From 6fd593f6da6486f8d81d601a7ae846f6920b0c9d Mon Sep 17 00:00:00 2001
From: MarcoIeni <11428655+MarcoIeni@users.noreply.github.com>
Date: Tue, 15 Jul 2025 15:02:27 +0200
Subject: [PATCH] configure automatic updates

---
 .github/renovate.json5 | 35 +++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)
 create mode 100644 .github/renovate.json5

diff --git a/.github/renovate.json5 b/.github/renovate.json5
new file mode 100644
index 0000000..d68ff01
--- /dev/null
+++ b/.github/renovate.json5
@@ -0,0 +1,35 @@
+{
+    $schema: "https://docs.renovatebot.com/renovate-schema.json",
+    extends: ["config:recommended", ":maintainLockFilesMonthly"],
+    automerge: true,
+    packageRules: [
+        {
+            matchCategories: ["javascript", "typescript"],
+            updateTypes: ["patch"],
+            // Disable patch updates for single dependencies because patches
+            // are updated periodically with lockfile maintainance.
+            enabled: false,
+        },
+        {
+            matchCategories: ["rust"],
+            updateTypes: ["patch"],
+            // Disable patch updates for single dependencies because patches
+            // are updated periodically with lockfile maintainance.
+            enabled: false,
+        },
+        {
+            matchManagers: ["github-actions"],
+            // At 06:XX on Monday.
+            schedule: "* 6 * * 1",
+            groupName: "Github Actions",
+        },
+    ],
+    // Receive any update that fixes security vulnerabilities.
+    // We need this because we disabled "patch" updates for Rust.
+    // Note: You need to enable "Dependabot alerts" in "Code security" GitHub
+    // Settings to receive security updates.
+    // See https://docs.renovatebot.com/configuration-options/#vulnerabilityalerts
+    vulnerabilityAlerts: {
+        enabled: true,
+    },
+}