Configure Renovate

[svc-secops]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 Renovate will begin keeping your dependencies up-to-date only once you merge or close this Pull Request.

---

Detected Package Files

• .circleci/config.yml (circleci)
• .github/workflows/node.js.yml (github-actions)
• package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Apply Apollo's centralized, default Renovate configuration
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Ignore node_modules, bower_components, vendor and various test/tests directories.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.
• Show all Merge Confidence badges for pull requests.
• Pin dependency versions for devDependencies and retain SemVer ranges for others.

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to .github/renovate.json5 in this branch. Renovate will update the Pull Request description the next time it runs.

---

What to Expect

With your current configuration, Renovate will create 19 Pull Requests:

chore(deps): update dependency ansi-regex [security]

• Branch name: renovate/npm-ansi-regex-vulnerability
• Merge into: main
• Upgrade ansi-regex to 4.1.1
• Upgrade ansi-regex to 5.0.1

chore(deps): update dependency decode-uri-component to 0.2.1 [security]

• Branch name: renovate/npm-decode-uri-component-vulnerability
• Merge into: main
• Upgrade decode-uri-component to 0.2.1

chore(deps): update dependency graphql to v16.8.1 [security]

• Branch name: renovate/npm-graphql-vulnerability
• Merge into: main
• Upgrade graphql to 16.8.1

chore(deps): pin dependencies

• Schedule: ["at any time"]
• Branch name: renovate/pin-dependencies
• Merge into: main
• Pin @types/chai to 4.2.19
• Pin @types/mocha to 8.2.2
• Pin @types/node to 18.0.6
• Pin chai to 4.3.4
• Pin mocha to 9.2.2
• Pin rimraf to 3.0.2
• Pin rollup to 2.77.0
• Pin rollup-plugin-sourcemaps to 0.6.3
• Pin source-map-support to 0.5.21
• Pin test-all-versions to 5.0.1
• Pin typescript to 4.7.4

chore(deps): update dependency @​types/mocha to ^8.2.2

• Schedule: ["at any time"]
• Branch name: renovate/mocha-8.x
• Merge into: main
• Upgrade @types/mocha to ^8.2.2

chore(deps): update secops orb to v2.0.7

• Schedule: ["at any time"]
• Branch name: renovate/circleci-dependencies-(non-major)
• Merge into: main
• Upgrade secops to 2.0.7

chore(deps): update dependency chai to ^4.4.1

• Schedule: ["at any time"]
• Branch name: renovate/chai-4.x
• Merge into: main
• Upgrade chai to ^4.4.1
• Upgrade @types/chai to ^4.3.16

chore(deps): update dependency rollup to ^2.77.0

• Schedule: ["at any time"]
• Branch name: renovate/rollup-2.x
• Merge into: main
• Upgrade rollup to ^2.77.0

chore(deps): update dependency typescript to ^4.7.4

• Schedule: ["at any time"]
• Branch name: renovate/typescript-4.x
• Merge into: main
• Upgrade typescript to ^4.7.4

chore(deps): update actions/checkout action to v4

• Schedule: ["at any time"]
• Branch name: renovate/actions-checkout-4.x
• Merge into: main
• Upgrade actions/checkout to v4

chore(deps): update actions/setup-node action to v4

• Schedule: ["at any time"]
• Branch name: renovate/actions-setup-node-4.x
• Merge into: main
• Upgrade actions/setup-node to v4

chore(deps): update dependency @​types/node to v20

• Schedule: ["at any time"]
• Branch name: renovate/node-20.x
• Merge into: main
• Upgrade @types/node to ^20.0.0

chore(deps): update dependency chai to v5

• Schedule: ["at any time"]
• Branch name: renovate/chai-5.x
• Merge into: main
• Upgrade chai to ^5.0.0

chore(deps): update dependency mocha to v10

• Schedule: ["at any time"]
• Branch name: renovate/mocha-10.x
• Merge into: main
• Upgrade mocha to ^10.0.0
• Upgrade @types/mocha to ^10.0.0

chore(deps): update dependency rimraf to v5

• Schedule: ["at any time"]
• Branch name: renovate/rimraf-5.x
• Merge into: main
• Upgrade rimraf to ^5.0.0

chore(deps): update dependency rollup to v4

• Schedule: ["at any time"]
• Branch name: renovate/rollup-4.x
• Merge into: main
• Upgrade rollup to ^4.0.0

chore(deps): update dependency test-all-versions to v6

• Schedule: ["at any time"]
• Branch name: renovate/test-all-versions-6.x
• Merge into: main
• Upgrade test-all-versions to ^6.0.0

chore(deps): update dependency typescript to v5

• Schedule: ["at any time"]
• Branch name: renovate/typescript-5.x
• Merge into: main
• Upgrade typescript to ^5.0.0

chore(deps): lock file maintenance

• Schedule: ["before 4am on monday"]
• Branch name: renovate/lock-file-maintenance
• Merge into: main
• Regenerate lock files to use latest dependency versions

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR has been generated by Renovate Bot.