Skip to content

Configure Renovate #23

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Configure Renovate #23

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Jan 7, 2022

WhiteSource Renovate

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

  • package.json (npm)
  • .travis.yml (travis)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Enable Renovate Dependency Dashboard creation
  • If semantic commits detected, use semantic commit type fix for dependencies and chore for all others
  • Ignore node_modules, bower_components, vendor and various test/tests directories
  • Autodetect whether to pin dependencies or maintain ranges
  • Rate limit PR creation to a maximum of two per hour
  • Limit to maximum 10 open PRs at any time
  • Group known monorepo packages together
  • Use curated list of recommended non-monorepo package groupings
  • Fix some problems with very old Maven commons versions
  • Ignore spring cloud 1.x releases
  • Ignore http4s digest-based 1.x milestones
  • Use node versioning for @types/node
  • Limit concurrent requests to reduce load on Repology servers until we can fix this properly, see issue 10133

🔡 Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Pull Requests in the "What to Expect" section below will be updated the next time Renovate runs.

What to Expect

With your current configuration, Renovate will create 43 Pull Requests:

chore(deps): update dependency acorn to 5.7.4 [security]
  • Branch name: renovate/npm-acorn-vulnerability
  • Merge into: master
  • Upgrade acorn to 5.7.4
chore(deps): update dependency dot-prop to 4.2.1 [security]
  • Branch name: renovate/npm-dot-prop-vulnerability
  • Merge into: master
  • Upgrade dot-prop to 4.2.1
chore(deps): update dependency ecstatic to 4.1.3 [security]
  • Branch name: renovate/npm-ecstatic-vulnerability
  • Merge into: master
  • Upgrade ecstatic to 4.1.3
chore(deps): update dependency extend to 3.0.2 [security]
  • Branch name: renovate/npm-extend-vulnerability
  • Merge into: master
  • Upgrade extend to 3.0.2
chore(deps): update dependency glob-parent to 5.1.2 [security]
  • Branch name: renovate/npm-glob-parent-vulnerability
  • Merge into: master
  • Upgrade glob-parent to 5.1.2
chore(deps): update dependency handlebars to 4.7.7 [security]
  • Branch name: renovate/npm-handlebars-vulnerability
  • Merge into: master
  • Upgrade handlebars to 4.7.7
chore(deps): update dependency highlight.js to 10.4.1 [security]
  • Branch name: renovate/npm-highlight.js-vulnerability
  • Merge into: master
  • Upgrade highlight.js to 10.4.1
chore(deps): update dependency hosted-git-info to 2.8.9 [security]
  • Branch name: renovate/npm-hosted-git-info-vulnerability
  • Merge into: master
  • Upgrade hosted-git-info to 2.8.9
chore(deps): update dependency ini to 1.3.6 [security]
  • Branch name: renovate/npm-ini-vulnerability
  • Merge into: master
  • Upgrade ini to 1.3.6
chore(deps): update dependency js-yaml to 3.13.1 [security]
  • Branch name: renovate/npm-js-yaml-vulnerability
  • Merge into: master
  • Upgrade js-yaml to 3.13.1
chore(deps): update dependency lodash to 4.17.21 [security]
  • Branch name: renovate/npm-lodash-vulnerability
  • Merge into: master
  • Upgrade lodash to 4.17.21
chore(deps): update dependency lodash.merge to 4.6.2 [security]
  • Branch name: renovate/npm-lodash.merge-vulnerability
  • Merge into: master
  • Upgrade lodash.merge to 4.6.2
chore(deps): update dependency lodash.mergewith to 4.6.2 [security]
  • Branch name: renovate/npm-lodash.mergewith-vulnerability
  • Merge into: master
  • Upgrade lodash.mergewith to 4.6.2
chore(deps): update dependency lodash.template to 4.5.0 [security]
  • Branch name: renovate/npm-lodash.template-vulnerability
  • Merge into: master
  • Upgrade lodash.template to 4.5.0
chore(deps): update dependency mem to 4.0.0 [security]
  • Branch name: renovate/npm-mem-vulnerability
  • Merge into: master
  • Upgrade mem to 4.0.0
chore(deps): update dependency merge to 2.1.1 [security]
  • Branch name: renovate/npm-merge-vulnerability
  • Merge into: master
  • Upgrade merge to 2.1.1
chore(deps): update dependency minimist to 1.2.3 [security]
  • Branch name: renovate/npm-minimist-vulnerability
  • Merge into: master
  • Upgrade minimist to 1.2.3
chore(deps): update dependency mixin-deep to 1.3.2 [security]
  • Branch name: renovate/npm-mixin-deep-vulnerability
