From cc328ebd47260b36e23f671d325beab832abf88e Mon Sep 17 00:00:00 2001 From: Benedikt Ritter Date: Mon, 13 Jul 2026 09:08:24 +0200 Subject: [PATCH 1/2] chore: use centralized renovate configuration References https://github.com/gradlex-org/renovate-config so we can change renovate defaults for all repositories in a central place. Uses json5 syntax which is easier to write than JSON, see https://json5.org/. --- .github/renovate.json5 | 6 ++++++ renovate.json | 6 ------ 2 files changed, 6 insertions(+), 6 deletions(-) create mode 100644 .github/renovate.json5 delete mode 100644 renovate.json diff --git a/.github/renovate.json5 b/.github/renovate.json5 new file mode 100644 index 0000000..4bdb80e --- /dev/null +++ b/.github/renovate.json5 @@ -0,0 +1,6 @@ +{ + $schema: "https://docs.renovatebot.com/renovate-schema.json", + extends: [ + 'github>gradlex-org/renovate-config' + ] +} diff --git a/renovate.json b/renovate.json deleted file mode 100644 index 5db72dd..0000000 --- a/renovate.json +++ /dev/null @@ -1,6 +0,0 @@ -{ - "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "extends": [ - "config:recommended" - ] -} From fc46897396620c81b425d258cd1cea0f73d68411 Mon Sep 17 00:00:00 2001 From: Benedikt Ritter Date: Mon, 13 Jul 2026 09:08:25 +0200 Subject: [PATCH 2/2] ci: pin GitHub Actions to latest patch version Renovate replaces version refs with commit hashes but keeps the existing version string in the trailing comment. Pinning to the exact latest patch version ensures the comment reflects the real version instead of just the major. --- .github/workflows/ci-build.yml | 6 +++--- .github/workflows/dependency-submission.yml | 4 ++-- .github/workflows/release.yml | 6 +++--- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/ci-build.yml b/.github/workflows/ci-build.yml index e83f726..1e2eb21 100644 --- a/.github/workflows/ci-build.yml +++ b/.github/workflows/ci-build.yml @@ -18,14 +18,14 @@ jobs: run: | git config --global core.autocrlf false git config --global core.eol lf - - uses: actions/checkout@v7 - - uses: actions/setup-java@v5 + - uses: actions/checkout@v7.0.0 + - uses: actions/setup-java@v5.5.0 with: distribution: temurin java-version: | 25.0.3 17.0.19 - - uses: gradle/actions/setup-gradle@v6 + - uses: gradle/actions/setup-gradle@v6.2.0 with: build-scan-terms-of-use-url: "https://gradle.com/help/legal-terms-of-use" build-scan-terms-of-use-agree: "yes" diff --git a/.github/workflows/dependency-submission.yml b/.github/workflows/dependency-submission.yml index d639b7b..49c76c4 100644 --- a/.github/workflows/dependency-submission.yml +++ b/.github/workflows/dependency-submission.yml @@ -9,8 +9,8 @@ jobs: dependency-submission: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v7 - - uses: gradle/actions/dependency-submission@v6 + - uses: actions/checkout@v7.0.0 + - uses: gradle/actions/dependency-submission@v6.2.0 with: build-scan-publish: true build-scan-terms-of-use-url: "https://gradle.com/help/legal-terms-of-use" diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8ad5ea9..00661bb 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -7,14 +7,14 @@ jobs: release-build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v7 - - uses: actions/setup-java@v5 + - uses: actions/checkout@v7.0.0 + - uses: actions/setup-java@v5.5.0 with: distribution: temurin java-version: | 25.0.3 17.0.19 - - uses: gradle/actions/setup-gradle@v6 + - uses: gradle/actions/setup-gradle@v6.2.0 with: build-scan-terms-of-use-url: "https://gradle.com/help/legal-terms-of-use" build-scan-terms-of-use-agree: "yes"