fraqtal/agentic-dev
Template
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

chore(work): finish 03-renovate-adoption

Browse Source
This commit is contained in:
Danijel Martinek
2026-05-14 19:18:20 +02:00
parent 0d2ae73d2a
commit 3d98a14e45
2 changed files with 5 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
docs/work/2026-05-14-ci-security-and-supply-chain/03-renovate-adoption/_story.md
View File

@@ -3,7 +3,7 @@ id: 03-renovate-adoption
epic: 2026-05-14-ci-security-and-supply-chain
title: Renovate adoption
type: technical-story
status: todo
status: done
feature: tooling
depends-on: []
blocks: [09-ci-security-guide-and-docs]
@@ -37,4 +37,4 @@ Major-tag pinning for GitHub Actions is documented insecure — the 2025 `tj-act
## Tasks
- [ ] Create `.github/renovate.json` extending presets `config:base`, `helpers:pinGitHubActionDigests`, `:separateMajorReleases`, `:automergeMinor`, `:automergePatch`; add `packageRules` grouping `@sentry/*`, `@opentelemetry/*`, `@trpc/*`, `payload*`, `inversify*` into weekly per-cluster PRs; enable Dockerfile manager for `.sandcastle/Dockerfile`; set `dependencyDashboard: true`; set `commitMessagePrefix` to enforce `chore(deps):` / `chore(deps-major):` per Conventional Commits; one commit, all gates pass.
- [x] Create `.github/renovate.json` extending presets `config:base`, `helpers:pinGitHubActionDigests`, `:separateMajorReleases`, `:automergeMinor`, `:automergePatch`; add `packageRules` grouping `@sentry/*`, `@opentelemetry/*`, `@trpc/*`, `payload*`, `inversify*` into weekly per-cluster PRs; enable Dockerfile manager for `.sandcastle/Dockerfile`; set `dependencyDashboard: true`; set `commitMessagePrefix` to enforce `chore(deps):` / `chore(deps-major):` per Conventional Commits; one commit, all gates pass.

11
docs/work/_state.json
View File

@@ -1,5 +1,5 @@
{
"updated_at": "2026-05-14T17:16:32.410Z",
"updated_at": "2026-05-14T17:18:20.990Z",
"epics": {
"2026-05-13-binder-wrap-helper": {
"status": "done",
@@ -65,10 +65,10 @@
]
},
"03-renovate-adoption": {
"status": "todo",
"status": "done",
"title": "Renovate adoption",
"ac_total": 1,
"ac_completed": 0,
"ac_completed": 1,
"depends_on": [],
"blocks": [
"09-ci-security-guide-and-docs"
@@ -258,11 +258,6 @@
}
},
"ready": [
{
"epic": "2026-05-14-ci-security-and-supply-chain",
"story": "03-renovate-adoption",
"title": "Renovate adoption"
},
{
"epic": "2026-05-14-ci-security-and-supply-chain",
"story": "04-major-bump-reevaluation",