renovatebot renovate · Discussions · GitHub

OSS-licensed orgs can request increased resources on Mend Renovate Community Cloud
Maintainer announcements justo-mend
[SECURITY]: Child processes spawned by Renovate incorrectly have full access to environment variables (since 2025-12-30)
Maintainer announcements jamietanna
Feedback wanted: monorepos, getting started + "week 1" problems, complexity, and what's on your wishlist?
Maintainer announcements jamietanna

Discussions

You must be logged in to vote

Force group names even for single dependency

TWiStErRob asked Nov 5, 2023 in Request Help · Answered

5
You must be logged in to vote

pixi manager: osvVulnerabilityAlerts silently skips every exact-pinned pypi-dependencies entry

rodmk asked Apr 17, 2026 in Request Help · Unanswered

0
You must be logged in to vote

Bug: postUpgradeTasks commits stale content when updateArtifacts() produces duplicate entries for the same file path

jensholdgaard asked Apr 17, 2026 in Request Help · Unanswered

0
You must be logged in to vote

Abandonment heuristic produces false positives for mature tools with server-side data (e.g., govulncheck)

AndriyKalashnykov started Apr 17, 2026 in Suggest an Idea

0
You must be logged in to vote

osvVulnerabilityAlerts does not bypass minimumReleaseAge for pending versions
minimumReleaseAge
ppaslan asked Apr 17, 2026 in Request Help · Unanswered

2
You must be logged in to vote

Support resolving Helmfile version templates referencing values.yaml

Sboti03 started Apr 17, 2026 in Suggest an Idea

0
You must be logged in to vote

Docker Hub newDigest from tag API bypasses architecture-specific digest resolution

dschmidt asked Feb 19, 2026 in Request Help · Unanswered

1
You must be logged in to vote

Increased resources for OSS organization ariakit
mend-app Used to flag discussions applying to the Mend Renovate App
diegohaz started Apr 10, 2026 in Mend Hosted Request

1
You must be logged in to vote

How to label PRs with the "category id"

ReenigneArcher asked Apr 15, 2026 in Request Help · Closed · Answered

4
You must be logged in to vote

CLI with --platform=local and gitlab presets

thaDude asked Apr 17, 2026 in Request Help · Unanswered

0
You must be logged in to vote

PDM lockfile maintenance should use --update-all instead of --update-eager

pineapple-pokopo asked Apr 17, 2026 in Request Help · Unanswered

0
You must be logged in to vote

Empty release notes in MRs for gitlabci include: component updates
auto:discussion-template "please follow our template"
chauncey-garrett asked Apr 16, 2026 in Request Help · Unanswered

1
You must be logged in to vote

Image 43.123.5-full missing

wurstbrot asked Apr 17, 2026 in Request Help · Unanswered

5
You must be logged in to vote

How to fix "hostRules: no authentication for registry.npmjs.org"?

amai2012 asked Apr 17, 2026 in Request Help · Answered

1
You must be logged in to vote

Renovate hangs on fetchVulnerabilities

marverix asked Apr 16, 2026 in Request Help · Closed · Unanswered

1
You must be logged in to vote

Getting Crowd Strike Vulnerablity Issue using Mend Renovate (renovate/renovate:latest) Build in Docker
auto:format-code Issue or Discussion needs logs or code formatting using markdown auto:specific-version Specify the exact version of Renovate used
manojkumark-create asked Apr 16, 2026 in Request Help · Unanswered

9
You must be logged in to vote

JSONata: Updating only digests fails

Simon-official asked Mar 8, 2026 in Request Help · Unanswered

1
You must be logged in to vote

postUpgradeTasks with executionMode: "branch" silently skipped when dependency exists in multiple project directories

JuJup asked Apr 17, 2026 in Request Help · Unanswered

0
You must be logged in to vote

config not fully respected

ReenigneArcher asked Apr 16, 2026 in Request Help · Unanswered

0
You must be logged in to vote

Can't find version matching tag, when tag exists

ReenigneArcher asked Apr 16, 2026 in Request Help · Closed · Answered

2
You must be logged in to vote

How to enable only a smaller subset dependencies: observing disabled dependencies despites package precedence rules ?
auto:reproduction A minimal reproduction is necessary to proceed auto:no-mentions Don't cause unnecessary notifications
gberche-orange asked Apr 3, 2026 in Request Help · Unanswered

9
You must be logged in to vote

Possible Bug / Needed Feature: minimumReleaseAge is ignored when updating an already open PR
minimumReleaseAge
smirowstanitzok asked Apr 15, 2026 in Request Help · Unanswered

4
You must be logged in to vote

Comparator in allowedVersions behaves unexpectedly

TheMrMilchmann asked Apr 16, 2026 in Request Help · Unanswered

1
You must be logged in to vote

Group and update dependency based on another dependency check

icewindow asked Apr 16, 2026 in Request Help · Unanswered

0
You must be logged in to vote

Regression in 43.113.0: security:only-security-updates preset autocloses all vulnerability PRs and stops creating new ones
auto:logs-packages Needs packageFiles with updates logs
mmserega asked Apr 15, 2026 in Request Help · Closed · Answered

8