Skip to content

feat: add Renovate automation for OpenShell version pin#882

Open
maruiz93 wants to merge 1 commit into
fullsend-ai:mainfrom
maruiz93:renovate-openshell-pin
Open

feat: add Renovate automation for OpenShell version pin#882
maruiz93 wants to merge 1 commit into
fullsend-ai:mainfrom
maruiz93:renovate-openshell-pin

Conversation

@maruiz93
Copy link
Copy Markdown
Contributor

@maruiz93 maruiz93 commented May 13, 2026

Summary

  • Add renovate.json with a regex custom manager that tracks OPENSHELL_VERSION in the composite action and opens PRs when new NVIDIA/OpenShell tags are published (no auto-merge)
  • Enable Renovate's git-submodules manager to replace Dependabot for submodule tracking
  • Remove .github/dependabot.yml (consolidated onto Renovate)

Note: The Renovate regex intentionally tracks only the OPENSHELL_VERSION env var, not the install script URL (still pinned to v0.0.36). The install script must be migrated to the new package-based installer before bumping past v0.0.36 — see #878.

Closes #773

Test plan

  • Verify renovate.json passes Renovate config validator
  • Install the Renovate GitHub App on the fullsend-ai org or repo — the config has no effect without it
  • After Renovate is enabled, confirm it detects OPENSHELL_VERSION=v0.0.36 and opens a version bump PR when a new OpenShell tag is published
  • Confirm git submodule update PRs are created by Renovate (replacing Dependabot)

🤖 Generated with Claude Code

@maruiz93 @claude
feat: add Renovate automation for OpenShell version pin
fcf5312 
Replace Dependabot with Renovate to track the OPENSHELL_VERSION pin in
the composite action. A regex custom manager matches the env var pattern
and opens PRs when new NVIDIA/OpenShell tags are published. The
git-submodules manager replaces Dependabot's submodule tracking.

Closes fullsend-ai#773

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 13, 2026

fullsend review is working on this — view logs

@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 13, 2026

Site preview

Preview: https://c5b1436a-site.fullsend-ai.workers.dev

Commit: fcf5312b9a350e434d8e1d9201a487cecb264761

@fullsend-ai-review
Copy link
Copy Markdown

fullsend-ai-review Bot commented May 13, 2026

Review: #882

Head SHA: fcf5312
Timestamp: 2026-05-13T00:00:00Z
Outcome: approve

Summary

Clean, well-scoped change that adds a Renovate configuration to automate OpenShell version tracking and consolidates dependency management by removing Dependabot. The regex custom manager correctly matches the OPENSHELL_VERSION=v<semver> pattern in the composite action file while intentionally leaving the install script URL untracked (migration tracked in #878). The git-submodules manager replaces the equivalent Dependabot functionality. No auto-merge is configured, matching the requirement from #773 that PRs require e2e validation before merge. No findings across any of the six review dimensions.

Findings

No findings.

Footer

Outcome: approve
This review applies to SHA fcf5312b9a350e434d8e1d9201a487cecb264761. Any push to the PR head clears this review and requires a new evaluation.

Protected paths detected — this PR modifies files under one or more
protected paths. The review agent cannot approve PRs that touch these paths.
A human reviewer must approve this PR.

Protected files in this PR:

  • .github/dependabot.yml

rh-hemartin
rh-hemartin requested changes May 14, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@rh-hemartin rh-hemartin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not sure how e2e tests work in regard to changes in the workflows now that we have reusable ones, we need to make sure these are tested before merging.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rh-hemartin rh-hemartin rh-hemartin requested changes

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add Renovate automation for openshell version pin

2 participants

@maruiz93 @rh-hemartin