Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Configure Renovate #668

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Configure Renovate #668

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Apr 24, 2022

WhiteSource Renovate

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.


Detected Package Files

  • .circleci/config.yml (circleci)
  • .github/workflows/main.yml (github-actions)
  • package.json (npm)
  • packages/otplib-core-async/package.json (npm)
  • packages/otplib-core/package.json (npm)
  • packages/otplib-plugin-base32-enc-dec/package.json (npm)
  • packages/otplib-plugin-crypto-async-ronomon/package.json (npm)
  • packages/otplib-plugin-crypto-js/package.json (npm)
  • packages/otplib-plugin-crypto/package.json (npm)
  • packages/otplib-plugin-thirty-two/package.json (npm)
  • packages/otplib-preset-browser/package.json (npm)
  • packages/otplib-preset-default-async/package.json (npm)
  • packages/otplib-preset-default/package.json (npm)
  • packages/otplib-preset-v11/package.json (npm)
  • packages/otplib/package.json (npm)
  • website/package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Enable Renovate Dependency Dashboard creation
  • If semantic commits detected, use semantic commit type fix for dependencies and chore for all others
  • Ignore node_modules, bower_components, vendor and various test/tests directories
  • Autodetect whether to pin dependencies or maintain ranges
  • Rate limit PR creation to a maximum of two per hour
  • Limit to maximum 10 open PRs at any time
  • Group known monorepo packages together
  • Use curated list of recommended non-monorepo package groupings
  • Fix some problems with very old Maven commons versions
  • Ignore spring cloud 1.x releases
  • Ignore web3j 5.0.0 release
  • Ignore http4s digest-based 1.x milestones
  • Use node versioning for @types/node
  • Limit concurrent requests to reduce load on Repology servers until we can fix this properly, see issue 10133
  • Do not upgrade from Alpine stable to edge

🔡 Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Pull Requests in the "What to Expect" section below will be updated the next time Renovate runs.


What to Expect

With your current configuration, Renovate will create 60 Pull Requests:

