Skip to content

chore: Configure Renovate (Sebastian Software)#7

Open
jamesfastnerbot wants to merge 1 commit into
mainfrom
renovate/configure
Open

chore: Configure Renovate (Sebastian Software)#7
jamesfastnerbot wants to merge 1 commit into
mainfrom
renovate/configure

Conversation

@jamesfastnerbot

Copy link
Copy Markdown

Renovate maintained by Sebastian Software GmbH — repository standards live at sebastian-software/standards.

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

📚 See our Reading List for relevant documentation you may be interested in reading.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch and select the Retry/Rebase checkbox below. Renovate will update the Pull Request description the next time it runs.


Detected Package Files

  • .github/workflows/deploy.yml (github-actions)
  • package.json (npm)
  • renovate.json (renovate-config)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Show only the Age and Confidence Merge Confidence badges for pull requests.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Ensure that every dependency pinned by digest and sourced from Forgejo contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from Gitea contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitHub.com and Github enterprise contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitLab.com contains a link to the commit-to-commit diff
  • Correctly link to the source code for golang.org/x packages
  • Link to pkg.go.dev/... for golang.org/x packages' title
  • Provide a link to octochangelog's improved breakdown for Renovate's changelogs
  • Wait until the npm package is three days old before raising the update. This a) introduces a short delay to allow for malware researchers and scanners to (possibly) detect any malicious behaviour in packages, and b) prevents the maintainer and/or NPM from unpublishing a package you already upgraded to, breaking builds.
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Show only the Age and Confidence Merge Confidence badges for pull requests.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Ensure that every dependency pinned by digest and sourced from Forgejo contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from Gitea contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitHub.com and Github enterprise contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitLab.com contains a link to the commit-to-commit diff
  • Correctly link to the source code for golang.org/x packages
  • Link to pkg.go.dev/... for golang.org/x packages' title
  • Provide a link to octochangelog's improved breakdown for Renovate's changelogs
  • Evaluate schedules according to timezone Europe/Berlin.
  • Shared Renovate preset for all Sebastian Software repositories.
  • Drives the @sebastian-software/standards rollout: stamps .repometa.json#standards against the package's manifest.json#currentVersion and runs the mechanical sync. Variant A is in force — a human merges every standards: PR after the two external agent runs (apply-judgement + pre-review) have posted their commit/comment; this preset deliberately sets no automerge.
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Show only the Age and Confidence Merge Confidence badges for pull requests.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Ensure that every dependency pinned by digest and sourced from Forgejo contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from Gitea contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitHub.com and Github enterprise contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitLab.com contains a link to the commit-to-commit diff
  • Correctly link to the source code for golang.org/x packages
  • Link to pkg.go.dev/... for golang.org/x packages' title
  • Provide a link to octochangelog's improved breakdown for Renovate's changelogs
  • Evaluate schedules according to timezone Europe/Berlin.
  • Shared Renovate preset for all Sebastian Software repositories.

What to Expect

With your current configuration, Renovate will create 17 Pull Requests:

chore(deps): update dependency isbot to v5.1.43
  • Schedule: ["at any time"]
  • Branch name: renovate/isbot-5.x-lockfile
  • Merge into: main
  • Upgrade isbot to 5.1.43
chore(deps): update dependency vite to v8.0.16
  • Schedule: ["at any time"]
  • Branch name: renovate/vite-8.x-lockfile
  • Merge into: main
  • Upgrade vite to 8.0.16
chore(deps): update react monorepo to v19.2.17
  • Schedule: ["at any time"]
  • Branch name: renovate/react-monorepo
  • Merge into: main
  • Upgrade @types/react to 19.2.17
chore(deps): update dependency ardo to v3.5.0
  • Schedule: ["at any time"]
  • Branch name: renovate/ardo-3.x-lockfile
  • Merge into: main
  • Upgrade ardo to 3.5.0
chore(deps): update dependency eslint-config-setup to ^0.4.0
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-config-setup-0.x
  • Merge into: main
  • Upgrade eslint-config-setup to ^0.4.0
chore(deps): update dependency jiti to v2.7.0
  • Schedule: ["at any time"]
  • Branch name: renovate/jiti-2.x-lockfile
  • Merge into: main
  • Upgrade jiti to 2.7.0
chore(deps): update dependency typescript to ~5.9.0
  • Schedule: ["at any time"]
  • Branch name: renovate/typescript-5.x
  • Merge into: main
  • Upgrade typescript to ~5.9.0
chore(deps): update eslint monorepo to v10.5.0
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-monorepo
  • Merge into: main
  • Upgrade eslint to 10.5.0
chore(deps): update oxc toolchain to v1.70.0
  • Schedule: ["at any time"]
  • Branch name: renovate/oxc-toolchain
  • Merge into: main
  • Upgrade oxlint to 1.70.0
chore(deps): update pnpm to v10.34.3
  • Schedule: ["at any time"]
  • Branch name: renovate/pnpm-10.x
  • Merge into: main
  • Upgrade pnpm to 10.34.3
fix(deps): update lucide monorepo to ^0.577.0
  • Schedule: ["at any time"]
  • Branch name: renovate/lucide-monorepo
  • Merge into: main
  • Upgrade lucide-react to ^0.577.0
chore(deps): update actions/checkout action to v7
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-checkout-7.x
  • Merge into: main
  • Upgrade actions/checkout to v7
chore(deps): update actions/setup-node action to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-setup-node-6.x
  • Merge into: main
  • Upgrade actions/setup-node to v6
chore(deps): update dependency typescript to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/typescript-6.x
  • Merge into: main
  • Upgrade typescript to ~6.0.0
chore(deps): update pnpm to v11
  • Schedule: ["at any time"]
  • Branch name: renovate/pnpm-11.x
  • Merge into: main
  • Upgrade pnpm to 11.7.0
chore(deps): update pnpm/action-setup action to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/pnpm-action-setup-6.x
  • Merge into: main
  • Upgrade pnpm/action-setup to v6
fix(deps): update lucide monorepo to v1
  • Schedule: ["at any time"]
  • Branch name: renovate/major-lucide-monorepo
  • Merge into: main
  • Upgrade lucide-react to ^1.0.0

🚸 PR creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prHourlyLimit for details.


❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.


  • If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by Mend Renovate.

@jamesfastnerbot jamesfastnerbot added the dependencies Pull requests that update a dependency file label Jun 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants