Configure Renovate

[renovate]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

---

Detected Package Files

• integrity-shield-operator/Dockerfile (dockerfile)
• integrity-shield-operator/index.Dockerfile (dockerfile)
• observer/Dockerfile (dockerfile)
• shield/Dockerfile (dockerfile)
• webhook/admission-controller/Dockerfile (dockerfile)
• cmd/go.mod (gomod)
• integrity-shield-operator/go.mod (gomod)
• integrity-shield-operator/shield/go.mod (gomod)
• observer/go.mod (gomod)
• shield/go.mod (gomod)
• webhook/admission-controller/go.mod (gomod)
• integrity-shield-operator/config/manager/kustomization.yaml (kustomize)
• docs/package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Hopefully safe environment variables to allow users to configure.
• Show all Merge Confidence badges for pull requests.
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

---

What to Expect

With your current configuration, Renovate will create 33 Pull Requests:

Update dependency minimist to v1.2.6 [SECURITY]

• Branch name: renovate/npm-minimist-vulnerability
• Merge into: master
• Upgrade minimist to 1.2.6

Update module k8s.io/apimachinery to v0.18.8 [SECURITY]

• Branch name: renovate/go-k8s.io-apimachinery-vulnerability
• Merge into: master
• Upgrade k8s.io/apimachinery to v0.18.8

Update module k8s.io/client-go to v0.18.14 [SECURITY]

• Branch name: renovate/go-k8s.io-client-go-vulnerability
• Merge into: master
• Upgrade k8s.io/client-go to v0.18.14

Update module github.com/sigstore/cosign to v1.13.2 [SECURITY]

• Branch name: renovate/go-github.com-sigstore-cosign-vulnerability
• Merge into: master
• Upgrade github.com/sigstore/cosign to v1.13.2

Update github.com/IBM/integrity-enforcer/shield digest to 73c46f4

• Schedule: ["at any time"]
• Branch name: renovate/github.com-ibm-integrity-enforcer-shield-digest
• Merge into: master
• Upgrade github.com/IBM/integrity-enforcer/shield to 73c46f487155

Update github.com/IBM/integrity-shield/integrity-shield-operator digest to 47a937c

• Schedule: ["at any time"]
• Branch name: renovate/github.com-ibm-integrity-shield-integrity-shield-operator-digest
• Merge into: master
• Upgrade github.com/IBM/integrity-shield/integrity-shield-operator to 47a937cb51ea

Update github.com/IBM/integrity-shield/shield digest to 47a937c

• Schedule: ["at any time"]
• Branch name: renovate/github.com-ibm-integrity-shield-shield-digest
• Merge into: master
• Upgrade github.com/IBM/integrity-shield/shield to 47a937cb51ea383348ae4945751fb77a232f8f8c

Update github.com/IBM/integrity-shield/webhook/admission-controller digest to 47a937c

• Schedule: ["at any time"]
• Branch name: renovate/github.com-ibm-integrity-shield-webhook-admission-controller-digest
• Merge into: master
• Upgrade github.com/IBM/integrity-shield/webhook/admission-controller to 47a937cb51ea383348ae4945751fb77a232f8f8c

Update github.com/open-policy-agent/frameworks/constraint digest to 7a3c70a

• Schedule: ["at any time"]
• Branch name: renovate/github.com-open-policy-agent-frameworks-constraint-digest
• Merge into: master
• Upgrade github.com/open-policy-agent/frameworks/constraint to 7a3c70aae2a1

Update dependency npm to v6.14.18

• Schedule: ["at any time"]
• Branch name: renovate/npm-6.x-lockfile
• Merge into: master
• Upgrade npm to 6.14.18

Update module github.com/onsi/ginkgo to v1.16.5

• Schedule: ["at any time"]
• Branch name: renovate/github.com-onsi-ginkgo-1.x
• Merge into: master
• Upgrade github.com/onsi/ginkgo to v1.16.5

Update dependency svgexport to ^0.4.0

• Schedule: ["at any time"]
• Branch name: renovate/svgexport-0.x
• Merge into: master
• Upgrade svgexport to ^0.4.0

Update kubernetes packages to v0.33.0

• Schedule: ["at any time"]
• Branch name: renovate/kubernetes-go
• Merge into: master
• Upgrade k8s.io/api to v0.33.0
• Upgrade k8s.io/apiextensions-apiserver to v0.33.0
• Upgrade k8s.io/apimachinery to v0.33.0
• Upgrade k8s.io/cli-runtime to v0.33.0
• Upgrade k8s.io/client-go to v0.33.0
• Upgrade k8s.io/code-generator to v0.33.0
• Upgrade k8s.io/kubectl to v0.33.0

Update module github.com/google/go-containerregistry to v0.20.3

• Schedule: ["at any time"]
• Branch name: renovate/github.com-google-go-containerregistry-0.x
• Merge into: master
• Upgrade github.com/google/go-containerregistry to v0.20.3

Update module github.com/jinzhu/copier to v0.4.0

• Schedule: ["at any time"]
• Branch name: renovate/github.com-jinzhu-copier-0.x
• Merge into: master
• Upgrade github.com/jinzhu/copier to v0.4.0