chore(deps): update dependency ajv to 6.12.3 [security]
  • Branch name: renovate/npm-ajv-vulnerability
  • Merge into: master
  • Upgrade ajv to 6.12.3
chore(deps): update dependency elliptic to 6.5.4 [security]
  • Branch name: renovate/npm-elliptic-vulnerability
  • Merge into: master
  • Upgrade elliptic to 6.5.4
chore(deps): update dependency engine.io to 4.0.0 [security]
  • Branch name: renovate/npm-engine.io-vulnerability
  • Merge into: master
  • Upgrade engine.io to 4.0.0
chore(deps): update dependency follow-redirects to 1.14.8 [security]
  • Branch name: renovate/npm-follow-redirects-vulnerability
  • Merge into: master
  • Upgrade follow-redirects to 1.14.8
chore(deps): update dependency glob-parent to 5.1.2 [security]
  • Branch name: renovate/npm-glob-parent-vulnerability
  • Merge into: master
  • Upgrade glob-parent to 5.1.2
chore(deps): update dependency handlebars to 4.7.7 [security]
  • Branch name: renovate/npm-handlebars-vulnerability
  • Merge into: master
  • Upgrade handlebars to 4.7.7
chore(deps): update dependency hosted-git-info to 2.8.9 [security]
  • Branch name: renovate/npm-hosted-git-info-vulnerability
  • Merge into: master
  • Upgrade hosted-git-info to 2.8.9
chore(deps): update dependency lodash to 4.17.21 [security]
  • Branch name: renovate/npm-lodash-vulnerability
  • Merge into: master
  • Upgrade lodash to 4.17.21
chore(deps): update dependency merge to 2.1.1 [security]
  • Branch name: renovate/npm-merge-vulnerability
  • Merge into: master
  • Upgrade merge to 2.1.1
chore(deps): update dependency minimist to 1.2.6 [security]
  • Branch name: renovate/npm-minimist-vulnerability
  • Merge into: master
  • Upgrade minimist to 1.2.6
chore(deps): update dependency moment to 2.29.2 [security]
  • Branch name: renovate/npm-moment-vulnerability
  • Merge into: master
  • Upgrade moment to 2.29.2
chore(deps): update dependency node-forge to 1.3.0 [security]
  • Branch name: renovate/npm-node-forge-vulnerability
  • Merge into: master
  • Upgrade node-forge to 1.3.0
chore(deps): update dependency path-parse to 1.0.7 [security]
  • Branch name: renovate/npm-path-parse-vulnerability
  • Merge into: master
  • Upgrade path-parse to 1.0.7
chore(deps): update dependency ssri to 6.0.2 [security]
  • Branch name: renovate/npm-ssri-vulnerability
  • Merge into: master
  • Upgrade ssri to 6.0.2
chore(deps): update dependency tmpl to 1.0.5 [security]
  • Branch name: renovate/npm-tmpl-vulnerability
  • Merge into: master
  • Upgrade tmpl to 1.0.5
chore(deps): update dependency trim-newlines to 3.0.1 [security]
  • Branch name: renovate/npm-trim-newlines-vulnerability
  • Merge into: master
  • Upgrade trim-newlines to 3.0.1
chore(deps): update dependency ua-parser-js to 0.7.23 [security]
  • Branch name: renovate/npm-ua-parser-js-vulnerability
  • Merge into: master
  • Upgrade ua-parser-js to 0.7.23
chore(deps): update dependency underscore to 1.12.1 [security]
  • Branch name: renovate/npm-underscore-vulnerability
  • Merge into: master
  • Upgrade underscore to 1.12.1
chore(deps): update dependency url-parse to 1.5.9 [security]
  • Branch name: renovate/npm-url-parse-vulnerability
  • Merge into: master
  • Upgrade url-parse to 1.5.9
chore(deps): update dependency y18n to 3.2.2 [security]
  • Branch name: renovate/npm-y18n-vulnerability
  • Merge into: master
  • Upgrade y18n to 3.2.2
chore(deps): pin dependencies
chore(deps): pin dependency @​fortawesome/fontawesome-free to v
chore(deps): update jest monorepo
  • Schedule: ["at any time"]
  • Branch name: renovate/jest-monorepo
  • Merge into: master
  • Upgrade @types/jest to 26.0.24
  • Upgrade jest to 25.5.4
fix(deps): update typography-js monorepo
  • Schedule: ["at any time"]
  • Branch name: renovate/typography-js-monorepo
  • Merge into: master
  • Upgrade react-typography to 0.16.20
  • Upgrade typography to 0.16.21
chore(deps): update babel monorepo
chore(deps): update dependency @​types/node to v12.20.49
  • Schedule: ["at any time"]
  • Branch name: renovate/node-12.x
  • Merge into: master
  • Upgrade @types/node to 12.20.49
chore(deps): update dependency eslint-plugin-prettier to v3.4.1
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-plugin-prettier-3.x
  • Merge into: master
  • Upgrade eslint-plugin-prettier to 3.4.1
chore(deps): update dependency eslint-plugin-react to v7.29.4
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-plugin-react-7.x
  • Merge into: master
  • Upgrade eslint-plugin-react to 7.29.4
chore(deps): update dependency prettier to v2.6.2
  • Schedule: ["at any time"]
  • Branch name: renovate/prettier-2.x
  • Merge into: master
  • Upgrade prettier to 2.6.2
chore(deps): update dependency rollup to v2.70.2
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-2.x
  • Merge into: master
  • Upgrade rollup to 2.70.2
chore(deps): update dependency typescript to v4.6.3
  • Schedule: ["at any time"]
  • Branch name: renovate/typescript-4.x
  • Merge into: master
  • Upgrade typescript to 4.6.3
chore(deps): update dependency webpack to v4.46.0
  • Schedule: ["at any time"]
