RubyGems - bundler - Versions diffs - 2.0.2 - Mend

bundler 2.0.2

Potentially problematic release.

This version of bundler might be problematic. Click here for more details.

Files changed (303) hide show

checksums.yaml +7 -0
data/CHANGELOG.md +3111 -0
data/LICENSE.md +23 -0
data/README.md +63 -0
data/bundler.gemspec +65 -0
data/exe/bundle +31 -0
data/exe/bundle_ruby +60 -0
data/exe/bundler +4 -0
data/lib/bundler.rb +567 -0
data/lib/bundler/build_metadata.rb +53 -0
data/lib/bundler/capistrano.rb +22 -0
data/lib/bundler/cli.rb +792 -0
data/lib/bundler/cli/add.rb +35 -0
data/lib/bundler/cli/binstubs.rb +49 -0
data/lib/bundler/cli/cache.rb +36 -0
data/lib/bundler/cli/check.rb +38 -0
data/lib/bundler/cli/clean.rb +25 -0
data/lib/bundler/cli/common.rb +102 -0
data/lib/bundler/cli/config.rb +119 -0
data/lib/bundler/cli/console.rb +43 -0
data/lib/bundler/cli/doctor.rb +140 -0
data/lib/bundler/cli/exec.rb +105 -0
data/lib/bundler/cli/gem.rb +252 -0
data/lib/bundler/cli/info.rb +50 -0
data/lib/bundler/cli/init.rb +47 -0
data/lib/bundler/cli/inject.rb +60 -0
data/lib/bundler/cli/install.rb +218 -0
data/lib/bundler/cli/issue.rb +40 -0
data/lib/bundler/cli/list.rb +58 -0
data/lib/bundler/cli/lock.rb +63 -0
data/lib/bundler/cli/open.rb +26 -0
data/lib/bundler/cli/outdated.rb +266 -0
data/lib/bundler/cli/package.rb +49 -0
data/lib/bundler/cli/platform.rb +46 -0
data/lib/bundler/cli/plugin.rb +24 -0
data/lib/bundler/cli/pristine.rb +47 -0
data/lib/bundler/cli/remove.rb +18 -0
data/lib/bundler/cli/show.rb +75 -0
data/lib/bundler/cli/update.rb +91 -0
data/lib/bundler/cli/viz.rb +31 -0
data/lib/bundler/compact_index_client.rb +109 -0
data/lib/bundler/compact_index_client/cache.rb +118 -0
data/lib/bundler/compact_index_client/updater.rb +116 -0
data/lib/bundler/compatibility_guard.rb +13 -0
data/lib/bundler/constants.rb +7 -0
data/lib/bundler/current_ruby.rb +94 -0
data/lib/bundler/definition.rb +995 -0
data/lib/bundler/dep_proxy.rb +48 -0
data/lib/bundler/dependency.rb +139 -0
data/lib/bundler/deployment.rb +69 -0
data/lib/bundler/deprecate.rb +44 -0
data/lib/bundler/dsl.rb +615 -0
data/lib/bundler/endpoint_specification.rb +141 -0
data/lib/bundler/env.rb +149 -0
data/lib/bundler/environment_preserver.rb +59 -0
data/lib/bundler/errors.rb +158 -0
data/lib/bundler/feature_flag.rb +75 -0
data/lib/bundler/fetcher.rb +312 -0
data/lib/bundler/fetcher/base.rb +52 -0
data/lib/bundler/fetcher/compact_index.rb +126 -0
data/lib/bundler/fetcher/dependency.rb +82 -0
data/lib/bundler/fetcher/downloader.rb +84 -0
data/lib/bundler/fetcher/index.rb +52 -0
data/lib/bundler/friendly_errors.rb +131 -0
data/lib/bundler/gem_helper.rb +217 -0
data/lib/bundler/gem_helpers.rb +101 -0
data/lib/bundler/gem_remote_fetcher.rb +43 -0
data/lib/bundler/gem_tasks.rb +7 -0
data/lib/bundler/gem_version_promoter.rb +190 -0
data/lib/bundler/gemdeps.rb +29 -0
data/lib/bundler/graph.rb +152 -0
data/lib/bundler/index.rb +213 -0
data/lib/bundler/injector.rb +253 -0
data/lib/bundler/inline.rb +74 -0
data/lib/bundler/installer.rb +318 -0
data/lib/bundler/installer/gem_installer.rb +85 -0
data/lib/bundler/installer/parallel_installer.rb +229 -0
data/lib/bundler/installer/standalone.rb +53 -0
data/lib/bundler/lazy_specification.rb +123 -0
data/lib/bundler/lockfile_generator.rb +95 -0
data/lib/bundler/lockfile_parser.rb +256 -0
data/lib/bundler/match_platform.rb +24 -0
data/lib/bundler/mirror.rb +223 -0
data/lib/bundler/plugin.rb +294 -0
data/lib/bundler/plugin/api.rb +81 -0
data/lib/bundler/plugin/api/source.rb +306 -0
data/lib/bundler/plugin/dsl.rb +53 -0
data/lib/bundler/plugin/events.rb +61 -0
data/lib/bundler/plugin/index.rb +165 -0
