Configure Renovate

Open dyad-dependency-manager[bot] opened this issue 1 month ago • 0 comments

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

.github/workflows/TagBot.yml (github-actions)
.github/workflows/ci.yml (github-actions)
.github/renovate.json (renovate-config-presets)
Project.toml (regex)

Configuration Summary

Based on the default config's presets, Renovate will:

Start dependency updates only once this onboarding PR is merged
Enable Renovate Dependency Dashboard creation.
Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
Group known monorepo packages together.
Use curated list of recommended non-monorepo package groupings.
Show only the Age and Confidence Merge Confidence badges for pull requests.
Apply crowd-sourced package replacement rules.
Apply crowd-sourced workarounds for known problems with packages.
Ensure that every dependency pinned by digest and sourced from GitHub.com contains a link to the commit-to-commit diff
Correctly link to the source code for golang.org/x packages
Link to pkg.go.dev/... for golang.org/x packages' title
Pin Docker digests.
Pin github-action digests.
Enable Renovate configuration migration PRs when needed.
Pin dependency versions for development dependencies.
Recommended configuration for abandoned packages, treating packages without a release for 1 year as abandoned, while taking into account community-sourced overrides.
Wait until the npm package is three days old before raising the update. This a) introduces a short delay to allow for malware researchers and scanners to (possibly) detect any malicious behaviour in packages, and b) prevents the maintainer and/or NPM from unpublishing a package you already upgraded to, breaking builds.
Automerge digest upgrades if they pass tests.
Automerge patch and minor upgrades if they pass tests.
If Renovate detects semantic commits, it will use semantic commit type build for all commits.
Show all Merge Confidence badges for pull requests.
The centralized baseline dependency management configuration for Dyad projects.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to .github/renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

What to Expect

With your current configuration, Renovate will create 5 Pull Requests:

Pin dependencies

Schedule: ["at any time"]
Branch name: renovate/pin-dependencies
Merge into: master
Upgrade JuliaRegistries/TagBot to f69a5b7e2a244c5872cbe319665ac9a4f310ab88
Upgrade actions/cache to 6f8efc29b200d32929f49075959781ed54ec270c
Upgrade actions/checkout to 34e114876b0b11c390a56381ad16ebd13914f8d5
Upgrade codecov/codecov-action to ab904c41d6ece82784817410c45d8b8c02684457
Upgrade julia-actions/julia-buildpkg to e3eb439fad4f9aba7da2667e7510e4a46ebc46e1
Upgrade julia-actions/julia-processcoverage to 03114f09f119417c3242a9fb6e0b722676aedf38
Upgrade julia-actions/julia-runtest to d60b785c6f2bdf4ebfb18b2b6f7d93b7dfb0efe3
Upgrade julia-actions/setup-julia to ac0d62164df5a47de404f4e96ce86a1a28a28d56
Upgrade mcr.microsoft.com/azure-storage/azurite to sha256:647c63a91102a9d8e8000aab803436e1fc85fbb285e7ce830a82ee5d6661cf37

Update actions/cache action to v5

Schedule: ["at any time"]
Branch name: renovate/actions-cache-5.x
Merge into: master
Upgrade actions/cache to 9255dc7a253b0ccc959486e2bca901246202afeb

Update actions/checkout action to v6

Schedule: ["at any time"]
Branch name: renovate/actions-checkout-6.x
Merge into: master
Upgrade actions/checkout to 8e8c483db84b4bee98b60c0593521ed34d9990e8

Update codecov/codecov-action action to v5

Schedule: ["at any time"]
Branch name: renovate/codecov-codecov-action-5.x
Merge into: master
Upgrade codecov/codecov-action to 671740ac38dd9b0130fbe1cec585b89eea48d3de

Update julia-actions/setup-julia action to v2

Schedule: ["at any time"]
Branch name: renovate/julia-actions-setup-julia-2.x
Merge into: master
Upgrade julia-actions/setup-julia to 5c9647d97b78a5debe5164e9eec09d653d29bd71

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section. If you need any further assistance then you can also request help here.

This PR has been generated by Renovate Bot.

Dec 09 '25 00:12 dyad-dependency-manager[bot]