  • Merge into: master
  • Upgrade mixin-deep to 1.3.2
chore(deps): update dependency morgan to 1.9.1 [security]
  • Branch name: renovate/npm-morgan-vulnerability
  • Merge into: master
  • Upgrade morgan to 1.9.1
chore(deps): update dependency node-notifier to 8.0.1 [security]
  • Branch name: renovate/npm-node-notifier-vulnerability
  • Merge into: master
  • Upgrade node-notifier to 8.0.1
chore(deps): update dependency path-parse to 1.0.7 [security]
  • Branch name: renovate/npm-path-parse-vulnerability
  • Merge into: master
  • Upgrade path-parse to 1.0.7
chore(deps): update dependency set-value to 2.0.1 [security]
  • Branch name: renovate/npm-set-value-vulnerability
  • Merge into: master
  • Upgrade set-value to 2.0.1
chore(deps): update dependency tmpl to 1.0.5 [security]
  • Branch name: renovate/npm-tmpl-vulnerability
  • Merge into: master
  • Upgrade tmpl to 1.0.5
chore(deps): update dependency trim to 0.0.3 [security]
  • Branch name: renovate/npm-trim-vulnerability
  • Merge into: master
  • Upgrade trim to 0.0.3
chore(deps): update dependency trim-newlines to 3.0.1 [security]
  • Branch name: renovate/npm-trim-newlines-vulnerability
  • Merge into: master
  • Upgrade trim-newlines to 3.0.1
chore(deps): update dependency y18n to 3.2.2 [security]
  • Branch name: renovate/npm-y18n-vulnerability
  • Merge into: master
  • Upgrade y18n to 3.2.2
chore(deps): update dependency yargs-parser to 13.1.2 [security]
  • Branch name: renovate/npm-yargs-parser-vulnerability
  • Merge into: master
  • Upgrade yargs-parser to 13.1.2
chore(deps): pin dependencies
chore(deps): pin dependencies
  • Schedule: ["at any time"]
  • Branch name: renovate/jest-monorepo
  • Merge into: master
  • Pin @types/jest to 22.2.3
  • Upgrade jest to 23.6.0
chore(deps): update commitlint monorepo
chore(deps): update dependency conventional-changelog-cli to v2.2.2
  • Schedule: ["at any time"]
  • Branch name: renovate/conventional-changelog-cli-2.x
  • Merge into: master
  • Upgrade conventional-changelog-cli to 2.2.2
chore(deps): update dependency supertest to v3.4.2
  • Schedule: ["at any time"]
  • Branch name: renovate/supertest-3.x
  • Merge into: master
  • Upgrade supertest to 3.4.2
chore(deps): update commitlint monorepo (major)
chore(deps): update dependency @​moyuyc/husky to v2
  • Schedule: ["at any time"]
  • Branch name: renovate/moyuyc-husky-2.x
  • Merge into: master
  • Upgrade @moyuyc/husky to 2.0.0
chore(deps): update dependency supertest to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/supertest-6.x
  • Merge into: master
  • Upgrade supertest to 6.1.6
chore(deps): update jest monorepo (major)
  • Schedule: ["at any time"]
  • Branch name: renovate/major-jest-monorepo
  • Merge into: master
  • Upgrade @types/jest to 27.4.0
  • Upgrade jest to 27.4.7
fix(deps): update dependency debug to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/debug-4.x
  • Merge into: master
  • Upgrade debug to ^4.0.0
fix(deps): update dependency pify to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/pify-5.x
  • Merge into: master
  • Upgrade pify to ^5.0.0
fix(deps): update dependency rehype-raw to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/rehype-raw-6.x
  • Merge into: master
  • Upgrade rehype-raw to ^6.0.0
fix(deps): update dependency rehype-stringify to v9
  • Schedule: ["at any time"]
  • Branch name: renovate/rehype-stringify-9.x
  • Merge into: master
  • Upgrade rehype-stringify to ^9.0.0
fix(deps): update dependency to-vfile to v7
  • Schedule: ["at any time"]
  • Branch name: renovate/to-vfile-7.x
  • Merge into: master
  • Upgrade to-vfile to ^7.0.0
fix(deps): update dependency vfile-reporter to v7
  • Schedule: ["at any time"]
  • Branch name: renovate/vfile-reporter-7.x
  • Merge into: master
  • Upgrade vfile-reporter to ^7.0.0
fix(deps): update remark monorepo (major)
  • Schedule: ["at any time"]
  • Branch name: renovate/major-remark-monorepo
  • Merge into: master
  • Upgrade remark to ^14.0.0
  • Upgrade remark-rehype to ^10.0.0

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or spam the project. See docs for prhourlylimit for details.

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

This PR has been generated by WhiteSource Renovate. View repository job log here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@renovate-bot