Skip to content

Commit

Permalink
Merge pull request #237 from theseion/use-renovate
Browse files Browse the repository at this point in the history
feat: manage deps with renovate
  • Loading branch information
fzipi authored Apr 27, 2024
2 parents d32ad5f + b10b8db commit 7790c71
Show file tree
Hide file tree
Showing 2 changed files with 111 additions and 5 deletions.
17 changes: 12 additions & 5 deletions docker-bake.hcl
Original file line number Diff line number Diff line change
@@ -1,32 +1,43 @@
# docker-bake.hcl
variable "modsec3-version" {
# renovate: depName=ModSecurity3 packageName=owasp-modsecurity/ModSecurity datasource=github-releases
default = "3.0.12"
}

variable "modsec2-version" {
# renovate: depName=ModSecurity2 packageName=owasp-modsecurity/ModSecurity datasource=github-releases
default = "2.9.7"
}

variable "crs-version" {
default = "4.2.0"
# renovate: depName=coreruleset/coreruleset datasource=github-releases
default = "4.1.0"
}

variable "nginx-version" {
# renovate: depName=nginxinc/nginx-unprivileged datasource=docker
default = "1.25.3"
}

variable "httpd-version" {
# renovate: depName=httpd datasource=docker
default = "2.4.59"
}

variable "openresty-version" {
# renovate: depName=openresty/openresty datasource=docker
default = "1.25.3.1"
}

variable "lua-version" {
default = "5.3"
}

variable "lmdb-version" {
default = "0.9.29"
}


variable "lua-modules-alpine" {
default = [
"lua-lzlib",
Expand All @@ -49,10 +60,6 @@ variable "lua-modules-luarocks" {
]
}

variable "lmdb-version" {
default = "0.9.29"
}

variable "REPOS" {
# List of repositories to tag
default = [
Expand Down
99 changes: 99 additions & 0 deletions renovate.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,99 @@
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"extends": [
"local>coreruleset/renovate-config",
"schedule:weekly"
],
"enabledManagers": [
"custom.regex"
],
"packageRules": [
{
"groupName": "all non-major dependencies",
"groupSlug": "all-minor-patch",
"matchPackagePatterns": [
"*"
],
"matchUpdateTypes": [
"minor",
"patch"
],
"prBodyColumns": [
"Package",
"Type",
"Update",
"Change",
"Pending"
]
},
{
"groupName": "all major dependencies",
"groupSlug": "all-major",
"matchPackagePatterns": [
"*"
],
"matchUpdateTypes": [
"major"
],
"prBodyColumns": [
"Package",
"Type",
"Update",
"Change",
"Pending"
]
},
{
"matchDepNames": ["ModSecurity2"],
"allowedVersions": "/^v2.*/"
}
],
"customManagers": [
{
"description": "Bake file",
"customType": "regex",
"fileMatch": [
"^docker-bake\\.hcl$"
],
"matchStrings": [
"depName=(?<depName>[^\\s]+)(?:\\s+packageName=(?<packageName>[^\\s]+))?\\s+datasource=(?<datasource>[^\\s]+)\\s+[^\"]+\"(?<currentValue>[^\"]+)\""
]
},
{
"description": "Docs: nginx",
"customType": "regex",
"fileMatch": [
"^README\\.md$"
],
"matchStrings": [
".*on [Nn]ginx (?<currentValue>\\d+\\.\\d+\\.\\d+)"
],
"depNameTemplate": "nginxinc/nginx-unprivileged",
"datasourceTemplate": "docker"
},
{
"description": "Docs: httpd",
"customType": "regex",
"fileMatch": [
"^README\\.md$"
],
"matchStrings": [
".*on Apache (?<currentValue>\\d+\\.\\d+\\.\\d+)"
],
"depNameTemplate": "httpd",
"datasourceTemplate": "docker"
},
{
"description": "Docs: CRS",
"customType": "regex",
"fileMatch": [
"^README\\.md$"
],
"matchStrings": [
"OWASP CRS (?<currentValue>\\d+\\.\\d+\\.\\d+)"
],
"depNameTemplate": "coreruleset/coreruleset",
"datasourceTemplate": "github-releases"
}
]
}

0 comments on commit 7790c71

Please sign in to comment.