Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-02-08 11:05:31 -05:00
Code Issues Packages Projects Releases Wiki Activity

renovate: reformat config file for json5 (#3610)

Browse Source 
* renovate: include replace directives in Go deps upgrade
* renovate: replace deprecated regexManagers with customManagers
* renovate: rewrite config in proper json5

---------

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
This commit is contained in:
Daniel Weiße 2025-01-21 13:26:42 +01:00 committed by GitHub
parent 92d7fc5385
commit bea2f33efc
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 289 additions and 197 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

486
renovate.json5
View File

@ -1,304 +1,396 @@
{ {
"$schema": "https://docs.renovatebot.com/renovate-schema.json", $schema: 'https://docs.renovatebot.com/renovate-schema.json',
"extends": [ extends: [
"config:recommended", 'config:recommended',
":preserveSemverRanges", ':preserveSemverRanges',
"helpers:pinGitHubActionDigests", 'helpers:pinGitHubActionDigests',
":separateMajorReleases", ':separateMajorReleases',
":semanticCommitsDisabled", ':semanticCommitsDisabled',
], ],
"commitMessagePrefix": "deps:", commitMessagePrefix: 'deps:',
"commitMessageAction": "update", commitMessageAction: 'update',
"addLabels": ["dependencies"], addLabels: [
"postUpdateOptions": ["gomodTidy", "gomodUpdateImportPaths"], 'dependencies'
"prConcurrentLimit": 4, ],
"ignorePaths": [ postUpdateOptions: [
"internal/constellation/helm/charts/cilium/**", 'gomodTidy',
"internal/constellation/helm/charts/coredns/**", 'gomodUpdateImportPaths',
"internal/constellation/helm/charts/edgeless/csi/charts/aws-csi-driver/**", 'gomodMassage'
"internal/constellation/helm/charts/edgeless/csi/charts/azuredisk-csi-driver/**", ],
"internal/constellation/helm/charts/edgeless/csi/charts/gcp-compute-persistent-disk-csi-driver/**", prConcurrentLimit: 4,
"internal/constellation/helm/charts/edgeless/csi/charts/openstack-cinder-csi/**", ignorePaths: [
"operators/constellation-node-operator/config/manager/kustomization.yaml", 'internal/constellation/helm/charts/cilium/**',
'internal/constellation/helm/charts/coredns/**',
'internal/constellation/helm/charts/edgeless/csi/charts/aws-csi-driver/**',
'internal/constellation/helm/charts/edgeless/csi/charts/azuredisk-csi-driver/**',
'internal/constellation/helm/charts/edgeless/csi/charts/gcp-compute-persistent-disk-csi-driver/**',
'internal/constellation/helm/charts/edgeless/csi/charts/openstack-cinder-csi/**',
'operators/constellation-node-operator/config/manager/kustomization.yaml',
],
ignoreDeps: [
'github.com/edgelesssys/constellation/v2'
], ],
"ignoreDeps": ["github.com/edgelesssys/constellation/v2"],
// Rules for changing renovates behaviour for different packages. // Rules for changing renovates behaviour for different packages.
// The documentation for configuration options can be found here: // The documentation for configuration options can be found here:
// https://docs.renovatebot.com/configuration-options/ // https://docs.renovatebot.com/configuration-options/
"packageRules": [ packageRules: [
{ {
"matchManagers": ["gomod"], matchManagers: [
"matchDepTypes": ["indirect"], 'gomod'
"matchUpdateTypes": [
"minor",
"patch",
"pin",
"pinDigest",
"digest",
"lockFileMaintenance",
"rollback",
"bump",
], ],
"enabled": true, matchDepTypes: [
"prPriority": -30, 'indirect'
],
matchUpdateTypes: [
'minor',
'patch',
'pin',
'pinDigest',
'digest',
'lockFileMaintenance',
'rollback',
'bump',
],
enabled: true,
prPriority: -30,
}, },
{ {
// Group update of direct Go dependencies. // Group update of direct Go dependencies.
