.github/dependabot.yml

   1 # To get started with Dependabot version updates, you'll need to specify which
   2 # package ecosystems to update and where the package manifests are located.
   3 # Please see the documentation for all configuration options:
   4 # https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
   5
   6 version: 2
   7 updates:
   8   # Maintain dependencies for GitHub Actions
   9   - package-ecosystem: "github-actions"
  10     directory: "/.github/workflows"
  11     schedule:
  12       interval: "daily"
  13       time: "06:00"
  14       # Use Japan Standard Time (UTC +09:00)
  15       timezone: "Asia/Tokyo"
  16     # Raise pull requests for version updates
  17     # to github-actions against the `develop` branch
  18     target-branch: "develop"
  19     versioning-strategy: "auto"
  20     allow:
  21       # Allow updates for *
  22       - dependency-name: "*"
  23     # Add assignees
  24     assignees:
  25       - "dependabot[bot]"
  26     commit-message:
  27       # Prefix all commit messages with "npm"
  28       prefix: "npm"
  29     labels:
  30       - "dependencies"
  31     milestone: 1
  32     # Disable version updates for npm dependencies
  33     open-pull-requests-limit: 0
  34     pull-request-branch-name:
  35       # Separate sections of the branch name with a hyphen
  36       # for example, `dependabot/npm_and_yarn/next_js/acorn/6.4.1`
  37       separator: "/"
  38     # Auto rebasing for npm pull requests
  39     rebase-strategy: "auto" #auto <--> disabled
  40
  41   # Maintain dependencies for npm, yarn
  42   - package-ecosystem: "npm"
  43     directory: "/src"
  44     schedule:
  45       interval: "daily"
  46       time: "06:00"
  47       # Use Japan Standard Time (UTC +09:00)
  48       timezone: "Asia/Tokyo"
  49     # Raise pull requests for version updates
  50     # to npm against the `develop` branch
  51     target-branch: "develop"
  52     versioning-strategy: "auto"
  53     allow:
  54       # Allow updates for *
  55       - dependency-name: "*"
  56     # Add assignees
  57     assignees:
  58       - "dependabot[bot]"
  59     labels:
  60       - "dependencies"
  61     milestone: 1
  62     # Disable version updates for npm dependencies
  63     open-pull-requests-limit: 0
  64     pull-request-branch-name:
  65       # Separate sections of the branch name with a hyphen
  66       # for example, `dependabot/npm_and_yarn/next_js/acorn/6.4.1`
  67       separator: "/"
  68     # Auto rebasing for npm pull requests
  69     rebase-strategy: "auto" #auto <--> disabled