Skip to content

ci: consolidate on renovate, sha-pin checkout (DOT-44)#71

Merged
edwinhern merged 1 commit into
mainfrom
feature/dot-44-ci-cleanup
Jul 1, 2026
Merged

ci: consolidate on renovate, sha-pin checkout (DOT-44)#71
edwinhern merged 1 commit into
mainfrom
feature/dot-44-ci-cleanup

Conversation

@edwinhern

Copy link
Copy Markdown
Owner

Summary

CI/dependency hygiene from a DX audit. Two of the four originally-proposed changes were dropped after verifying the code (see below).

Changes

  • Consolidate dependency updates on Renovate. Renovate previously managed only mise; Dependabot separately handled github-actions. Added the github-actions manager to renovate.json (own group) and deleted .github/dependabot.yaml. One tool now covers both.
  • SHA-pin actions/checkout@v6 to df4cb1c (v6.0.3), matching the already-pinned mise-action and actionlint.

Deliberately NOT changed (verified, rejected)

  • chezmoi dry-run stays on macos-latest. All run_*.sh.tmpl are gated by {{ if eq .chezmoi.os "darwin" }}; on ubuntu-latest they render empty and skip, so the dry-run would validate nothing about the install pipeline.
  • No manual actions/cache. jdx/mise-action already caches by default (cache: true).

Verification

  • mise lint clean (treefmt + shellcheck, 0 files changed).
  • renovate.json valid JSON (jq empty).
  • actionlint runs in CI on this PR.

Fixes DOT-44

Renovate previously managed only mise tools while Dependabot handled
github-actions. Add the github-actions manager to Renovate with its own
group and remove .github/dependabot.yaml so one tool covers both.

Pin actions/checkout@v6 to df4cb1c (v6.0.3) to match the other SHA-pinned
actions in the workflow.

Fixes DOT-44
@chatgpt-codex-connector

Copy link
Copy Markdown

You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard.

@edwinhern edwinhern merged commit c980d07 into main Jul 1, 2026
6 checks passed
@edwinhern edwinhern deleted the feature/dot-44-ci-cleanup branch July 1, 2026 16:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant