diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 000000000..194b6b3c7 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,13 @@ +version: 2 + +updates: + # Java/Gradle deps + - package-ecosystem: "gradle" + directory: "/" + schedule: + interval: "weekly" + day: "monday" + time: "09:00" + open-pull-requests-limit: 5 + labels: + - "dependencies" diff --git a/.github/workflows/renovatebot.yml b/.github/workflows/renovatebot.yml new file mode 100644 index 000000000..f52b85af6 --- /dev/null +++ b/.github/workflows/renovatebot.yml @@ -0,0 +1,25 @@ +name: renovatebot + +on: + schedule: + - cron: "15 3 1 * *" + push: + branches: + - master + paths: + - '.github/workflows/**' + workflow_dispatch: + +jobs: + renovatebot-check: + runs-on: ubuntu-24.04 + environment: security + steps: + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 + + - name: Run renovatebot + uses: ConsenSys/github-actions/renovatebot@0dbddeeb180c249e624dc1681c67f22325daedd5 # main + with: + GH_APP_ID: ${{ secrets.GH_APP_ID }} + GH_PRIVATE_KEY: ${{ secrets.GH_PRIVATE_KEY }} + GH_REPOSITORY: ${{ github.repository }} diff --git a/CODEOWNERS b/CODEOWNERS new file mode 100644 index 000000000..743730bef --- /dev/null +++ b/CODEOWNERS @@ -0,0 +1,3 @@ +* @consensys/protocols + +.github/workflows/ @consensys/protocols @consensys/protocol-galileo \ No newline at end of file diff --git a/renovate.json b/renovate.json new file mode 100644 index 000000000..cb2f205e4 --- /dev/null +++ b/renovate.json @@ -0,0 +1,15 @@ +{ + "$schema": "https://docs.renovatebot.com/renovate-schema.json", + "extends": [ + "config:recommended" + ], + "enabledManagers": ["github-actions"], + "dependencyDashboard": false, + "packageRules": [ + { + "description": "Pin all GitHub Actions to SHA digests", + "matchManagers": ["github-actions"], + "pinDigests": true + } + ] +} \ No newline at end of file