_PLATFORM: github
+        RENOVATE_REPOSITORIES: '["${{ github.repository }}"]'
+        RENOVATE_REPOSITORY_CACHE: enabled
+        RENOVATE_TOKEN: ${{ secrets.RENOVATE_TOKEN }}
+      image: ghcr.io/renovatebot/renovate:37.202.2
+    runs-on: ubuntu-latest
+    steps:
+      - run: env | sort
+      - run: |
+          if [ -z "${{ secrets.RENOVATE_TOKEN }}" ]; then
+            echo "RENOVATE_TOKEN not set, skipping ..."
+          else
+            renovate $RENOVATE_EXTRA_FLAG
+          fi
+on:
+  schedule:
+    # * is a special character in YAML so you have to quote this string
+    - cron: '0 * * * 0,6'
+  workflow_dispatch: null
diff --git a/.gitlab/workflows/ci.yml b/.gitlab/workflows/ci.yml
index 191593f6..711de24d 100644
--- a/.gitlab/workflows/ci.yml
+++ b/.gitlab/workflows/ci.yml
@@ -16,7 +16,7 @@ ci:
           - '3.11'
           - '3.12'
   rules:
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"
     - if: $CI_PIPELINE_SOURCE == 'merge_request_event'
   script:
     - make dev
diff --git a/.gitlab/workflows/commitlint.yml b/.gitlab/workflows/commitlint.yml
index 3f1c8f18..23367f53 100644
--- a/.gitlab/workflows/commitlint.yml
+++ b/.gitlab/workflows/commitlint.yml
@@ -4,7 +4,7 @@ commitlint:
     entrypoint: [""]
   interruptible: true
   rules:
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"
     - if: $CI_PIPELINE_SOURCE == 'merge_request_event'
   script:
     - |
diff --git a/.gitlab/workflows/devcontainer.yml b/.gitlab/workflows/devcontainer.yml
index 4938a1a4..9be72847 100644
--- a/.gitlab/workflows/devcontainer.yml
+++ b/.gitlab/workflows/devcontainer.yml
@@ -11,7 +11,8 @@ dev-container-publish:
   rules:
     - changes:
         - .devcontainer/Dockerfile
-      if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+      if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"
+    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "web"
   script:
     - docker login -u ${CI_REGISTRY_USER} -p ${CI_REGISTRY_PASSWORD} ${CI_REGISTRY}
     - docker context create builder
diff --git a/.gitlab/workflows/renovate.yml b/.gitlab/workflows/renovate.yml
new file mode 100644
index 00000000..dc172b1c
--- /dev/null
+++ b/.gitlab/workflows/renovate.yml
@@ -0,0 +1,27 @@
+renovate:
+  cache:
+    key: ${CI_COMMIT_REF_SLUG}-renovate
+    paths:
+      - renovate/cache/renovate/repository/
+  image: renovate/renovate:37.202.2
+  rules:
+    - if: $CI_PIPELINE_SOURCE == "schedule"
+  script:
+    - |
+      if [ -z "$RENOVATE_TOKEN" ]; then
+        echo "RENOVATE_TOKEN not set, skipping ..."
+      else
+        renovate $RENOVATE_EXTRA_FLAG
+      fi
+  stage: build
+  variables:
+    LOG_LEVEL: debug
+    RENOVATE_BASE_DIR: $CI_PROJECT_DIR/renovate
+    RENOVATE_BRANCH_PREFIX: renovate-gitlab/
+    RENOVATE_ENABLED_MANAGERS: '["pep621"]'
+    RENOVATE_ENDPOINT: $CI_API_V4_URL
+    RENOVATE_GIT_AUTHOR: Renovate GitLab Bot <gitlab@renovatebot.com>
+    RENOVATE_OPTIMIZE_FOR_DISABLED: 'true'
+    RENOVATE_PLATFORM: gitlab
+    RENOVATE_REPOSITORIES: '["$CI_PROJECT_PATH"]'
+    RENOVATE_REPOSITORY_CACHE: enabled
diff --git a/.renovaterc.json b/.renovaterc.json
new file mode 100644
index 00000000..eb577d2b
--- /dev/null
+++ b/.renovaterc.json
@@ -0,0 +1,10 @@
+{
+    "$schema": "https://docs.renovatebot.com/renovate-schema.json",
+    "extends": [
+        "config:best-practices",
+        ":maintainLockFilesWeekly"
+    ],
+    "ignorePaths": [
+        "**/template/**"
+    ]
+}
diff --git a/.vscode/settings.json b/.vscode/settings.json
index ef2700b9..33936a79 100644
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -45,6 +45,7 @@
     "pyproject",
     "pytest",
     "Quickstart",
+    "renovatebot",
     "setuptools",
     "softprops",
     "sphinxcontrib",

From e83876fd30b7d5135019a563e903e5d4a896eafd Mon Sep 17 00:00:00 2001
From: Xuan Hu <i@huxuan.org>
Date: Tue, 20 Feb 2024 19:26:10 +0800
Subject: [PATCH 2/5] Update template.

