renovate-config/.forgejo/workflows/renovate.yaml

on:
  schedule:
    - cron: '*/30 * * * *'
  push:
  workflow_dispatch:
    inputs:
      args:
        description: 'Optional renovate args, they replace the defaults and disable autodiscover'
        required: false
        type: string

env:
  RENOVATE_DRY_RUN: ${{ ((github.event_name != 'schedule' && github.event_name != 'workflow_dispatch') || github.ref_name != 'main') && 'full' || '' }}
  RENOVATE_GIT_PRIVATE_KEY: ${{ secrets.GPG }}

jobs:
  renovate:
    name: Renovate
    runs-on: native-x86_64
    container:
      image: git.hsn.dev/jahanson/renovate/renovate:39.87.0@sha256:3a17d23d6fb3ca2169b079bf2c970cb25567be639ba42bb2064750973b69b83c
      options: --tmpfs /tmp:exec
    steps:
      - name: Checkout
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
        with:
          show-progress: false

      - name: Setup Docker auth
        run: |
          mkdir -p $HOME/.docker
          echo '{"auths":{"docker.io":{"auth":"${{ secrets.DOCKER_AUTH }}"}}}' > $HOME/.docker/config.json
          chmod 600 $HOME/.docker/config.json

      - name: Renovate
        env:
          # Global config
          RENOVATE_BINARY_SOURCE: "docker"
          RENOVATE_PLATFORM: gitea
          RENOVATE_ENDPOINT: ${{ github.server_url }}
          RENOVATE_TOKEN: ${{ github.repository == 'jahanson/renovate-config' && secrets.TOKEN || secrets.GITHUB_TOKEN }}

          # Git config
          RENOVATE_GIT_AUTHOR: 'Renovate Bot <smeagol@hsn.dev>'
          GIT_AUTHOR_NAME: 'Renovate Bot'
          GIT_AUTHOR_EMAIL: 'smeagol@hsn.dev'
          GIT_COMMITTER_NAME: 'Renovate Bot'
          GIT_COMMITTER_EMAIL: 'smeagol@hsn.dev'

          # Authentication
          GITHUB_COM_TOKEN: ${{ secrets.GH_TOKEN }}
          DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }}
          DOCKER_PASSWORD: ${{ secrets.DOCKER_PASSWORD }}

          # Logging
          LOG_LEVEL: debug
          LOG_FORMAT: json
          LOG_FILE_LEVEL: debug

          # Host rules for registry authentication
          RENOVATE_HOST_RULES: |-
            [
              {
                "matchHost": "registry-1.docker.io",
                "hostType": "docker",
                "username": "${{ secrets.DOCKER_USERNAME }}",
                "password": "${{ secrets.DOCKER_PASSWORD }}"
              },
              {
                "matchHost": "ghcr.io",
                "hostType": "docker",
                "username": "${{ secrets.GH_USERNAME }}",
                "password": "${{ secrets.GH_TOKEN }}"
              },
              {
                "matchHost": "git.hsn.dev",
                "hostType": "gitea",
                "token": "${{ secrets.MIRROR_TOKEN }}"
              }
            ]

          # Command execution
          INPUT_ARGS: ${{ inputs.args || (github.repository != 'jahanson/renovate-config' && github.repository) || '--autodiscover' }}
        run: renovate ${{ env.INPUT_ARGS }}
Add renovate. 2024-05-15 08:59:54 -05:00			`on:`
			`schedule:`
			`- cron: '/30 * * *'`
on push 2024-07-26 20:53:52 -05:00			`push:`
we can finally use workflow dispatch :) 2024-10-11 09:48:08 -05:00			`workflow_dispatch:`
			`inputs:`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`args:`
			`description: 'Optional renovate args, they replace the defaults and disable autodiscover'`
we can finally use workflow dispatch :) 2024-10-11 09:48:08 -05:00			`required: false`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`type: string`