data/lib/bundler/plugin/installer.rb +96 -0
data/lib/bundler/plugin/installer/git.rb +38 -0
data/lib/bundler/plugin/installer/rubygems.rb +27 -0
data/lib/bundler/plugin/source_list.rb +27 -0
data/lib/bundler/process_lock.rb +24 -0
data/lib/bundler/psyched_yaml.rb +37 -0
data/lib/bundler/remote_specification.rb +114 -0
data/lib/bundler/resolver.rb +373 -0
data/lib/bundler/resolver/spec_group.rb +106 -0
data/lib/bundler/retry.rb +66 -0
data/lib/bundler/ruby_dsl.rb +18 -0
data/lib/bundler/ruby_version.rb +152 -0
data/lib/bundler/rubygems_ext.rb +209 -0
data/lib/bundler/rubygems_gem_installer.rb +99 -0
data/lib/bundler/rubygems_integration.rb +915 -0
data/lib/bundler/runtime.rb +322 -0
data/lib/bundler/settings.rb +464 -0
data/lib/bundler/settings/validator.rb +102 -0
data/lib/bundler/setup.rb +28 -0
data/lib/bundler/shared_helpers.rb +386 -0
data/lib/bundler/similarity_detector.rb +63 -0
data/lib/bundler/source.rb +94 -0
data/lib/bundler/source/gemspec.rb +18 -0
data/lib/bundler/source/git.rb +329 -0
data/lib/bundler/source/git/git_proxy.rb +262 -0
data/lib/bundler/source/metadata.rb +62 -0
data/lib/bundler/source/path.rb +249 -0
data/lib/bundler/source/path/installer.rb +74 -0
data/lib/bundler/source/rubygems.rb +539 -0
data/lib/bundler/source/rubygems/remote.rb +69 -0
data/lib/bundler/source_list.rb +186 -0
data/lib/bundler/spec_set.rb +208 -0
data/lib/bundler/ssl_certs/.document +1 -0
data/lib/bundler/ssl_certs/certificate_manager.rb +66 -0
data/lib/bundler/ssl_certs/index.rubygems.org/GlobalSignRootCA.pem +21 -0
data/lib/bundler/ssl_certs/rubygems.global.ssl.fastly.net/DigiCertHighAssuranceEVRootCA.pem +23 -0
data/lib/bundler/ssl_certs/rubygems.org/AddTrustExternalCARoot.pem +25 -0
data/lib/bundler/stub_specification.rb +108 -0
data/lib/bundler/templates/.document +1 -0
data/lib/bundler/templates/Executable +29 -0
data/lib/bundler/templates/Executable.bundler +105 -0
data/lib/bundler/templates/Executable.standalone +14 -0
data/lib/bundler/templates/Gemfile +7 -0
data/lib/bundler/templates/gems.rb +8 -0
data/lib/bundler/templates/newgem/CODE_OF_CONDUCT.md.tt +74 -0
data/lib/bundler/templates/newgem/Gemfile.tt +4 -0
data/lib/bundler/templates/newgem/LICENSE.txt.tt +21 -0
data/lib/bundler/templates/newgem/README.md.tt +47 -0
data/lib/bundler/templates/newgem/Rakefile.tt +29 -0
data/lib/bundler/templates/newgem/bin/console.tt +14 -0
data/lib/bundler/templates/newgem/bin/setup.tt +8 -0
data/lib/bundler/templates/newgem/exe/newgem.tt +3 -0
data/lib/bundler/templates/newgem/ext/newgem/extconf.rb.tt +3 -0
data/lib/bundler/templates/newgem/ext/newgem/newgem.c.tt +9 -0
data/lib/bundler/templates/newgem/ext/newgem/newgem.h.tt +6 -0
data/lib/bundler/templates/newgem/gitignore.tt +20 -0
data/lib/bundler/templates/newgem/lib/newgem.rb.tt +13 -0
data/lib/bundler/templates/newgem/lib/newgem/version.rb.tt +7 -0
data/lib/bundler/templates/newgem/newgem.gemspec.tt +50 -0
data/lib/bundler/templates/newgem/rspec.tt +3 -0
data/lib/bundler/templates/newgem/spec/newgem_spec.rb.tt +9 -0
data/lib/bundler/templates/newgem/spec/spec_helper.rb.tt +14 -0
data/lib/bundler/templates/newgem/test/newgem_test.rb.tt +11 -0
data/lib/bundler/templates/newgem/test/test_helper.rb.tt +8 -0
data/lib/bundler/templates/newgem/travis.yml.tt +7 -0
data/lib/bundler/ui.rb +9 -0
data/lib/bundler/ui/rg_proxy.rb +19 -0
data/lib/bundler/ui/shell.rb +146 -0
data/lib/bundler/ui/silent.rb +69 -0
data/lib/bundler/uri_credentials_filter.rb +37 -0
data/lib/bundler/vendor/fileutils/lib/fileutils.rb +1741 -0
data/lib/bundler/vendor/fileutils/lib/fileutils/version.rb +5 -0