---
 template/.renovaterc.json                     | 10 +++++++
 template/.vscode/settings.json                |  1 +
 .../workflows/renovate.yml.jinja              | 29 +++++++++++++++++++
 .../workflows/ci.yml.jinja                    |  2 +-
 .../workflows/commitlint.yml                  |  2 +-
 .../workflows/devcontainer.yml.jinja          |  3 +-
 .../workflows/renovate.yml                    | 27 +++++++++++++++++
 7 files changed, 71 insertions(+), 3 deletions(-)
 create mode 100644 template/.renovaterc.json
 create mode 100644 template/[% if repo_host_type == 'github.com' %].github[% endif %]/workflows/renovate.yml.jinja
 create mode 100644 template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml

diff --git a/template/.renovaterc.json b/template/.renovaterc.json
new file mode 100644
index 00000000..eb577d2b
--- /dev/null
+++ b/template/.renovaterc.json
@@ -0,0 +1,10 @@
+{
+    "$schema": "https://docs.renovatebot.com/renovate-schema.json",
+    "extends": [
+        "config:best-practices",
+        ":maintainLockFilesWeekly"
+    ],
+    "ignorePaths": [
+        "**/template/**"
+    ]
+}
diff --git a/template/.vscode/settings.json b/template/.vscode/settings.json
index ef2700b9..33936a79 100644
--- a/template/.vscode/settings.json
+++ b/template/.vscode/settings.json
@@ -45,6 +45,7 @@
     "pyproject",
     "pytest",
     "Quickstart",
+    "renovatebot",
     "setuptools",
     "softprops",
     "sphinxcontrib",
diff --git a/template/[% if repo_host_type == 'github.com' %].github[% endif %]/workflows/renovate.yml.jinja b/template/[% if repo_host_type == 'github.com' %].github[% endif %]/workflows/renovate.yml.jinja
new file mode 100644
index 00000000..f48cd321
--- /dev/null
+++ b/template/[% if repo_host_type == 'github.com' %].github[% endif %]/workflows/renovate.yml.jinja	
@@ -0,0 +1,29 @@
+name: Renovate
+jobs:
+  renovate:
+    container:
+      env:
+        LOG_LEVEL: debug
+        RENOVATE_BRANCH_PREFIX: renovate-github/
+        RENOVATE_ENABLED_MANAGERS: '["pep621", "github-actions"]'
+        RENOVATE_GIT_AUTHOR: Renovate GitHub Bot <github@renovatebot.com>
+        RENOVATE_OPTIMIZE_FOR_DISABLED: 'true'
+        RENOVATE_PLATFORM: github
+        RENOVATE_REPOSITORIES: '["{{ '${{ github.repository }}' }}"]'
+        RENOVATE_REPOSITORY_CACHE: enabled
+        RENOVATE_TOKEN: {{ '${{ secrets.RENOVATE_TOKEN }}' }}
+      image: ghcr.io/renovatebot/renovate:37.202.2
+    runs-on: ubuntu-latest
+    steps:
+      - run: env | sort
+      - run: |
+          if [ -z "{{ '${{ secrets.RENOVATE_TOKEN }}' }}" ]; then
+            echo "RENOVATE_TOKEN not set, skipping ..."
+          else
+            renovate $RENOVATE_EXTRA_FLAG
+          fi
+on:
+  schedule:
+    # * is a special character in YAML so you have to quote this string
+    - cron: '0 * * * 0,6'
+  workflow_dispatch: null
diff --git a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/ci.yml.jinja b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/ci.yml.jinja
index c2aa2fd0..9936a2ca 100644
--- a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/ci.yml.jinja	
+++ b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/ci.yml.jinja	
@@ -27,7 +27,7 @@ ci:
           - '3.12'
 [%- endif %]
   rules:
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"
     - if: $CI_PIPELINE_SOURCE == 'merge_request_event'
   script:
     - make dev
diff --git a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/commitlint.yml b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/commitlint.yml
index 3f1c8f18..23367f53 100644
--- a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/commitlint.yml	
+++ b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/commitlint.yml	
@@ -4,7 +4,7 @@ commitlint:
     entrypoint: [""]
   interruptible: true
   rules:
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"
     - if: $CI_PIPELINE_SOURCE == 'merge_request_event'
   script:
     - |
diff --git a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/devcontainer.yml.jinja b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/devcontainer.yml.jinja
index 080a2fd2..abf7a0d1 100644
--- a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/devcontainer.yml.jinja	
+++ b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/devcontainer.yml.jinja	
@@ -22,7 +22,8 @@ dev-container-publish:
   rules:
     - changes:
         - .devcontainer/Dockerfile
-      if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+      if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "push"
+    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_PIPELINE_SOURCE == "web"
   script:
     - docker login -u ${CI_REGISTRY_USER} -p ${CI_REGISTRY_PASSWORD} ${CI_REGISTRY}
     - docker context create builder
diff --git a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml
new file mode 100644
index 00000000..dc172b1c
--- /dev/null
+++ b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml	
@@ -0,0 +1,27 @@
+renovate:
+  cache:
+    key: ${CI_COMMIT_REF_SLUG}-renovate
+    paths:
+      - renovate/cache/renovate/repository/
+  image: renovate/renovate:37.202.2
+  rules:
+    - if: $CI_PIPELINE_SOURCE == "schedule"
+  script:
+    - |
+      if [ -z "$RENOVATE_TOKEN" ]; then
+        echo "RENOVATE_TOKEN not set, skipping ..."
+      else
+        renovate $RENOVATE_EXTRA_FLAG
+      fi
+  stage: build
+  variables:
+    LOG_LEVEL: debug
+    RENOVATE_BASE_DIR: $CI_PROJECT_DIR/renovate
+    RENOVATE_BRANCH_PREFIX: renovate-gitlab/
+    RENOVATE_ENABLED_MANAGERS: '["pep621"]'
+    RENOVATE_ENDPOINT: $CI_API_V4_URL
+    RENOVATE_GIT_AUTHOR: Renovate GitLab Bot <gitlab@renovatebot.com>
+    RENOVATE_OPTIMIZE_FOR_DISABLED: 'true'
+    RENOVATE_PLATFORM: gitlab
+    RENOVATE_REPOSITORIES: '["$CI_PROJECT_PATH"]'
+    RENOVATE_REPOSITORY_CACHE: enabled

