Skip to content

chore: Configure Renovate#5494

Open
renovate[bot] wants to merge 1 commit into
masterfrom
renovate/configure
Open

chore: Configure Renovate#5494
renovate[bot] wants to merge 1 commit into
masterfrom
renovate/configure

Conversation

@renovate
Copy link
Copy Markdown

@renovate renovate Bot commented May 9, 2026

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

📚 See our Reading List for relevant documentation you may be interested in reading.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

Detected Package Files

  • .github/actions/test-prep/action.yaml (github-actions)
  • .github/workflows/backport.yml (github-actions)
  • .github/workflows/build-installer.yml (github-actions)
  • .github/workflows/build-snap.yml (github-actions)
  • .github/workflows/check-formatting.yml (github-actions)
  • .github/workflows/check-unit-tests.yml (github-actions)
  • .github/workflows/cla-check.yml (github-actions)
  • .github/workflows/stale-cron.yaml (github-actions)
  • .github/workflows/update-images.yml (github-actions)
  • build-scripts/components/python/requirements.txt (pip_requirements)
  • installer/requirements.txt (pip_requirements)
  • installer/setup.py (pip_setup)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Hopefully safe environment variables to allow users to configure.
  • Show all Merge Confidence badges for pull requests.
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Show only the Age and Confidence Merge Confidence badges for pull requests.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.
  • Ensure that every dependency pinned by digest and sourced from Forgejo contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from Gitea contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitHub.com and Github enterprise contains a link to the commit-to-commit diff
  • Ensure that every dependency pinned by digest and sourced from GitLab.com contains a link to the commit-to-commit diff
  • Correctly link to the source code for golang.org/x packages
  • Link to pkg.go.dev/... for golang.org/x packages' title

What to Expect

With your current configuration, Renovate will create 17 Pull Requests:

chore(deps): update dependency requests to v2.33.0 [security]
  • Branch name: renovate/pypi-requests-vulnerability
  • Merge into: master
  • Upgrade requests to ==2.33.0
chore(deps): update dependency urllib3 to v2 [security]
  • Branch name: renovate/pypi-urllib3-vulnerability
  • Merge into: master
  • Upgrade urllib3 to ==2.6.3
chore(deps): update dependency psutil to v5.9.8
  • Schedule: ["at any time"]
  • Branch name: renovate/psutil-5.x
  • Merge into: master
  • Upgrade psutil to ==5.9.8
chore(deps): update dependency pyyaml to v6.0.3
  • Schedule: ["at any time"]
  • Branch name: renovate/pyyaml-6.x
  • Merge into: master
  • Upgrade PyYAML to ==6.0.3
chore(deps): update dependency toml to v0.10.2
  • Schedule: ["at any time"]
  • Branch name: renovate/toml-0.x
  • Merge into: master
  • Upgrade toml to ==0.10.2
chore(deps): update dependency certifi to v2024.12.14
  • Schedule: ["at any time"]
  • Branch name: renovate/certifi-2024.x
  • Merge into: master
  • Upgrade certifi to ==2024.12.14
chore(deps): update dependency idna to v3.13
  • Schedule: ["at any time"]
  • Branch name: renovate/idna-3.x
  • Merge into: master
  • Upgrade idna to ==3.13
chore(deps): update dependency jsonschema to v4.26.0
  • Schedule: ["at any time"]
  • Branch name: renovate/jsonschema-4.x
  • Merge into: master
  • Upgrade jsonschema to ==4.26.0
chore(deps): update dependency netifaces to v0.11.0
  • Schedule: ["at any time"]
  • Branch name: renovate/netifaces-0.x
  • Merge into: master
  • Upgrade netifaces to ==0.11.0
chore(deps): update dependency python to 3.14
  • Schedule: ["at any time"]
  • Branch name: renovate/python-3.x
  • Merge into: master
  • Upgrade python to 3.14
chore(deps): update dependency requests_unixsocket to v0.4.1
  • Schedule: ["at any time"]
  • Branch name: renovate/requests_unixsocket-0.x
  • Merge into: master
  • Upgrade requests_unixsocket to ==0.4.1
chore(deps): update dependency simplejson to v3.20.2
  • Schedule: ["at any time"]
  • Branch name: renovate/simplejson-3.x
  • Merge into: master
  • Upgrade simplejson to ==3.20.2
chore(deps): update dependency certifi to v2026
  • Schedule: ["at any time"]
  • Branch name: renovate/certifi-2026.x
  • Merge into: master
  • Upgrade certifi to ==2026.4.22
chore(deps): update dependency chardet to v7
  • Schedule: ["at any time"]
  • Branch name: renovate/chardet-7.x
  • Merge into: master
  • Upgrade chardet to ==7.4.3
chore(deps): update dependency click to v8
  • Schedule: ["at any time"]
  • Branch name: renovate/click-8.x
  • Merge into: master
  • Upgrade click to ~=8.3
  • Upgrade click to ==8.3.3
chore(deps): update dependency psutil to v7
  • Schedule: ["at any time"]
  • Branch name: renovate/psutil-7.x
  • Merge into: master
  • Upgrade psutil to ==7.2.2
chore(deps): update dependency simplejson to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/simplejson-4.x
  • Merge into: master
  • Upgrade simplejson to ==4.1.1

🚸 PR creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prHourlyLimit for details.

Warning

Please correct - or verify that you can safely ignore - these dependency lookup failures before you merge this PR.

  • Failed to look up github-tags package aquasecurity/setup-trivy: no-result

Files affected: .github/workflows/build-snap.yml

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

This PR was generated by Mend Renovate. View the repository job log.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants