Configure Renovate

[renovate]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

📚 See our Reading List for relevant documentation you may be interested in reading.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

---

Detected Package Files

• .github/workflows/codeql.yml (github-actions)
• package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Hopefully safe environment variables to allow users to configure.
• Show all Merge Confidence badges for pull requests.
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Show only the Age and Confidence Merge Confidence badges for pull requests.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.
• Ensure that every dependency pinned by digest and sourced from Forgejo contains a link to the commit-to-commit diff
• Ensure that every dependency pinned by digest and sourced from Gitea contains a link to the commit-to-commit diff
• Ensure that every dependency pinned by digest and sourced from GitHub.com and Github enterprise contains a link to the commit-to-commit diff
• Ensure that every dependency pinned by digest and sourced from GitLab.com contains a link to the commit-to-commit diff
• Correctly link to the source code for golang.org/x packages
• Link to pkg.go.dev/... for golang.org/x packages' title
• Pin Docker digests.
• Pin github-action digests.
• Enable Renovate configuration migration PRs when needed.
• Pin dependency versions for development dependencies.
• Recommended configuration for abandoned packages, treating packages without a release for 1 year as abandoned, while taking into account community-sourced overrides.
• Wait until the npm package is three days old before raising the update. This a) introduces a short delay to allow for malware researchers and scanners to (possibly) detect any malicious behaviour in packages, and b) prevents the maintainer and/or NPM from unpublishing a package you already upgraded to, breaking builds.
• Run lock file maintenance (updates) early Monday mornings.
• Weekly schedule on early Monday mornings (before 4 AM).
• Wait until the npm package is three days old before raising the update. This a) introduces a short delay to allow for malware researchers and scanners to (possibly) detect any malicious behaviour in packages, and b) prevents the maintainer and/or NPM from unpublishing a package you already upgraded to, breaking builds.
• If automerging, push the new commit directly to the base branch (no PR).
• Automerge digest upgrades if they pass tests.
• Update lint packages automatically if tests pass.
• Automerge patch upgrades if they pass tests.
• Require all status checks to pass before any automerging.
• Update testing packages automatically if tests pass.
• Update @types/* packages automatically if tests pass.
• Run lock file maintenance (updates) early Monday mornings.
• Keep package.json npm dependencies updated.
• Rebase existing PRs any time the base branch has been updated.
• Run Renovate on following schedule: * 0-3 * * 1

---

What to Expect

With your current configuration, Renovate will create 4 Pull Requests:

Pin dependencies

• Schedule: ["* 0-3 * * 1"]
• Branch name: renovate/pin-dependencies
• Merge into: main
• Upgrade actions/checkout to de0fac2e4500dabe0009e67214ff5f5447ce83dd
• Upgrade github/codeql-action to 68bde559dea0fdcac2102bfdf6230c5f70eb485e

Update dependency @​astrojs/starlight to ^0.39.0

• Schedule: ["* 0-3 * * 1"]
• Branch name: renovate/astrojs-starlight-0.x
• Merge into: main
• Upgrade @astrojs/starlight to ^0.39.0

Update dependency astro to v6.3.1

• Schedule: ["* 0-3 * * 1"]
• Branch name: renovate/astro-monorepo
• Merge into: main
• Upgrade astro to 6.3.1

Lock file maintenance

• Schedule: ["* 0-3 * * 1"]
• Branch name: renovate/lock-file-maintenance
• Merge into: main
• Regenerate lock files to use latest dependency versions

🚸 PR creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prHourlyLimit for details.

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR was generated by Mend Renovate. View the repository job log.

[cloudflare-workers-and-pages]

Deploying with    Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status	Name	Latest Commit	Preview URL	Updated (UTC)
✅ Deployment successful! View logs	docs	2fe7032	Commit Preview URL Branch Preview URL	May 11 2026, 05:55 PM