Update module github.com/onsi/gomega to v1.37.0

• Schedule: ["at any time"]
• Branch name: renovate/github.com-onsi-gomega-1.x
• Merge into: master
• Upgrade github.com/onsi/gomega to v1.37.0

Update module github.com/peterbourgon/ff/v3 to v3.4.0

• Schedule: ["at any time"]
• Branch name: renovate/github.com-peterbourgon-ff-v3-3.x
• Merge into: master
• Upgrade github.com/peterbourgon/ff/v3 to v3.4.0

Update module github.com/sigstore/cosign to v0.6.0

• Schedule: ["at any time"]
• Branch name: renovate/github.com-sigstore-cosign-0.x
• Merge into: master
• Upgrade github.com/sigstore/cosign to bbaca4429c11981c877cf279fb3dc740c54903b8

Update module github.com/sigstore/k8s-manifest-sigstore to v0.5.4

• Schedule: ["at any time"]
• Branch name: renovate/github.com-sigstore-k8s-manifest-sigstore-0.x
• Merge into: master
• Upgrade github.com/sigstore/k8s-manifest-sigstore to e35f818810937a5cbc2aa50ce58fd6ec6285a47c

Update module github.com/sigstore/rekor to v0.12.2

• Schedule: ["at any time"]
• Branch name: renovate/github.com-sigstore-rekor-0.x
• Merge into: master
• Upgrade github.com/sigstore/rekor to b2e7ec91b6b79d81e581083fe5e0f9c26669aacd

Update module github.com/sirupsen/logrus to v1.9.3

• Schedule: ["at any time"]
• Branch name: renovate/github.com-sirupsen-logrus-1.x
• Merge into: master
• Upgrade github.com/sirupsen/logrus to v1.9.3

Update module sigs.k8s.io/controller-runtime to v0.20.4

• Schedule: ["at any time"]
• Branch name: renovate/sigs.k8s.io-controller-runtime-0.x
• Merge into: master
• Upgrade sigs.k8s.io/controller-runtime to v0.20.4

Update registry.access.redhat.com/ubi7/ubi-minimal Docker tag to v7.9-1428

• Schedule: ["at any time"]
• Branch name: renovate/registry.access.redhat.com-ubi7-ubi-minimal-7.x
• Merge into: master
• Upgrade registry.access.redhat.com/ubi7/ubi-minimal to 7.9-1428

Update dependency npm to v11

• Schedule: ["at any time"]
• Branch name: renovate/npm-11.x
• Merge into: master
• Upgrade npm to ^11.0.0

Update dependency rimraf to v6

• Schedule: ["at any time"]
• Branch name: renovate/rimraf-6.x
• Merge into: master
• Upgrade rimraf to ^6.0.0

Update dependency ssri to v12

• Schedule: ["at any time"]
• Branch name: renovate/ssri-12.x-lockfile
• Merge into: master
• Upgrade ssri to 12.0.0

Update module github.com/go-logr/logr to v1

• Schedule: ["at any time"]
• Branch name: renovate/github.com-go-logr-logr-1.x
• Merge into: master
• Upgrade github.com/go-logr/logr to v1.4.2

Update module github.com/onsi/ginkgo to v2

• Schedule: ["at any time"]
• Branch name: renovate/github.com-onsi-ginkgo-2.x
• Merge into: master
• Upgrade github.com/onsi/ginkgo to v2.23.4

Update module github.com/sigstore/cosign to v2

• Schedule: ["at any time"]
• Branch name: renovate/github.com-sigstore-cosign-2.x
• Merge into: master
• Upgrade github.com/sigstore/cosign to 38bb98697005cdc5c092f031594c0e45d039f4a0

Update module github.com/sigstore/rekor to v1

• Schedule: ["at any time"]
• Branch name: renovate/github.com-sigstore-rekor-1.x
• Merge into: master
• Upgrade github.com/sigstore/rekor to 4118a64b4b9c228a968b2d935a00807ca1b33aed

Update module github.com/sigstore/sigstore to v1

• Schedule: ["at any time"]
• Branch name: renovate/github.com-sigstore-sigstore-1.x
• Merge into: master
• Upgrade github.com/sigstore/sigstore to 0c2ec3a363b2bba0ea6146b85e0196a2b94a935e

Update module gopkg.in/yaml.v2 to v3

• Schedule: ["at any time"]
• Branch name: renovate/gopkg.in-yaml.v2-3.x
• Merge into: master
• Upgrade gopkg.in/yaml.v2 to v3.0.1

Update module k8s.io/klog to v2

• Schedule: ["at any time"]
• Branch name: renovate/k8s.io-klog-2.x
• Merge into: master
• Upgrade k8s.io/klog to v2.130.1

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

---

Warning

Please correct - or verify that you can safely ignore - these dependency lookup failures before you merge this PR.

• Failed to look up docker package localhost:5000/integrity-shield-operator

Files affected: integrity-shield-operator/config/manager/kustomization.yaml

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR was generated by Mend Renovate. View the repository job log.