chore: adopt shared conf-renovate preset (v1.2.1)#4
Merged
Conversation
Switches this repo onto the org-shared Renovate preset `hardcoretech/conf-renovate` pinned at v1.2.1. Mirrors the gf-admin-console pilot (#182, merged) and the svc-thor adoption (#160). What the preset provides (inherited, no local declaration): - `config:best-practices` baseline + dependency dashboard. - SHA-pinned GHA + 3-day release-age soak + OSV alerts (locked). - Per-ecosystem PR grouping with major-update isolation. - Datastore version pinning (mysql / rabbitmq / valkey on docker+helm). - Built-in self-bump customManager — future preset releases auto-PR a bump of the `#v1.2.1` pin without per-repo config. Adds `.github/workflows/validate-renovate.yml` (no pre-commit infra in this repo, so a standalone workflow is the lowest-overhead gate).
- Workflow now triggers on every Renovate config filename (renovate.json, .renovaterc, .github/renovate.json, etc.) so a future PR can't bypass validation by adding a higher-precedence file. - Workflow refuses to run if any higher-precedence config is present at run time, surfacing the conflict loudly instead of silently overriding. - File-level comment on renovate.json5 now spells out the inherited policy (config:best-practices baseline, atomic preset chain) so readers don't have to chase the preset source.
mattwang44
approved these changes
May 20, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Switches this repo onto the org-shared Renovate preset
hardcoretech/conf-renovatepinned at v1.2.1. Part of the fleet rollout following the pilots gf-admin-console#182 (merged) and svc-thor#160.No prior Renovate config existed; the new file is the minimum-form baseline:
What the preset provides (inherited baseline)
config:best-practices+ dependency dashboard.#v1.2.1here without any local config.Validation gate
A standalone
.github/workflows/validate-renovate.ymlrunsrenovate-config-validator --strict --no-globalon PR + push. ~20 lines, triggers only onrenovate.json5/ workflow changes. (No pre-commit infrastructure in this repo, so a standalone workflow is the lowest-overhead gate.)Verification
renovate-config-validator --strict --no-global renovate.json5passes locally (Node 24 + renovate@43, LOG_LEVEL=warn, exit 0).gha-non-major).conf-renovaterelease auto-PRs a bump of#v1.2.1→#v<next>.Rollback
Revert this branch — the repo had no Renovate config before, so revert restores the prior (no-Renovate) state.