Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Configure Renovate #1

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Configure Renovate #1

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Apr 17, 2022
edited
Loading

WhiteSource Renovate

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

  • .github/workflows/firebase-hosting-merge.yml (github-actions)
  • .github/workflows/firebase-hosting-pull-request.yml (github-actions)
  • backend/templates/index.html (html)
  • frontend/package.json (npm)
  • requirements.txt (pip_requirements)
  • Pipfile (pipenv)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Enable Renovate Dependency Dashboard creation
  • If semantic commits detected, use semantic commit type fix for dependencies and chore for all others
  • Ignore node_modules, bower_components, vendor and various test/tests directories
  • Autodetect whether to pin dependencies or maintain ranges
  • Rate limit PR creation to a maximum of two per hour
  • Limit to maximum 10 open PRs at any time
  • Group known monorepo packages together
  • Use curated list of recommended non-monorepo package groupings
  • Fix some problems with very old Maven commons versions
  • Ignore spring cloud 1.x releases
  • Ignore web3j 5.0.0 release
  • Ignore http4s digest-based 1.x milestones
  • Use node versioning for @types/node
  • Limit concurrent requests to reduce load on Repology servers until we can fix this properly, see issue 10133
  • Do not upgrade from Alpine stable to edge

🔡 Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Pull Requests in the "What to Expect" section below will be updated the next time Renovate runs.

What to Expect

With your current configuration, Renovate will create 83 Pull Requests:

