Skip to content

Configure Renovate#19

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/configure
Open

Configure Renovate#19
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/configure

Conversation

@renovate

@renovate renovate Bot commented May 2, 2026

Copy link
Copy Markdown

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

📚 See our Reading List for relevant documentation you may be interested in reading.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.


Detected Package Files

  • src-tauri/Cargo.toml (cargo)
  • src-tauri/gen/apple/Podfile (cocoapods)
  • .github/workflows/build-and-deploy.yml (github-actions)
  • src-tauri/gen/android/buildSrc/src/main/java/de/michaelkuckuk/debate_mate/kotlin/BuildTask.kt (gradle)
  • src-tauri/gen/android/buildSrc/src/main/java/de/michaelkuckuk/debate_mate/kotlin/RustPlugin.kt (gradle)
  • src-tauri/gen/android/gradle.properties (gradle)
  • src-tauri/gen/android/settings.gradle (gradle)
  • src-tauri/gen/android/build.gradle.kts (gradle)
  • src-tauri/gen/android/app/build.gradle.kts (gradle)
  • src-tauri/gen/android/buildSrc/build.gradle.kts (gradle)
  • src-tauri/gen/android/gradle/wrapper/gradle-wrapper.properties (gradle-wrapper)
  • mise.toml (mise)
  • package.json (npm)
  • pnpm-workspace.yaml (npm)
  • renovate.json (renovate-config)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Hopefully safe environment variables to allow users to configure.
  • Show all Merge Confidence badges for pull requests.
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Show only the Age and Confidence Merge Confidence badges for pull requests.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Ensure that every dependency pinned by digest and sourced from Forgejo contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from Gitea contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitHub.com and Github enterprise contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitLab.com contains a link to the commit-to-commit diff
  • Correctly link to the source code for golang.org/x packages
  • Link to pkg.go.dev/... for golang.org/x packages' title
  • Pin Docker digests.
  • Pin github-action digests.
  • Enable Renovate configuration migration PRs when needed.
  • Pin dependency versions for development dependencies.
  • Recommended configuration for abandoned packages, treating packages without a release for 1 year as abandoned, while taking into account community-sourced overrides.
  • Wait until the npm package is three days old before raising the update. This a) introduces a short delay to allow for malware researchers and scanners to (possibly) detect any malicious behaviour in packages, and b) prevents the maintainer and/or NPM from unpublishing a package you already upgraded to, breaking builds.
  • Run lock file maintenance (updates) early Monday mornings.
  • Group all minor and patch updates together.
  • Add LBBO as reviewer for PRs.
  • Do not separate patch and minor upgrades into separate PRs for the same dependency.
  • Rebase existing PRs any time the base branch has been updated.
  • Disable Renovate Dependency Dashboard creation.

What to Expect

With your current configuration, Renovate will create 19 Pull Requests:

Pin dependencies
Pin dependencies
Update all non-major dependencies
Update actions/cache action to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-cache-5.x
  • Merge into: main
  • Upgrade actions/cache to 27d5ce7f107fe9357f9df03efb73ab90386fccae
Update actions/checkout action to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-checkout-6.x
  • Merge into: main
  • Upgrade actions/checkout to de0fac2e4500dabe0009e67214ff5f5447ce83dd
Update actions/configure-pages action to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-configure-pages-6.x
  • Merge into: main
  • Upgrade actions/configure-pages to 45bfe0192ca1faeb007ade9deae92b16b8254a0d
Update actions/deploy-pages action to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-deploy-pages-5.x
  • Merge into: main
  • Upgrade actions/deploy-pages to cd2ce8fcbc39b97be8ca5fce6e763baed58fa128
Update actions/setup-node action to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-setup-node-6.x
  • Merge into: main
  • Upgrade actions/setup-node to 48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e
Update actions/upload-pages-artifact action to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-upload-pages-artifact-5.x
  • Merge into: main
  • Upgrade actions/upload-pages-artifact to fc324d3547104276b827a68afc52ff2a11cc49c9
Update dependency com.android.tools.build:gradle to v9
Update dependency eslint to v10
  • Schedule: ["at any time"]
  • Branch name: renovate/major-eslint-monorepo
  • Merge into: main
  • Upgrade eslint to ^10.0.0
Update dependency lucide-react to v1
  • Schedule: ["at any time"]
  • Branch name: renovate/major-lucide-monorepo
  • Merge into: main
  • Upgrade lucide-react to ^1.0.0
Update dependency node to v24
  • Schedule: ["at any time"]
  • Branch name: renovate/node-24.x
  • Merge into: main
  • Upgrade node to 24
  • Upgrade @types/node to ^24.0.0
Update dependency org.jetbrains.kotlin:kotlin-gradle-plugin to v2
Update dependency pnpm to v11
  • Schedule: ["at any time"]
  • Branch name: renovate/pnpm-11.x
  • Merge into: main
  • Upgrade pnpm to 11.0.8
  • Upgrade pnpm to 11
Update dependency typescript to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/typescript-6.x
  • Merge into: main
  • Upgrade typescript to ^6.0.0
Update Gradle to v9
  • Schedule: ["at any time"]
  • Branch name: renovate/gradle-9.x
  • Merge into: main
  • Upgrade gradle to 9.5.0
Update pnpm/action-setup action to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/pnpm-action-setup-6.x
  • Merge into: main
  • Upgrade pnpm/action-setup to 8912a9102ac27614460f54aedde9e1e7f9aec20d
Lock file maintenance
  • Schedule: ["* 0-3 * * 1"]
  • Branch name: renovate/lock-file-maintenance
  • Merge into: main
  • Regenerate lock files to use latest dependency versions

🚸 PR creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prHourlyLimit for details.


❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.


This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot requested a review from LBBO May 2, 2026 12:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants