From a6a2ff533b89fef549578aa762b6307d66034406 Mon Sep 17 00:00:00 2001 From: ArchitectBot <61872893+architectbot@users.noreply.github.com> Date: Thu, 5 Oct 2023 15:06:00 +0200 Subject: [PATCH] Align files (#1) Co-authored-by: github-actions --- .circleci/config.yml | 2 +- .../zz_generated.check_values_schema.yaml | 53 ++++ .../zz_generated.create_release.yaml | 253 ++++++++++++++++++ .../zz_generated.create_release_pr.yaml | 230 ++++++++++++++++ .github/workflows/zz_generated.gitleaks.yaml | 17 ++ CODEOWNERS | 2 +- Makefile | 23 ++ Makefile.gen.app.mk | 46 ++++ renovate.json | 26 ++ 9 files changed, 650 insertions(+), 2 deletions(-) create mode 100644 .github/workflows/zz_generated.check_values_schema.yaml create mode 100644 .github/workflows/zz_generated.create_release.yaml create mode 100644 .github/workflows/zz_generated.create_release_pr.yaml create mode 100644 .github/workflows/zz_generated.gitleaks.yaml create mode 100644 Makefile create mode 100644 Makefile.gen.app.mk create mode 100644 renovate.json diff --git a/.circleci/config.yml b/.circleci/config.yml index 66d3226..43d3c1a 100644 --- a/.circleci/config.yml +++ b/.circleci/config.yml @@ -1,6 +1,6 @@ version: 2.1 orbs: - architect: giantswarm/architect@4.8.1 + architect: giantswarm/architect@4.31.0 workflows: package-and-push-chart-on-tag: diff --git a/.github/workflows/zz_generated.check_values_schema.yaml b/.github/workflows/zz_generated.check_values_schema.yaml new file mode 100644 index 0000000..1d01974 --- /dev/null +++ b/.github/workflows/zz_generated.check_values_schema.yaml @@ -0,0 +1,53 @@ +# DO NOT EDIT. Generated with: +# +# devctl@6.13.0 +# +name: 'Values and schema' +on: + pull_request: + branches: + - master + - main + paths: + - 'helm/**/values.yaml' # default helm chart values + - 'helm/**/values.schema.json' # schema + - 'helm/**/ci/ci-values.yaml' # overrides for CI (can contain required entries) + + push: {} + +jobs: + check: + name: 'validate values.yaml against values.schema.json' + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@v4 + with: + fetch-depth: 0 + + - name: Install validator + run: | + wget -q -O ${HOME}/yajsv https://github.com/neilpa/yajsv/releases/download/v1.4.1/yajsv.linux.amd64 + chmod +x ${HOME}/yajsv + + - name: 'Check if values.yaml is a valid instance of values.schema.json' + run: | + for chart_yaml in helm/*/Chart.yaml; do + helm_dir="${chart_yaml%/Chart.yaml}" + + if [ ! -f ${helm_dir}/values.schema.json ]; then + echo "Skipping validation for '${helm_dir}' folder, because 'values.schema.json' does not exist..." + continue + fi + + values=${helm_dir}/values.yaml + if [ -f ${helm_dir}/ci/ci-values.yaml ]; then + # merge ci-values.yaml into values.yaml (providing required values) + echo -e "\nMerged values:\n==============" + yq '. *= load("'${helm_dir}'/ci/ci-values.yaml")' ${helm_dir}/values.yaml | tee ${helm_dir}/combined-values.yaml + echo -e "\n==============\n" + values=${helm_dir}/combined-values.yaml + fi + + ${HOME}/yajsv -s ${helm_dir}/values.schema.json ${values} + done diff --git a/.github/workflows/zz_generated.create_release.yaml b/.github/workflows/zz_generated.create_release.yaml new file mode 100644 index 0000000..a8d1c3c --- /dev/null +++ b/.github/workflows/zz_generated.create_release.yaml @@ -0,0 +1,253 @@ +# DO NOT EDIT. Generated with: +# +# devctl@6.13.0 +# +name: Create Release +on: + push: + branches: + - 'legacy' + - 'main' + - 'master' + - 'release-v*.