-
Notifications
You must be signed in to change notification settings - Fork 253
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Configure Renovate #1896
Configure Renovate #1896
Changes from 9 commits
3bd0bf2
3691b2b
aae758b
f68fd3f
017ed46
e6caa8d
7de11e0
a1cdb7a
b26e21a
a6b087b
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,16 @@ | ||
{ | ||
"baseBranches": ["next"], | ||
"constraints": { | ||
"python": "3.7" | ||
}, | ||
"enabledManagers": ["pip_requirements", "poetry"], | ||
"extends": [ | ||
"config:base" | ||
], | ||
"packageRules": [ | ||
{ | ||
"matchPackageNames": ["graphene-django-optimizer", "django-timezone-field", "django-taggit"], | ||
"dependencyDashboardApproval": true | ||
} | ||
] | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Should we use There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 🤷 Let's see. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Changes seem sensible. This will force update to patch releases so we'll get a PR every time a new patch release is out. I'd truly love that level of bump to be done in our patch releases as well but we can always cherry-pick/retarget as necessary. |
||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
https://docs.renovatebot.com/configuration-options/#dependencydashboardapproval
Would it be better to instead configure?
Is there an instance of the "dependency dashboard" in one of our other repos that I can see as an example?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
That setting would require manually triggering a PR for every major dependency update which may often not be an issue. As said above that would only hold back the taggit update because it was the only one to cause issues on a major release boundary.
I don't know any repo in any of the orgs that runs renovate dashboard, but an example of what it maintains is here: renovatebot/renovate#2958