"groupName": "Go dependencies", groupName: 'Go dependencies',
"matchManagers": ["gomod"], matchManagers: [
"matchDepTypes": ["require"], 'gomod'
"matchUpdateTypes": [ ],
"bump", matchDepTypes: [
"digest", 'require',
"lockFileMaintenance", 'replace'
"minor", ],
"patch", matchUpdateTypes: [
"pin", 'bump',
"pinDigest", 'digest',
"rollback", 'lockFileMaintenance',
'minor',
'patch',
'pin',
'pinDigest',
'rollback',
],
schedule: [
'before 8am on monday',
], ],
"schedule": ["before 8am on monday"],
}, },
{ {
// Group update of Terraform dependencies. // Group update of Terraform dependencies.
"groupName": "Terraform dependencies", groupName: 'Terraform dependencies',
"matchManagers": ["terraform"], matchManagers: [
"matchUpdateTypes": [ 'terraform'
"bump",
"digest",
"lockFileMaintenance",
"minor",
"patch",
"pin",
"pinDigest",
"rollback",
], ],
"schedule": ["before 8am on wednesday"], matchUpdateTypes: [
}, 'bump',
{ 'digest',
"matchManagers": ["bazelisk", "bazel", "bazel-module"], 'lockFileMaintenance',
"matchDepNames": ["bazel", "io_bazel_rules_go", "bazel_gazelle", "rules_go", "gazelle"], 'minor',
"groupName": "bazel (core)", 'patch',
}, 'pin',
{ 'pinDigest',
"matchManagers": ["bazel"], 'rollback',
"matchDepNames": [
"!bazel",
"!io_bazel_rules_go",
"!bazel_gazelle",
"!rules_go",
"!gazelle",
], ],
"groupName": "bazel (plugins)", schedule: [
}, 'before 8am on wednesday',
{
"matchManagers": ["bazel-module"],
"matchDepNames": [
"!bazel",
"!io_bazel_rules_go",
"!bazel_gazelle",
"!rules_go",
"!gazelle",
], ],
"groupName": "bazel (modules)",
}, },
{ {
"matchDatasources": ["golang-version"], matchManagers: [
"allowedVersions": "1.23", 'bazelisk',
}, 'bazel',
{ 'bazel-module',
"matchManagers": ["pip_requirements"],
"groupName": "Python dependencies",
},
{
"matchManagers": ["github-actions"],
"groupName": "GitHub action dependencies",
"matchUpdateTypes": [
"major",
"minor",
"patch",
"pin",
"pinDigest",
"digest",
"lockFileMaintenance",
"rollback",
"bump",
], ],
"schedule": ["before 8am on tuesday"], matchDepNames: [
'bazel',
'io_bazel_rules_go',
'bazel_gazelle',
'rules_go',
'gazelle',
],
groupName: 'bazel (core)',
}, },
{ {
"matchDepNames": ["kubernetes/kubernetes"], matchManagers: [
// example match: v1.2.3 (1.2 -> compatibility, 3 -> patch) 'bazel',
"versioning": "regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$", ],
"groupName": "Kubernetes versions", matchDepNames: [
"prPriority": 15, '!bazel',
'!io_bazel_rules_go',
'!bazel_gazelle',
'!rules_go',
'!gazelle',
],
groupName: 'bazel (plugins)',
}, },
{ {
"matchDepNames": [ matchManagers: [
"registry.k8s.io/provider-aws/cloud-controller-manager", 'bazel-module'
],
matchDepNames: [
'!bazel',
'!io_bazel_rules_go',
'!bazel_gazelle',
'!rules_go',
'!gazelle',
],
groupName: 'bazel (modules)',
},
{
matchDatasources: [
'golang-version'
],
allowedVersions: '1.23',
},
{
matchManagers: [
'pip_requirements'
],
groupName: 'Python dependencies',
},
{
matchManagers: [
'github-actions'
],
groupName: 'GitHub action dependencies',
matchUpdateTypes: [
'major',
'minor',
'patch',
'pin',
'pinDigest',
'digest',
'lockFileMaintenance',
'rollback',
'bump',
],
schedule: [
'before 8am on tuesday'
],
},
{
matchDepNames: [
'kubernetes/kubernetes'
], ],
// example match: v1.2.3 (1.2 -> compatibility, 3 -> patch) // example match: v1.2.3 (1.2 -> compatibility, 3 -> patch)
