From 52db3841d1ad223f920a130e4aa8c59b181680be Mon Sep 17 00:00:00 2001
From: joe miller <joeym@joeym.net>
Date: Sun, 8 Dec 2024 20:35:54 +0000
Subject: [PATCH 1/2] deps: disable dependabot in favor of renovate

---
 .github/dependabot.yml | 11 -----------
 1 file changed, 11 deletions(-)
 delete mode 100644 .github/dependabot.yml

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
deleted file mode 100644
index 80404e8..0000000
--- a/.github/dependabot.yml
+++ /dev/null
@@ -1,11 +0,0 @@
-version: 2
-updates:
-  - package-ecosystem: gomod
-    directory: /
-    schedule:
-      interval: daily
-
-  - package-ecosystem: github-actions
-    directory: /
-    schedule:
-      interval: weekly

From e80a0a4aab1b00960d6b9792b33651013dd467b9 Mon Sep 17 00:00:00 2001
From: joe miller <joeym@joeym.net>
Date: Sun, 8 Dec 2024 20:41:13 +0000
Subject: [PATCH 2/2] deps: add renovate.json5

---
 .github/workflows/validate-renovate.yml | 21 ++++++++++
 renovate.json5                          | 55 +++++++++++++++++++++++++
 2 files changed, 76 insertions(+)
 create mode 100644 .github/workflows/validate-renovate.yml
 create mode 100644 renovate.json5

diff --git a/.github/workflows/validate-renovate.yml b/.github/workflows/validate-renovate.yml
new file mode 100644
index 0000000..d3e879f
--- /dev/null
+++ b/.github/workflows/validate-renovate.yml
@@ -0,0 +1,21 @@
+name: validate renovate.json5
+
+on:
+  pull_request:
+
+env:
+  LOG_LEVEL: debug
+
+jobs:
+  renovate-config-validator:
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+
+    steps:
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
+
+      - uses: actions/setup-node@1e60f620b9541d16bece96c5465dc8ee9832be0b # v4
+        with:
+          node-version: 20
+
+      - run: npx -p renovate renovate-config-validator renovate.json5
diff --git a/renovate.json5 b/renovate.json5
new file mode 100644
index 0000000..5ff06b2
--- /dev/null
+++ b/renovate.json5
@@ -0,0 +1,55 @@
+{
+  "extends": [
+    "config:best-practices",
+    ":rebaseStalePrs",
+    "regexManagers:dockerfileVersions"
+  ],
+  "packageRules": [
+    {
+      "matchPackagePatterns": [
+        "*"
+      ],
+      "matchUpdateTypes": [
+        "minor",
+        "patch",
+        "digest"
+      ],
+      "groupName": "all non-major dependencies",
+      "groupSlug": "all-minor-patch-digest",
+      "schedule": [
+        "after 10pm on friday"
+      ]
+    },
+    {
+      "matchManagers": [
+        "gomod"
+      ],
+      "postUpdateOptions": [
+        "gomodTidy"
+      ]
+    },
+    {
+      "description": "Only update codeql-action digest updates monthly",
+      "matchDatasources": [
+        "github-actions"
+      ],
+      "matchPackageNames": [
+        "github/codeql-action"
+      ],
+      "matchUpdateTypes": [
+        "digest"
+      ],
+      "schedule": [
+        "after 10pm on the first day of the month"
+      ]
+    }
+  ],
+  "labels": [
+    "dependencies"
+  ],
+  "osvVulnerabilityAlerts": true,
+  "dependencyDashboardOSVVulnerabilitySummary": "unresolved",
+  "vulnerabilityAlerts": {
+    "enabled": true
+  }
+}
\ No newline at end of file