Configure Renovate

Open dyad-dependency-manager[bot] opened this issue 1 month ago • 0 comments

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

.github/workflows/TagBot.yml (github-actions)
.github/workflows/ci.yml (github-actions)
.github/renovate.json (renovate-config-presets)
Project.toml (regex)

Configuration Summary

Based on the default config's presets, Renovate will:

Start dependency updates only once this onboarding PR is merged
Enable Renovate Dependency Dashboard creation.
Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
Group known monorepo packages together.
Use curated list of recommended non-monorepo package groupings.
Show only the Age and Confidence Merge Confidence badges for pull requests.
Apply crowd-sourced package replacement rules.
Apply crowd-sourced workarounds for known problems with packages.
Ensure that every dependency pinned by digest and sourced from GitHub.com contains a link to the commit-to-commit diff
Correctly link to the source code for golang.org/x packages
Link to pkg.go.dev/... for golang.org/x packages' title
Pin Docker digests.
Pin github-action digests.
Enable Renovate configuration migration PRs when needed.
Pin dependency versions for development dependencies.
Recommended configuration for abandoned packages, treating packages without a release for 1 year as abandoned, while taking into account community-sourced overrides.
Wait until the npm package is three days old before raising the update. This a) introduces a short delay to allow for malware researchers and scanners to (possibly) detect any malicious behaviour in packages, and b) prevents the maintainer and/or NPM from unpublishing a package you already upgraded to, breaking builds.
Automerge digest upgrades if they pass tests.
Automerge patch and minor upgrades if they pass tests.
If Renovate detects semantic commits, it will use semantic commit type build for all commits.
Show all Merge Confidence badges for pull requests.
The centralized baseline dependency management configuration for Dyad projects.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to .github/renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

What to Expect

With your current configuration, Renovate will create 6 Pull Requests:

Pin dependencies

Schedule: ["at any time"]
Branch name: renovate/pin-dependencies
Merge into: master
Upgrade JuliaRegistries/TagBot to 4b30aa752910efbba478d1a042ae877c30a194bc
Upgrade actions/cache to f5ce41475b483ad7581884324a6eca9f48f8dcc7
Upgrade actions/checkout to ee0669bd1cc54295c223e0bb666b733df41de1c5
Upgrade codecov/codecov-action to 29386c70ef20e286228c72b668a06fd0e8399192
Upgrade julia-actions/julia-buildpkg to e3eb439fad4f9aba7da2667e7510e4a46ebc46e1
Upgrade julia-actions/julia-processcoverage to 03114f09f119417c3242a9fb6e0b722676aedf38
Upgrade julia-actions/julia-runtest to d60b785c6f2bdf4ebfb18b2b6f7d93b7dfb0efe3
Upgrade julia-actions/setup-julia to ac0d62164df5a47de404f4e96ce86a1a28a28d56
Upgrade rabbitmq to sha256:e582c0bc7766f3342496d8485efb5a1df782b5ce3886ad017e2eaae442311f69

Update actions/cache action to v5

Schedule: ["at any time"]
Branch name: renovate/actions-cache-5.x
Merge into: master
Upgrade actions/cache to 9255dc7a253b0ccc959486e2bca901246202afeb

Update actions/checkout action to v6

Schedule: ["at any time"]
Branch name: renovate/actions-checkout-6.x
Merge into: master
Upgrade actions/checkout to 8e8c483db84b4bee98b60c0593521ed34d9990e8

Update codecov/codecov-action action to v5

Schedule: ["at any time"]
Branch name: renovate/codecov-codecov-action-5.x
Merge into: master
Upgrade codecov/codecov-action to 671740ac38dd9b0130fbe1cec585b89eea48d3de

Update julia-actions/setup-julia action to v2

Schedule: ["at any time"]
Branch name: renovate/julia-actions-setup-julia-2.x
Merge into: master
Upgrade julia-actions/setup-julia to 5c9647d97b78a5debe5164e9eec09d653d29bd71

Update rabbitmq Docker tag to v4

Schedule: ["at any time"]
Branch name: renovate/rabbitmq-4.x
Merge into: master
Upgrade rabbitmq to sha256:d60859c4cd928865145637ed230bcc8c70e36b8e445465f75383185c6f0b28dd

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section. If you need any further assistance then you can also request help here.

This PR has been generated by Renovate Bot.

Dec 09 '25 00:12 dyad-dependency-manager[bot]