host/istal: add renovate bot

This commit is contained in:
Dmitriy Pleshevskiy 2024-09-06 03:12:06 +03:00
parent 1fc5b9e75f
commit 374837754c
Signed by: pleshevskiy
GPG key ID: 17041163DA10A9A2
6 changed files with 49 additions and 1 deletions

Binary file not shown.

View file

@ -178,7 +178,8 @@
] ]
++ extraModules ++ extraModules
++ [ ./modules/nixos ] ++ [ ./modules/nixos ]
++ [ ./hosts/${hostname}/configuration.nix ]; ++ [ ./hosts/${hostname}/configuration.nix ]
++ [ "${inputs.nixpkgs-unstable}/nixos/modules/services/misc/renovate.nix" ];
}) })
(import ./hosts inputs); (import ./hosts inputs);
diskoConfigurations = { diskoConfigurations = {

View file

@ -4,5 +4,6 @@
./wireguard ./wireguard
./docker-registry-proxy.nix ./docker-registry-proxy.nix
./nginx.nix ./nginx.nix
./renovate.nix
]; ];
} }

Binary file not shown.

Binary file not shown.

View file

@ -0,0 +1,46 @@
{ config, pkgs, ... }:
{
age.secrets.renovate-gitea-token.file = ./renovate-gitea-token.age;
age.secrets.renovate-github-token.file = ./renovate-github-token.age;
services.renovate = {
enable = true;
package = pkgs.unstable.renovate;
schedule = "0..3,10..23:00/15";
credentials = {
RENOVATE_TOKEN = config.age.secrets.renovate-gitea-token.path;
GITHUB_COM_TOKEN = config.age.secrets.renovate-github-token.path;
};
runtimePackages = with pkgs.unstable; [
nodePackages.pnpm
nodePackages.npm
python312
poetry
gnumake
cargo
];
settings = {
platform = "gitea";
endpoint = "https://git.pleshevski.ru";
assignees = [ "pleshevskiy" ];
autodiscover = true;
packageRules = [
{
matchUpdateTypes = [ "minor" "patch" "pin" "digest" ];
automerge = true;
}
];
automergeStrategy = "fast-forward";
onboardingConfig = {
"$schema" = "https://docs.renovatebot.com/renovate-schema.json";
extends = [ "config:recommended" ];
configMigration = true;
};
globalExtends = ["npm:unpublishSafe"];
cacheHardTtlMinutes = 60 * 24;
httpCacheTtlDays = 7;
};
};
}