"versioning": "regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$", versioning: 'regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$',
"groupName": "K8s constrained AWS versions", groupName: 'Kubernetes versions',
"prPriority": 15, prPriority: 15,
}, },
{ {
"matchDepNames": [ matchDepNames: [
"mcr.microsoft.com/oss/kubernetes/azure-cloud-controller-manager", 'registry.k8s.io/provider-aws/cloud-controller-manager',
"mcr.microsoft.com/oss/kubernetes/azure-cloud-node-manager",
], ],
// example match: v1.2.3 (1.2 -> compatibility, 3 -> patch) // example match: v1.2.3 (1.2 -> compatibility, 3 -> patch)
"versioning": "regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$", versioning: 'regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$',
"groupName": "K8s constrained Azure versions", groupName: 'K8s constrained AWS versions',
"prPriority": 15, prPriority: 15,
}, },
{ {
"matchDepNames": [ matchDepNames: [
"docker.io/k8scloudprovider/openstack-cloud-controller-manager", 'mcr.microsoft.com/oss/kubernetes/azure-cloud-controller-manager',
'mcr.microsoft.com/oss/kubernetes/azure-cloud-node-manager',
], ],
// example match: v1.2.3 (1.2 -> compatibility, 3 -> patch) // example match: v1.2.3 (1.2 -> compatibility, 3 -> patch)
"versioning": "regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$", versioning: 'regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$',
"groupName": "K8s constrained OpenStack versions", groupName: 'K8s constrained Azure versions',
"prPriority": 15, prPriority: 15,
}, },
{ {
"matchDepNames": ["registry.k8s.io/autoscaling/cluster-autoscaler"], matchDepNames: [
'docker.io/k8scloudprovider/openstack-cloud-controller-manager',
],
// example match: v1.2.3 (1.2 -> compatibility, 3 -> patch) // example match: v1.2.3 (1.2 -> compatibility, 3 -> patch)
"versioning": "regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$", versioning: 'regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$',
"groupName": "K8s constrained GCP versions", groupName: 'K8s constrained OpenStack versions',
"prPriority": 15, prPriority: 15,
}, },
{ {
"matchDepNames": ["ghcr.io/edgelesssys/cloud-provider-gcp"], matchDepNames: [
'registry.k8s.io/autoscaling/cluster-autoscaler'
],
// example match: v1.2.3 (1.2 -> compatibility, 3 -> patch)
versioning: 'regex:^(?<compatibility>v?\\d+\\.\\d+\\.)(?<patch>\\d+)$',
groupName: 'K8s constrained GCP versions',
prPriority: 15,
},
{
matchDepNames: [
'ghcr.io/edgelesssys/cloud-provider-gcp'
],
// example match: v1.2.3 (1. -> compatibility, 2 -> minor, 3 -> patch) // example match: v1.2.3 (1. -> compatibility, 2 -> minor, 3 -> patch)
"versioning": "regex:^(?<compatibility>v\\d+\\.)(?<minor>\\d+)\\.(?<patch>\\d+)$", versioning: 'regex:^(?<compatibility>v\\d+\\.)(?<minor>\\d+)\\.(?<patch>\\d+)$',
"groupName": "cloud-provider-gcp (K8s version constrained)", groupName: 'cloud-provider-gcp (K8s version constrained)',
"prPriority": 15, prPriority: 15,
}, },
{ {
"matchPackagePrefixes": ["ghcr.io/edgelesssys/"], matchPackageNames: [
"excludePackageNames": ["ghcr.io/edgelesssys/cloud-provider-gcp"], 'ghcr.io/edgelesssys/{/,}**',
"versioning": "semver", '!ghcr.io/edgelesssys/cloud-provider-gcp',
],
versioning: 'semver',
// Allow packages of ghcr.io/edgelesssys to update to unstable prereleases. // Allow packages of ghcr.io/edgelesssys to update to unstable prereleases.
