chore: Configure Renovate

[stackable-bot]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

---

Detected Package Files

• smoke/Dockerfile (dockerfile)
• .github/workflows/pr_actions-smoke-test.yml (github-actions)
• .github/workflows/pr_pre-commit.yml (github-actions)
• build-container-image/action.yml (github-actions)
• build-product-image/action.yml (github-actions)
• publish-image/action.yml (github-actions)
• publish-index-manifest/action.yml (github-actions)
• run-pre-commit/action.yml (github-actions)
• shard/action.yml (github-actions)
• .pre-commit-config.yaml (pre-commit)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Ignore node_modules, bower_components, vendor and various test/tests (except for nuget) directories.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.
• Pin Docker digests.
• Pin github-action digests.
• Enable Renovate configuration migration PRs when needed.
• Pin dependency versions for devDependencies.
• Enable Renovate Dependency Dashboard approval workflow.
• Remove limit for open PRs at any time.
• Removes rate limit for PR creation per hour.
• Convert pinned GitHub Action digests to SemVer.
• Run Renovate on following schedule:

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

---

What to Expect

With your current configuration, Renovate will create 5 Pull Requests:

chore(deps): pin alpine docker tag to beefdbd

• Branch name: renovate/pin-dependencies
• Merge into: main
• Upgrade alpine to sha256:beefdbd8a1da6d2915566fde36db9db0b524eb737fc57cd1367effd16dc0d06d

chore(deps): update anchore/sbom-action action to v0.17.4

• Branch name: renovate/all-dependencies-(patch-only)
• Merge into: main
• Upgrade anchore/sbom-action to 8d0a6505bf28ced3e85154d13dc6af83299e13f1

chore(deps): update actions/checkout action to v4.2.1

• Branch name: renovate/actions-checkout-4.x
• Merge into: main
• Upgrade actions/checkout to eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871

chore(deps): update docker/setup-buildx-action action to v3.7.1

• Branch name: renovate/docker-setup-buildx-action-3.x
• Merge into: main
• Upgrade docker/setup-buildx-action to c47758b77c9736f4b2ef4073d4d51994fabfe349

chore(deps): update sigstore/cosign-installer action to v3.7.0

• Branch name: renovate/sigstore-cosign-installer-3.x
• Merge into: main
• Upgrade sigstore/cosign-installer to dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da

---

Warning

Please correct - or verify that you can safely ignore - these dependency lookup failures before you merge this PR.

• Can't find version matching 2c9f875913ee60ca25ce70243dc24d5b6415598c for github-tags package pre-commit/pre-commit-hooks
• Can't find version matching 81e9f98ffd059efe8aa9c1b1a42e5cce61b640c6 for github-tags package adrienverge/yamllint
• Can't find version matching f295829140d25717bc79368d3f966fc1f67a824f for github-tags package igorshubovych/markdownlint-cli
• Can't find version matching 2491238703a5d3415bb2b7ff11388bf775372f29 for github-tags package koalaman/shellcheck-precommit
• Can't find version matching 62dc61a45fc95efe8c800af7a557ab0b9165d63b for github-tags package rhysd/actionlint

Files affected: .pre-commit-config.yaml

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR has been generated by Renovate Bot.