*.x' + # "!" negates previous positive patterns so it has to be at the end. + - '!release-v*.x.x' +jobs: + debug_info: + name: Debug info + runs-on: ubuntu-22.04 + steps: + - name: Print github context JSON + run: | + cat <> $GITHUB_OUTPUT + - name: Checkout code + if: ${{ steps.get_version.outputs.version != '' }} + uses: actions/checkout@v4 + - name: Get project.go path + id: get_project_go_path + if: ${{ steps.get_version.outputs.version != '' }} + run: | + path='./pkg/project/project.go' + if [[ ! -f $path ]] ; then + path='' + fi + echo "path=\"$path\"" + echo "path=${path}" >> $GITHUB_OUTPUT + - name: Check if reference version + id: ref_version + run: | + title="$(cat <<- 'COMMIT_MESSAGE_END' | head -n 1 - + ${{ github.event.head_commit.message }} + COMMIT_MESSAGE_END + )" + if echo "${title}" | grep -qE '^release v[0-9]+\.[0-9]+\.[0-9]+([.-][^ .-][^ ]*)?( \(#[0-9]+\))?$' ; then + version=$(echo "${title}" | cut -d ' ' -f 2) + fi + version=$(echo "${title}" | cut -d ' ' -f 2) + version="${version#v}" # Strip "v" prefix. + refversion=false + if [[ "${version}" =~ ^[0-9]+.[0-9]+.[0-9]+-[0-9]+$ ]]; then + refversion=true + fi + echo "refversion =\"${refversion}\"" + echo "refversion=${refversion}" >> $GITHUB_OUTPUT + update_project_go: + name: Update project.go + runs-on: ubuntu-22.04 + if: ${{ needs.gather_facts.outputs.version != '' && needs.gather_facts.outputs.project_go_path != '' && needs.gather_facts.outputs.ref_version != 'true' }} + needs: + - gather_facts + steps: + - name: Install architect + uses: giantswarm/install-binary-action@v1.1.0 + with: + binary: "architect" + version: "6.11.0" + - name: Install semver + uses: giantswarm/install-binary-action@v1.1.0 + with: + binary: "semver" + version: "3.2.0" + download_url: "https://github.com/fsaintjacques/${binary}-tool/archive/${version}.tar.gz" + tarball_binary_path: "*/src/${binary}" + smoke_test: "${binary} --version" + - name: Checkout code + uses: actions/checkout@v4 + - name: Update project.go + id: update_project_go + env: + branch: "${{ github.ref }}-version-bump" + run: | + git checkout -b ${{ env.branch }} + file="${{ needs.gather_facts.outputs.project_go_path }}" + version="${{ needs.gather_facts.outputs.version }}" + new_version="$(semver bump patch $version)-dev" + echo "version=\"$version\" new_version=\"$new_version\"" + echo "new_version=${new_version}" >> $GITHUB_OUTPUT + sed -Ei "s/(version[[:space:]]*=[[:space:]]*)\"${version}\"/\1\"${new_version}\"/" $file + if git diff --exit-code $file ; then + echo "error: no changes in \"$file\"" >&2 + exit 1 + fi + - name: Set up git identity + run: | + git config --local user.email "dev@giantswarm.io" + git config --local user.name "taylorbot" + - name: Commit changes + run: | + file="${{ needs.gather_facts.outputs.project_go_path }}" + git add $file + git commit -m "Bump version to ${{ steps.update_project_go.outputs.new_version }}" + - name: Push changes + env: + REMOTE_REPO: "https://${{ github.actor }}:${{ secrets.TAYLORBOT_GITHUB_ACTION }}@github.com/${{ github.repository }}.git" + branch: "${{ github.ref }}-version-bump" + run: | + git push "${REMOTE_REPO}" HEAD:${{ env.branch }} + - name: Create PR + env: + GITHUB_TOKEN: "${{ secrets.TAYLORBOT_GITHUB_ACTION }}" + base: "${{ github.ref }}" + branch: "${{ github.ref }}-version-bump" + version: "${{ needs.gather_facts.outputs.version }}" + title: "Bump version to ${{ steps.update_project_go.outputs.new_version }}" + run: | + gh pr create --title "${{ env.title }}" --body "" --base ${{ env.base }} --head ${{ env.branch }} --reviewer ${{ github.actor }} + create_release: + name: Create release + runs-on: ubuntu-22.04 + needs: + - gather_facts + if: ${{ needs.gather_facts.outputs.version }} + outputs: + upload_url: ${{ steps.create_gh_release.outputs.upload_url }} + steps: + - name: Checkout code + uses: actions/checkout@v4 + with: + ref: ${{ github.sha }} + - name: Ensure correct version in project.go + if: ${{ needs.gather_facts.outputs.project_go_path != '' && needs.gather_facts.outputs.ref_version != 'true' }} + run: | + file="${{ needs.gather_facts.outputs.project_go_path }}" + version="${{ needs.gather_facts.outputs.version }}" + grep -qE "version[[:space:]]*=[[:space:]]*\"$version\"" $file + - name: Get Changelog Entry + id: changelog_reader + uses: mindsers/changelog-reader-action@v2 + with: + version: ${{ needs.gather_facts.outputs.version }} + path: ./CHANGELOG.md + - name: Set up git identity + run: | + git config --local user.email "dev@giantswarm.io" + git config --local user.name "taylorbot" + - name: Create tag + run: | + version="${{ needs.gather_facts.outputs.version }}" + git tag "v$version" ${{ github.sha }} + - name: Push tag + env: + REMOTE_REPO: "https://${{ github.actor }}:${{ secrets.TAYLORBOT_GITHUB_ACTION }}@github.com/${{ github.repository }}.git" + run: | + git push "${REMOTE_REPO}" --tags + - name: Create release + id: create_gh_release + uses: actions/create-release@v1 + env: + GITHUB_TOKEN: "${{ secrets.TAYLORBOT_GITHUB_ACTION }}" + with: + body: ${{ steps.changelog_reader.outputs.changes }} + tag_name: "v${{ needs.gather_facts.outputs.version }}" + release_name: "v${{ needs.gather_facts.outputs.version }}" + + create-release-branch: + name: Create release branch + runs-on: ubuntu-22.04 + needs: + - gather_facts + if: ${{ needs.gather_facts.outputs.version }} + steps: + - name: Install semver + uses: giantswarm/install-binary-action@v1.1.0 + with: + binary: "semver" + version: "3.0.0" + download_url: "https://github.com/fsaintjacques/${binary}-tool/archive/${version}.tar.gz" + tarball_binary_path: "*/src/${binary}" + smoke_test: "${binary} --version" + - name: Check out the repository + uses: actions/checkout@v4 + with: + fetch-depth: 0 # Clone the whole history, not just the most recent commit. + - name: Fetch all tags and branches + run: "git fetch --all" + - name: Create long-lived release branch + run: | + current_version="${{ needs.gather_facts.outputs.version }}" + parent_version="$(git describe --tags --abbrev=0 HEAD^ || true)" + parent_version="${parent_version#v}" # Strip "v" prefix. + + if [[ -z "$parent_version" ]] ; then + echo "Unable to find a parent tag version. No branch to create." + exit 0 + fi + + echo "current_version=$current_version parent_version=$parent_version" + + current_major=$(semver get major $current_version) + current_minor=$(semver get minor $current_version) + parent_major=$(semver get major $parent_version) + parent_minor=$(semver get minor $parent_version) + echo "current_major=$current_major current_minor=$current_minor parent_major=$parent_major parent_minor=$parent_minor" + + if [[ $current_major -gt $parent_major ]] ; then + echo "Current tag is a new major version" + elif [[ $current_major -eq $parent_major ]] && [[ $current_minor -gt $parent_minor ]] ; then + echo "Current tag is a new minor version" + else + echo "Current tag is not a new major or minor version. Nothing to do here." + exit 0 + fi + + release_branch="release-v${parent_major}.${parent_minor}.x" + echo "release_branch=$release_branch" + + if git rev-parse --verify $release_branch ; then + echo "Release branch $release_branch already exists. Nothing to do here." + exit 0 + fi + + git branch $release_branch HEAD^ + git push origin $release_branch diff --git a/.github/workflows/zz_generated.create_release_pr.yaml b/.github/workflows/zz_generated.create_release_pr.yaml new file mode 100644 index 0000000..3fdb0f6 --- /dev/null +++ b/.github/workflows/zz_generated.create_release_pr.yaml @@ -0,0 +1,230 @@ +# DO NOT EDIT. Generated with: +# +# devctl@6.13.0 +# +name: Create Release PR +on: + push: + branches: + - 'legacy#release#v*.