// This is necessary because renovate will not update minor versions of // This is necessary because renovate will not update minor versions of
// containers that are already tagged as a prerelease in the code // containers that are already tagged as a prerelease in the code
// if this is not set. // if this is not set.
"ignoreUnstable": false, ignoreUnstable: false,
"groupName": "Constellation containers", groupName: 'Constellation containers',
"prPriority": 20, prPriority: 20,
"schedule": ["before 8am on thursday"], schedule: [
}, 'before 8am on thursday'
{
"matchDepNames": [
"registry.k8s.io/kas-network-proxy/proxy-agent",
"registry.k8s.io/kas-network-proxy/proxy-server",
], ],
"versioning": "semver",
"groupName": "K8s version independent containers",
"prPriority": 15,
}, },
{ {
"matchDepNames": ["^k8s.io/client-go"], matchDepNames: [
"matchUpdateTypes": ["major"], 'registry.k8s.io/kas-network-proxy/proxy-agent',
"enabled": false, 'registry.k8s.io/kas-network-proxy/proxy-server',
],
versioning: 'semver',
groupName: 'K8s version independent containers',
prPriority: 15,
}, },
{ {
"matchCategories": ["python", "js", "node"], matchDepNames: [
"prPriority": -20, '^k8s.io/client-go'
],
matchUpdateTypes: [
'major'
],
enabled: false,
}, },
{ {
"matchManagers": ["github-actions"], matchCategories: [
"matchDepNames": ["slsa-framework/slsa-github-generator"], 'python',
"pinDigests": false, 'js',
'node'
],
prPriority: -20,
}, },
{ {
"matchDepPatterns": ["_(darwin|linux)_(arm64|amd64)$"], matchManagers: [
"additionalBranchPrefix": "{{packageName}}-", 'github-actions'
"groupName": "{{packageName}}", ],
matchDepNames: [
'slsa-framework/slsa-github-generator'
],
pinDigests: false,
},
{
additionalBranchPrefix: '{{packageName}}-',
groupName: '{{packageName}}',
matchDepNames: [
'/_(darwin|linux)_(arm64|amd64)$/',
],
}, },
], ],
// Regex Managers allow detection of other versions in files that renovate // Regex Managers allow detection of other versions in files that renovate
// cannot parse by default. For more information, look at // cannot parse by default. For more information, look at
// https://docs.renovatebot.com/modules/manager/regex/ . // https://docs.renovatebot.com/modules/manager/regex/ .
"regexManagers": [ customManagers: [
{ {
"fileMatch": ["(^|\\/)versions.go$"], customType: 'regex',
"matchStrings": [ fileMatch: [
'(^|\\/)versions.go$'
],
matchStrings: [
// Match all container packages. // Match all container packages.
// example match:' "registry.io/owner/foo/bar:v1.2.3@sha256:somehash" // renovate:container' // example match:' "registry.io/owner/foo/bar:v1.2.3@sha256:somehash" // renovate:container'
// (registry.io/owner/foo/bar -> depName, v1.2.3 -> currentValue, sha256:somehash -> currentDigest) // (registry.io/owner/foo/bar -> depName, v1.2.3 -> currentValue, sha256:somehash -> currentDigest)
" \"(?<depName>[^\"]*?):(?<currentValue>[^\"]*?)@(?<currentDigest>sha256:[a-f0-9]+)\"[^\\n]+\\/\\/ renovate:container", ' \"(?<depName>[^\"]*?):(?<currentValue>[^\"]*?)@(?<currentDigest>sha256:[a-f0-9]+)\"[^\\n]+\\/\\/ renovate:container',
], ],
"datasourceTemplate": "docker", datasourceTemplate: 'docker',
}, },
{ {
"fileMatch": ["(^|\\/)versions.go$"], customType: 'regex',
"matchStrings": [ fileMatch: [
'(^|\\/)versions.go$'
],
matchStrings: [
// Match kubernetes releases. // Match kubernetes releases.