data/lib/bundler/vendor/molinillo/lib/molinillo.rb +12 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/compatibility.rb +26 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/delegates/resolution_state.rb +57 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/delegates/specification_provider.rb +81 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph.rb +223 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/action.rb +36 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/add_edge_no_circular.rb +66 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/add_vertex.rb +62 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/delete_edge.rb +63 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/detach_vertex_named.rb +61 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/log.rb +126 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/set_payload.rb +46 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/tag.rb +36 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/dependency_graph/vertex.rb +136 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/errors.rb +143 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/gem_metadata.rb +6 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/modules/specification_provider.rb +101 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/modules/ui.rb +67 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/resolution.rb +837 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/resolver.rb +46 -0
data/lib/bundler/vendor/molinillo/lib/molinillo/state.rb +58 -0
data/lib/bundler/vendor/net-http-persistent/lib/net/http/faster.rb +27 -0
data/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent.rb +1233 -0
data/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/ssl_reuse.rb +129 -0
data/lib/bundler/vendor/thor/lib/thor.rb +509 -0
data/lib/bundler/vendor/thor/lib/thor/actions.rb +331 -0
data/lib/bundler/vendor/thor/lib/thor/actions/create_file.rb +104 -0
data/lib/bundler/vendor/thor/lib/thor/actions/create_link.rb +60 -0
data/lib/bundler/vendor/thor/lib/thor/actions/directory.rb +118 -0
data/lib/bundler/vendor/thor/lib/thor/actions/empty_directory.rb +143 -0
data/lib/bundler/vendor/thor/lib/thor/actions/file_manipulation.rb +373 -0
data/lib/bundler/vendor/thor/lib/thor/actions/inject_into_file.rb +109 -0
data/lib/bundler/vendor/thor/lib/thor/base.rb +678 -0
data/lib/bundler/vendor/thor/lib/thor/command.rb +135 -0
data/lib/bundler/vendor/thor/lib/thor/core_ext/hash_with_indifferent_access.rb +97 -0
data/lib/bundler/vendor/thor/lib/thor/core_ext/io_binary_read.rb +12 -0
data/lib/bundler/vendor/thor/lib/thor/core_ext/ordered_hash.rb +129 -0
data/lib/bundler/vendor/thor/lib/thor/error.rb +114 -0
data/lib/bundler/vendor/thor/lib/thor/group.rb +281 -0
data/lib/bundler/vendor/thor/lib/thor/invocation.rb +177 -0
data/lib/bundler/vendor/thor/lib/thor/line_editor.rb +17 -0
data/lib/bundler/vendor/thor/lib/thor/line_editor/basic.rb +37 -0
data/lib/bundler/vendor/thor/lib/thor/line_editor/readline.rb +88 -0
data/lib/bundler/vendor/thor/lib/thor/parser.rb +4 -0
data/lib/bundler/vendor/thor/lib/thor/parser/argument.rb +70 -0
data/lib/bundler/vendor/thor/lib/thor/parser/arguments.rb +175 -0
data/lib/bundler/vendor/thor/lib/thor/parser/option.rb +146 -0
data/lib/bundler/vendor/thor/lib/thor/parser/options.rb +226 -0
data/lib/bundler/vendor/thor/lib/thor/rake_compat.rb +71 -0
data/lib/bundler/vendor/thor/lib/thor/runner.rb +324 -0
data/lib/bundler/vendor/thor/lib/thor/shell.rb +81 -0
data/lib/bundler/vendor/thor/lib/thor/shell/basic.rb +482 -0
data/lib/bundler/vendor/thor/lib/thor/shell/color.rb +149 -0
data/lib/bundler/vendor/thor/lib/thor/shell/html.rb +126 -0
data/lib/bundler/vendor/thor/lib/thor/util.rb +268 -0
