dependabot.yml 2.0 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657
  1. version: 2
  2. updates:
  3. - package-ecosystem: npm
  4. open-pull-requests-limit: 10
  5. directory: '/'
  6. schedule:
  7. # Going to start with a high interval, and then tone it back
  8. interval: daily
  9. timezone: America/Los_Angeles
  10. time: '15:30'
  11. reviewers:
  12. - '@getsentry/owners-js-deps'
  13. labels: []
  14. # Group dependency updates together in one PR
  15. # https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#groups
  16. groups:
  17. # The name of the group, it will be used in PR titles and branch
  18. babel-dependencies:
  19. patterns:
  20. - '@babel/*'
  21. ignore:
  22. # For all packages, ignore all patch updates
  23. - dependency-name: '*'
  24. update-types: ['version-update:semver-patch']
  25. # Sentry updates should all happen in unison, same as above we ignore
  26. # all but one as a reminder.
  27. # - dependency-name: "@sentry/react"
  28. - dependency-name: '@sentry/node'
  29. - dependency-name: '@sentry/utils'
  30. - dependency-name: '@sentry/integrations'
  31. - dependency-name: '@sentry/rrweb'
  32. # We ignore everything that hasn't yet been upgrade, this way we will
  33. # only get the _freshest_ of new packages to consider upgrading
  34. - dependency-name: '@types/react-router'
  35. - dependency-name: '@types/react-select'
  36. - dependency-name: '@types/reflux'
  37. - dependency-name: 'babel-jest'
  38. - dependency-name: 'gettext-parser'
  39. - dependency-name: 'jest-junit'
  40. - dependency-name: 'react-lazyload'
  41. - dependency-name: 'react-refresh'
  42. - dependency-name: 'react-router'
  43. - dependency-name: 'react-select'
  44. - dependency-name: 'reflux'
  45. - dependency-name: 'sprintf-js'
  46. - dependency-name: 'u2f-api'
  47. - package-ecosystem: 'docker'
  48. directory: 'self-hosted/'
  49. schedule:
  50. interval: 'daily'
  51. reviewers:
  52. - '@getsentry/open-source'
  53. - '@getsentry/security'
  54. # security only updates
  55. open-pull-requests-limit: 0