- Request for it on
#dev-infra-supportSlack channel
By default, the workflow will try to automerge PRs updating dependencies configured in default-dependabot-automerge-whitelist.conf.
You can override the settings for your repository by creating a .github/workflows/dependabot-automerge-whitelist.conf file on the default branch (master/main) of your repository. The file will be used instead of the default configuration.
Each line describes a dependency.
- The first column (mandatory) is a pattern that the dependency name from a PR has to contain.
- The second column (optional) contains maximum update type that will be automerged for a matching dependency. It has to be one of
major,minororpatch. When the second column is omitted, it defaults topatchwhich means that only patch updates will be automerged (if they pass other of your PR checks).
- Make sure the repository has access to the following secrets:
GH_PAT_FOR_AUTOMERGING,SLACK_WEBHOOK_FOR_AUTOMERGING - Enable
Allow auto-mergein the settings of the repository - Add the repository to target repositories in the
dependabot-automergeruleset - (Optional) Add
devOpsHazelcastuser to the.github/CODEOWNERSfile on the default branch (master/main). Otherwise, automerging will wait for approval from a code owner.
- Add the new branch ruleset
- Enforcement status to
Evaluateto make the workflow non-required for the PRs - Select target repositories you want to have dependabot automerging functionality
- Select default branch (
Include default branch) as a target branch - Uncheck everything in
Branch protectionsand selectRequire workflows to pass before mergingonly - Add the workflow: choose
dependabot-automergerepository first, then.github/workflows/dependabot-automerge.yamlworkflow from the default branch (master/main)