pom/dependencies
pom/dependencies
4
0
Fork 0
Code Issues 1 Pull requests Projects Releases 15 Packages Wiki Activity Actions

chore: Configure Renovate [ci skip] #1

Merged
oliver merged 1 commit from renovate/configure into main 2025-01-08 15:35:16 +01:00
Conversation 2 Commits 1 Files changed 1 +6
renovatebot commented 2025-01-08 15:01:03 +01:00
Member
Copy link

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

  • .forgejo/workflows/release.yaml (github-actions)
  • .forgejo/workflows/sonarqube.yaml (github-actions)
  • pom.xml (maven)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Assign PRs to oliver.
  • Add oliver as reviewer for PRs.
  • Apply label renovate to PRs.
  • Raise PR when vulnerability alerts are detected with label security.
  • Append Signed-off-by: to signoff Git commits.
  • Evaluate schedules according to timezone Europe/Berlin.
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic prefixes for commit messages and PR titles.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Preserve (but continue to upgrade) any existing SemVer ranges.
  • Rebase existing PRs any time the base branch has been updated.
  • Do not separate patch and minor upgrades into separate PRs for the same dependency.
  • Enable Renovate configuration migration PRs when needed.
  • Pin dependency versions for devDependencies.
  • Pin Docker digests.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Pin github-action digests.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

What to Expect

With your current configuration, Renovate will create 2 Pull Requests:

chore(deps): pin dependencies
chore(deps): update https://gitea.com/actions/upload-artifact action to v4

⚠️ Warning

Please correct - or verify that you can safely ignore - these dependency lookup failures before you merge this PR.

  • Failed to look up maven package ch.qos.logback:logback-classic
  • Failed to look up maven package ch.qos.logback:logback-core
  • Failed to look up maven package ch.qos.logback.contrib:logback-json-classic
  • Failed to look up maven package ch.qos.logback.contrib:logback-jackson
  • Failed to look up maven package org.apache.maven.plugins:maven-deploy-plugin
  • Failed to look up maven package org.apache.maven.plugins:maven-compiler-plugin
  • Failed to look up maven package org.apache.maven.plugins:maven-javadoc-plugin
  • Failed to look up maven package org.apache.maven.plugins:maven-source-plugin

Files affected: pom.xml

Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

This PR has been generated by Renovate Bot.

Welcome to [Renovate](https://github.com/renovatebot/renovate)! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin. 🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged. --- ### Detected Package Files * `.forgejo/workflows/release.yaml` (github-actions) * `.forgejo/workflows/sonarqube.yaml` (github-actions) * `pom.xml` (maven) ### Configuration Summary Based on the default config's presets, Renovate will: - Start dependency updates only once this onboarding PR is merged - Assign PRs to `oliver`. - Add `oliver` as reviewer for PRs. - Apply label `renovate` to PRs. - Raise PR when vulnerability alerts are detected with label `security`. - Append `Signed-off-by:` to signoff Git commits. - Evaluate schedules according to timezone `Europe/Berlin`. - Enable Renovate Dependency Dashboard creation. - Use semantic prefixes for commit messages and PR titles. - Use semantic commit type `fix` for dependencies and `chore` for all others if semantic commits are in use. - Ignore `node_modules`, `bower_components`, `vendor` and various test/tests (except for nuget) directories. - Preserve (but continue to upgrade) any existing SemVer ranges. - Rebase existing PRs any time the base branch has been updated. - Do not separate `patch` and `minor` upgrades into separate PRs for the same dependency. - Enable Renovate configuration migration PRs when needed. - Pin dependency versions for `devDependencies`. - Pin Docker digests. - Group known monorepo packages together. - Use curated list of recommended non-monorepo package groupings. - Apply crowd-sourced package replacement rules. - Apply crowd-sourced workarounds for known problems with packages. - Pin `github-action` digests. 🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to `renovate.json` in this branch. Renovate will update the Pull Request description the next time it runs. --- ### What to Expect With your current configuration, Renovate will create 2 Pull Requests: <details> <summary>chore(deps): pin dependencies</summary> - Schedule: ["at any time"] - Branch name: `renovate/pin-dependencies` - Merge into: `main` - Upgrade [https://gitea.com/actions/upload-artifact](https://gitea.com/actions/upload-artifact) to `ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5` - Upgrade [https://github.com/actions/cache](https://github.com/actions/cache) to `1bd1e32a3bdc45362d1e726936510720a7c30a57` - Upgrade [https://github.com/obfu5c8/action-svu](https://github.com/obfu5c8/action-svu) to `e0ac511a90318bc284bf845936acd5c5c077d788` - Upgrade https://w9r.dev/actions/release-action to `main` </details> <details> <summary>chore(deps): update https://gitea.com/actions/upload-artifact action to v4</summary> - Schedule: ["at any time"] - Branch name: `renovate/major-github-artifact-actions` - Merge into: `main` - Upgrade [https://gitea.com/actions/upload-artifact](https://gitea.com/actions/upload-artifact) to `6f51ac03b9356f520e9adb1b1b7802705f340c2b` </details> --- > > ⚠️ **Warning** > > Please correct - or verify that you can safely ignore - these dependency lookup failures before you merge this PR. > > - `Failed to look up maven package ch.qos.logback:logback-classic` > - `Failed to look up maven package ch.qos.logback:logback-core` > - `Failed to look up maven package ch.qos.logback.contrib:logback-json-classic` > - `Failed to look up maven package ch.qos.logback.contrib:logback-jackson` > - `Failed to look up maven package org.apache.maven.plugins:maven-deploy-plugin` > - `Failed to look up maven package org.apache.maven.plugins:maven-compiler-plugin` > - `Failed to look up maven package org.apache.maven.plugins:maven-javadoc-plugin` > - `Failed to look up maven package org.apache.maven.plugins:maven-source-plugin` > > Files affected: `pom.xml` --- ❓ Got questions? Check out Renovate's [Docs](https://docs.renovatebot.com/), particularly the Getting Started section. If you need any further assistance then you can also [request help here](https://github.com/renovatebot/renovate/discussions). --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-config-hash:38e5a5ff87351290ddf656bc11c168e0f946d2e5a25e4dcb432f38732b700d73-->
renovatebot added 1 commit 2025-01-08 15:01:03 +01:00
chore(deps): add renovate.json
All checks were successful
SonarQube Scan / SonarQube Trigger (push) Successful in 1m8s
Details
release / Release (push) Successful in 2m4s
Details
a49f32762b 
Signed-off-by: RenovateBot <renovatebot@w9r.dev>
oliver was assigned by renovatebot 2025-01-08 15:01:04 +01:00
requested review from oliver 2025-01-08 15:01:04 +01:00
forgejo commented 2025-01-08 15:01:07 +01:00
Owner
Copy link

Welcome to Renovate ( https://github.com/renovatebot/renovate ) ! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

Welcome to Renovate ( https://github.com/renovatebot/renovate ) ! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin. 🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged. Detected Package Files
oliver merged commit a49f32762b into main 2025-01-08 15:35:16 +01:00
oliver deleted branch renovate/configure 2025-01-08 15:35:16 +01:00
forgejo commented 2025-01-08 15:35:19 +01:00
Owner
Copy link

@oliver hat #1 in main zusammengeführt.

Auf Forgejo: Beyond coding. We Forge. ansehen ( #1 ) oder antworte direkt auf diese E-Mail.

*@oliver* hat #1 in main zusammengeführt. --- Auf Forgejo: Beyond coding. We Forge. ansehen ( https://w9r.dev/pom/dependencies/pulls/1 ) oder antworte direkt auf diese E-Mail.
Sign in to join this conversation.
Reviewers
No reviewers
oliver
Labels
Clear labels   
released

Issue has been released

No labels
released
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
oliver
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: pom/dependencies#1
No description provided.
Delete branch "renovate/configure"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?