From 0ee572ab81e81d30bce194c5d39ee62aca1b0afe Mon Sep 17 00:00:00 2001
From: Xuan Hu <i@huxuan.org>
Date: Tue, 20 Feb 2024 19:30:55 +0800
Subject: [PATCH 3/5] chore: test gitlab rules if work

---
 .gitlab/workflows/renovate.yml | 10 ++--------
 1 file changed, 2 insertions(+), 8 deletions(-)

diff --git a/.gitlab/workflows/renovate.yml b/.gitlab/workflows/renovate.yml
index dc172b1c..6990fb68 100644
--- a/.gitlab/workflows/renovate.yml
+++ b/.gitlab/workflows/renovate.yml
@@ -5,14 +5,8 @@ renovate:
       - renovate/cache/renovate/repository/
   image: renovate/renovate:37.202.2
   rules:
-    - if: $CI_PIPELINE_SOURCE == "schedule"
-  script:
-    - |
-      if [ -z "$RENOVATE_TOKEN" ]; then
-        echo "RENOVATE_TOKEN not set, skipping ..."
-      else
-        renovate $RENOVATE_EXTRA_FLAG
-      fi
+    - if: $CI_PIPELINE_SOURCE == "schedule" && $RENOVATE_TOKEN != null
+  script: renovate $RENOVATE_EXTRA_FLAG
   stage: build
   variables:
     LOG_LEVEL: debug

From 5a8b4cfb791b18b4ef3abd98a0686cb9ae1bce55 Mon Sep 17 00:00:00 2001
From: Xuan Hu <i@huxuan.org>
Date: Tue, 20 Feb 2024 19:41:57 +0800
Subject: [PATCH 4/5] Update template.

---
 .../workflows/renovate.yml                             | 10 ++--------
 1 file changed, 2 insertions(+), 8 deletions(-)

diff --git a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml
index dc172b1c..6990fb68 100644
--- a/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml	
+++ b/template/[% if repo_host_type == 'gitlab.com' or repo_host_type == 'gitlab-self-managed' %].gitlab[% endif %]/workflows/renovate.yml	
@@ -5,14 +5,8 @@ renovate:
       - renovate/cache/renovate/repository/
   image: renovate/renovate:37.202.2
   rules:
-    - if: $CI_PIPELINE_SOURCE == "schedule"
-  script:
-    - |
-      if [ -z "$RENOVATE_TOKEN" ]; then
-        echo "RENOVATE_TOKEN not set, skipping ..."
-      else
-        renovate $RENOVATE_EXTRA_FLAG
-      fi
+    - if: $CI_PIPELINE_SOURCE == "schedule" && $RENOVATE_TOKEN != null
+  script: renovate $RENOVATE_EXTRA_FLAG
   stage: build
   variables:
     LOG_LEVEL: debug

From 511190c33ca58bd55fcefa002f0f1f36dd1c5705 Mon Sep 17 00:00:00 2001
From: Xuan Hu <i@huxuan.org>
Date: Tue, 20 Feb 2024 20:01:23 +0800
Subject: [PATCH 5/5] Update template for renovaterc.

---
 template/{.renovaterc.json => .renovaterc.json.jinja} | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)
 rename template/{.renovaterc.json => .renovaterc.json.jinja} (74%)

diff --git a/template/.renovaterc.json b/template/.renovaterc.json.jinja
similarity index 74%
rename from template/.renovaterc.json
rename to template/.renovaterc.json.jinja
index eb577d2b..e9b8a2b9 100644
--- a/template/.renovaterc.json
+++ b/template/.renovaterc.json.jinja
@@ -3,8 +3,10 @@
     "extends": [
         "config:best-practices",
         ":maintainLockFilesWeekly"
-    ],
+    ]
+[%- if project_name == "Serious Scaffold Python" %],
     "ignorePaths": [
         "**/template/**"
     ]
+[%- endif %]
 }