data/lib/bundler/vendor/thor/lib/thor/version.rb +3 -0
data/lib/bundler/vendored_fileutils.rb +9 -0
data/lib/bundler/vendored_molinillo.rb +4 -0
data/lib/bundler/vendored_persistent.rb +52 -0
data/lib/bundler/vendored_thor.rb +8 -0
data/lib/bundler/version.rb +28 -0
data/lib/bundler/version_ranges.rb +76 -0
data/lib/bundler/vlad.rb +17 -0
data/lib/bundler/worker.rb +106 -0
data/lib/bundler/yaml_serializer.rb +90 -0
data/man/bundle-add.1 +58 -0
data/man/bundle-add.1.txt +52 -0
data/man/bundle-add.ronn +40 -0
data/man/bundle-binstubs.1 +40 -0
data/man/bundle-binstubs.1.txt +48 -0
data/man/bundle-binstubs.ronn +43 -0
data/man/bundle-check.1 +31 -0
data/man/bundle-check.1.txt +33 -0
data/man/bundle-check.ronn +26 -0
data/man/bundle-clean.1 +24 -0
data/man/bundle-clean.1.txt +26 -0
data/man/bundle-clean.ronn +18 -0
data/man/bundle-config.1 +497 -0
data/man/bundle-config.1.txt +529 -0
data/man/bundle-config.ronn +397 -0
data/man/bundle-doctor.1 +44 -0
data/man/bundle-doctor.1.txt +44 -0
data/man/bundle-doctor.ronn +33 -0
data/man/bundle-exec.1 +165 -0
data/man/bundle-exec.1.txt +178 -0
data/man/bundle-exec.ronn +152 -0
data/man/bundle-gem.1 +80 -0
data/man/bundle-gem.1.txt +91 -0
data/man/bundle-gem.ronn +78 -0
data/man/bundle-info.1 +20 -0
data/man/bundle-info.1.txt +21 -0
data/man/bundle-info.ronn +17 -0
data/man/bundle-init.1 +25 -0
data/man/bundle-init.1.txt +34 -0
data/man/bundle-init.ronn +29 -0
data/man/bundle-inject.1 +33 -0
data/man/bundle-inject.1.txt +32 -0
data/man/bundle-inject.ronn +22 -0
data/man/bundle-install.1 +308 -0
data/man/bundle-install.1.txt +396 -0
data/man/bundle-install.ronn +378 -0
data/man/bundle-list.1 +50 -0
data/man/bundle-list.1.txt +43 -0
data/man/bundle-list.ronn +33 -0
data/man/bundle-lock.1 +84 -0
data/man/bundle-lock.1.txt +93 -0
data/man/bundle-lock.ronn +94 -0
data/man/bundle-open.1 +32 -0
data/man/bundle-open.1.txt +29 -0
data/man/bundle-open.ronn +19 -0
data/man/bundle-outdated.1 +155 -0
data/man/bundle-outdated.1.txt +131 -0
data/man/bundle-outdated.ronn +111 -0
data/man/bundle-package.1 +55 -0
data/man/bundle-package.1.txt +79 -0
data/man/bundle-package.ronn +72 -0
data/man/bundle-platform.1 +61 -0
data/man/bundle-platform.1.txt +57 -0
data/man/bundle-platform.ronn +42 -0
data/man/bundle-pristine.1 +34 -0
data/man/bundle-pristine.1.txt +44 -0
data/man/bundle-pristine.ronn +34 -0
data/man/bundle-remove.1 +31 -0
data/man/bundle-remove.1.txt +34 -0
data/man/bundle-remove.ronn +23 -0
data/man/bundle-show.1 +23 -0
data/man/bundle-show.1.txt +27 -0
data/man/bundle-show.ronn +21 -0
data/man/bundle-update.1 +394 -0
data/man/bundle-update.1.txt +391 -0
data/man/bundle-update.ronn +350 -0
data/man/bundle-viz.1 +39 -0
data/man/bundle-viz.1.txt +39 -0
data/man/bundle-viz.ronn +30 -0
data/man/bundle.1 +136 -0
data/man/bundle.1.txt +116 -0
data/man/bundle.ronn +111 -0
data/man/gemfile.5 +689 -0
data/man/gemfile.5.ronn +521 -0
data/man/gemfile.5.txt +653 -0
data/man/index.txt +25 -0
metadata +463 -0

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+module Bundler
+  class ProcessLock
+    def self.lock(bundle_path = Bundler.bundle_path)
+      lock_file_path = File.join(bundle_path, "bundler.lock")
+      has_lock = false
+      File.open(lock_file_path, "w") do |f|
+        f.flock(File::LOCK_EX)
+        has_lock = true
+        yield
+        f.flock(File::LOCK_UN)
+      end
+    rescue Errno::EACCES, Errno::ENOLCK, *[SharedHelpers.const_get_safely(:ENOTSUP, Errno)].compact
+      # In the case the user does not have access to
+      # create the lock file or is using NFS where
+      # locks are not available we skip locking.
