Added renovate rules

[Abhinegi2]

Summary by CodeRabbit

• Chores
  • Added automated dependency-management configuration: weekly scheduled updates, npm manager enabled, and Node.js version constraint (>= 11).
  • Major updates open as draft PRs and require approval/review; minor/patch updates are grouped into weekly non‑major batches with automerge disabled.
  • Dependency dashboard enabled, PR concurrency/hour limits set, and dependency labels/reviewers configured.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds a Renovate configuration file that enables npm dependency automation: weekly UTC schedule (Wednesdays 00:00–04:00), grouped non-major updates, draft PRs for major updates, dependency dashboard, PR rate limits, rangeStrategy "bump", and an npm version constraint (>= 11.0.0).

Changes

Cohort / File(s)

Summary

Dependency Update Configuration renovate.json

New Renovate config extending config:recommended and group:allNonMajor; enables npm manager; schedules weekly UTC window (Wednesday 00:00–04:00); enables dependencyDashboard; sets prConcurrentLimit: 5, prHourlyLimit: 2; labels PRs as dependencies; rangeStrategy: "bump"; npm engine >= 11.0.0; package rules: npm-specific bump strategy, major updates as draft PRs with approval/major-update label, group minor/patch non-major updates into weekly-non-major-updates with automerge disabled.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Poem

I'm a rabbit in the code tree, hopping through the feed,
I gather updates neatly — every package that we need.
Drafts for mighty majors, weekly groups for small,
A dashboard lights the burrow, so no update slips the crawl.
🐇✨

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'Added renovate rules' accurately describes the main change: introduction of a renovate.json configuration file with dependency management rules.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch setup/renovate-rule

---

📜 Recent review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 94c2f87 and 6a7022f.

📒 Files selected for processing (1)

• renovate.json

🚧 Files skipped from review as they are similar to previous changes (1)

• renovate.json

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (2)

renovate.json (2)

5-5: Potential conflict between preset and custom grouping rule.

The group:allNonMajor preset on line 5 automatically groups all non-major updates, but lines 46-57 define a custom grouping rule with specific matching criteria and the name "weekly-non-major-updates". This creates redundancy and potential conflicts in how non-major updates are grouped.

Consider removing line 5 if you want to use the custom grouping logic, or remove lines 46-57 if the preset behavior is sufficient.

🔎 Option 1: Remove the preset and keep custom rule

  "extends": [
-    "config:recommended",
-    "group:allNonMajor"
+    "config:recommended"
  ],

🔎 Option 2: Remove custom rule and keep preset

  "packageRules": [
    {
      "matchManagers": [
        "npm"
      ],
      "rangeStrategy": "bump"
    },
    {
      "matchUpdateTypes": [
        "major"
      ],
      "draftPR": true,
      "dependencyDashboardApproval": true,
      "labels": [
        "dependencies",
        "major-update"
      ]
-    },
-    {
-      "matchDepTypes": [
-        "dependencies",
-        "devDependencies"
-      ],
-      "matchUpdateTypes": [
-        "minor",
-        "patch"
-      ],
-      "groupName": "weekly-non-major-updates",
-      "automerge": false
    }
  ]

Also applies to: 46-57

---

29-34: Redundant rangeStrategy configuration.

This package rule sets rangeStrategy: "bump" for npm, but line 24 already sets this globally. The rule is redundant and can be removed.

🔎 Proposed fix to remove redundant rule

  "packageRules": [
-    {
-      "matchManagers": [
-        "npm"
-      ],
-      "rangeStrategy": "bump"
-    },
    {
      "matchUpdateTypes": [
        "major"
      ],

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 7cbc67d and 94c2f87.

📒 Files selected for processing (1)

• renovate.json

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)

• GitHub Check: Seer Code Review

🔇 Additional comments (2)

renovate.json (2)

10-23: Good configuration practices for scheduling and major updates.

The scheduling configuration (UTC timezone with weekly Wednesday window) and concurrency limits are well-defined. The approach of creating draft PRs with required approval for major updates is a solid safety measure.

Also applies to: 35-45

---

26-26: Verify the npm version constraint.

The constraint requires npm >= 11.0.0. Confirm that this version exists and is available in your environment, as it may be newer than currently released versions of npm.