Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Configure Renovate #5

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Configure Renovate #5

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented May 2, 2023

Mend Renovate

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.


Detected Package Files

  • package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Enable Renovate Dependency Dashboard creation.
  • Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
  • Ignore node_modules, bower_components, vendor and various test/tests directories.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • Apply crowd-sourced package replacement rules.
  • Apply crowd-sourced workarounds for known problems with packages.

🔡 Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Pull Requests in the "What to Expect" section below will be updated the next time Renovate runs.


What to Expect

With your current configuration, Renovate will create 8 Pull Requests:

Update dependency morgan to ~1.9.1 [SECURITY]
  • Branch name: renovate/npm-morgan-vulnerability
  • Merge into: master
  • Upgrade morgan to ~1.9.1
Update dependency mongodb to v3 [SECURITY]
  • Branch name: renovate/npm-mongodb-vulnerability
  • Merge into: master
  • Upgrade mongodb to ^3.1.13
Update dependency socket.io to v2 [SECURITY]
  • Branch name: renovate/npm-socket.io-vulnerability
  • Merge into: master
  • Upgrade socket.io to ^2.4.0
Update dependency body-parser to ~1.20.0
  • Schedule: ["at any time"]
  • Branch name: renovate/body-parser-1.x
  • Merge into: master
  • Upgrade body-parser to ~1.20.0
Update dependency express to ~4.18.0
  • Schedule: ["at any time"]
  • Branch name: renovate/express-4.x
  • Merge into: master
  • Upgrade express to ~4.18.0
Update dependency serve-favicon to ~2.5.0
  • Schedule: ["at any time"]
  • Branch name: renovate/serve-favicon-2.x
  • Merge into: master
  • Upgrade serve-favicon to ~2.5.0
Update dependency debug to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/debug-4.x
  • Merge into: master
  • Upgrade debug to ~4.3.0
Update dependency pug to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/pug-3.x
  • Merge into: master
  • Upgrade pug to ~3.0.0

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.


❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.


This PR has been generated by Mend Renovate. View repository job log here.

@changeset-bot
Copy link

changeset-bot bot commented May 2, 2023

⚠️ No Changeset found

Latest commit: 2d2076b

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants