mirror of
https://github.com/astral-sh/uv
synced 2026-01-22 14:00:11 -05:00
8c21baf9f1
The Renovate config in this repository needs migrating. Typically this is because one or more configuration options you are using have been renamed. You don't need to merge this PR right away, because Renovate will continue to migrate these fields internally each time it runs. But later some of these fields may be fully deprecated and the migrations removed. So it's a good idea to merge this migration PR soon. #### [PLEASE NOTE](https://docs.renovatebot.com/configuration-options#configmigration): JSON5 config file migrated! All comments & trailing commas were removed. 🔕 **Ignore**: Close this PR and you won't be reminded about config migration again, but one day your current config may no longer be valid. ❓ Got questions? Does something look wrong to you? Please don't hesitate to [request help here](https://redirect.github.com/renovatebot/renovate/discussions). --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/astral-sh/uv). --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: konstin <konstin@mailbox.org>
144 lines
4.8 KiB
Plaintext
144 lines
4.8 KiB
Plaintext
{
|
|
$schema: "https://docs.renovatebot.com/renovate-schema.json",
|
|
dependencyDashboard: true,
|
|
suppressNotifications: ["prEditedNotification"],
|
|
extends: [
|
|
"config:recommended",
|
|
// For tool versions defined in GitHub Actions:
|
|
"customManagers:githubActionsVersions",
|
|
],
|
|
labels: ["internal"],
|
|
schedule: ["before 4am on Monday"],
|
|
semanticCommits: "disabled",
|
|
separateMajorMinor: false,
|
|
prHourlyLimit: 10,
|
|
enabledManagers: ["github-actions", "pre-commit", "cargo", "custom.regex"],
|
|
cargo: {
|
|
// See https://docs.renovatebot.com/configuration-options/#rangestrategy
|
|
rangeStrategy: "update-lockfile",
|
|
managerFilePatterns: ["/^crates/.*Cargo\\.toml$/"],
|
|
},
|
|
"pre-commit": {
|
|
enabled: true,
|
|
},
|
|
packageRules: [
|
|
// Pin GitHub Actions to immutable SHAs.
|
|
{
|
|
matchDepTypes: ["action"],
|
|
pinDigests: true,
|
|
},
|
|
// Annotate GitHub Actions SHAs with a SemVer version.
|
|
{
|
|
extends: ["helpers:pinGitHubActionDigests"],
|
|
extractVersion: "^(?<version>v?\\d+\\.\\d+\\.\\d+)$",
|
|
versioning: "regex:^v?(?<major>\\d+)(\\.(?<minor>\\d+)\\.(?<patch>\\d+))?$",
|
|
},
|
|
{
|
|
// Disable updates of `zip-rs`; intentionally pinned for now due to ownership change
|
|
// See: https://github.com/astral-sh/uv/issues/3642
|
|
matchPackageNames: ["/zip/"],
|
|
matchManagers: ["cargo"],
|
|
enabled: false,
|
|
},
|
|
{
|
|
// Create dedicated branches to update references to dependencies in the documentation.
|
|
matchFileNames: ["docs/**/*.md"],
|
|
commitMessageTopic: "documentation references to {{{depName}}}",
|
|
semanticCommitType: "docs",
|
|
semanticCommitScope: null,
|
|
additionalBranchPrefix: "docs-",
|
|
},
|
|
{
|
|
// Group upload/download artifact updates, the versions are dependent
|
|
groupName: "Artifact GitHub Actions dependencies",
|
|
matchManagers: ["github-actions"],
|
|
matchDatasources: ["gitea-tags", "github-tags"],
|
|
matchPackageNames: ["/actions/.*-artifact/"],
|
|
description: "Weekly update of artifact-related GitHub Actions dependencies",
|
|
},
|
|
{
|
|
// This package rule disables updates for GitHub runners:
|
|
// we'd only pin them to a specific version
|
|
// if there was a deliberate reason to do so
|
|
groupName: "GitHub runners",
|
|
matchManagers: ["github-actions"],
|
|
matchDatasources: ["github-runners"],
|
|
description: "Disable PRs updating GitHub runners (e.g. 'runs-on: macos-14')",
|
|
enabled: false,
|
|
},
|
|
{
|
|
groupName: "pre-commit dependencies",
|
|
matchManagers: ["pre-commit"],
|
|
description: "Weekly update of pre-commit dependencies",
|
|
},
|
|
{
|
|
groupName: "Rust dev-dependencies",
|
|
matchManagers: ["cargo"],
|
|
matchDepTypes: ["devDependencies"],
|
|
description: "Weekly update of Rust development dependencies",
|
|
},
|
|
{
|
|
// We don't really use PyO3 in this project; it's pulled in as an optional feature
|
|
// of the PEP 440 and PEP 508 crates, which we vendored and forked.
|
|
groupName: "pyo3",
|
|
matchManagers: ["cargo"],
|
|
matchPackageNames: ["/pyo3/"],
|
|
description: "Weekly update of pyo3 dependencies",
|
|
enabled: false,
|
|
},
|
|
{
|
|
commitMessageTopic: "MSRV",
|
|
matchManagers: ["custom.regex"],
|
|
matchDepNames: ["msrv"],
|
|
// We have a rolling support policy for the MSRV
|
|
// 2 releases back * 6 weeks per release * 7 days per week + 1
|
|
minimumReleaseAge: "85 days",
|
|
internalChecksFilter: "strict",
|
|
groupName: "MSRV",
|
|
},
|
|
{
|
|
matchManagers: ["custom.regex"],
|
|
matchDepNames: ["rust"],
|
|
commitMessageTopic: "Rust",
|
|
},
|
|
],
|
|
customManagers: [
|
|
// Update major GitHub actions references in documentation.
|
|
{
|
|
customType: "regex",
|
|
managerFilePatterns: ["/^docs/.*\\.md$/"],
|
|
matchStrings: [
|
|
"\\suses: (?<depName>[\\w-]+/[\\w-]+)(?<path>/.*)?@(?<currentValue>.+?)\\s",
|
|
],
|
|
datasourceTemplate: "github-tags",
|
|
versioningTemplate: "regex:^v(?<major>\\d+)$",
|
|
},
|
|
// Minimum supported Rust toolchain version
|
|
{
|
|
customType: "regex",
|
|
managerFilePatterns: ["/(^|/)Cargo\\.toml?$/"],
|
|
matchStrings: [
|
|
'rust-version\\s*=\\s*"(?<currentValue>\\d+\\.\\d+(\\.\\d+)?)"',
|
|
],
|
|
depNameTemplate: "msrv",
|
|
packageNameTemplate: "rust-lang/rust",
|
|
datasourceTemplate: "github-releases",
|
|
},
|
|
// Rust toolchain version
|
|
{
|
|
customType: "regex",
|
|
managerFilePatterns: ["/(^|/)rust-toolchain\\.toml?$/"],
|
|
matchStrings: [
|
|
'channel\\s*=\\s*"(?<currentValue>\\d+\\.\\d+(\\.\\d+)?)"',
|
|
],
|
|
depNameTemplate: "rust",
|
|
packageNameTemplate: "rust-lang/rust",
|
|
datasourceTemplate: "github-releases",
|
|
},
|
|
],
|
|
vulnerabilityAlerts: {
|
|
commitMessageSuffix: "",
|
|
labels: ["internal", "security"],
|
|
},
|
|
}
|