*.*' + - 'main#release#v*.*.*' + - 'main#release#major' + - 'main#release#minor' + - 'main#release#patch' + - 'master#release#v*.*.*' + - 'master#release#major' + - 'master#release#minor' + - 'master#release#patch' + - 'release#v*.*.*' + - 'release#major' + - 'release#minor' + - 'release#patch' + - 'release-v*.*.x#release#v*.*.*' + # "!" negates previous positive patterns so it has to be at the end. + - '!release-v*.x.x#release#v*.*.*' + workflow_call: + inputs: + branch: + required: true + type: string +jobs: + debug_info: + name: Debug info + runs-on: ubuntu-22.04 + steps: + - name: Print github context JSON + run: | + cat <> $GITHUB_OUTPUT + + head="${head#refs/heads/}" # Strip "refs/heads/" prefix. + if [[ $(echo "$head" | grep -o '#' | wc -l) -gt 1 ]]; then + base="$(echo $head | cut -d '#' -f 1)" + else + base="${{ github.event.base_ref }}" + fi + + base="${base#refs/heads/}" # Strip "refs/heads/" prefix. + + version="$(echo $head | awk -F# '{print $NF}')" + if [[ $version =~ ^major|minor|patch$ ]]; then + gh auth login --with-token <<<$(echo -n ${{ secrets.TAYLORBOT_GITHUB_ACTION }}) + gh_api_get_latest_release_version() + { + if ! version="$(gh api "repos/$1/releases/latest" --jq '.tag_name[1:] | split(".") | .[0], .[1], .[2]')" + then + case "$version" in + *Not\ Found*) echo Assuming v0.0.0, hooray first release! >&2 ; version="0 0 0" ;; + *) version="" ; return 1 ;; + esac + fi + echo "$version" + } + + version_parts=($(gh_api_get_latest_release_version "${{ github.repository }}")) + version_major=${version_parts[0]} + version_minor=${version_parts[1]} + version_patch=${version_parts[2]} + case ${version} in + patch) + version_patch=$((version_patch+1)) + ;; + minor) + version_minor=$((version_minor+1)) + version_patch=0 + ;; + major) + version_major=$((version_major+1)) + version_minor=0 + version_patch=0 + if [[ "${version_major}" != "1" ]]; then + echo "needs_major_bump=true" >> $GITHUB_OUTPUT + fi + ;; + *) + echo "Unknown Semver level provided" + exit 1 + ;; + esac + version="${version_major}.${version_minor}.${version_patch}" + else + version="${version#v}" # Strip "v" prefix. + version_major=$(echo "${version}" | cut -d "." -f 1) + version_minor=$(echo "${version}" | cut -d "." -f 2) + version_patch=$(echo "${version}" | cut -d "." -f 3) + # This will help us detect versions with suffixes as majors, i.e 3.0.0-alpha1. + # Even though it's a pre-release, it's still a major. + if [[ $version_minor = 0 && $version_patch =~ ^0.* && $version_major != 1 ]]; then + echo "needs_major_bump=true" >> $GITHUB_OUTPUT + fi + fi + repo_name="$(echo '${{ github.repository }}' | awk -F '/' '{print $2}')" + echo "repo_name=\"$repo_name\" base=\"$base\" head=\"$head\" version=\"$version\"" + echo "repo_name=${repo_name}" >> $GITHUB_OUTPUT + echo "base=${base}" >> $GITHUB_OUTPUT + echo "head=${head}" >> $GITHUB_OUTPUT + echo "version=${version}" >> $GITHUB_OUTPUT + - name: Check if PR exists + id: pr_exists + env: + GITHUB_TOKEN: "${{ secrets.TAYLORBOT_GITHUB_ACTION }}" + run: | + head="${{ steps.gather_facts.outputs.branch }}" + branch="${head#refs/heads/}" # Strip "refs/heads/" prefix. + if gh pr view --repo "${{ github.repository }}" "${branch}" --json state --jq .state | grep -i 'open' > /dev/null; then + gh pr view --repo "${{ github.repository }}" "${branch}" + echo "skip=true" >> $GITHUB_OUTPUT + else + echo "skip=false" >> $GITHUB_OUTPUT + fi + create_release_pr: + name: Create release PR + runs-on: ubuntu-22.04 + needs: + - gather_facts + if: ${{ needs.gather_facts.outputs.skip != 'true' }} + env: + architect_flags: "--organisation ${{ github.repository_owner }} --project ${{ needs.gather_facts.outputs.repo_name }}" + steps: + - uses: actions/setup-go@v3 + with: + go-version: '=1.18.1' + - name: Install architect + uses: giantswarm/install-binary-action@v1.1.0 + with: + binary: "architect" + version: "6.11.0" + - name: Checkout code + uses: actions/checkout@v4 + with: + ref: ${{ needs.gather_facts.outputs.branch }} + - name: Prepare release changes + run: | + architect prepare-release ${{ env.architect_flags }} --version "${{ needs.gather_facts.outputs.version }}" + - name: Update version field in Chart.yaml + run: | + # Define chart_dir + repository="${{ needs.gather_facts.outputs.repo_name }}" + chart="helm/${repository}" + + # Check chart directory. + if [ ! -d "${chart}" ] + then + echo "Could not find chart directory '${chart}', adding app suffix." + + # Add app suffix. + chart="helm/${repository}-app" + + # Check chart directory with app suffix. + if [ ! -d "${chart}" ] + then + echo "Could not find chart directory '${chart}', removing app suffix." + + # Remove app suffix. + chart="helm/${repository%-app}" + + if [ ! -d "${chart}" ] + then + # Print error. + echo "Could not find chart directory '${chart}', doing nothing." + fi + fi + fi + + # Define chart YAML. + chart_yaml="${chart}/Chart.yaml" + + # Check chart YAML. + if [ -f "${chart_yaml}" ] + then + # check if version in Chart.yaml is templated using architect + if [ $(grep -c "^version:.*\.Version.*$" "${chart_yaml}") = "0" ]; then + yq -i '.version = "${{ needs.gather_facts.outputs.version }}"' "${chart_yaml}" + fi + fi + + - name: Bump go module defined in go.mod if needed + run: | + if [ "${{ needs.gather_facts.outputs.needs_major_bump }}" = true ] && test -f "go.mod"; then + go install github.com/marwan-at-work/mod/cmd/mod@v0.5.0 + mod upgrade + fi + - name: Set up git identity + run: | + git config --local user.email "dev@giantswarm.io" + git config --local user.name "taylorbot" + - name: Create release commit + env: + version: "${{ needs.gather_facts.outputs.version }}" + run: | + git add -A + git commit -m "Release v${{ env.version }}" + - name: Push changes + env: + remote_repo: "https://${{ github.actor }}:${{ secrets.TAYLORBOT_GITHUB_ACTION }}@github.com/${{ github.repository }}.git" + run: | + git push "${remote_repo}" HEAD:${{ needs.gather_facts.outputs.branch }} + - name: Create PR + env: + GITHUB_TOKEN: "${{ secrets.TAYLORBOT_GITHUB_ACTION }}" + base: "${{ needs.gather_facts.outputs.base }}" + version: "${{ needs.gather_facts.outputs.version }}" + run: | + gh pr create --assignee ${{ github.actor }} --title "Release v${{ env.version }}" --body "" --base ${{ env.base }} --head "${{ needs.gather_facts.outputs.branch }}" diff --git a/.github/workflows/zz_generated.gitleaks.yaml b/.github/workflows/zz_generated.gitleaks.yaml new file mode 100644 index 0000000..82f177b --- /dev/null +++ b/.github/workflows/zz_generated.gitleaks.yaml @@ -0,0 +1,17 @@ +# DO NOT EDIT. Generated with: +# +# devctl@6.13.0 +# +name: gitleaks + +on: [pull_request] + +jobs: + gitleaks: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + with: + fetch-depth: '0' + - name: gitleaks-action + uses: zricethezav/gitleaks-action@v1.6.0 diff --git a/CODEOWNERS b/CODEOWNERS index 4642014..0200516 100644 --- a/CODEOWNERS +++ b/CODEOWNERS @@ -1,2 +1,2 @@ # generated by giantswarm/github actions - changes will be overwritten -* @giantswarm/team-honeybadger +* @giantswarm/team-atlas diff --git a/Makefile b/Makefile new file mode 100644 index 0000000..4097c84 --- /dev/null +++ b/Makefile @@ -0,0 +1,23 @@ +# DO NOT EDIT. Generated with: +# +# devctl@6.13.0 +# + +include Makefile.