Configure Renovate

[renovate]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

---

Detected Package Files

• package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Separate major versions of dependencies into individual branches/PRs
• Do not separate patch and minor upgrades into separate PRs for the same dependency
• Upgrade to unstable versions only if the existing version is unstable
• Raise PRs immediately (after branch is created)
• If semantic commits detected, use semantic commit type fix for dependencies and chore for all others
• Keep existing branches updated even when not scheduled
• Disable automerging feature - wait for humans to merge all PRs
• Ignore node_modules, bower_components, vendor and various test/tests directories
• Update existing lock files only when package.json is modified
• Autodetect whether to pin dependencies or maintain ranges
• Rate limit PR creation to a maximum of two per hour
• Limit to maximum 20 open PRs at any time
• Group known monorepo packages together
• Use curated list of recommended non-monorepo package groupings

🔡 Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Pull Requests in the "What to Expect" section below will be updated the next time Renovate runs.

---

You have configured Renovate to use branch master as base branch.

What to Expect

With your current configuration, Renovate will create 27 Pull Requests:

Pin dependencies

• Schedule: ["at any time"]
• Branch name: renovate/pin-dependencies
• Merge into: master
• Pin bcrypt to 3.0.0
• Pin bluebird to 3.5.1
• Pin body-parser to 1.18.3
• Pin celebrate to 8.0.1
• Pin cookie-parser to 1.4.3
• Pin cors to 2.8.4
• Pin cross-env to 3.2.4
• Pin debug to 3.1.0
• Pin dotenv to 6.0.0
• Pin expect.js to 0.3.1
• Pin express to 4.16.3
• Pin express-jwt to 5.3.1
• Pin helmet to 3.13.0
• Pin joi-phone-number to 2.0.11
• Pin jsonwebtoken to 8.3.0
• Pin mailgun.js to 2.0.1
• Pin mocha to 3.5.3
• Pin mysql to 2.16.0
• Pin pg to 6.4.2
• Pin pug to 2.0.3
• Pin sequelize-cli to 3.2.0
• Pin supertest to 2.0.1

Update dependency bcrypt to v3.0.8

• Schedule: ["at any time"]
• Branch name: renovate/bcrypt-3.x
• Merge into: master
• Upgrade bcrypt to 3.0.8

Update dependency bluebird to v3.7.2

• Schedule: ["at any time"]
• Branch name: renovate/bluebird-3.x
• Merge into: master
• Upgrade bluebird to 3.7.2

Update dependency body-parser to v1.19.0

• Schedule: ["at any time"]
• Branch name: renovate/body-parser-1.x
• Merge into: master
• Upgrade body-parser to 1.19.0

Update dependency celebrate to v8.0.2

• Schedule: ["at any time"]
• Branch name: renovate/celebrate-8.x
• Merge into: master
• Upgrade celebrate to 8.0.2

Update dependency cookie-parser to v1.4.5

• Schedule: ["at any time"]
• Branch name: renovate/cookie-parser-1.x
• Merge into: master
• Upgrade cookie-parser to 1.4.5

Update dependency cors to v2.8.5

• Schedule: ["at any time"]
• Branch name: renovate/cors-2.x
• Merge into: master
• Upgrade cors to 2.8.5

Update dependency debug to v3.2.6

• Schedule: ["at any time"]
• Branch name: renovate/debug-3.x
• Merge into: master
• Upgrade debug to 3.2.6

Update dependency dotenv to v6.2.0

• Schedule: ["at any time"]
• Branch name: renovate/dotenv-6.x
• Merge into: master
• Upgrade dotenv to 6.2.0

Update dependency express to v4.17.1

• Schedule: ["at any time"]
• Branch name: renovate/express-4.x
• Merge into: master
• Upgrade express to 4.17.1

Update dependency helmet to v3.21.3

• Schedule: ["at any time"]
• Branch name: renovate/helmet-3.x
• Merge into: master
• Upgrade helmet to 3.21.3

Update dependency joi-phone-number to v2.1.1

• Schedule: ["at any time"]
• Branch name: renovate/joi-phone-number-2.x
• Merge into: master
• Upgrade joi-phone-number to 2.1.1

Update dependency jsonwebtoken to v8.5.1

• Schedule: ["at any time"]
• Branch name: renovate/jsonwebtoken-8.x
• Merge into: master
• Upgrade jsonwebtoken to 8.5.1

Update dependency morgan to v1.9.1 [SECURITY]

• Branch name: renovate/npm-morgan-vulnerability
• Merge into: master
• Upgrade morgan to 1.9.1

Update dependency mysql to v2.18.1

• Schedule: ["at any time"]
• Branch name: renovate/mysql-2.x
• Merge into: master
• Upgrade mysql to 2.18.1

Update dependency pug to v2.0.4

• Schedule: ["at any time"]
• Branch name: renovate/pug-2.x
• Merge into: master
• Upgrade pug to 2.0.4

Update dependency bcrypt to v4

• Schedule: ["at any time"]
• Branch name: renovate/bcrypt-4.x
• Merge into: master
• Upgrade bcrypt to 4.0.1

Update dependency celebrate to v12

• Schedule: ["at any time"]
• Branch name: renovate/celebrate-12.x
• Merge into: master
• Upgrade celebrate to 12.0.1

Update dependency cross-env to v7

• Schedule: ["at any time"]
• Branch name: renovate/cross-env-7.x
• Merge into: master
• Upgrade cross-env to 7.0.2

Update dependency debug to v4

• Schedule: ["at any time"]
• Branch name: renovate/debug-4.x
• Merge into: master
• Upgrade debug to 4.1.1

Update dependency dotenv to v8

• Schedule: ["at any time"]
• Branch name: renovate/dotenv-8.x
• Merge into: master
• Upgrade dotenv to 8.2.0

Update dependency joi-phone-number to v4

• Schedule: ["at any time"]
• Branch name: renovate/joi-phone-number-4.x
• Merge into: master
• Upgrade joi-phone-number to 4.1.0

Update dependency mocha to v7

• Schedule: ["at any time"]
• Branch name: renovate/mocha-7.x
• Merge into: master
• Upgrade mocha to 7.1.0

Update dependency pg to v7

• Schedule: ["at any time"]
• Branch name: renovate/pg-7.x
• Merge into: master
• Upgrade pg to 7.18.2

Update dependency sequelize to v4 [SECURITY]

• Branch name: renovate/npm-sequelize-vulnerability
• Merge into: master
• Upgrade sequelize to ^4.0.0

Update dependency sequelize-cli to v5

• Schedule: ["at any time"]
• Branch name: renovate/sequelize-cli-5.x
• Merge into: master
• Upgrade sequelize-cli to 5.5.1

Update dependency supertest to v4

• Schedule: ["at any time"]
• Branch name: renovate/supertest-4.x
• Merge into: master
• Upgrade supertest to 4.0.2

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or spam the project. See docs for prhourlylimit for details.

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.