Update dependency ansi-html to 0.0.8 [SECURITY]
  • Branch name: renovate/npm-ansi-html-vulnerability
  • Merge into: main
  • Upgrade ansi-html to 0.0.8
Update dependency ansi-regex [SECURITY]
  • Branch name: renovate/npm-ansi-regex-vulnerability
  • Merge into: main
  • Upgrade ansi-regex to 3.0.1
  • Upgrade ansi-regex to 4.1.1
  • Upgrade ansi-regex to 5.0.1
Update dependency axios to 0.21.2 [SECURITY]
  • Branch name: renovate/npm-axios-vulnerability
  • Merge into: main
  • Upgrade axios to 0.21.2
Update dependency browserslist to 4.16.5 [SECURITY]
  • Branch name: renovate/npm-browserslist-vulnerability
  • Merge into: main
  • Upgrade browserslist to 4.16.5
Update dependency color-string to 1.5.5 [SECURITY]
  • Branch name: renovate/npm-color-string-vulnerability
  • Merge into: main
  • Upgrade color-string to 1.5.5
Update dependency dns-packet to 1.3.2 [SECURITY]
  • Branch name: renovate/npm-dns-packet-vulnerability
  • Merge into: main
  • Upgrade dns-packet to 1.3.2
Update dependency elliptic to 6.5.4 [SECURITY]
  • Branch name: renovate/npm-elliptic-vulnerability
  • Merge into: main
  • Upgrade elliptic to 6.5.4
Update dependency follow-redirects to 1.14.8 [SECURITY]
  • Branch name: renovate/npm-follow-redirects-vulnerability
  • Merge into: main
  • Upgrade follow-redirects to 1.14.8
Update dependency glob-parent to 5.1.2 [SECURITY]
  • Branch name: renovate/npm-glob-parent-vulnerability
  • Merge into: main
  • Upgrade glob-parent to 5.1.2
Update dependency hosted-git-info to 2.8.9 [SECURITY]
  • Branch name: renovate/npm-hosted-git-info-vulnerability
  • Merge into: main
  • Upgrade hosted-git-info to 2.8.9
Update dependency is-svg to 4.3.0 [SECURITY]
  • Branch name: renovate/npm-is-svg-vulnerability
  • Merge into: main
  • Upgrade is-svg to 4.3.0
Update dependency json-schema to 0.4.0 [SECURITY]
  • Branch name: renovate/npm-json-schema-vulnerability
  • Merge into: main
  • Upgrade json-schema to 0.4.0
Update dependency lodash to 4.17.21 [SECURITY]
  • Branch name: renovate/npm-lodash-vulnerability
  • Merge into: main
  • Upgrade lodash to 4.17.21
Update dependency minimist to 1.2.6 [SECURITY]
  • Branch name: renovate/npm-minimist-vulnerability
  • Merge into: main
  • Upgrade minimist to 1.2.6
Update dependency node-forge to 1.3.0 [SECURITY]
  • Branch name: renovate/npm-node-forge-vulnerability
  • Merge into: main
  • Upgrade node-forge to 1.3.0
Update dependency nth-check to 2.0.1 [SECURITY]
  • Branch name: renovate/npm-nth-check-vulnerability
  • Merge into: main
  • Upgrade nth-check to 2.0.1
Update dependency path-parse to 1.0.7 [SECURITY]
  • Branch name: renovate/npm-path-parse-vulnerability
  • Merge into: main
  • Upgrade path-parse to 1.0.7
Update dependency postcss to 7.0.36 [SECURITY]
  • Branch name: renovate/npm-postcss-vulnerability
  • Merge into: main
  • Upgrade postcss to 7.0.36
Update dependency shelljs to 0.8.5 [SECURITY]
  • Branch name: renovate/npm-shelljs-vulnerability
  • Merge into: main
  • Upgrade shelljs to 0.8.5
Update dependency ssri [SECURITY]
  • Branch name: renovate/npm-ssri-vulnerability
  • Merge into: main
  • Upgrade ssri to 7.1.1
  • Upgrade ssri to 6.0.2
Update dependency url-parse to 1.5.9 [SECURITY]
  • Branch name: renovate/npm-url-parse-vulnerability
  • Merge into: main
  • Upgrade url-parse to 1.5.9
Update dependency ws to 6.2.2 [SECURITY]
  • Branch name: renovate/npm-ws-vulnerability
  • Merge into: main
  • Upgrade ws to 6.2.2
Update dependency Django to v3.1.14 [SECURITY]
  • Branch name: renovate/pypi-Django-vulnerability
  • Merge into: main
  • Upgrade Django to ==3.1.14
Update dependency sqlparse to v0.4.2 [SECURITY]
  • Branch name: renovate/pypi-sqlparse-vulnerability
