Skip to content
Snippets Groups Projects
Select Git revision
  • main default protected
  • renovate/cloudflare-5.x
  • renovate/docker.io-library-nextcloud-31.x
  • renovate/longhorn-1.x
  • renovate/kubernetes-sigs-krew-0.x
  • renovate/docker.io-bitnami-kubectl-1.x
  • renovate/github.com-prometheus-common-0.x
  • renovate/siderolabs-talos-1.x
  • renovate/siderolabs-kubelet-1.x
  • renovate/kubernetes-go
  • renovate/siderolabs-kubelet-1.30.x
  • renovate/kubernetes-kubernetes-1.x
  • renovate/docker.io-rancher-system-upgrade-controller-0.x
  • renovate/tigera-operator-3.x
  • feat/keycloak-operator
  • renovate/docker.io-apache-tika-3.x
  • fix/immich-1.125
  • feat/s3dav-proxy
  • renovate/cowsay-org-cowsay-3.x
  • feat/runtime-policy
  • v25.03
  • v25.02
  • v25.01
  • v24.12
  • v24.11
  • v24.10
  • v24.09
  • v24.08
  • v24.07
  • v24.06
  • v24.05
  • v24.04
  • v24.03
  • v24.02
  • v24.01
  • v23.12
  • v23.11
  • v23.10
  • v23.09
  • v23.08
40 results
Blame Permalink
renovate.json 4.62 KiB 
{
  "$schema": "https://docs.renovatebot.com/renovate-schema.json",
  "extends": [
    "config:best-practices",
    "docker:enableMajor",
    ":prHourlyLimitNone",
    "regexManagers:dockerfileVersions",
    "replacements:all",
    ":gomod",
    "security:openssf-scorecard",
    ":enableVulnerabilityAlertsWithLabel(security)",
    ":assignee(sheogorath)"
  ],
  "prConcurrentLimit": 20,
  "semanticCommits": "enabled",
  "osvVulnerabilityAlerts": true,
  "platformAutomerge": false,
  "automergeStrategy": "merge-commit",
  "flux": {
    "fileMatch": [
      "apps/.+\\.yaml$",
      "clusters/.+\\.yaml$",
      "shared/components/.+\\.yaml$",
      "shared/applications/.+\\.yaml$",
      "infrastructure/.+\\.yaml$"
    ],
    "ignorePaths": [
      "clusters/k8s01/flux-system/gotk-components.yaml",
      "clusters/k8s01/flux-system/gotk-sync.yaml"
    ]
  },
  "kubernetes": {
    "fileMatch": [
      "apps/.+\\.yaml$",
      "bootstrap/.+\\.yaml$",
      "clusters/.+\\.yaml$",
      "shared/components/.+\\.yaml$",
      "infrastructure/.+\\.yaml$"
    ]
  },
  "gitlabci": {
    "fileMatch": [
      "\\.gitlab-ci\\.yml$",
      "gitlab-ci\\.yaml$"
    ]
  },
  "customManagers": [
    {
      "customType": "regex",
      "fileMatch": [
        "Earthfile$"
      ],
      "matchStrings": [
        "FROM\\s+(?<depName>[a-z0-9.\\/-]+):?(?<currentValue>[a-z0-9-.]+)?@?(?<currentDigest>sha256:[a-f0-9]+)?"
      ],
      "datasourceTemplate": "docker",
      "versioningTemplate": "docker"
    },
    {
      "customType": "regex",
      "fileMatch": [
        "images/mirror/Earthfile$"
      ],
      "matchStrings": [
        "DO \\+MIRROR --image=\"?'?(?<depName>[^:\\s]+?):(?<currentValue>[a-z0-9-.]+?)?@?(?<currentDigest>sha256:[a-f0-9]+)?\"?'?\\s"
      ],
      "datasourceTemplate": "docker",
      "versioningTemplate": "docker"
    },
    {
      "customType": "regex",
      "fileMatch": [
        "\\.yaml$"
      ],
      "matchStrings": [
        "# renovate:\\n\\s+(?:\\S*)image: \"?'?(?<depName>[^:\\s]+?):(?<currentValue>[^\"]*?)@?(?<currentDigest>sha256:[a-f0-9]+)?\"?'?\\s"
      ],
      "datasourceTemplate": "docker",
      "versioningTemplate": "docker"
    },
    {
      "customType": "regex",
      "fileMatch": [
        "\\.yaml$"
      ],
      "matchStrings": [
        "# renovate: datasource=(?<datasource>[a-z-.]+?) depName=(?<depName>[^\\s]+?)(?: (lookupName|packageName)=(?<packageName>[^\\s]+?))?(?: versioning=(?<versioning>[^\\s]+?))?(?: registryUrl=(?<registryUrl>[^\\s]+?))?\\s+\\S+?: \"?(?<currentValue>.+?)@?(?<currentDigest>sha256:[a-f0-9]+)?\"?\\s"
      ]
    },
    {
      "customType": "regex",
      "fileMatch": [
        "Chart\\.yaml$"
      ],
      "matchStrings": [
        "# renovate:\\s+image=(?<depName>[^:\\s]+?)\\nappVersion:\\s+\"?'?(?<currentValue>[^\"]*)\"?'?"
      ],
      "datasourceTemplate": "docker",
      "versioningTemplate": "docker"
    },
    {
      "customType": "regex",
      "fileMatch": [
        "Dockerfile$",
        "Earthfile$"
      ],
      "matchStrings": [
        "#\\s*renovate:\\s*datasource=(?<datasource>.*?) depName=(?<depName>.*?)( versioning=(?<versioning>.*?))?\\s+(ENV|ARG) .*?_VERSION=\"?(?<currentValue>.*)\"?\\s"
      ],
      "versioningTemplate": "{{#if versioning}}{{{versioning}}}{{else}}semver{{/if}}"
    }
  ],
  "packageRules": [
    {
      "matchDatasources": [
        "docker"
      ],
      "matchPackageNames": [
        "quay.io/fedora/fedora",
        "docker.io/fedora",
        "docker.io/library/fedora",
        "registry.fedoraproject.org/fedora"
      ],
      "allowedVersions": "<40"
    },
    {
      "matchDatasources": [
        "docker"
      ],
      "matchPackageNames": [
        "quay.io/**"
      ],
      "pinDigests": false
    },
    {
      "matchDatasources":[
        "docker"
      ],
      "matchPackagePrefixes": [
        "gcr.io/distroless/"
      ],
      "groupName": "gcr.io/distroless"
    },
    {
      "matchDatasources": [
        "helm"
      ],
      "matchPackageNames": [
        "longhorn"
      ],
      "minimumReleaseAge": "14 days"
    },
    {
      "matchPackageNames": [
        "immich",
        "https://github.com/immich-app/immich.git"
      ],
      "groupName": "Immich"
    },
    {
      "matchDatasources": [
        "helm"
      ],
      "matchPackageNames": [
        "renovate"
      ],
      "schedule": [
        "on Monday"
      ],
      "automerge": true
    },
    {
      "matchFileNames": [
        "charts/**",
        "cluster/**/flux-system/**"
      ],
      "matchDatasources": [
        "docker"
      ],
      "pinDigests": false
    }
  ],
  "postUpdateOptions": [
    "helmUpdateSubChartArchives",
    "gomodTidy"
  ]
}