we can finally use workflow dispatch :) 2024-10-11 09:48:08 -05:00			`env:`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`RENOVATE_DRY_RUN: ${{ ((github.event_name != 'schedule' && github.event_name != 'workflow_dispatch') \|\| github.ref_name != 'main') && 'full' \|\| '' }}`
			`RENOVATE_GIT_PRIVATE_KEY: ${{ secrets.GPG }}`
revamp the action/workflow 2025-01-01 17:10:46 -06:00
Add renovate. 2024-05-15 08:59:54 -05:00			`jobs:`
			`renovate:`
			`name: Renovate`
correct label 2025-01-12 11:44:54 -06:00			`runs-on: native-x86_64`
Add renovate. 2024-05-15 08:59:54 -05:00			`container:`
selfhost renovate 2025-01-02 04:27:33 -06:00			`image: git.hsn.dev/jahanson/renovate/renovate:39.87.0@sha256:3a17d23d6fb3ca2169b079bf2c970cb25567be639ba42bb2064750973b69b83c`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`options: --tmpfs /tmp:exec`
Add renovate. 2024-05-15 08:59:54 -05:00			`steps:`
			`- name: Checkout`
chore(deps): update actions/checkout digest to 11bd719 2024-10-23 11:02:44 -05:00			`uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4`
Add renovate. 2024-05-15 08:59:54 -05:00			`with:`
			`show-progress: false`
remove action and run in workflow 2025-01-02 05:23:07 -06:00
dubug renovate 2025-01-12 11:32:43 -06:00			`- name: Setup Docker auth`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`run: \|`
dubug renovate 2025-01-12 11:32:43 -06:00			`mkdir -p $HOME/.docker`
			`echo '{"auths":{"docker.io":{"auth":"${{ secrets.DOCKER_AUTH }}"}}}' > $HOME/.docker/config.json`
			`chmod 600 $HOME/.docker/config.json`

			`- name: Renovate`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`env:`
dubug renovate 2025-01-12 11:32:43 -06:00			`# Global config`
			`RENOVATE_BINARY_SOURCE: "docker"`
			`RENOVATE_PLATFORM: gitea`
			`RENOVATE_ENDPOINT: ${{ github.server_url }}`
			`RENOVATE_TOKEN: ${{ github.repository == 'jahanson/renovate-config' && secrets.TOKEN \|\| secrets.GITHUB_TOKEN }}`

			`# Git config`
			`RENOVATE_GIT_AUTHOR: 'Renovate Bot <smeagol@hsn.dev>'`
			`GIT_AUTHOR_NAME: 'Renovate Bot'`
			`GIT_AUTHOR_EMAIL: 'smeagol@hsn.dev'`
			`GIT_COMMITTER_NAME: 'Renovate Bot'`
			`GIT_COMMITTER_EMAIL: 'smeagol@hsn.dev'`

			`# Authentication`
			`GITHUB_COM_TOKEN: ${{ secrets.GH_TOKEN }}`
docker host update 2025-01-07 16:33:38 -06:00			`DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }}`
			`DOCKER_PASSWORD: ${{ secrets.DOCKER_PASSWORD }}`
dubug renovate 2025-01-12 11:32:43 -06:00
			`# Logging`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`LOG_LEVEL: debug`
docker host update 2025-01-07 16:33:38 -06:00			`LOG_FORMAT: json`
dubug renovate 2025-01-12 11:32:43 -06:00			`LOG_FILE_LEVEL: debug`

			`# Host rules for registry authentication`
fix docker vs docker hub 2025-01-02 05:46:14 -06:00			`RENOVATE_HOST_RULES: \|-`
			`[`
docker host update 2025-01-07 16:33:38 -06:00			`{`
dubug renovate 2025-01-12 11:32:43 -06:00			`"matchHost": "registry-1.docker.io",`
			`"hostType": "docker",`
docker host update 2025-01-07 16:33:38 -06:00			`"username": "${{ secrets.DOCKER_USERNAME }}",`
			`"password": "${{ secrets.DOCKER_PASSWORD }}"`
			`},`
			`{`
			`"matchHost": "ghcr.io",`
dubug renovate 2025-01-12 11:32:43 -06:00			`"hostType": "docker",`
docker host update 2025-01-07 16:33:38 -06:00			`"username": "${{ secrets.GH_USERNAME }}",`
			`"password": "${{ secrets.GH_TOKEN }}"`
			`},`
			`{`
			`"matchHost": "git.hsn.dev",`
dubug renovate 2025-01-12 11:32:43 -06:00			`"hostType": "gitea",`
docker host update 2025-01-07 16:33:38 -06:00			`"token": "${{ secrets.MIRROR_TOKEN }}"`
			`}`
fix docker vs docker hub 2025-01-02 05:46:14 -06:00			`]`
dubug renovate 2025-01-12 11:32:43 -06:00
			`# Command execution`
remove action and run in workflow 2025-01-02 05:23:07 -06:00			`INPUT_ARGS: ${{ inputs.args \|\| (github.repository != 'jahanson/renovate-config' && github.repository) \|\| '--autodiscover' }}`
dubug renovate 2025-01-12 11:32:43 -06:00			`run: renovate ${{ env.INPUT_ARGS }}`