chore: Configure Renovate

[renovate]

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.

---

Detected Package Files

• microservices/gatewayApi/Dockerfile (dockerfile)
• microservices/gatewayApi/pyproject.toml (pep621)
• microservices/gatewayApi/pyproject.toml (poetry)

Configuration Summary

Based on the default config's presets, Renovate will:

• Start dependency updates only once this onboarding PR is merged
• Hopefully safe environment variables to allow users to configure.
• Show all Merge Confidence badges for pull requests.
• Enable Renovate Dependency Dashboard creation.
• Use semantic commit type fix for dependencies and chore for all others if semantic commits are in use.
• Group known monorepo packages together.
• Use curated list of recommended non-monorepo package groupings.
• Apply crowd-sourced package replacement rules.
• Apply crowd-sourced workarounds for known problems with packages.
• Disable Docker major updates.
• Group all minor and patch updates together.
• Group all @types packages together.
• Group various lint packages together.
• Group known monorepo packages together.
• Group React and corresponding @types packages together.
• Use curated list of recommended non-monorepo package groupings.
• Automerge digest upgrades if they pass tests.
• Update lint packages automatically if tests pass.
• Automerge patch and minor upgrades if they pass tests.
• Automerge patch upgrades if they pass tests.
• Raise a PR first before any automerging.
• Require all status checks to pass before any automerging.
• Update @types/* packages automatically if tests pass.
• Do not separate patch and minor upgrades into separate PRs for the same dependency.
• Raise PR when vulnerability alerts are detected.
• Run lock file maintenance (updates) on the first day of each month.
• Preserve (but continue to upgrade) any existing SemVer ranges.
• Rebase existing PRs any time the base branch has been updated.
• Use semantic prefixes for commit messages and PR titles.
• Use semantic commit scope deps for all commits and PR titles.
• Default preset for use with Renovate's repos

🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to renovate.json in this branch. Renovate will update the Pull Request description the next time it runs.

---

What to Expect

With your current configuration, Renovate will create 18 Pull Requests:

fix(deps): update dependency flask to v2.2.5 [security]

• Branch name: renovate/pypi-flask-vulnerability
• Merge into: dev
• Upgrade flask to 2.2.5

fix(deps): update dependency jinja2 to v3.1.5 [security]

• Branch name: renovate/pypi-jinja2-vulnerability
• Merge into: dev
• Upgrade Jinja2 to 3.1.5

fix(deps): update dependency authlib to v1 [security]

• Branch name: renovate/pypi-authlib-vulnerability
• Merge into: dev
• Upgrade authlib to 1.3.1

fix(deps): update dependency cryptography to v43 [security]

• Branch name: renovate/pypi-cryptography-vulnerability
• Merge into: dev
• Upgrade cryptography to 43.0.1

fix(deps): update dependency flask-cors to v4 [security]

• Branch name: renovate/pypi-flask-cors-vulnerability
• Merge into: dev
• Upgrade flask-cors to 4.0.2

fix(deps): update dependency gevent to v23 [security]

• Branch name: renovate/pypi-gevent-vulnerability
• Merge into: dev
• Upgrade gevent to 23.9.0

fix(deps): update dependency gunicorn to v22 [security]

• Branch name: renovate/pypi-gunicorn-vulnerability
• Merge into: dev
• Upgrade gunicorn to 22.0.0

fix(deps): update dependency werkzeug to v3 [security]

• Branch name: renovate/pypi-werkzeug-vulnerability
• Merge into: dev
• Upgrade werkzeug to 3.0.6

fix(deps): update all non-major dependencies

• Schedule: ["at any time"]
• Branch name: renovate/all-minor-patch
• Merge into: dev
• Upgrade PyYAML to 6.0.2
• Upgrade flask-compress to 1.17
• Upgrade ply to 3.11
• Upgrade pycodestyle to 2.12.1
• Upgrade pylint to 1.9.5
• Upgrade python to 3.13-alpine3.20
• Upgrade python-dotenv to ^0.21.0
• Upgrade python-keycloak to 0.29.1

fix(deps): update dependency boto3 to v1.36.21

• Schedule: ["at any time"]
• Branch name: renovate/boto
• Merge into: dev
• Upgrade boto3 to 1.36.21

chore(deps): update dependency autopep8 to v2

• Schedule: ["at any time"]
• Branch name: renovate/autopep8-2.x
• Merge into: dev
• Upgrade autopep8 to ^2.0.0

chore(deps): update dependency pylint to v3

• Schedule: ["at any time"]
• Branch name: renovate/pylint-3.x
• Merge into: dev
• Upgrade pylint to 3.3.4

chore(deps): update dependency pytest-cov to v6

• Schedule: ["at any time"]
• Branch name: renovate/major-pytest
• Merge into: dev
• Upgrade pytest-cov to ^6.0.0

chore(deps): update dependency python-dotenv to v1

• Schedule: ["at any time"]
• Branch name: renovate/python-dotenv-1.x
• Merge into: dev
• Upgrade python-dotenv to ^1.0.0

fix(deps): update dependency flask-swagger-ui to v4

• Schedule: ["at any time"]
• Branch name: renovate/flask-swagger-ui-4.x
• Merge into: dev
• Upgrade flask-swagger-ui to 4.11.1

fix(deps): update dependency munch to v4

• Schedule: ["at any time"]
• Branch name: renovate/munch-4.x
• Merge into: dev
• Upgrade munch to 4.0.0

fix(deps): update dependency python-keycloak to v5

• Schedule: ["at any time"]
• Branch name: renovate/python-keycloak-5.x
• Merge into: dev
• Upgrade python-keycloak to 5.3.1

chore(deps): lock file maintenance

• Schedule: ["* 0-3 1 * *"]
• Branch name: renovate/lock-file-maintenance
• Merge into: dev
• Regenerate lock files to use latest dependency versions

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or overwhelm the project. See docs for prhourlylimit for details.

---

❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.

---

This PR was generated by Mend Renovate. View the repository job log.