attempt add adding renovate

.github/workflows/renovate.yml

@@ -1,15 +0,0 @@
-name: Renovate
-on:
-  workflow_dispatch:
-  schedule:
-    - cron: '0 */6 * * *'
-jobs:
-  renovate:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-      - name: Self-hosted Renovate
-        uses: renovatebot/github-action@v40.2.2
-        with:
-          token: ${{ secrets.RENOVATE_TOKEN }}

.gitignore

@@ -1,4 +1,3 @@
 /secret.*.yaml
 /data/
-/.envrc
-*.DS_Store
+*.DS_Store

renovate.json5

@@ -1,26 +1,50 @@
+// .github/renovate.json5 (or renovate.json)
 {
   "$schema": "https://docs.renovatebot.com/renovate-schema.json",
-  "extends": [
-    "config:base"
-  ],
+  "autodiscover": false,
   "packageRules": [
     {
       "matchDatasources": ["docker"],
-      "pinDigests": true
-    }
+      "extractVersion": "^(?<version>.*)$",
+      "versioning": "semver",
+      "groupName": "All Docker Images"
+      "pinDigests": true,
+    },
   ],
-  "helm-values": {
-    "fileMatch": ["^charts/.*/values\\.yaml$"]
+  "helm": {
+    "fileMatch": ["charts/**/values.yaml"],
+    // You generally don't need to list public registries here.
+    // Only add specific entries for *private* registries that require explicit authentication.
+    // Renovate is smart enough to infer common public ones.
+    "registryUrls": {
+      // "my.private.registry.com": "https://my.private.registry.com/v2/" // Example for a private registry
+    }
   },
   "regexManagers": [
     {
-      "fileMatch": ["^charts/.*/values\\.yaml$"],
+      "fileMatch": ["(^|/)charts/.*values\\.yaml$"],
       "matchStrings": [
-        "repository:\s*'(?<depName>.*?)'\n\s*tag:\s*'(?<currentValue>.*?)'",
-        "repository:\s*\"(?<depName>.*?)\"\n\s*tag:\s*\"(?<currentValue>.*?)\"",
-        "repository:\s*(?<depName>.*?)\n\s*tag:\s*(?<currentValue>.*)"
+        // Primary image:
+        // This regex tries to capture the full image name, including the registry if specified.
+        // It's designed to be flexible.
+        "repository:\\s*(?<depName>.*?)\\n\\s*tag:\\s*(?<currentValue>.*?)\\n",
+
+        // Nested images (e.g., piper.image, whisper.image):
+        // This regex accounts for a preceding key and potential 'image:' sub-key.
+        "^(?!\\s*#)[^\\s]*?:(?:\\n\\s*image:)?\\n\\s*repository:\\s*(?<depName>.*?)\\n\\s*tag:\\s*(?<currentValue>.*?)\\n"
       ],
-      "datasourceTemplate": "docker"
+      "datasourceTemplate": "docker",
+      // Important: Add a "depNameTemplate" to ensure capture group 1 (depName) is used
+      // which should contain the full path including registry
+      "depNameTemplate": "{{depName}}"
     }
-  ]
-}
+  ],
+  // ... rest of your configuration
+  "ignorePaths": ["**/node_modules/**", "**/vendor/**"],
+  "timezone": "Europe/Oslo",
+  "schedule": ["at any time"],
+  "commitMessageTopic": "{{depName}} Docker image",
+  "prConcurrentLimit": 5,
+  "dependencyDashboard": true,
+  "dependencyDashboardAutoclose": true
+}