+      yield
+    ensure
+      FileUtils.rm_f(lock_file_path) if has_lock
+    end
+  end
+end

data/lib/bundler/psyched_yaml.rb ADDED

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+# Psych could be a gem, so try to ask for it
+begin
+  gem "psych"
+rescue LoadError
+end if defined?(gem)
+# Psych could be in the stdlib
+# but it's too late if Syck is already loaded
+begin
+  require "psych" unless defined?(Syck)
+rescue LoadError
+  # Apparently Psych wasn't available. Oh well.
+end
+# At least load the YAML stdlib, whatever that may be
+require "yaml" unless defined?(YAML.dump)
+module Bundler
+  # On encountering invalid YAML,
+  # Psych raises Psych::SyntaxError
+  if defined?(::Psych::SyntaxError)
+    YamlLibrarySyntaxError = ::Psych::SyntaxError
+  else # Syck raises ArgumentError
+    YamlLibrarySyntaxError = ::ArgumentError
+  end
+end
+require "bundler/deprecate"
+begin
+  Bundler::Deprecate.skip_during do
+    require "rubygems/safe_yaml"
+  end
+rescue LoadError
+  # it's OK if the file isn't there
+end

data/lib/bundler/remote_specification.rb ADDED

@@ -0,0 +1,114 @@
+# frozen_string_literal: true
+require "uri"
+module Bundler
+  # Represents a lazily loaded gem specification, where the full specification
+  # is on the source server in rubygems' "quick" index. The proxy object is to
+  # be seeded with what we're given from the source's abbreviated index - the
+  # full specification will only be fetched when necessary.
+  class RemoteSpecification
+    include MatchPlatform
+    include Comparable
+    attr_reader :name, :version, :platform
+    attr_writer :dependencies
+    attr_accessor :source, :remote
+    def initialize(name, version, platform, spec_fetcher)
+      @name         = name
+      @version      = Gem::Version.create version
+      @platform     = platform
+      @spec_fetcher = spec_fetcher
+      @dependencies = nil
+    end
+    # Needed before installs, since the arch matters then and quick
+    # specs don't bother to include the arch in the platform string
+    def fetch_platform
+      @platform = _remote_specification.platform
+    end
+    def full_name
+      if platform == Gem::Platform::RUBY || platform.nil?
+        "#{@name}-#{@version}"
+      else
+        "#{@name}-#{@version}-#{platform}"
+      end
+    end
+    # Compare this specification against another object. Using sort_obj
+    # is compatible with Gem::Specification and other Bundler or RubyGems
+    # objects. Otherwise, use the default Object comparison.
+    def <=>(other)
+      if other.respond_to?(:sort_obj)
+        sort_obj <=> other.sort_obj
+      else
+        super
+      end
+    end
+    # Because Rubyforge cannot be trusted to provide valid specifications
+    # once the remote gem is downloaded, the backend specification will
+    # be swapped out.
+    def __swap__(spec)
+      SharedHelpers.ensure_same_dependencies(self, dependencies, spec.dependencies)
+      @_remote_specification = spec
+    end
+    # Create a delegate used for sorting. This strategy is copied from
+    # RubyGems 2.23 and ensures that Bundler's specifications can be
+    # compared and sorted with RubyGems' own specifications.
+    #
+    # @see #<=>
+    # @see Gem::Specification#sort_obj
+    #
+    # @return [Array] an object you can use to compare and sort this
+    #   specification against other specifications
+    def sort_obj
+      [@name, @version, @platform == Gem::Platform::RUBY ? -1 : 1]
+    end
+    def to_s
+      "#<#{self.class} name=#{name} version=#{version} platform=#{platform}>"
+    end
+    def dependencies
+      @dependencies ||= begin
+        deps = method_missing(:dependencies)
+        # allow us to handle when the specs dependencies are an array of array of string
+        # see https://github.com/bundler/bundler/issues/5797
+        deps = deps.map {|d| d.is_a?(Gem::Dependency) ? d : Gem::Dependency.new(*d) }
+        deps
+      end
+    end
+    def git_version
+      return unless loaded_from && source.is_a?(Bundler::Source::Git)
+      " #{source.revision[0..6]}"
+    end
+  private
+    def to_ary
+      nil
+    end
+    def _remote_specification
+      @_remote_specification ||= @spec_fetcher.fetch_spec([@name, @version, @platform])
+      @_remote_specification || raise(GemspecError, "Gemspec data for #{full_name} was" \
+        " missing from the server! Try installing with `--full-index` as a workaround.")
+    end
+    def method_missing(method, *args, &blk)
+      _remote_specification.send(method, *args, &blk)
+    end
+    def respond_to?(method, include_all = false)
+      super || _remote_specification.respond_to?(method, include_all)
+    end
+    public :respond_to?