// example match:' "https://dl.k8s.io/v1.2.3/foo" // renovate:kubernetes-release' // example match:' "https://dl.k8s.io/v1.2.3/foo" // renovate:kubernetes-release'
// (v1.2.3 -> currentValue) // (v1.2.3 -> currentValue)
" \"https:\\/\\/dl\\.k8s\\.io\\/(?<currentValue>[^\\/\\s\"]+)\\/[^\"]+\"[^\\n]+\\/\\/ renovate:kubernetes-release", ' \"https:\\/\\/dl\\.k8s\\.io\\/(?<currentValue>[^\\/\\s\"]+)\\/[^\"]+\"[^\\n]+\\/\\/ renovate:kubernetes-release',
// Match kubernetes releases. // Match kubernetes releases.
// example match:' " "v1.2.3" // renovate:kubernetes-release"' // example match:' " "v1.2.3" // renovate:kubernetes-release"'
// (v1.2.3 -> currentValue) // (v1.2.3 -> currentValue)
" \"(?<currentValue>v\\d+\\.\\d+\\.\\d+)\"[^\\n]+\\/\\/ renovate:kubernetes-release", ' \"(?<currentValue>v\\d+\\.\\d+\\.\\d+)\"[^\\n]+\\/\\/ renovate:kubernetes-release',
], ],
"depNameTemplate": "kubernetes/kubernetes", depNameTemplate: 'kubernetes/kubernetes',
"datasourceTemplate": "github-releases", datasourceTemplate: 'github-releases',
}, },
{ {
"fileMatch": ["(^|\\/)versions.go$", "[.]github\\/(actions|workflows)\\/.*[.]ya?ml"], customType: 'regex',
"matchStrings": [ fileMatch: [
'(^|\\/)versions.go$',
'[.]github\\/(actions|workflows)\\/.*[.]ya?ml'
],
matchStrings: [
// Match github releases. // Match github releases.
// example match:' "https://github.com/foo/bar/releases/download/v1.2.3/foo.bin" // renovate:github-release' // example match:' "https://github.com/foo/bar/releases/download/v1.2.3/foo.bin" // renovate:github-release'
// (foo/bar -> depName, v1.2.3 -> currentValue) // (foo/bar -> depName, v1.2.3 -> currentValue)
"https:\\/\\/github\\.com\\/(?<depName>[^\\/\\s\"]+\\/[^\\/\\s\"]+)\\/releases\\/download\\/(?<currentValue>[^\\/\\s\"]+).*renovate:github-release", 'https:\\/\\/github\\.com\\/(?<depName>[^\\/\\s\"]+\\/[^\\/\\s\"]+)\\/releases\\/download\\/(?<currentValue>[^\\/\\s\"]+).*renovate:github-release',
], ],
"datasourceTemplate": "github-releases", datasourceTemplate: 'github-releases',
}, },
{ {
"fileMatch": ["(^|\\/)versions.go$"], customType: 'regex',
"matchStrings": [ fileMatch: [
'(^|\\/)versions.go$'
],
matchStrings: [
// Match kubernetes cri-tools releases (https://github.com/kubernetes-sigs/cri-tools). // Match kubernetes cri-tools releases (https://github.com/kubernetes-sigs/cri-tools).
// example Match:' "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.2.3/foo"' // example Match:' "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.2.3/foo"'
// (v1.2.3 -> currentValue) // (v1.2.3 -> currentValue)
" \"https:\\/\\/github\\.com\\/kubernetes-sigs\\/cri-tools\\/releases\\/download\\/(?<currentValue>[^\\/\\s\"]+)\\/[^\"]+\"", ' \"https:\\/\\/github\\.com\\/kubernetes-sigs\\/cri-tools\\/releases\\/download\\/(?<currentValue>[^\\/\\s\"]+)\\/[^\"]+\"',
], ],
"depNameTemplate": "kubernetes-sigs/cri-tools", depNameTemplate: 'kubernetes-sigs/cri-tools',
"datasourceTemplate": "github-releases", datasourceTemplate: 'github-releases',
"autoReplaceStringTemplate": " \"https://github.com/kubernetes-sigs/cri-tools/releases/download/{{{newValue}}}/crictl-{{{newValue}}}-linux-amd64.tar.gz\"", autoReplaceStringTemplate: ' \"https://github.com/kubernetes-sigs/cri-tools/releases/download/{{{newValue}}}/crictl-{{{newValue}}}-linux-amd64.tar.gz\"',
}, },
{ {
"fileMatch": ["versions.go$"], customType: 'regex',
"matchStrings": [ fileMatch: [
'versions.go$'
],
matchStrings: [
// Match containernetworking plugin releases (https://github.com/containernetworking/plugins). // Match containernetworking plugin releases (https://github.com/containernetworking/plugins).
