renovate.json aktualisiert

Signed-off-by: Jon Kazama <kontakt@hellion-media.de>
Add renovate.json
2026-05-09 10:31:58 +00:00 · 2026-05-09 09:11:30 +00:00
5 changed files with 13 additions and 27 deletions
@@ -1,13 +0,0 @@
-name: Security
-on:
-  push:
-    branches: [main, master]
-  pull_request:
-  schedule:
-    - cron: '0 6 * * 1'
-  workflow_dispatch:
-
-jobs:
-  scan:
-    uses: JonKazama-Hellion/security-workflows/.gitea/workflows/security-scan.yml@main
-
@@ -16,7 +16,7 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
-        uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
+        uses: actions/checkout@v4

      - name: Projektstruktur prüfen
        run: |
@@ -15,7 +15,7 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
-        uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
+        uses: actions/checkout@v4

      - name: Extract version from tag
        id: version
@@ -53,7 +53,7 @@ jobs:
          cat checksums-sha256.txt

      - name: Create GitHub Release
-        uses: softprops/action-gh-release@b4309332981a82ec1c5618f44dd2e27cc8bfbfda # v3
+        uses: softprops/action-gh-release@v2
        with:
          name: "Hellion NewTab ${{ steps.version.outputs.tag }}"
          body: |
@@ -20,15 +20,15 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
-        uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
+        uses: actions/checkout@v4

      - name: Initialize CodeQL
-        uses: github/codeql-action/init@7fd177fa680c9881b53cdab4d346d32574c9f7f4 # v3
+        uses: github/codeql-action/init@v3
        with:
          languages: javascript

      - name: Run CodeQL Analysis
-        uses: github/codeql-action/analyze@7fd177fa680c9881b53cdab4d346d32574c9f7f4 # v3
+        uses: github/codeql-action/analyze@v3

  dependency-review:
    name: Dependency Review
@@ -36,7 +36,7 @@ jobs:
    if: github.event_name == 'pull_request'
    steps:
      - name: Checkout
-        uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
+        uses: actions/checkout@v4

      - name: Dependency Review
-        uses: actions/dependency-review-action@a1d282b36b6f3519aa1f3fc636f609c47dddb294 # v5.0.0
+        uses: actions/dependency-review-action@v4
@@ -26,10 +26,8 @@
      },
      {
        "description": "TypeScript type definitions stay grouped with each other",
-        "groupName": "type definitions",
-        "matchPackageNames": [
-          "@types/{/,}**"
-        ]
+        "matchPackagePrefixes": ["@types/"],
+        "groupName": "type definitions"
      },
      {
        "description": "Dev dependencies in their own group",
@@ -44,7 +42,8 @@
    ],
    "vulnerabilityAlerts": {
      "labels": ["security", "vulnerability"],
-      "schedule": ["at any time"]
+      "schedule": ["at any time"],
+      "prPriority": 10
    },
    "lockFileMaintenance": {
      "enabled": true,
Author	SHA1	Message	Date
JonKazama-Hellion	41cb185947	renovate.json aktualisiert Code Quality / Validate Extension (pull_request) Successful in 5s Details Security Scan / Dependency Review (pull_request) Failing after 31s Details Security Scan / CodeQL Analysis (pull_request) Failing after 7m32s Details Signed-off-by: Jon Kazama <kontakt@hellion-media.de>	2026-05-09 10:31:58 +00:00
renovate-bot	0236818372	Add renovate.json Code Quality / Validate Extension (pull_request) Successful in 11s Details Security Scan / CodeQL Analysis (pull_request) Failing after 7m29s Details Security Scan / Dependency Review (pull_request) Failing after 25s Details	2026-05-09 09:11:30 +00:00