  • Merge into: main
  • Upgrade sqlparse to ==0.4.2
Update dependency urllib3 to v1.26.5 [SECURITY]
  • Branch name: renovate/pypi-urllib3-vulnerability
  • Merge into: main
  • Upgrade urllib3 to ==1.26.5
Update dependency Markdown to v3.3.6
  • Schedule: ["at any time"]
  • Branch name: renovate/markdown-3.x
  • Merge into: main
  • Upgrade Markdown to ==3.3.6
  • Upgrade markdown to ==3.3.6
Update dependency django to v3.1.12 [SECURITY]
  • Branch name: renovate/pypi-django-vulnerability
  • Merge into: main
  • Upgrade django to ==3.1.12
Update dependency pillow to v8.3.2 [SECURITY]
  • Branch name: renovate/pypi-pillow-vulnerability
  • Merge into: main
  • Upgrade pillow to ==8.3.2
Update dependency Pillow to v9 [SECURITY]
  • Branch name: renovate/pypi-Pillow-vulnerability
  • Merge into: main
  • Upgrade Pillow to ==9.0.1
Pin dependencies
Update dependency clipboard.js to v2.0.10
  • Schedule: ["at any time"]
  • Branch name: renovate/clipboard.js-2.x
  • Merge into: main
  • Upgrade clipboard.js to sha512-PIisRT8mFfdxx99gMs7WAY5Gp+CtjYYxKvF93w8yWAvX548UBNADHu7Qkavgr6yRG+asocqfuk5crjNd5z9s6Q==
Update dependency django-extensions to v3.1.5
  • Schedule: ["at any time"]
  • Branch name: renovate/django-extensions-3.x
  • Merge into: main
  • Upgrade django-extensions to ==3.1.5
  • Upgrade django-extensions to ==3.1.5
Update dependency remarkable to v1.7.4
  • Schedule: ["at any time"]
  • Branch name: renovate/remarkable-1.x
  • Merge into: main
  • Upgrade remarkable to sha512-l+uDGrLLDzqHmCZy8IG4bDcFIIF3ps/YZDwaI6cgWmI1Dpz3dQ5chRvBBXGaLwKbSzqTtozKPNnM7XU74w059g==
Update vue monorepo
Update dependency @​mdi/font to v5.9.55
  • Schedule: ["at any time"]
  • Branch name: renovate/mdi-font-5.x
  • Merge into: main
  • Upgrade @mdi/font to 5.9.55
Update dependency Faker to v5.8.0
  • Schedule: ["at any time"]
  • Branch name: renovate/faker-5.x
  • Merge into: main
  • Upgrade Faker to ==5.8.0
Update dependency asgiref to v3.5.0
  • Schedule: ["at any time"]
  • Branch name: renovate/asgiref-3.x
  • Merge into: main
  • Upgrade asgiref to ==3.5.0
Update dependency axios to v0.26.1
  • Schedule: ["at any time"]
  • Branch name: renovate/axios-0.x
  • Merge into: main
  • Upgrade axios to 0.26.1
Update dependency core-js to v3.22.2
  • Schedule: ["at any time"]
  • Branch name: renovate/core-js-3.x
  • Merge into: main
  • Upgrade core-js to 3.22.2
Update dependency django-cleanup to v5.2.0
  • Schedule: ["at any time"]
  • Branch name: renovate/django-cleanup-5.x
  • Merge into: main
  • Upgrade django-cleanup to ==5.2.0
  • Upgrade django-cleanup to ==5.2.0
Update dependency django-cors-headers to v3.11.0
  • Schedule: ["at any time"]
  • Branch name: renovate/django-cors-headers-3.x
  • Merge into: main
  • Upgrade django-cors-headers to ==3.11.0
  • Upgrade django-cors-headers to ==3.11.0
Update dependency django-storages to v1.12.3
  • Schedule: ["at any time"]
  • Branch name: renovate/django-storages-1.x
  • Merge into: main
  • Upgrade django-storages to ==1.12.3
Update dependency djangorestframework to v3.13.1
  • Schedule: ["at any time"]
  • Branch name: renovate/djangorestframework-3.x
  • Merge into: main
  • Upgrade djangorestframework to ==3.13.1
  • Upgrade djangorestframework to ==3.13.1
Update dependency djangorestframework-simplejwt to v4.8.0
  • Schedule: ["at any time"]
  • Branch name: renovate/djangorestframework-simplejwt-4.x
  • Merge into: main
  • Upgrade djangorestframework-simplejwt to ==4.8.0
  • Upgrade djangorestframework-simplejwt to ==4.8.0
Update dependency dropbox to v11.29.0
  • Schedule: ["at any time"]
  • Branch name: renovate/dropbox-11.x
  • Merge into: main
  • Upgrade dropbox to ==11.29.0
