From c13b314998aacf3c4803b67d83617e0b0da61670 Mon Sep 17 00:00:00 2001 From: Carlo Goetz Date: Thu, 15 Jan 2026 11:27:11 +0100 Subject: [PATCH 1/3] feat(deps) configure 7 day cooldown for external dependencies --- .github/dependabot.yml | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 5400a08cb..2dce47c33 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -4,7 +4,22 @@ updates: directory: "/" schedule: interval: "daily" + groups: + internal-deps: + patterns: + - "^github.com/stackitcloud/" + external-deps: + patterns: + - ".*" + exclude-patterns: + # should be covered by listing internal-deps first (https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference#groups--) + # but listing it here to be explicit + - "^github.com/stackitcloud/" + cooldown: + default-days: 7 - package-ecosystem: "github-actions" directory: "/" schedule: interval: "daily" + cooldown: + default-days: 7 From 14a97deb98ddd93f5e2949046a0fa91353067d19 Mon Sep 17 00:00:00 2001 From: Carlo Goetz Date: Thu, 15 Jan 2026 11:30:26 +0100 Subject: [PATCH 2/3] feat(deps) remove renovate config in favor of dependabot --- .github/renovate.json | 15 --------------- .github/workflows/renovate.yaml | 19 ------------------- 2 files changed, 34 deletions(-) delete mode 100644 .github/renovate.json delete mode 100644 .github/workflows/renovate.yaml diff --git a/.github/renovate.json b/.github/renovate.json deleted file mode 100644 index 31621a1ba..000000000 --- a/.github/renovate.json +++ /dev/null @@ -1,15 +0,0 @@ -{ - "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "extends": ["config:recommended"], - "prHourlyLimit": 10, - "labels": ["renovate"], - "repositories": ["stackitcloud/stackit-cli"], - "enabledManagers": ["gomod", "github-actions"], - "packageRules": [ - { - "matchSourceUrls": ["https://github.com/stackitcloud/stackit-sdk-go"], - "groupName": "STACKIT SDK modules" - } - ], - "postUpdateOptions": ["gomodTidy", "gomodUpdateImportPaths"] -} diff --git a/.github/workflows/renovate.yaml b/.github/workflows/renovate.yaml deleted file mode 100644 index c2e439819..000000000 --- a/.github/workflows/renovate.yaml +++ /dev/null @@ -1,19 +0,0 @@ -name: Renovate - -on: - schedule: - - cron: "0 0 * * *" - workflow_dispatch: - -jobs: - renovate: - name: Renovate - runs-on: ubuntu-latest - steps: - - name: Checkout - uses: actions/checkout@v6 - - name: Self-hosted Renovate - uses: renovatebot/github-action@v44.2.4 - with: - configurationFile: .github/renovate.json - token: ${{ secrets.RENOVATE_TOKEN }} From db5e8c24b8fe992507e5bcddb1525a793ceab89c Mon Sep 17 00:00:00 2001 From: Carlo Goetz Date: Thu, 15 Jan 2026 17:49:27 +0100 Subject: [PATCH 3/3] fix(deps) manage internal vs external dependencies via cooldown.exclude --- .github/dependabot.yml | 16 +++------------- 1 file changed, 3 insertions(+), 13 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 2dce47c33..3a4e09fe6 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -4,19 +4,9 @@ updates: directory: "/" schedule: interval: "daily" - groups: - internal-deps: - patterns: - - "^github.com/stackitcloud/" - external-deps: - patterns: - - ".*" - exclude-patterns: - # should be covered by listing internal-deps first (https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference#groups--) - # but listing it here to be explicit - - "^github.com/stackitcloud/" - cooldown: - default-days: 7 + cooldown: + default-days: 7 + exclude: ["github.com/stackitcloud*"] - package-ecosystem: "github-actions" directory: "/" schedule: