Show HN: Renovate – The Kubernetes-Native Way(github.com)
34 pointsby JanLepsky6 hours ago6 comments
  • c0balt3 hours ago
    It is nice to see more work on renovate but your comparison, especially the points on filtering, license keys and discovery, seems misleading for at least GitLab.

    Both work with mend's renovate WITHOUT a license key, see also https://gitlab.com/renovate-bot/renovate-runner. As it is just a scheduled pipeline then you can also adjust frequency, timeouts and more.

    • jamietanna2 hours ago
      I think the confusion is also because it's a comparison of Community Self-Hosted (CE) vs the pure Open Source CLI - the latter is what works without license key

      I'll see if I can help with clarifying this in the table!

      (I'm a Renovate maintainer and employee at Mend)

  • rirze5 hours ago
    I'm struggling to see how this operator helps-- is there some scenario that I cannot imagine that others are dealing with where this operator is useful? Specifically, what problems does this solve?
    • baby_souffle5 hours ago
      Renovate lets you configure most things in each repos individual config file.

      I can only imagine a set of intersecting edge cases where operator pattern is the most logical solution…

      Edit: good answers here. https://old.reddit.com/r/kubernetes/comments/1r1u7um/renovat...

      • rirze5 hours ago
        So... helm without helm?
    • JanLepsky5 hours ago
      There's several benefits we had in mind when building this (after using self-hosted Renovate ourselves): k8s-native approach: It uses CRDs, so that Renovate configs are Kubernetes resources. You can manage them more easily/granular with Argo/Flux/kubectl as part of existing workflows instead of a Cronjob. Job isolation: The operator spawns individual jobs per repo instead of one run. If a repo is stuck it doesn't block everything else. Webhook support: repos get updated immediately, not just on the next cron cycle. Visibility: There's a light-weight, built-in UI showing repos, job status, and progress.

      There's more on the Github repo, we added a full list of features and benefits to the readme.

      Of course, in the end it comes down to individual preferences :) Not saying one way is better than the other. We just felt that for us, the operator-based approach would work better and we're happy if the project is benefitial for others as well!

      • bryanlarsen4 hours ago
        Can you step back further and explain what Renovate and its competitors like Mend actually do, and what kind of tasks people use them for?
        • esafak4 hours ago
          To help you automate dependency updates, similar to dependabot.

          https://www.mend.io/renovate/

          https://github.blog/news-insights/product-news/keep-all-your...

        • maverwa4 hours ago
          Mend is not a competitor, renovate is the software, mend is the company.

          They are tools that automatically check your repo for dependencies and create PRs when there are updates. It supports a wide range of package managers and other places dependencies may be specified.

          Dependabot is another solution which is more „GitHub-native“ maybe.

        • 4 hours ago
          undefined
        • JanLepsky4 hours ago
          In short, Renovate (by Mend) is a dependency manager for software projects. It watches your repository for outdated libraries, packages, and frameworks and opens Pull Requests to update them.
        • jamietanna2 hours ago
          See also: https://news.ycombinator.com/item?id=40011111

          (a blog post I wrote, prior to joining Mend and working as a Renovate maintainer)

  • Amol-9175 hours ago
    news.ycombinator.com/item?id=43677067
  • genie3io5 hours ago
    [dead]
  • Amol-9175 hours ago
    [flagged]
  • andix5 hours ago
    So that's an in-cluster supply chain attack enabler? :)