// example Match:' "https://github.com/containernetworking/plugins/releases/download/v1.2.3/foo"' // example Match:' "https://github.com/containernetworking/plugins/releases/download/v1.2.3/foo"'
// (v1.2.3 -> currentValue) // (v1.2.3 -> currentValue)
" \"https:\\/\\/github\\.com\\/containernetworking\\/plugins\\/releases\\/download\\/(?<currentValue>[^\\/\\s\"]+)\\/[^\"]+\"", ' \"https:\\/\\/github\\.com\\/containernetworking\\/plugins\\/releases\\/download\\/(?<currentValue>[^\\/\\s\"]+)\\/[^\"]+\"',
], ],
"depNameTemplate": "containernetworking/plugins", depNameTemplate: 'containernetworking/plugins',
"datasourceTemplate": "github-releases", datasourceTemplate: 'github-releases',
"autoReplaceStringTemplate": " \"https://github.com/containernetworking/plugins/releases/download/{{{newValue}}}/cni-plugins-linux-amd64-{{{newValue}}}.tgz\"", autoReplaceStringTemplate: ' \"https://github.com/containernetworking/plugins/releases/download/{{{newValue}}}/cni-plugins-linux-amd64-{{{newValue}}}.tgz\"',
}, },
{ {
"fileMatch": ["\\.yaml$", "\\.yml$"], customType: 'regex',
"matchStrings": [ fileMatch: [
'\\.yaml$',
'\\.yml$'
],
matchStrings: [
// Match `go install` commands. // Match `go install` commands.
// example Match: "go install foo.bar@0000000000000000000000000000000000000000" // example Match: 'go install foo.bar@0000000000000000000000000000000000000000'
// (foo.bar -> depName, 0000000000000000000000000000000000000000 -> currentValue) // (foo.bar -> depName, 0000000000000000000000000000000000000000 -> currentValue)
"go install (?<depName>[^@]+?)@(?<currentValue>[0-9a-f]{40})", 'go install (?<depName>[^@]+?)@(?<currentValue>[0-9a-f]{40})',
], ],
"datasourceTemplate": "go", datasourceTemplate: 'go',
}, },
{ {
"fileMatch": ["(^|\\/)e2e_s3proxy/action.yml$"], customType: 'regex',
"matchStrings": [ fileMatch: [
'(^|\\/)e2e_s3proxy/action.yml$'
],
matchStrings: [
// Match mint tags (ghcr.io/edgelesssys/mint). // Match mint tags (ghcr.io/edgelesssys/mint).
// example Match:' "ghcr.io/edgelesssys/mint:v1.2.3"' // example Match:' "ghcr.io/edgelesssys/mint:v1.2.3"'
// (ghcr.io/edgelesssys/mint -> depName, v1.2.3 -> currentValue) // (ghcr.io/edgelesssys/mint -> depName, v1.2.3 -> currentValue)
"IMAGE: \"(?<depName>[^\"]*?):(?<currentValue>[^\"]*?)@(?<currentDigest>sha256:[a-f0-9]+)\"[^\\n]+# renovate:mint-fork", 'IMAGE: \"(?<depName>[^\"]*?):(?<currentValue>[^\"]*?)@(?<currentDigest>sha256:[a-f0-9]+)\"[^\\n]+# renovate:mint-fork',
], ],
"datasourceTemplate": "docker", datasourceTemplate: 'docker',
}, },
], ],
} }