alteropen/streamyfin
1
0
Fork 0
mirror of https://github.com/streamyfin/streamyfin.git synced 2026-01-15 15:48:05 +00:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity

chore: simplify renovate configuration
Some checks failed
🤖 Android APK Build (Phone + TV) / 🏗️ Build Android APK (phone) (push) Has been cancelled
Details
🤖 Android APK Build (Phone + TV) / 🏗️ Build Android APK (tv) (push) Has been cancelled
Details
🤖 iOS IPA Build (Phone + TV) / 🏗️ Build iOS IPA (phone) (push) Has been cancelled
Details
🔒 Lockfile Consistency Check / 🔍 Check bun.lock and package.json consistency (push) Has been cancelled
Details
🛡️ CodeQL Analysis / 🔎 Analyze with CodeQL (actions) (push) Has been cancelled
Details
🛡️ CodeQL Analysis / 🔎 Analyze with CodeQL (javascript-typescript) (push) Has been cancelled
Details
🏷️🔀Merge Conflict Labeler / 🏷️ Labeling Merge Conflicts (push) Has been cancelled
Details
🚦 Security & Quality Gate / 📝 Validate PR Title (push) Has been cancelled
Details
🚦 Security & Quality Gate / 🔍 Vulnerable Dependencies (push) Has been cancelled
Details
🚦 Security & Quality Gate / 🚑 Expo Doctor Check (push) Has been cancelled
Details
🚦 Security & Quality Gate / 🔍 Lint & Test (check) (push) Has been cancelled
Details
🚦 Security & Quality Gate / 🔍 Lint & Test (format) (push) Has been cancelled
Details
🚦 Security & Quality Gate / 🔍 Lint & Test (lint) (push) Has been cancelled
Details
🚦 Security & Quality Gate / 🔍 Lint & Test (typecheck) (push) Has been cancelled
Details

Browse Source 
Streamlines dependency management by removing complex package rules and switching to best-practices preset.

Key improvements:
- Reduces configuration complexity from 86 to 46 lines
- Enables OSV vulnerability alerts and config migration
- Separates minor and patch updates for better control
- Updates schedule to weekdays instead of Monday-only
- Consolidates vulnerability handling into lock file maintenance section
This commit is contained in:
Uruk
2025-08-31 23:56:29 +02:00
parent 041cd56d41
commit 602a5fb7d9
1 changed files with 24 additions and 64 deletions
Download Patch File Download Diff File Expand all files Collapse all files

88
.github/renovate.json vendored
View File

@@ -1,86 +1,46 @@
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"description": "Renovate configuration for Streamyfin dependency management",
"description": "Renovate configuration for Streamyfin - Expo React Native Jellyfin client",
"extends": [
"config:recommended",
"config:best-practices",
":dependencyDashboard",
":enableVulnerabilityAlertsWithLabel(security)",
":semanticCommits",
":timezone(Etc/UTC)",
"docker:enableMajor",
"group:testNonMajor",
"group:monorepos",
"helpers:pinGitHubActionDigests",
"customManagers:biomeVersions",
":automergeBranch",
":automergeRequireAllStatusChecks",
":automergeDigest",
":automergePatch",
":automergeMinor"
":automergeRequireAllStatusChecks"
],
"addLabels": ["dependencies"],
"rebaseWhen": "conflicted",
"ignorePaths": ["**/bower_components/**", "**/node_modules/**"],
"ignorePaths": ["**/node_modules/**"],
"ignoreUnstable": true,
"minimumReleaseAge": "3 days",
"schedule": ["before 6am on Monday"],
"schedule": ["before 6am on Sunday"],
"branchPrefix": "renovate/",
"commitMessagePrefix": "chore(deps):",
"osvVulnerabilityAlerts": true,
"configMigration": true,
"separateMinorPatch": true,
"lockFileMaintenance": {
"enabled": true,
"groupName": "lockfiles",
"schedule": ["on the first day of the month"],
"automerge": false
},
"vulnerabilityAlerts": {
"enabled": true,
"schedule": ["at any time"],
"dependencyDashboardApproval": false
},
"packageRules": [
{
"description": "Add 'ci' and 'github-actions' labels to GitHub Action update PRs",
"matchManagers": ["github-actions"],
"addLabels": ["ci", "github-actions"]
"vulnerabilityAlerts": {
"enabled": true,
"addLabels": ["security", "vulnerability"],
"assigneesFromCodeOwners": true,
"commitMessageSuffix": " [SECURITY]"
},
{
"description": "Group minor and patch GitHub Action updates into a single PR",
"matchManagers": ["github-actions"],
"groupName": "CI dependencies",
"groupSlug": "ci-deps",
"matchUpdateTypes": ["minor", "patch", "digest", "pin"],
"automerge": true
},
{
"description": "Group lock file maintenance updates",
"matchUpdateTypes": ["lockFileMaintenance"],
"dependencyDashboardApproval": true
},
{
"description": "Handle major updates more carefully",
"matchUpdateTypes": ["major"],
"dependencyDashboardApproval": true,
"schedule": ["on the first day of the month"]
},
{
"description": "Security updates should be prioritized",
"matchDatasources": ["npm"],
"matchUpdateTypes": ["patch"],
"matchPackageNames": ["*"],
"schedule": ["at any time"],
"automerge": true
},
{
"description": "Group patch updates for stability",
"matchUpdateTypes": ["patch"],
"groupName": "Patch updates",
"groupSlug": "patch-updates",
"automerge": true
},
{
"description": "Separate dev dependencies from production",
"matchDepTypes": ["devDependencies"],
"addLabels": ["dev-dependencies"]
}
]
"packageRules": [
{
"description": "Group minor and patch GitHub Action updates into a single PR",
"matchManagers": ["github-actions"],
"groupName": "CI dependencies",
"groupSlug": "ci-deps",
"matchUpdateTypes": ["minor", "patch", "digest", "pin"],
"automerge": true
}
]
}
}