chore: Configure Renovate

elastic-renovate-prod[bot] commented 2 months ago

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

Detected Package Files

packages/opentelemetry-node/test/docker-compose.yaml (docker-compose)
examples/otel-operator/Dockerfile (dockerfile)
packages/mockotlpserver/Dockerfile (dockerfile)
packages/mockotlpserver/share/k8s/example-app-manual/Dockerfile (dockerfile)
packages/opentelemetry-node/Dockerfile (dockerfile)
.github/workflows/labeler.yml (github-actions)
.github/workflows/lint.yml (github-actions)
.github/workflows/release-mockotlpserver.yml (github-actions)
.github/workflows/release.yml (github-actions)
.github/workflows/test.yml (github-actions)
examples/otel-operator/package.json (npm)
examples/package.json (npm)
package.json (npm)
packages/mockotlpserver/package.json (npm)
packages/mockotlpserver/share/k8s/example-app-manual/package.json (npm)
packages/opentelemetry-node/package.json (npm)
examples/otel-operator/Dockerfile (regex)
packages/mockotlpserver/Dockerfile (regex)
packages/mockotlpserver/share/k8s/example-app-manual/Dockerfile (regex)
packages/opentelemetry-node/Dockerfile (regex)

Configuration Summary

Based on the default config's presets, Renovate will:

Start dependency updates only once this onboarding PR is merged
Chainguard Renovate configuration (https://ela.st/wolfi)
Enable Renovate Dependency Dashboard creation.
Pin Docker digests.
Renovate configuration to only raise PRs for Chainguard updates, and ignore any other updates

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

What to Expect

With your current configuration, Renovate will create 1 Pull Request:

chore(deps): pin docker.elastic.co/wolfi/chainguard-base docker tag to 5186816

- Schedule: ["at any time"] - Branch name: `renovate/wolfi-(versioned)` - Merge into: `main` - Upgrade docker.elastic.co/wolfi/chainguard-base to `sha256:5186816a1b676aa8d7f11f2a1faaf142348f0045a64bc3e8195c61b133496896`

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section. If you need any further assistance then you can also request help here.

This PR has been generated by Renovate Bot.

v1v commented 2 months ago

dependabot is available, hence I close this

trentm commented 2 months ago

dependabot is available, hence I close this

@v1v Note that I think Renovate is the only option to update Dockerfile.wolfi images from docker.elastic.co. At least I think so. If/when we create Docker images from this repo and want to use Wolfi/Chainguard images, I think we may want this. Anyway, I assume we can come back later when that is relevant. Currently this repo has no need for Renovate.

trentm commented 2 months ago

Thanks. I propose leaving this PR open and not merged until we do have a Dockerfile.wolfi to publish -- which is expected to come with https://github.com/elastic/elastic-otel-node/issues/255 work.

v1v commented 2 weeks ago

I forgot to mention that we can use Dependabot for updating the Wolfi images, if that's something we want to enable (already in a couple of projects elastic/apm-server and prodfiler)

elastic / elastic-otel-node