From a91dabf73e0437408a9019ac88d1ebbd18226191 Mon Sep 17 00:00:00 2001 From: Anik Bhattacharjee Date: Fri, 6 Mar 2026 11:24:32 -0500 Subject: [PATCH] chore: configure Konflux bot for Python and pipeline dependency updates Configures Konflux bot to automatically track and create PRs for dependency updates. **Enabled tracking for:** - Python dependencies (requirements files, pyproject.toml) - Tekton pipeline tasks - Dockerfile base images - GitHub Actions Signed-off-by: Anik Bhattacharjee --- renovate.json | 39 ++++++++++++++++++++++++++++++++++++++- 1 file changed, 38 insertions(+), 1 deletion(-) diff --git a/renovate.json b/renovate.json index f19ad7aaa..d84ca1172 100644 --- a/renovate.json +++ b/renovate.json @@ -1,6 +1,43 @@ { "$schema": "https://docs.renovatebot.com/renovate-schema.json", "enabledManagers": [ - "tekton" + "tekton", + "pip_requirements", + "pip_setup", + "pep621", + "dockerfile", + "github-actions" + ], + "pip_requirements": { + "fileMatch": [ + "(^|/)requirements[\\w-]*\\.txt$", + "(^|/)requirements[\\w-]*\\.in$" + ] + }, + "packageRules": [ + { + "description": "Group all Tekton pipeline updates", + "matchManagers": ["tekton"], + "groupName": "Tekton pipelines" + }, + { + "description": "Group Python build dependencies", + "matchFiles": ["requirements-build.txt"], + "groupName": "Python build dependencies" + }, + { + "description": "Separate security updates for faster merging", + "matchUpdateTypes": ["patch"], + "matchCurrentVersion": "!/^0/", + "automerge": false, + "labels": ["security"] + } + ], + "vulnerabilityAlerts": { + "enabled": true, + "labels": ["security"] + }, + "schedule": [ + "before 6am on Monday" ] } \ No newline at end of file