*.mk + +##@ General + +# The help target prints out all targets with their descriptions organized +# beneath their categories. The categories are represented by '##@' and the +# target descriptions by '##'. The awk commands is responsible for reading the +# entire set of makefiles included in this invocation, looking for lines of the +# file as xyz: ## something, and then pretty-format the target and help. Then, +# if there's a line with ##@ something, that gets pretty-printed as a category. +# More info on the usage of ANSI control characters for terminal formatting: +# https://en.wikipedia.org/wiki/ANSI_escape_code#SGR_parameters +# More info on the awk command: +# http://linuxcommand.org/lc3_adv_awk.php + +.PHONY: help +help: ## Display this help. + @awk 'BEGIN {FS = ":.*##"; printf "\nUsage:\n make \033[36m\033[0m\n"} /^[a-zA-Z%\\\/_0-9-]+:.*?##/ { printf " \033[36m%-20s\033[0m %s\n", $$1, $$2 } /^##@/ { printf "\n\033[1m%s\033[0m\n", substr($$0, 5) } ' $(MAKEFILE_LIST) diff --git a/Makefile.gen.app.mk b/Makefile.gen.app.mk new file mode 100644 index 0000000..07d3c53 --- /dev/null +++ b/Makefile.gen.app.mk @@ -0,0 +1,46 @@ +# DO NOT EDIT. Generated with: +# +# devctl@6.13.0 +# + +##@ App + +YQ=docker run --rm -u $$(id -u) -v $${PWD}:/workdir mikefarah/yq:4.29.2 +HELM_DOCS=docker run --rm -u $$(id -u) -v $${PWD}:/helm-docs jnorwood/helm-docs:v1.11.0 + +ifdef APPLICATION +DEPS := $(shell find $(APPLICATION)/charts -maxdepth 2 -name "Chart.yaml" -printf "%h\n") +endif + +.PHONY: lint-chart check-env update-chart helm-docs update-deps $(DEPS) + +lint-chart: IMAGE := giantswarm/helm-chart-testing:v3.0.0-rc.1 +lint-chart: check-env ## Runs ct against the default chart. + @echo "====> $@" + rm -rf /tmp/$(APPLICATION)-test + mkdir -p /tmp/$(APPLICATION)-test/helm + cp -a ./helm/$(APPLICATION) /tmp/$(APPLICATION)-test/helm/ + architect helm template --dir /tmp/$(APPLICATION)-test/helm/$(APPLICATION) + docker run -it --rm -v /tmp/$(APPLICATION)-test:/wd --workdir=/wd --name ct $(IMAGE) ct lint --validate-maintainers=false --charts="helm/$(APPLICATION)" + rm -rf /tmp/$(APPLICATION)-test + +update-chart: check-env ## Sync chart with upstream repo. + @echo "====> $@" + vendir sync + $(MAKE) update-deps + +update-deps: check-env $(DEPS) ## Update Helm dependencies. + cd $(APPLICATION) && helm dependency update + +$(DEPS): check-env ## Update main Chart.yaml with new local dep versions. + dep_name=$(shell basename $@) && \ + new_version=`$(YQ) .version $(APPLICATION)/charts/$$dep_name/Chart.yaml` && \ + $(YQ) -i e "with(.dependencies[]; select(.name == \"$$dep_name\") | .version = \"$$new_version\")" $(APPLICATION)/Chart.yaml + +helm-docs: check-env ## Update $(APPLICATION) README. + $(HELM_DOCS) -c $(APPLICATION) -g $(APPLICATION) + +check-env: +ifndef APPLICATION + $(error APPLICATION is not defined) +endif diff --git a/renovate.json b/renovate.json new file mode 100644 index 0000000..5a12b71 --- /dev/null +++ b/renovate.json @@ -0,0 +1,26 @@ +{ + "extends": [ + "config:base" + ], + "labels": ["dependencies", "renovate"], + "dependencyDashboard": true, + "ignorePaths": [ + ".github/workflows/zz_generated.*", + ".github/workflows/codeql-analysis.yml", + ".github/workflows/pre_commit_*.yaml" + ], + "ignoreDeps": [ + "actions/setup-go", + "architect", + "github.com/imdario/mergo", + "zricethezav/gitleaks-action" + ], + "regexManagers": [ + { + "fileMatch": ["^helm\\/.+\\/values\\.yaml$"], + "matchStrings": ["repo: (?.*)\n(\\s)*version: (?.*?)\n"], + "datasourceTemplate": "github-releases", + "extractVersionTemplate": "^v(?.*)$" + } + ] +}