  • Branch name: renovate/webpack-4.x
  • Merge into: master
  • Upgrade webpack to 4.46.0
chore(deps): update dependency webpack-cli to v4.9.2
  • Schedule: ["at any time"]
  • Branch name: renovate/webpack-cli-4.x
  • Merge into: master
  • Upgrade webpack-cli to 4.9.2
fix(deps): update dependency prop-types to v15.8.1
  • Schedule: ["at any time"]
  • Branch name: renovate/prop-types-15.x
  • Merge into: master
  • Upgrade prop-types to 15.8.1
fix(deps): update dependency qrcode to v1.5.0
  • Schedule: ["at any time"]
  • Branch name: renovate/qrcode-1.x
  • Merge into: master
  • Upgrade qrcode to 1.5.0
fix(deps): update gatsby monorepo
fix(deps): update mdx monorepo to v1.6.22
  • Schedule: ["at any time"]
  • Branch name: renovate/mdx-monorepo
  • Merge into: master
  • Upgrade @mdx-js/mdx to 1.6.22
  • Upgrade @mdx-js/react to 1.6.22
fix(deps): update react monorepo to v16.14.0
  • Schedule: ["at any time"]
  • Branch name: renovate/react-monorepo
  • Merge into: master
  • Upgrade react to 16.14.0
  • Upgrade react-dom to 16.14.0
chore(deps): update actions/checkout action to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-checkout-3.x
  • Merge into: master
  • Upgrade actions/checkout to v3
chore(deps): update actions/setup-node action to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-setup-node-3.x
  • Merge into: master
  • Upgrade actions/setup-node to v3
chore(deps): update dependency @​fortawesome/fontawesome-free to v6
chore(deps): update dependency @​rollup/plugin-commonjs to v22
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-commonjs-22.x
  • Merge into: master
  • Upgrade @rollup/plugin-commonjs to 22.0.0
chore(deps): update dependency @​rollup/plugin-node-resolve to v13
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-node-resolve-13.x
  • Merge into: master
  • Upgrade @rollup/plugin-node-resolve to 13.2.1
chore(deps): update dependency @​types/crypto-js to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/crypto-js-4.x
  • Merge into: master
  • Upgrade @types/crypto-js to 4.1.1
chore(deps): update dependency @​types/node to v16
  • Schedule: ["at any time"]
  • Branch name: renovate/node-16.x
  • Merge into: master
  • Upgrade @types/node to 16.11.28
chore(deps): update dependency buildkite/puppeteer to v10
  • Schedule: ["at any time"]
  • Branch name: renovate/buildkite-puppeteer-10.x
  • Merge into: master
  • Upgrade buildkite/puppeteer to 10.0.0
chore(deps): update dependency eslint to v8
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-8.x
  • Merge into: master
  • Upgrade eslint to 8.14.0
chore(deps): update dependency eslint-config-prettier to v8
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-config-prettier-8.x
  • Merge into: master
  • Upgrade eslint-config-prettier to 8.5.0
chore(deps): update dependency eslint-plugin-prettier to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-plugin-prettier-4.x
  • Merge into: master
  • Upgrade eslint-plugin-prettier to 4.0.0
chore(deps): update dependency lerna to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/major-lerna-monorepo
  • Merge into: master
  • Upgrade lerna to 4.0.0
chore(deps): update dependency puppeteer to v13
  • Schedule: ["at any time"]
  • Branch name: renovate/puppeteer-13.x
  • Merge into: master
  • Upgrade puppeteer to 13.6.0
chore(deps): update dependency webpack to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/webpack-5.x
  • Merge into: master
  • Upgrade webpack to 5.72.0
chore(deps): update jest monorepo (major)
  • Schedule: ["at any time"]
  • Branch name: renovate/major-jest-monorepo
  • Merge into: master
  • Upgrade @types/jest to 27.4.1
  • Upgrade babel-jest to 27.5.1
  • Upgrade jest to 27.5.1
chore(deps): update node.js to v17
  • Schedule: ["at any time"]
  • Branch name: renovate/circleci-node-17.x
  • Merge into: master
  • Upgrade circleci/node to 17
chore(deps): update typescript-eslint monorepo to v5 (major)
fix(deps): update dependency base32-encode to v2
  • Schedule: ["at any time"]
  • Branch name: renovate/base32-encode-2.x
  • Merge into: master
  • Upgrade base32-encode to ^2.0.0
fix(deps): update dependency react-helmet to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/react-helmet-6.x
  • Merge into: master
  • Upgrade react-helmet to 6.1.0
fix(deps): update gatsby monorepo (major)
fix(deps): update mdx monorepo to v2 (major)
  • Schedule: ["at any time"]
  • Branch name: renovate/major-mdx-monorepo
  • Merge into: master
  • Upgrade @mdx-js/mdx to 2.1.1
  • Upgrade @mdx-js/react to 2.1.1
fix(deps): update react monorepo to v18 (major)
  • Schedule: ["at any time"]
  • Branch name: renovate/major-react-monorepo
  • Merge into: master
  • Upgrade react to 18.0.0
  • Upgrade react-dom to 18.0.0

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or spam the project. See docs for prhourlylimit for details.


❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.


This PR has been generated by WhiteSource Renovate. View repository job log here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant