From 6bda3007ee4af388b62cb2a3439b1b7b4b7116d7 Mon Sep 17 00:00:00 2001 From: Benedikt Ritter Date: Mon, 13 Jul 2026 09:08:17 +0200 Subject: [PATCH 1/2] chore: use centralized renovate configuration References https://github.com/gradlex-org/renovate-config so we can change renovate defaults for all repositories in a central place. Uses json5 syntax which is easier to write than JSON, see https://json5.org/. --- .github/renovate.json5 | 6 ++++++ renovate.json | 6 ------ 2 files changed, 6 insertions(+), 6 deletions(-) create mode 100644 .github/renovate.json5 delete mode 100644 renovate.json diff --git a/.github/renovate.json5 b/.github/renovate.json5 new file mode 100644 index 00000000..4bdb80e3 --- /dev/null +++ b/.github/renovate.json5 @@ -0,0 +1,6 @@ +{ + $schema: "https://docs.renovatebot.com/renovate-schema.json", + extends: [ + 'github>gradlex-org/renovate-config' + ] +} diff --git a/renovate.json b/renovate.json deleted file mode 100644 index 5db72dd6..00000000 --- a/renovate.json +++ /dev/null @@ -1,6 +0,0 @@ -{ - "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "extends": [ - "config:recommended" - ] -} From 8ebb8783bbd0d90c3d2e93e3047aca11e31ca785 Mon Sep 17 00:00:00 2001 From: Benedikt Ritter Date: Mon, 13 Jul 2026 09:08:18 +0200 Subject: [PATCH 2/2] ci: pin GitHub Actions to latest patch version Renovate replaces version refs with commit hashes but keeps the existing version string in the trailing comment. Pinning to the exact latest patch version ensures the comment reflects the real version instead of just the major. --- .github/workflows/ci-build.yml | 6 +++--- .github/workflows/dependency-submission.yml | 4 ++-- .github/workflows/release.yml | 6 +++--- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/ci-build.yml b/.github/workflows/ci-build.yml index 98890fa7..299cf3ed 100644 --- a/.github/workflows/ci-build.yml +++ b/.github/workflows/ci-build.yml @@ -10,12 +10,12 @@ jobs: gradle-build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v7 - - uses: actions/setup-java@v5 + - uses: actions/checkout@v7.0.0 + - uses: actions/setup-java@v5.5.0 with: distribution: temurin java-version: 17 - - uses: gradle/actions/setup-gradle@v6 + - uses: gradle/actions/setup-gradle@v6.2.0 with: build-scan-terms-of-use-url: https://gradle.com/help/legal-terms-of-use build-scan-terms-of-use-agree: yes diff --git a/.github/workflows/dependency-submission.yml b/.github/workflows/dependency-submission.yml index ad29cdf9..58d804f4 100644 --- a/.github/workflows/dependency-submission.yml +++ b/.github/workflows/dependency-submission.yml @@ -9,8 +9,8 @@ jobs: dependency-submission: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v7 - - uses: gradle/actions/dependency-submission@v6 + - uses: actions/checkout@v7.0.0 + - uses: gradle/actions/dependency-submission@v6.2.0 with: build-scan-publish: true build-scan-terms-of-use-url: https://gradle.com/help/legal-terms-of-use diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index e2fc2db2..3f9dc769 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -7,12 +7,12 @@ jobs: release-build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v7 - - uses: actions/setup-java@v5 + - uses: actions/checkout@v7.0.0 + - uses: actions/setup-java@v5.5.0 with: distribution: temurin java-version: 17 - - uses: gradle/actions/setup-gradle@v6 + - uses: gradle/actions/setup-gradle@v6.2.0 with: build-scan-terms-of-use-url: https://gradle.com/help/legal-terms-of-use build-scan-terms-of-use-agree: yes