+  end
+end

data/lib/bundler/resolver.rb ADDED

@@ -0,0 +1,373 @@
+# frozen_string_literal: true
+module Bundler
+  class Resolver
+    require "bundler/vendored_molinillo"
+    require "bundler/resolver/spec_group"
+    # Figures out the best possible configuration of gems that satisfies
+    # the list of passed dependencies and any child dependencies without
+    # causing any gem activation errors.
+    #
+    # ==== Parameters
+    # *dependencies<Gem::Dependency>:: The list of dependencies to resolve
+    #
+    # ==== Returns
+    # <GemBundle>,nil:: If the list of dependencies can be resolved, a
+    #   collection of gemspecs is returned. Otherwise, nil is returned.
+    def self.resolve(requirements, index, source_requirements = {}, base = [], gem_version_promoter = GemVersionPromoter.new, additional_base_requirements = [], platforms = nil)
+      platforms = Set.new(platforms) if platforms
+      base = SpecSet.new(base) unless base.is_a?(SpecSet)
+      resolver = new(index, source_requirements, base, gem_version_promoter, additional_base_requirements, platforms)
+      result = resolver.start(requirements)
+      SpecSet.new(result)
+    end
+    def initialize(index, source_requirements, base, gem_version_promoter, additional_base_requirements, platforms)
+      @index = index
+      @source_requirements = source_requirements
+      @base = base
+      @resolver = Molinillo::Resolver.new(self, self)
+      @search_for = {}
+      @base_dg = Molinillo::DependencyGraph.new
+      @base.each do |ls|
+        dep = Dependency.new(ls.name, ls.version)
+        @base_dg.add_vertex(ls.name, DepProxy.new(dep, ls.platform), true)
+      end
+      additional_base_requirements.each {|d| @base_dg.add_vertex(d.name, d) }
+      @platforms = platforms
+      @gem_version_promoter = gem_version_promoter
+      @allow_bundler_dependency_conflicts = Bundler.feature_flag.allow_bundler_dependency_conflicts?
+      @lockfile_uses_separate_rubygems_sources = Bundler.feature_flag.lockfile_uses_separate_rubygems_sources?
+      @use_gvp = Bundler.feature_flag.use_gem_version_promoter_for_major_updates? || !@gem_version_promoter.major?
+    end
+    def start(requirements)
+      @gem_version_promoter.prerelease_specified = @prerelease_specified = {}
+      requirements.each {|dep| @prerelease_specified[dep.name] ||= dep.prerelease? }
+      verify_gemfile_dependencies_are_found!(requirements)
+      dg = @resolver.resolve(requirements, @base_dg)
+      dg.map(&:payload).
+        reject {|sg| sg.name.end_with?("\0") }.
+        map(&:to_specs).flatten
+    rescue Molinillo::VersionConflict => e
+      message = version_conflict_message(e)
+      raise VersionConflict.new(e.conflicts.keys.uniq, message)
+    rescue Molinillo::CircularDependencyError => e
+      names = e.dependencies.sort_by(&:name).map {|d| "gem '#{d.name}'" }
+      raise CyclicDependencyError, "Your bundle requires gems that depend" \
+        " on each other, creating an infinite loop. Please remove" \
+        " #{names.count > 1 ? "either " : ""}#{names.join(" or ")}" \
+        " and try again."
+    end
+    include Molinillo::UI
+    # Conveys debug information to the user.
+    #
+    # @param [Integer] depth the current depth of the resolution process.
+    # @return [void]
+    def debug(depth = 0)
+      return unless debug?
+      debug_info = yield
+      debug_info = debug_info.inspect unless debug_info.is_a?(String)
+      STDERR.puts debug_info.split("\n").map {|s| "  " * depth + s }
+    end
+    def debug?
+      return @debug_mode if defined?(@debug_mode)
+      @debug_mode = ENV["DEBUG_RESOLVER"] || ENV["DEBUG_RESOLVER_TREE"] || false
+    end
+    def before_resolution
+      Bundler.ui.info "Resolving dependencies...", debug?
+    end
+    def after_resolution
+      Bundler.ui.info ""
+    end
+    def indicate_progress
+      Bundler.ui.info ".", false unless debug?
+    end
+    include Molinillo::SpecificationProvider
+    def dependencies_for(specification)
+      specification.dependencies_for_activated_platforms
+    end
+    def search_for(dependency)
+      platform = dependency.__platform
+      dependency = dependency.dep unless dependency.is_a? Gem::Dependency
+      search = @search_for[dependency] ||= begin
+        index = index_for(dependency)
+        results = index.search(dependency, @base[dependency.name])
+        if vertex = @base_dg.vertex_named(dependency.name)
+          locked_requirement = vertex.payload.requirement
+        end
+        if !@prerelease_specified[dependency.name] && (!@use_gvp || locked_requirement.nil?)
+          # Move prereleases to the beginning of the list, so they're considered
+          # last during resolution.
