mirror of
https://github.com/RWejlgaard/pez-infra.git
synced 2026-07-04 15:46:16 +00:00
* chore: add dependabot config Add Dependabot for the three supported ecosystems in this repo: GitHub Actions, Terraform (root + grafana/hetzner/pagerduty modules), and Docker (service compose files + dotfile Dockerfiles). Weekly schedule with per-ecosystem grouping to keep PR noise down. * ci: make terraform validation work on dependabot PRs Dependabot PRs run with no access to repository secrets and a read-only token, so the SOPS decrypt step (and the PR-comment step) fail. Give Dependabot a secret-free path: stub the secrets.yaml keys it reads and run init -backend=false + validate, skipping decrypt/plan/comment. Human PRs are unchanged and still get a full plan. |
||
|---|---|---|
| .. | ||
| _deploy-core.yml | ||
| deploy-on-merge.yml | ||
| deploy.yml | ||
| lint-ansible.yml | ||
| lint-docker-compose.yml | ||
| terraform.yml | ||
| validate-caddyfile.yml | ||
| validate-terraform.yml | ||