From 23b038067530154d2362021b360b09724865f43b Mon Sep 17 00:00:00 2001
From: Luke Tainton <luke@tainton.uk>
Date: Wed, 21 Jan 2026 20:56:03 +0000
Subject: [PATCH] feat: enable OSV vulnerability alerts and summary in Renovate
 configuration

---
 .gitea/workflows/ci.yml | 14 +++++++-------
 renovate.json           |  2 ++
 2 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/.gitea/workflows/ci.yml b/.gitea/workflows/ci.yml
index 884766c..cc83da3 100644
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -42,10 +42,10 @@ jobs:
       #     # command: snyk
       #     args: snyk code test --all-projects --exclude=.archive
 
-      - name: Snyk Vulnerability Scan
-        uses: snyk/actions/python@master
-        continue-on-error: true # Sometimes vulns aren't immediately fixable
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-        with:
-          args: test --all-projects
+      # - name: Snyk Vulnerability Scan
+      #   uses: snyk/actions/python@master
+      #   continue-on-error: true # Sometimes vulns aren't immediately fixable
+      #   env:
+      #     SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      #   with:
+      #     args: test --all-projects
diff --git a/renovate.json b/renovate.json
index 80e2489..c02107c 100644
--- a/renovate.json
+++ b/renovate.json
@@ -11,6 +11,8 @@
   "semanticCommits": "enabled",
   "semanticCommitScope": "deps",
   "semanticCommitType": "feat",
+  "osvVulnerabilityAlerts": true,
+  "dependencyDashboardOSVVulnerabilitySummary": "all",
   "vulnerabilityAlerts": {
     "commitMessagePrefix": "[SECURITY] ",
     "enabled": true,