+          pre, results = results.partition {|spec| spec.version.prerelease? }
+          results = pre + results
+        end
+        spec_groups = if results.any?
+          nested = []
+          results.each do |spec|
+            version, specs = nested.last
+            if version == spec.version
+              specs << spec
+            else
+              nested << [spec.version, [spec]]
+            end
+          end
+          nested.reduce([]) do |groups, (version, specs)|
+            next groups if locked_requirement && !locked_requirement.satisfied_by?(version)
+            spec_group = SpecGroup.new(specs)
+            spec_group.ignores_bundler_dependencies = @allow_bundler_dependency_conflicts
+            groups << spec_group
+          end
+        else
+          []
+        end
+        # GVP handles major itself, but it's still a bit risky to trust it with it
+        # until we get it settled with new behavior. For 2.x it can take over all cases.
+        if !@use_gvp
+          spec_groups
+        else
+          @gem_version_promoter.sort_versions(dependency, spec_groups)
+        end
+      end
+      search.select {|sg| sg.for?(platform) }.each {|sg| sg.activate_platform!(platform) }
+    end
+    def index_for(dependency)
+      source = @source_requirements[dependency.name]
+      if source
+        source.specs
+      elsif @lockfile_uses_separate_rubygems_sources
+        Index.build do |idx|
+          if dependency.all_sources
+            dependency.all_sources.each {|s| idx.add_source(s.specs) if s }
+          else
+            idx.add_source @source_requirements[:default].specs
+          end
+        end
+      else
+        @index
+      end
+    end
+    def name_for(dependency)
+      dependency.name
+    end
+    def name_for_explicit_dependency_source
+      Bundler.default_gemfile.basename.to_s
+    rescue
+      "Gemfile"
+    end
+    def name_for_locking_dependency_source
+      Bundler.default_lockfile.basename.to_s
+    rescue
+      "Gemfile.lock"
+    end
+    def requirement_satisfied_by?(requirement, activated, spec)
+      return false unless requirement.matches_spec?(spec) || spec.source.is_a?(Source::Gemspec)
+      spec.activate_platform!(requirement.__platform) if !@platforms || @platforms.include?(requirement.__platform)
+      true
+    end
+    def relevant_sources_for_vertex(vertex)
+      if vertex.root?
+        [@source_requirements[vertex.name]]
+      elsif @lockfile_uses_separate_rubygems_sources
+        vertex.recursive_predecessors.map do |v|
+          @source_requirements[v.name]
+        end << @source_requirements[:default]
+      end
+    end
+    def sort_dependencies(dependencies, activated, conflicts)
+      dependencies.sort_by do |dependency|
+        dependency.all_sources = relevant_sources_for_vertex(activated.vertex_named(dependency.name))
+        name = name_for(dependency)
+        vertex = activated.vertex_named(name)
+        [
+          @base_dg.vertex_named(name) ? 0 : 1,
+          vertex.payload ? 0 : 1,
+          vertex.root? ? 0 : 1,
+          amount_constrained(dependency),
+          conflicts[name] ? 0 : 1,
+          vertex.payload ? 0 : search_for(dependency).count,
+          self.class.platform_sort_key(dependency.__platform),
+        ]
+      end
+    end
+    # Sort platforms from most general to most specific
+    def self.sort_platforms(platforms)
+      platforms.sort_by do |platform|
+        platform_sort_key(platform)
+      end
+    end
+    def self.platform_sort_key(platform)
+      return ["", "", ""] if Gem::Platform::RUBY == platform
+      platform.to_a.map {|part| part || "" }
+    end
+  private
+    # returns an integer \in (-\infty, 0]
+    # a number closer to 0 means the dependency is less constraining
+    #
+    # dependencies w/ 0 or 1 possibilities (ignoring version requirements)
+    # are given very negative values, so they _always_ sort first,
+    # before dependencies that are unconstrained
+    def amount_constrained(dependency)
+      @amount_constrained ||= {}
+      @amount_constrained[dependency.name] ||= begin
+        if (base = @base[dependency.name]) && !base.empty?
+          dependency.requirement.satisfied_by?(base.first.version) ? 0 : 1
+        else
+          all = index_for(dependency).search(dependency.name).size
+          if all <= 1
+            all - 1_000_000
+          else
+            search = search_for(dependency)
+            search = @prerelease_specified[dependency.name] ? search.count : search.count {|s| !s.version.prerelease? }
+            search - all
+          end
+        end
+      end
+    end
+    def verify_gemfile_dependencies_are_found!(requirements)
+      requirements.each do |requirement|
+        name = requirement.name
+        next if name == "bundler"
+        next unless search_for(requirement).empty?
+        cache_message = begin
+                            " or in gems cached in #{Bundler.settings.app_cache_path}" if Bundler.app_cache.exist?