Update dependency font-awesome to v5.15.4
  • Schedule: ["at any time"]
  • Branch name: renovate/font-awesome-5.x
  • Merge into: main
  • Upgrade font-awesome to sha512-1ycn6IcaQQ40/MKBW2W4Rhis/DbILU74C1vSrLJxCq57o941Ym01SwNsOMqvEBFlcgUa6xLiPY/NS5R+E6ztJQ==
Update dependency gunicorn to v20.1.0
  • Schedule: ["at any time"]
  • Branch name: renovate/gunicorn-20.x
  • Merge into: main
  • Upgrade gunicorn to ==20.1.0
Update dependency highlight.js to v10.7.3
  • Schedule: ["at any time"]
  • Branch name: renovate/highlight.js-10.x
  • Merge into: main
  • Upgrade highlight.js to sha512-tL84mD+FR70jI7X8vYj5AfRqe0EifOaFUapjt1KvDaPLHgTlUZ2gQL/Tzvvn8HXuQm9oHYShJpNFdyJmH2yHrw==
  • Upgrade highlight.js to sha512-kZqGbhf9JTB4bVJ0G8HCkqmaPcRgo88F0dneK30yku5Y/dep7CZfCnNml2Je/sY4lBoqoksXz4PtVXS4GHSUzQ==
Update dependency jquery to v3.6.0
  • Schedule: ["at any time"]
  • Branch name: renovate/jquery-3.x
  • Merge into: main
  • Upgrade jquery to sha512-894YE6QWD5I59HgZOGReFYm4dnWc1Qt5NtvYSaNcOP+u1T9qYdvdihz0PPSiiqn/+/3e7Jo4EaG7TubfWGUrMQ==
Update dependency pyjwt to v2.3.0
  • Schedule: ["at any time"]
  • Branch name: renovate/pyjwt-2.x
  • Merge into: main
  • Upgrade pyjwt to ==2.3.0
Update dependency python-dotenv to v0.20.0
  • Schedule: ["at any time"]
  • Branch name: renovate/python-dotenv-0.x
  • Merge into: main
  • Upgrade python-dotenv to ==0.20.0
Update dependency pytz to v2021.3
  • Schedule: ["at any time"]
  • Branch name: renovate/pytz-2021.x
  • Merge into: main
  • Upgrade pytz to ==2021.3
Update dependency requests to v2.27.1
  • Schedule: ["at any time"]
  • Branch name: renovate/requests-2.x
  • Merge into: main
  • Upgrade requests to ==2.27.1
Update dependency sass to v1.50.1
  • Schedule: ["at any time"]
  • Branch name: renovate/sass-1.x
  • Merge into: main
  • Upgrade sass to 1.50.1
Update dependency six to v1.16.0
  • Schedule: ["at any time"]
  • Branch name: renovate/six-1.x
  • Merge into: main
  • Upgrade six to ==1.16.0
Update dependency stone to v3.3.1
  • Schedule: ["at any time"]
  • Branch name: renovate/stone-3.x
  • Merge into: main
  • Upgrade stone to ==3.3.1
Update dependency twitter-bootstrap to v4.6.1
  • Schedule: ["at any time"]
  • Branch name: renovate/twitter-bootstrap-4.x
  • Merge into: main
  • Upgrade twitter-bootstrap to sha512-mULnawDVcCnsk9a4aG1QLZZ6rcce/jSzEGqUkeOLy0b6q0+T6syHrxlsAGH7ZVoqC93Pd0lBqd6WguPWih7VHA==
Update dependency vue-cli-plugin-vuetify to v2.4.8
  • Schedule: ["at any time"]
  • Branch name: renovate/vue-cli-plugin-vuetify-2.x
  • Merge into: main
  • Upgrade vue-cli-plugin-vuetify to 2.4.8
Update dependency vue-router to v3.5.3
  • Schedule: ["at any time"]
  • Branch name: renovate/vue-router-3.x
  • Merge into: main
  • Upgrade vue-router to 3.5.3
Update dependency vuetify to v2.6.4
  • Schedule: ["at any time"]
  • Branch name: renovate/vuetify-2.x
  • Merge into: main
  • Upgrade vuetify to 2.6.4
Update dependency vuetify-loader to v1.7.3
  • Schedule: ["at any time"]
  • Branch name: renovate/vuetify-loader-1.x
  • Merge into: main
  • Upgrade vuetify-loader to 1.7.3
Update dependency whitenoise to v5.3.0
  • Schedule: ["at any time"]
  • Branch name: renovate/whitenoise-5.x
  • Merge into: main
  • Upgrade whitenoise to ==5.3.0
Update actions/checkout action to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-checkout-3.x
  • Merge into: main
  • Upgrade actions/checkout to v3
Update dependency @​mdi/font to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/mdi-font-6.x
  • Merge into: main
  • Upgrade @mdi/font to 6.6.96
Update dependency Faker to v13
  • Schedule: ["at any time"]
  • Branch name: renovate/faker-13.x
  • Merge into: main
  • Upgrade Faker to ==13.4.0
