diff --git a/.buildkite/pipeline.yml b/.buildkite/pipeline.yml index 2b6776f74..184a31c65 100644 --- a/.buildkite/pipeline.yml +++ b/.buildkite/pipeline.yml @@ -14,7 +14,7 @@ steps: if: build.branch != "master" - wait: - if: build.pull_request.repository.fork != true && build.branch !~ /^dependabot\/.*/ + if: build.pull_request.repository.fork != true && build.branch !~ /^(dependabot|renovate)\/.*/ # Manual intervention by team required to deploy for forked PRs (prevent secret leakage). - block: "Public fork needs approval" @@ -32,7 +32,7 @@ steps: - label: ":rocket: Setup Deployment" command: ".buildkite/deployment.sh | buildkite-agent pipeline upload" depends_on: ~ - if: build.branch != "master" && build.branch !~ /^dependabot\/.*/ && build.pull_request.repository.fork != true + if: build.branch != "master" && build.branch !~ /^(dependabot|renovate)\/.*/ && build.pull_request.repository.fork != true # Removed dependency optimisation for forked PRs to enforce block step. - label: ":rocket: Setup Deployment" diff --git a/.github/probot.js b/.github/probot.js index 61fa3580d..8f49a5077 100644 --- a/.github/probot.js +++ b/.github/probot.js @@ -8,6 +8,10 @@ on('pull_request.opened') context => context.payload.pull_request.head.ref.slice(0, 11) !== 'dependabot/' ) + .filter( + context => + context.payload.pull_request.head.ref.slice(0, 9) !== 'renovate/' + ) .comment(`## Artifacts These changes are published for testing on Buildkite and DockerHub. diff --git a/.renovaterc b/.renovaterc new file mode 100644 index 000000000..3d04e2481 --- /dev/null +++ b/.renovaterc @@ -0,0 +1,58 @@ +{ + "extends": [ + "config:base", + ":prHourlyLimit4", + ":semanticCommitTypeAll(chore)", + ":separatePatchReleases" + ], + "ignorePresets": [ + ":combinePatchMinorReleases", + "helpers:disableTypesNodeMajor", + ":prHourlyLimit2", + ":semanticPrefixFixDepsChoreOthers" + ], + "enabledManagers": [ + "bundler", + "docker-compose", + "dockerfile", + "gomod", + "npm" + ], + "labels": [ + "dependencies" + ], + "packageRules": [ + { + "datasources": [ + "docker" + ], + "addLabels": [ + "docker" + ] + }, + { + "datasources": [ + "go" + ], + "addLabels": [ + "go" + ] + }, + { + "datasources": [ + "npm" + ], + "addLabels": [ + "javascript" + ] + }, + { + "datasources": [ + "rubygems" + ], + "addLabels": [ + "ruby" + ] + } + ] +} \ No newline at end of file