From 956a899fc376ee9e0637d551da7ed41d846c0018 Mon Sep 17 00:00:00 2001 From: Roomote Date: Sat, 16 May 2026 04:49:22 +0000 Subject: [PATCH 1/4] chore: configure renovate review policy --- .github/dependabot.yml | 11 ---- renovate.json | 125 ++++++++++++++++++++++++++++++++++++++++- 2 files changed, 123 insertions(+), 13 deletions(-) delete mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml deleted file mode 100644 index 5f0889ce91..0000000000 --- a/.github/dependabot.yml +++ /dev/null @@ -1,11 +0,0 @@ -# To get started with Dependabot version updates, you'll need to specify which -# package ecosystems to update and where the package manifests are located. -# Please see the documentation for all configuration options: -# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file - -version: 2 -updates: - - package-ecosystem: "npm" # See documentation for possible values - directory: "/" # Location of package manifests - schedule: - interval: "weekly" diff --git a/renovate.json b/renovate.json index 00c15329d2..743e2c90b6 100644 --- a/renovate.json +++ b/renovate.json @@ -1,6 +1,127 @@ { "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "extends": ["config:recommended"], + "extends": ["config:best-practices"], "forkProcessing": "enabled", - "ignoreDeps": ["@vscode/vsce"] + "timezone": "America/Los_Angeles", + "prConcurrentLimit": 5, + "prCreation": "not-pending", + "ignoreDeps": ["@vscode/vsce"], + "major": { + "dependencyDashboardApproval": true + }, + "packageRules": [ + { + "description": "Group GitHub Actions updates for one review pass.", + "matchManagers": ["github-actions"], + "groupName": "GitHub Actions", + "schedule": ["* 21-23 * * 0"] + }, + { + "description": "Group AI SDK and provider patch/minor updates.", + "matchPackageNames": [ + "ai", + "openai", + "ollama", + "tiktoken", + "@google/genai", + "@modelcontextprotocol/sdk", + "ai-sdk-provider-poe", + "sambanova-ai-provider", + "zhipu-ai-provider", + "/^@ai-sdk\\//", + "/^@anthropic-ai\\//", + "/^@aws-sdk\\//", + "/^@lmstudio\\//", + "/^@mistralai\\//", + "/^@openrouter\\//", + "/^@qdrant\\//" + ], + "matchUpdateTypes": ["minor", "patch"], + "groupName": "AI SDKs and providers", + "schedule": ["* 21-23 * * 0"] + }, + { + "description": "Group frontend and UI patch/minor updates.", + "matchPackageNames": [ + "next", + "react", + "react-dom", + "framer-motion", + "styled-components", + "lucide-react", + "tailwindcss", + "tailwind-merge", + "tailwindcss-animate", + "/^@radix-ui\\//", + "/^@tailwindcss\\//" + ], + "matchUpdateTypes": ["minor", "patch"], + "groupName": "Frontend and UI stack", + "schedule": ["* 21-23 * * 0"] + }, + { + "description": "Group test and build tooling patch/minor updates.", + "matchPackageNames": [ + "vitest", + "vite", + "jsdom", + "nock", + "typescript", + "turbo", + "tsx", + "esbuild", + "eslint", + "prettier", + "knip", + "lint-staged", + "/^@testing-library\\//", + "/^@vitejs\\//", + "/^@vitest\\//", + "/^eslint($|-)/" + ], + "matchUpdateTypes": ["minor", "patch"], + "groupName": "Build, lint, and test tooling", + "schedule": ["* 21-23 * * 0"] + }, + { + "description": "Automerge low-risk patch updates for DefinitelyTyped packages.", + "matchPackageNames": ["/^@types\\//"], + "matchUpdateTypes": ["patch"], + "automerge": true + } + ], + "customManagers": [ + { + "customType": "regex", + "description": "Update Node.js version in the setup-node composite action.", + "managerFilePatterns": ["/^\\.github\\/actions\\/setup-node-pnpm\\/action\\.yml$/"], + "matchStrings": [ + "node-version:\\n(?:[ \\t]+.*\\n){0,4}[ \\t]+default:\\s*\"(?\\d+\\.\\d+\\.\\d+)\"" + ], + "depNameTemplate": "node", + "datasourceTemplate": "node-version", + "versioningTemplate": "node" + }, + { + "customType": "regex", + "description": "Update Node.js version in the evals setup script.", + "managerFilePatterns": ["/^packages\\/evals\\/scripts\\/setup\\.sh$/"], + "matchStrings": [ + "node@(?\\d+\\.\\d+\\.\\d+)", + "node --version\\) != \\\"v(?\\d+\\.\\d+\\.\\d+)\\\"" + ], + "depNameTemplate": "node", + "datasourceTemplate": "node-version", + "versioningTemplate": "node" + }, + { + "customType": "regex", + "description": "Update Node.js version in the evals runner Dockerfile.", + "managerFilePatterns": ["/^packages\\/evals\\/Dockerfile\\.runner$/"], + "matchStrings": ["ARG NODE_VERSION=(?\\d+\\.\\d+\\.