diff --git a/.github/renovate.json5 b/.github/renovate.json5
index 8831d06..4166a89 100644
--- a/.github/renovate.json5
+++ b/.github/renovate.json5
@@ -1,75 +1,8 @@
 {
   $schema: "https://docs.renovatebot.com/renovate-schema.json",
-  extends: [ // default presets see https://docs.renovatebot.com/presets-default/
-    "config:recommended",
-    "helpers:pinGitHubActionDigestsToSemver",
-    "security:openssf-scorecard",
-    ":disableDependencyDashboard",
-    ":disableRateLimiting",
+  extends: [
+    "github>wetransform/renovate-config/self-hosted.json5",
+    "github>wetransform/renovate-config/gha.json5",
     "group:allNonMajor",
-    ":enableVulnerabilityAlertsWithLabel(security)",
   ],
-  labels: [
-    "renovate",
-    "renovate/{{updateType}}",
-  ],
-  ignorePaths: [
-    // Prevent running for terraform managed workflows
-    ".github/workflows/tf-*.yml", ".github/workflows/tf-*.yaml"
-  ],
-  packageRules: [
-    {
-      description: "Update renovatebot/github-action minor/patch updates on Sundays",
-      matchPackageNames: ["renovatebot/github-action"],
-      matchUpdateTypes: ["minor", "patch"],
-      schedule: ["* * * * 0"],
-    },
-    /* GitHub actions specific rule */
-    {
-      description: "Update to action dependencies use fix commits to trigger a release",
-      matchFileNames: ["action.yml"],
-      // semanticCommitType: "fix",
-      // extends: [":semanticCommitType(fix)"]
-      extends: [":semanticCommitTypeAll(fix)"]
-    },
-  ],
-  prBodyTemplate: "{{{table}}}{{{notes}}}{{{changelogs}}}",
-  customManagers: [
-    {
-      description: "Update semantic-release in GitHub Action workflows",
-      customType: "regex",
-      fileMatch: ["(^workflow-templates|\\.github/(actions|workflows))\\/.+\\.ya?ml$"],
-      matchStrings: [
-        "\
-semantic_version\\s*:\\s*(\"|')?(?<currentValue>.+)(\"|')?\
-(\\s+|\\s+.*)"
-      ],
-      datasourceTemplate: "npm",
-      depNameTemplate: "semantic-release"
-    },
-    {
-      description: "Any other file with dependencies",
-      customType: "regex",
-      fileMatch: [
-        "(^workflow-templates|\\.github/workflows)/[^/]+\\.ya?ml$",
-      ],
-      matchStrings: [
-        "\
-.*renovate:\
-\\sdatasource=(?<datasource>.*?)\
-\\sdepName=(?<depName>.*?)\
-(\\sversioning=(?<versioning>.*?))?\
-\n.*(version|Version|VERSION)\\s*(:=|=|:)\\s*\"?(?<currentValue>.*?)\
-(@(?<currentDigest>sha256:[a-f0-9]+))?\"?\
-(\\s+|\\s+.*)"
-      ],
-      versioningTemplate: "\
-{{#if versioning}}\
-{{{versioning}}}\
-{{else}}\
-semver-coerced\
-{{/if}}"
-    },
-  ],
-  separateMinorPatch: false,
 }