feat: add Renovate for automated dependency updates#14
feat: add Renovate for automated dependency updates#14edmundmiller wants to merge 2 commits intomasterfrom
Conversation
- Add renovate.json with custom managers for connect-client version tracking - Add .github/workflows/renovate.yml to run Renovate via GitHub Action - Add renovate comments to all Dockerfiles for connect-client ARG - Add renovate comments for pip packages (cellxgene, marimo) - Update docker.yml workflow with renovate comment for default version Renovate will create grouped PRs by dependency type: - connect-client (across all Dockerfiles + workflow) - python-base-images - github-actions - uv, wave-images, python-packages
|
@edmundmiller This generally seems like a great idea. I vote we update this branch and include. @robnewman What do you think? |
|
@FloWuenne Agreed, but it's missing the |
|
Actually, this one is an infrastructure feature we would need to add to each Dockerfile on each branch to work I believe. As far as I understand it's basically a way to auto-update Docker images with new connect versions when they get released. @edmundmiller can this work with a per branch setup? |
|
I think it just makes PRs to whatever branches you want. We could specify the branches for each image. |
weronikasosnowskaseqera
left a comment
weronikasosnowskaseqera
left a comment
There was a problem hiding this comment.
I think this automation should also cover updating connect-client version.
See https://public.cr.seqera.io/repo/platform/connect-client
| required: true | ||
| type: string | ||
| # renovate: datasource=docker depName=public.cr.seqera.io/platform/connect-client | ||
| default: '0.9' |
4 participants
Summary
Changes
renovate.json- Main config with custom regex managers.github/workflows/renovate.yml- Weekly scheduled workflow# renovate:comments for version trackingDependency Groups
connect-clientpython-base-imagespython:3.x-slimbase imagesgithub-actionsactions/checkout, etc.)python-packagescellxgene,marimopip packagesuvghcr.io/astral-sh/uvwave-imagesSetup Required
After merging, add a
RENOVATE_TOKENsecret with a PAT that has:contents: writepull-requests: writeworkflows: writeThen trigger the workflow manually or wait for the Monday schedule.