\\d+)"], + "depNameTemplate": "node", + "datasourceTemplate": "node-version", + "versioningTemplate": "node" + } + ] } From a34140f4808683a9d2c39102db6c1399a8ac39b6 Mon Sep 17 00:00:00 2001 From: Roomote Date: Sat, 16 May 2026 05:18:06 +0000 Subject: [PATCH 2/4] chore: narrow renovate major approval --- renovate.json | 15 ++++++++++++--- 1 file changed, 12 insertions(+), 3 deletions(-) diff --git a/renovate.json b/renovate.json index 743e2c90b6..e8f150be41 100644 --- a/renovate.json +++ b/renovate.json @@ -6,9 +6,6 @@ "prConcurrentLimit": 5, "prCreation": "not-pending", "ignoreDeps": ["@vscode/vsce"], - "major": { - "dependencyDashboardApproval": true - }, "packageRules": [ { "description": "Group GitHub Actions updates for one review pass.", @@ -59,6 +56,18 @@ "groupName": "Frontend and UI stack", "schedule": ["* 21-23 * * 0"] }, + { + "description": "Require approval before opening major React stack updates.", + "matchPackageNames": [ + "react", + "react-dom", + "react-compiler-runtime", + "/^@types\\/react(?:-dom)?$/", + "/^@vitejs\\/plugin-react$/" + ], + "matchUpdateTypes": ["major"], + "dependencyDashboardApproval": true + }, { "description": "Group test and build tooling patch/minor updates.", "matchPackageNames": [ From 6a1295b0cec83db9c9a853a2b6a2145db207eaa4 Mon Sep 17 00:00:00 2001 From: Roomote Date: Sat, 16 May 2026 05:23:03 +0000 Subject: [PATCH 3/4] chore: align node version baselines --- .github/actions/setup-node-pnpm/action.yml | 2 +- packages/evals/Dockerfile.runner | 2 +- packages/evals/README.md | 2 +- packages/evals/scripts/setup.sh | 6 +++--- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/actions/setup-node-pnpm/action.yml b/.github/actions/setup-node-pnpm/action.yml index af9b45b5e9..8e1f84b7d8 100644 --- a/.github/actions/setup-node-pnpm/action.yml +++ b/.github/actions/setup-node-pnpm/action.yml @@ -6,7 +6,7 @@ inputs: node-version: description: "Node.js version to use" required: false - default: "20.19.2" + default: "20.20.2" pnpm-version: description: "pnpm version to use" required: false diff --git a/packages/evals/Dockerfile.runner b/packages/evals/Dockerfile.runner index 91f57f2300..f3831ccf65 100644 --- a/packages/evals/Dockerfile.runner +++ b/packages/evals/Dockerfile.runner @@ -50,7 +50,7 @@ ENV MISE_DATA_DIR="/root/.local/share/mise" ENV PATH="/root/.local/share/mise/shims:/root/.local/bin:$PATH" # Define language runtime versions (matching setup.sh) -ARG NODE_VERSION=20.19.2 +ARG NODE_VERSION=20.20.2 ARG PYTHON_VERSION=3.13.2 ARG GO_VERSION=1.24.2 ARG RUST_VERSION=1.85.1 diff --git a/packages/evals/README.md b/packages/evals/README.md index 4e5f38142e..2dcac14525 100644 --- a/packages/evals/README.md +++ b/packages/evals/README.md @@ -81,7 +81,7 @@ cd packages/evals && ./scripts/setup.sh The setup script does the following: - Installs development tools: Homebrew, asdf, GitHub CLI, pnpm -- Installs programming languages: Node.js 20.19.2, Python 3.13.2, Go 1.24.2, Rust 1.85.1, Java 17 +- Installs programming languages: Node.js 20.20.2, Python 3.13.2, Go 1.24.2, Rust 1.85.1, Java 17 - Sets up VS Code with required extensions - Configures Docker services (PostgreSQL, Redis) - Clones/updates the evals repository diff --git a/packages/evals/scripts/setup.sh b/packages/evals/scripts/setup.sh index 60c5c53a42..223f8df60f 100755 --- a/packages/evals/scripts/setup.sh +++ b/packages/evals/scripts/setup.sh @@ -184,8 +184,8 @@ fi # Install language runtimes via mise if ! command -v node &>/dev/null; then echo "📦 Installing Node.js via mise..." - mise install node@20.19.2 || exit 1 - mise use --global node@20.19.2 || exit 1 + mise install node@20.20.2 || exit 1 + mise use --global node@20.20.2 || exit 1 eval "$(mise activate bash)" NODE_VERSION=$(node --version) echo "✅ Node.js is installed ($NODE_VERSION)" @@ -194,7 +194,7 @@ else echo "✅ Node.js is installed ($NODE_VERSION)" fi -if [[ $(node --version) != "v20.19.2" ]]; then +if [[ $(node --version) != "v20.20.2" ]]; then NODE_VERSION=$(node --version) echo "🚨 You have the wrong version of node installed ($NODE_VERSION)." echo "💡 If you are using nvm then run 'nvm install' to install the version specified by the repo's .nvmrc." From be23ce8e93447ab4f1a0fb058ef0a330ade01391 Mon Sep 17 00:00:00 2001 From: Roomote Date: Sat, 16 May 2026 05:24:22 +0000 Subject: [PATCH 4/4] chore: rely on ci for renovate majors --- renovate.json | 12 ------------ 1 file changed, 12 deletions(-) diff --git a/renovate.json b/renovate.json index e8f150be41..b6c50e8228 100644 --- a/renovate.json +++ b/renovate.json @@ -56,18 +56,6 @@ "groupName": "Frontend and UI stack", "schedule": ["* 21-23 * * 0"] }, - { - "description": "Require approval before opening major React stack updates.", - "matchPackageNames": [ - "react", - "react-dom", - "react-compiler-runtime", - "/^@types\\/react(?:-dom)?$/", - "/^@vitejs\\/plugin-react$/" - ], - "matchUpdateTypes": ["major"], - "dependencyDashboardApproval": true - }, { "description": "Group test and build tooling patch/minor updates.", "matchPackageNames": [