change dependabot settings

kdmcguire · Nov 25, 2024 · 37c1d91 · 37c1d91
1 parent fa0d6cc
commit 37c1d91
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 58 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -3,35 +3,17 @@ updates:
   - package-ecosystem: "npm"
     directory: "/"
     schedule:
-      interval: "daily"
+      interval: "weekly"
+      day: "monday"
+      time: "08:00"
     groups:
-      astro:
-        patterns:
-          - "astro"
-          - "@astrojs/*"
-      eslint:
-        patterns:
-          - "eslint"
-          - "@types/eslint"
-      markdown-it:
-        patterns:
-          - "markdown-it"
-          - "@types/markdown-it"
-      pagefind:
-        patterns:
-          - "pagefind"
-          - "@pagefind/default-ui"
-      sanitize-html:
-        patterns:
-          - "sanitize-html"
-          - "@types/sanitize-html"
-      typescript-eslint:
-        patterns:
-          - "@typescript-eslint/eslint-plugin"
-          - "@typescript-eslint/parser"
-    open-pull-requests-limit: 20
+      non-major:
+        update-types:
+          - "minor"
+          - "patch"
+    open-pull-requests-limit: 10
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
-      interval: "daily"
+      interval: "weekly"
     open-pull-requests-limit: 10
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -59,34 +59,3 @@ jobs:
       - name: Assign
         id: assign
         run: gh pr edit ${{ github.event.pull_request.html_url }} --add-reviewer kdmcguire
-  dependabot-automerge:
-    name: Automerge Dependabot patch/minor PRs
-    if: ${{ github.actor == 'dependabot[bot]' }}
-    permissions:
-      contents: write
-    runs-on: ubuntu-latest
-    steps:
-      - name: Dependabot metadata
-        id: metadata
-        uses: dependabot/fetch-metadata@v2
-      - name: Automerge
-        if: ${{ (steps.metadata.outputs.update-type == 'version-update:semver-minor') || (steps.metadata.outputs.update-type == 'version-update:semver-patch') }}
-        run: gh pr merge "$PR_URL" --auto --squash
-        env:
-          PR_URL: ${{ github.event.pull_request.html_url }}
-          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-  dependabot-approve:
-    name: Approve passing Dependabot patch/minor PRs
-    if: ${{ github.actor == 'dependabot[bot]' }}
-    needs: checks
-    runs-on: ubuntu-latest
-    steps:
-      - name: Dependabot metadata
-        id: metadata
-        uses: dependabot/fetch-metadata@v2
-      - name: Approve
-        if: ${{ (steps.metadata.outputs.update-type == 'version-update:semver-minor') || (steps.metadata.outputs.update-type == 'version-update:semver-patch') }}
-        run: gh pr review "$PR_URL" --approve
-        env:
-          PR_URL: ${{ github.event.pull_request.html_url }}
-          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}