Universal dependency update tool that fits into your workflows.

azure-devops bitbucket dependencies dependencies-checking dependency-manager github gitlab hacktoberfest hacktoberfest-accepted npm package-management

Go to file

Rhys Arkins 6664110c29 feat: schedules (#397 ) This PR adds a scheduling feature, including timezone support. It's described in detail in the FAQ, but the summary is: * Timezones can be defined so that schedules are written in timezone of target repository * Schedules can be written in "plain english" * Multiple schedules allowed * Schedules can be defined all the way down to package level Closes #387		2017-06-30 14:04:46 +02:00
bin	Make install-yarn.sh executable	2017-06-25 07:16:28 +02:00
docs	feat: schedules (#397 )	2017-06-30 14:04:46 +02:00
lib	feat: schedules (#397 )	2017-06-30 14:04:46 +02:00
test	feat: schedules (#397 )	2017-06-30 14:04:46 +02:00
.editorconfig	Add editorconfig	2017-01-15 17:23:34 +01:00
.eslintrc.js	Use es5 trailing commas (#183 )	2017-04-21 10:25:49 +02:00
.gitattributes	Add .gitattributes	2017-01-15 17:25:51 +01:00
.gitignore	refactor: jest caching (#388 )	2017-06-29 19:37:45 +02:00
.npmignore	refactor: jest caching (#388 )	2017-06-29 19:37:45 +02:00
Procfile	Replace npm run/test with yarn run/test (#182 )	2017-04-21 09:46:41 +02:00
circle.yml	chore: remove jest caching (#398 )	2017-06-30 13:40:32 +02:00
contributing.md	Use Prettier (#181 )	2017-04-21 10:12:41 +02:00
license	Add license file	2017-01-15 17:27:41 +01:00
package.json	feat: schedules (#397 )	2017-06-30 14:04:46 +02:00
readme.md	Add license badge	2017-06-25 08:24:51 +02:00
yarn.lock	feat: schedules (#397 )	2017-06-30 14:04:46 +02:00

readme.md

renovate

Keep npm dependencies up-to-date.

Why

Creates or updates Pull Requests for each dependency that needs updating
Discovers and processes all package.json files in repository (supports monorepo architecture)
Supports multiple major versions per-dependency at once
Configurable via file, environment, CLI, and package.json
Supports yarn.lock and package-lock.json files
Supports GitHub and GitLab
Open source and can be self-hosted

GitHub App

Renovate is now available as a free GitHub "App". Go to https://github.com/apps/renovate to enable it now.

Install

$ npm install -g renovate

Authentication

You need to select a repository user for renovate to assume the identity of, and generate a Personal Access Token. It's recommended that you use a dedicated "bot" account for this to avoid user confusion.

You can find instructions for GitHub here (select "repo" permissions)

You can find instructions for GitLab here.

This token needs to be configured via file, environment variable, or CLI. See docs/configuration.md for details. The simplest way is to expose it as GITHUB_TOKEN or GITLAB_TOKEN.

Usage

Run renovate --help for usage details.

Note: The first time you run renovate on a repository, it will not upgrade any dependencies. Instead, it will create a Pull Request (Merge Request if GitLab) called 'Configure Renovate' and commit a default renovate.json file to the repository. This PR can be close unmerged if the default settings are fine for you. Also, this behaviour can be disabled if you set the onboarding configuration option to false before running.

Deployment

See deployment docs for details.

Configuration

The Configuration and Configuration FAQ documents should be helpful.

Design Decisions

See design decisions doc for details.