Configure Renovate

[renovate]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

---

Detected Package Files

• Dockerfile (dockerfile)
• .github/workflows/deactivate.yaml (github-actions)
• .github/workflows/preproduction.yaml (github-actions)
• .github/workflows/production.yaml (github-actions)
• .github/workflows/release.yaml (github-actions)
• .github/workflows/review-auto.yaml (github-actions)
• .github/workflows/review.yaml (github-actions)
• package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Show all Merge Confidence badges for pull requests.
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Ignore node_modules, bower_components, vendor and various test/tests directories.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.
• Enable Docker major updates.
• Run lock file maintenance (updates) on the first day of each month.
• Enable Renovate Dependency Dashboard creation.
• Preserve (but continue to upgrade) any existing SemVer ranges.
• Rate limit PR creation to a maximum of four per hour.
• Use semantic prefixes for commit messages and PR titles.
• Evaluate schedules according to timezone Europe/Paris.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

---

What to Expect

With your current configuration, Renovate will create 19 Pull Requests:

fix(deps): update dependency sharp to ^0.32.0 [security]

• Branch name: renovate/npm-sharp-vulnerability
• Merge into: master
• Upgrade sharp to ^0.32.0

fix(deps): replace dependency babel-eslint with @​babel/eslint-parser ^7.11.0

• Schedule: ["at any time"]
• Branch name: renovate/babel-eslint-replacement
• Merge into: master
• Upgrade babel-eslint to ^7.11.0

chore(deps): update node.js to c0a5f02

• Schedule: ["at any time"]
• Branch name: renovate/node-18-alpine3.18
• Merge into: master
• Upgrade node to sha256:c0a5f02df6e631b75ee3037bd4389ac1f91e591c5c1e30a0007a7d0babcd4cd3

fix(deps): update dependency eslint-config-next to v11.1.4

• Schedule: ["at any time"]
• Branch name: renovate/nextjs-monorepo
• Merge into: master
• Upgrade eslint-config-next to 11.1.4

fix(deps): update dependency @​zeit/next-sass to ^0.2.0

• Schedule: ["at any time"]
• Branch name: renovate/zeit-next-sass-0.x
• Merge into: master
• Upgrade @zeit/next-sass to ^0.2.0

chore(deps): update dependency husky to v8

• Schedule: ["at any time"]
• Branch name: renovate/husky-8.x
• Merge into: master
• Upgrade husky to ^8.0.0

chore(deps): update dependency prettier to v3

• Schedule: ["at any time"]
• Branch name: renovate/prettier-3.x
• Merge into: master
• Upgrade prettier to ^3.0.0

fix(deps): update dependency @​notionhq/client to v2

• Schedule: ["at any time"]
• Branch name: renovate/notionhq-client-2.x
• Merge into: master
• Upgrade @notionhq/client to ^2.0.0

fix(deps): update dependency @​zeit/next-sass to v1

• Schedule: ["at any time"]
• Branch name: renovate/zeit-next-sass-1.x
• Merge into: master
• Upgrade @zeit/next-sass to ^1.0.0

fix(deps): update dependency d3 to v7

• Schedule: ["at any time"]
• Branch name: renovate/d3-7.x
• Merge into: master
• Upgrade d3 to 7.8
• Upgrade @types/d3 to 7.4

fix(deps): update dependency eslint to v8

• Schedule: ["at any time"]
• Branch name: renovate/eslint-8.x
• Merge into: master
• Upgrade eslint to ^8.0.0

fix(deps): update dependency eslint-config-next to v14

• Schedule: ["at any time"]
• Branch name: renovate/major-nextjs-monorepo
• Merge into: master
• Upgrade eslint-config-next to 14.0.4

fix(deps): update dependency next-seo to v6

• Schedule: ["at any time"]
• Branch name: renovate/next-seo-6.x
• Merge into: master
• Upgrade next-seo to ^6.0.0

fix(deps): update dependency swagger-ui-dist to v5

• Schedule: ["at any time"]
• Branch name: renovate/swagger-ui-dist-5.x
• Merge into: master
• Upgrade swagger-ui-dist to ^5.0.0

fix(deps): update dependency typescript to v5

• Schedule: ["at any time"]
• Branch name: renovate/typescript-5.x
• Merge into: master
• Upgrade typescript to ^5.0.0

fix(deps): update jest monorepo to v29 (major)

• Schedule: ["at any time"]
• Branch name: renovate/major-jest-monorepo
• Merge into: master
• Upgrade @types/jest to ^29.0.0
• Upgrade jest to ^29.0.0

fix(deps): update react monorepo to v18 (major)

• Schedule: ["at any time"]
• Branch name: renovate/major-react-monorepo
• Merge into: master
• Upgrade @types/react to ^18.0.0
• Upgrade react to ^18.0.0
• Upgrade react-dom to ^18.0.0

fix(deps): update typescript-eslint monorepo to v6 (major)

• Schedule: ["at any time"]
• Branch name: renovate/major-typescript-eslint-monorepo
• Merge into: master
• Upgrade @typescript-eslint/eslint-plugin to ^6.0.0
• Upgrade @typescript-eslint/parser to ^6.0.0

chore(deps): lock file maintenance

• Schedule: ["before 4am on the first day of the month"]
• Branch name: renovate/lock-file-maintenance
• Merge into: master
• Regenerate lock files to use latest dependency versions

🚸 Branch creation will be limited to maximum 4 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR has been generated by Mend Renovate. View repository job log here.

[gitguardian]

️✅ There are no secrets present in this pull request anymore.

If these secrets were true positive and are still valid, we highly recommend you to revoke them.
Once a secret has been leaked into a git repository, you should consider it compromised, even if it was deleted immediately.
Find here more information about risks.

[gitguardian]

️✅ There are no secrets present in this pull request anymore.

If these secrets were true positive and are still valid, we highly recommend you to revoke them.
Once a secret has been leaked into a git repository, you should consider it compromised, even if it was deleted immediately.
Find here more information about risks.

---

<sup><sub>🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Our GitHub checks need improvements? Share your feedbacks!</sub></sup>

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

[github-actions]

🎉 Deployment for commit 5824f1c :

Ingresses

• 🚀 https://ressourcerie-renovate-configure-54i32x.dev.fabrique.social.gouv.fr/

Docker images

• 📦 docker pull ghcr.io/socialgouv/ressourcerie/app:sha-5824f1c1c868a1cb8caafe0b278bc99e949cca56

Debug

• 📕 Loki logs for namespace ressourcerie-renovate-configure-54i32x
• 📈 Pods monitoring for namespace ressourcerie-renovate-configure-54i32x
• 📈 Workloads monitoring for namespace ressourcerie-renovate-configure-54i32x
• 👮‍♂️ Namespace rancher ressourcerie-renovate-configure-54i32x
• 👮‍♂️ Deployment app