ci(repo): automerge patch based updates

Configure dependabot to auto merge patch based dependencies Auto merge patch based dependendabot updates, add auto approve step to pull request check workflow to auto approve dependabot based PR's. This requires; adding `dependabot-preview` bot to allow pushing to matching protected branches. [dependabot-preview settings](https://user-images.githubusercontent.com/605483/71324055-8caf7180-24da-11ea-94b5-d93f029b3e1a.png) [gh-34]
Attest · Mar 27, 2020 · 7f6dc42 · 7f6dc42
1 parent 8ffbfba
commit 7f6dc42
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 0 deletions.
diff --git a/.dependabot/config.yml b/.dependabot/config.yml
@@ -4,6 +4,10 @@ update_configs:
     directory: '/'
     update_schedule: 'weekly'
     version_requirement_updates: increase_versions
+    automerged_updates:
+      - match:
+          dependency_type: 'all'
+          update_type: 'semver:patch'
     default_labels:
       - '🤖 Dependency update'
     commit_message:

diff --git a/.github/workflows/pull-request-check.yml b/.github/workflows/pull-request-check.yml
@@ -45,3 +45,7 @@ jobs:
           path: ./annotations.json
           title: Annotation Test
           token: ${{ secrets.GITHUB_TOKEN }}
+      - uses: hmarr/auto-approve-action@v2.0.0
+        if: github.actor == 'dependabot[bot]' || github.actor == 'dependabot-preview[bot]'
+        with:
+          github-token: '${{ secrets.GITHUB_TOKEN }}'