Update dependency certifi to v2021
  • Schedule: ["at any time"]
  • Branch name: renovate/certifi-2021.x
  • Merge into: main
  • Upgrade certifi to ==2021.10.8
Update dependency django-cleanup to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/django-cleanup-6.x
  • Merge into: main
  • Upgrade django-cleanup to ==6.0.0
  • Upgrade django-cleanup to ==6.0.0
Update dependency django-filter to v21
  • Schedule: ["at any time"]
  • Branch name: renovate/django-filter-21.x
  • Merge into: main
  • Upgrade django-filter to ==21.1
  • Upgrade django-filter to ==21.1
Update dependency djangorestframework-simplejwt to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/djangorestframework-simplejwt-5.x
  • Merge into: main
  • Upgrade djangorestframework-simplejwt to ==5.1.0
  • Upgrade djangorestframework-simplejwt to ==5.1.0
Update dependency eslint to v8
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-8.x
  • Merge into: main
  • Upgrade eslint to 8.14.0
Update dependency eslint-plugin-vue to v8
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-plugin-vue-8.x
  • Merge into: main
  • Upgrade eslint-plugin-vue to 8.7.1
Update dependency font-awesome to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/font-awesome-6.x
  • Merge into: main
  • Upgrade font-awesome to sha512-KfkfwYDsLkIlwQp6LFnl8zNdLGxu9YAA1QvwINks4PhcElQSvqcyVLLD9aMhXd13uQjoXtEKNosOWaZqXgel0g==
Update dependency highlight.js to v11
  • Schedule: ["at any time"]
  • Branch name: renovate/highlight.js-11.x
  • Merge into: main
  • Upgrade highlight.js to sha512-yUUc0qWm2rhM7X0EFe82LNnv2moqArj5nro/w1bi05A09hRVeIZbN6jlMoyu0+4I/Bu4Ck/85JQIU82T82M28w==
  • Upgrade highlight.js to sha512-hasIneQUHlh06VNBe7f6ZcHmeRTLIaQWFd43YriJ0UND19bvYRauxthDg8E4eVNPm9bRUhr5JGeqH7FRFXQu5g==
Update dependency idna to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/idna-3.x
  • Merge into: main
  • Upgrade idna to ==3.3
Update dependency pytz to v2022
  • Schedule: ["at any time"]
  • Branch name: renovate/pytz-2022.x
  • Merge into: main
  • Upgrade pytz to ==2022.1
Update dependency pyyaml to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/pyyaml-6.x
  • Merge into: main
  • Upgrade pyyaml to ==6.0
Update dependency remarkable to v2
  • Schedule: ["at any time"]
  • Branch name: renovate/remarkable-2.x
  • Merge into: main
  • Upgrade remarkable to sha512-skYYbQHAuOTpeJTthhUH3flZohep8blA+qjZOY0VqmfXMDiYcWxu29F5UbxU4LxaIpGkRBk+3Qf8qaXfd9jngg==
Update dependency sass-loader to v12
  • Schedule: ["at any time"]
  • Branch name: renovate/sass-loader-12.x
  • Merge into: main
  • Upgrade sass-loader to 12.6.0
Update dependency twitter-bootstrap to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/twitter-bootstrap-5.x
  • Merge into: main
  • Upgrade twitter-bootstrap to sha512-pax4MlgXjHEPfCwcJLQhigY7+N8rt6bVvWLFyUMuxShv170X53TRzGPmPkZmGBhk+jikR8WBM4yl7A9WMHHqvg==
Update dependency uritemplate to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/uritemplate-4.x
  • Merge into: main
  • Upgrade uritemplate to ==4.1.1
Update dependency vue-router to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/vue-router-4.x
  • Merge into: main
  • Upgrade vue-router to 4.0.14
Update dependency whitenoise to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/whitenoise-6.x
  • Merge into: main
  • Upgrade whitenoise to ==6.0.0
Update vue monorepo (major)

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or spam the project. See docs for prhourlylimit for details.

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

This PR has been generated by WhiteSource Renovate. View repository job log here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@renovate-bot