Switching dependency bot to renovate #5271
Comments
|
This config can be used as a reference: https://github.com/signalfx/splunk-otel-go/blob/main/renovate.json
e.g. {
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"extends": [
"config:recommended"
],
"ignorePaths": [],
"separateMajorMinor": true,
"postUpdateOptions" : [
"gomodTidy"
],
"packageRules": [
{
"matchManagers": ["gomod"],
"matchDepTypes": ["indirect"],
"enabled": true
},
{
"matchFileNames": ["internal/tools/**"],
"matchManagers": ["gomod"],
"matchDepTypes": ["indirect"],
"enabled": false
}
]
} |
|
This should be unblocked: open-telemetry/community#2090 (comment) |
|
I don't know why this repo didn't receive any Configure Renovate PR. |
|
FYI, the default config file looks like this {
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"extends": [
"config:recommended"
]
} |
I know but I want to at least make sure that |
|
The renovate bot failed to create Renovate PR because it got a 422 Error from GitHub. https://developer.mend.io/github/open-telemetry/opentelemetry-go/-/job/817ca928-01ff-4038-a171-0296c06ab5ad |
|
It fails because we are probably missing this rule in this repo: https://github.com/open-telemetry/community/blob/main/docs/how-to-configure-new-repository.md#branch-protection-rule-renovate |
|
To resolve this, is the plan to rip out all the dependabot tooling and disable the bot on the repo? |
Recap the discussion at the meeting, we will disable dependabot for version updates, but keep the vulnerability alerts. |
|
Are there any more tasks for this? Can this be closed? |
|
I will prepare a PR for contrib. |
Problem Statement
Proposed Solution
Switch to renovate
Additional Context
#5244 (comment)
Tasks
The text was updated successfully, but these errors were encountered: