Skip to content

Comments

chore: migrate from Dependabot to Renovate#30

Merged
nigel-dev merged 1 commit intomainfrom
chore/migrate-to-renovate
Feb 12, 2026
Merged

chore: migrate from Dependabot to Renovate#30
nigel-dev merged 1 commit intomainfrom
chore/migrate-to-renovate

Conversation

@nigel-dev
Copy link
Owner

@nigel-dev nigel-dev commented Feb 12, 2026

Summary

  • Replace Dependabot with Renovate for dependency management
  • Remove .github/dependabot.yml, add renovate.json
  • Update AGENTS.md to reflect the change

Why

Dependabot doesn't natively support Bun's lockfile format (bun.lock). Every Dependabot PR fails CI because:

  1. Dependabot updates package.json but not bun.lock
  2. CI runs bun install --frozen-lockfile which rejects the stale lockfile
  3. Every PR requires manual lockfile regeneration

Renovate has native Bun support and correctly handles bun.lock updates.

Renovate Config Highlights

Feature Setting
Schedule Weekends
Non-major npm updates Grouped into single PR, auto-merged
Major npm updates Separate PRs, require manual review
GitHub Actions Grouped into single PR
Commit prefixes chore(deps): for npm, ci(deps): for GH Actions
Rebase Auto-rebase when behind base branch
PR limits 3/hour, 5 concurrent

⚠️ Required: Install the Renovate GitHub App

After merging this PR, install the Renovate GitHub App on this repository:

  1. Go to https://github.com/apps/renovate
  2. Click Install
  3. Select nigel-dev org → select opencode-mission-control repo
  4. Renovate will open an onboarding PR to confirm the config — approve it

Without the app installed, the renovate.json config file has no effect.

Testing

  • bun run build
  • bun test (503 pass, 0 fail) ✅

@nigel-dev
chore: migrate from Dependabot to Renovate
87989cc 
Replace Dependabot with Renovate for dependency management.
Renovate has native Bun support and correctly handles bun.lock,
which Dependabot does not — causing CI failures on every PR.

Config highlights:
- Groups non-major npm updates into single PRs
- Separate PRs for major version bumps (require review)
- Groups GitHub Actions updates
- Auto-merges minor/patch updates
- Uses chore(deps): and ci(deps): conventional commit prefixes
- Weekend schedule to avoid weekday noise
@nigel-dev nigel-dev merged commit 9ecafc5 into main Feb 12, 2026
4 checks passed
@nigel-dev nigel-dev deleted the chore/migrate-to-renovate branch February 12, 2026 04:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nigel-dev