Merge pull request #153 from Typeform/TU-35931/set_up_automerge_for_libs

robespmun · web-flow · commit bfd8cba47e72 · 2026-02-17T17:08:25.000+01:00
feat(TU-35931): enable automerge on mondays
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -1,28 +1,41 @@
 version: 2
 
+registries:
+  npm-github:
+    type: npm-registry
+    url: https://npm.pkg.github.com
+    token: ${{ secrets.GH_TOKEN }}
+  git-github:
+    type: git
+    url: https://github.com
+    username: x-access-token
+    password: '${{ secrets.GH_TOKEN }}'
+
 updates:
   - package-ecosystem: npm
-    registries:
-      - gh-packages
-    directory: '/'
     schedule:
       interval: weekly
-    open-pull-requests-limit: 99
-    versioning-strategy: increase
-    allow:
-      - dependency-name: '@typeform*'
-    commit-message:
-      prefix: 'chore'
-      include: 'scope'
-    labels:
-      - 'dependabot'
+      day: monday
     groups:
-      typeform:
+      dependencies:
         patterns:
-          - '@typeform*'
+          - "*"
+    directories:
+      - "/"
+    commit-message:
+      prefix: fix(dependabot)
+    registries:
+      - npm-github
+      - git-github
 
-registries:
-  gh-packages:
-    type: npm-registry
-    url: https://npm.pkg.github.com
-    token: ${{ secrets.GH_TOKEN }}
+  - package-ecosystem: github-actions
+    schedule:
+      interval: weekly
+      day: monday
+    groups:
+      dependencies:
+        patterns:
+          - "*"
+    directory: "/"
+    commit-message:
+      prefix: build(dependabot)
diff --git a/.github/workflows/dependabot-automerge.yml b/.github/workflows/dependabot-automerge.yml
@@ -0,0 +1,40 @@
+name: Dependabot auto-approve and auto-merge
+
+on:
+  pull_request_target:
+    types: [opened, synchronize, reopened]
+
+permissions:
+  pull-requests: write
+  contents: write
+
+jobs:
+  dependabot:
+    runs-on: [self-hosted, ci-universal]
+    if: github.actor == 'dependabot[bot]'
+
+    steps:
+      - name: Checkout Repo
+        uses: actions/checkout@v5
+        with:
+          fetch-depth: 1
+
+      - name: Install GitHub CLI
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y gh
+
+      - name: Authenticate gh
+        run: echo "${{ secrets.GITHUB_TOKEN }}" | gh auth login --with-token
+
+      - name: Approve dependabot PRs
+        run: gh pr review --approve "$PR_URL"
+        env:
+          PR_URL: ${{ github.event.pull_request.html_url }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Merge for dependabot PRs
+        run: gh pr merge --auto --squash "$PR_URL"
+        env:
+          PR_URL: ${{ github.event.pull_request.html_url }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
