ci: various dependabot ci changes · gm112.bsky.social/cruxt@456ef44

gm112.bsky.social / cruxt

fork atom

Its a crux!

fork atom

ci: various dependabot ci changes

Jonathan Basniak 5 months ago 456ef44e a2f9366d

+53 -11

4 changed files

expand all

unified split

.github

actions

auto-approve-dependabot

README.md

action.yml

dependabot.yml

workflows

ci.yml

+5 -1

.github/actions/auto-approve-dependabot/README.md

··· 4 4 5 5 ## Inputs 6 6 7 - None 7 + ### `github-token` 8 + 9 + **Required:** false 10 + 11 + **Default:** `${{ github.token }}` 8 12 9 13 ## Outputs 10 14

+1 -1

.github/actions/auto-approve-dependabot/action.yml

··· 35 35 shell: bash 36 36 run: | 37 37 echo "Approved PR: ${{ github.event.pull_request.html_url }}" 38 - gh pr merge --auto --rebase "${{github.event.pull_request.html_url}}" 38 + gh pr merge --auto --squash "${{github.event.pull_request.html_url}}" 39 39 env: 40 40 PR_URL: ${{github.event.pull_request.html_url}} 41 41 GITHUB_TOKEN: ${{inputs.github-token}}

+47 -5

.github/dependabot.yml

··· 1 + # To get started with Dependabot version updates, you'll need to specify which 2 + # package ecosystems to update and where the package manifests are located. 3 + # Please see the documentation for all configuration options: 4 + # https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file 5 + 1 6 version: 2 2 7 updates: 3 - - package-ecosystem: npm 8 + - package-ecosystem: "npm" 4 9 directory: / 5 10 schedule: 6 - interval: daily 11 + interval: "weekly" 12 + commit-message: 13 + prefix: "chore" 14 + include: "scope" 15 + labels: 16 + - "dependencies" 17 + - "javascript" 7 18 open-pull-requests-limit: 1 19 + groups: 20 + prod-dependencies: 21 + patterns: 22 + - "*" 23 + dependency-type: "production" 24 + dev-dependencies: 25 + patterns: 26 + - "*" 27 + dependency-type: "development" 8 28 9 - - package-ecosystem: github-actions 10 - directory: / 29 + - package-ecosystem: "github-actions" 30 + directory: "/" 11 31 schedule: 12 - interval: daily 32 + interval: "weekly" 33 + commit-message: 34 + prefix: "chore" 35 + include: "scope" 36 + labels: 37 + - "dependencies" 38 + - "github-actions" 39 + open-pull-requests-limit: 1 40 + groups: 41 + all-actions: 42 + patterns: 43 + - "*" 44 + 45 + - package-ecosystem: "devcontainers" 46 + directory: "/" 47 + schedule: 48 + interval: "monthly" 49 + commit-message: 50 + prefix: "chore" 51 + include: "scope" 52 + labels: 53 + - "dependencies" 54 + - "devcontainers" 13 55 open-pull-requests-limit: 1

-4

.github/workflows/ci.yml

··· 46 46 contents: write 47 47 pull-requests: write 48 48 steps: 49 - - uses: actions/checkout@v5 50 - with: 51 - sparse-checkout: | 52 - ./.github/actions/auto-approve-dependabot 53 49 - name: Check if run is triggered by dependabot 54 50 uses: ./.github/actions/auto-approve-dependabot