+                          rescue GemfileNotFound
+                            nil
+                          end
+        if (base = @base[name]) && !base.empty?
+          version = base.first.version
+          message = "You have requested:\n" \
+            "  #{name} #{requirement.requirement}\n\n" \
+            "The bundle currently has #{name} locked at #{version}.\n" \
+            "Try running `bundle update #{name}`\n\n" \
+            "If you are updating multiple gems in your Gemfile at once,\n" \
+            "try passing them all to `bundle update`"
+        elsif source = @source_requirements[name]
+          specs = source.specs[name]
+          versions_with_platforms = specs.map {|s| [s.version, s.platform] }
+          message = String.new("Could not find gem '#{SharedHelpers.pretty_dependency(requirement)}' in #{source}#{cache_message}.\n")
+          message << if versions_with_platforms.any?
+                       "The source contains '#{name}' at: #{formatted_versions_with_platforms(versions_with_platforms)}"
+                     else
+                       "The source does not contain any versions of '#{name}'"
+                     end
+        else
+          message = "Could not find gem '#{requirement}' in any of the gem sources " \
+            "listed in your Gemfile#{cache_message}."
+        end
+        raise GemNotFound, message
+      end
+    end
+    def formatted_versions_with_platforms(versions_with_platforms)
+      version_platform_strs = versions_with_platforms.map do |vwp|
+        version = vwp.first
+        platform = vwp.last
+        version_platform_str = String.new(version.to_s)
+        version_platform_str << " #{platform}" unless platform.nil? || platform == Gem::Platform::RUBY
+        version_platform_str
+      end
+      version_platform_strs.join(", ")
+    end
+    def version_conflict_message(e)
+      e.message_with_trees(
+        :solver_name => "Bundler",
+        :possibility_type => "gem",
+        :reduce_trees => lambda do |trees|
+          # called first, because we want to reduce the amount of work required to find maximal empty sets
+          trees = trees.uniq {|t| t.flatten.map {|dep| [dep.name, dep.requirement] } }
+          # bail out if tree size is too big for Array#combination to make any sense
+          return trees if trees.size > 15
+          maximal = 1.upto(trees.size).map do |size|
+            trees.map(&:last).flatten(1).combination(size).to_a
+          end.flatten(1).select do |deps|
+            Bundler::VersionRanges.empty?(*Bundler::VersionRanges.for_many(deps.map(&:requirement)))
+          end.min_by(&:size)
+          trees.reject! {|t| !maximal.include?(t.last) } if maximal
+          trees = trees.sort_by {|t| t.flatten.map(&:to_s) }
+          trees.uniq! {|t| t.flatten.map {|dep| [dep.name, dep.requirement] } }
+          trees.sort_by {|t| t.reverse.map(&:name) }
+        end,
+        :printable_requirement => lambda {|req| SharedHelpers.pretty_dependency(req) },
+        :additional_message_for_conflict => lambda do |o, name, conflict|
+          if name == "bundler"
+            o << %(\n  Current Bundler version:\n    bundler (#{Bundler::VERSION}))
+            other_bundler_required = !conflict.requirement.requirement.satisfied_by?(Gem::Version.new Bundler::VERSION)
+          end
+          if name == "bundler" && other_bundler_required
+            o << "\n"
+            o << "This Gemfile requires a different version of Bundler.\n"
+            o << "Perhaps you need to update Bundler by running `gem install bundler`?\n"
+          end
+          if conflict.locked_requirement
+            o << "\n"
+            o << %(Running `bundle update` will rebuild your snapshot from scratch, using only\n)
+            o << %(the gems in your Gemfile, which may resolve the conflict.\n)
+          elsif !conflict.existing
+            o << "\n"
+            relevant_sources = if conflict.requirement.source
+              [conflict.requirement.source]
+            elsif conflict.requirement.all_sources
+              conflict.requirement.all_sources
+            elsif @lockfile_uses_separate_rubygems_sources
+              # every conflict should have an explicit group of sources when we
+              # enforce strict pinning
+              raise "no source set for #{conflict}"
+            else
+              []
+            end.compact.map(&:to_s).uniq.sort
+            o << "Could not find gem '#{SharedHelpers.pretty_dependency(conflict.requirement)}'"
+            if conflict.requirement_trees.first.size > 1
+              o << ", which is required by "
+              o << "gem '#{SharedHelpers.pretty_dependency(conflict.requirement_trees.first[-2])}',"
+            end
+            o << " "
+            o << if relevant_sources.empty?
+                   "in any of the sources.\n"
+                 else
+                   "in any of the relevant sources:\n  #{relevant_sources * "\n  "}\n"
+                 end
+          end
+        end,
+        :version_for_spec => lambda {|spec| spec.version }
+      )
+    end
+  end
+end