RubyGems - bundler - Versions diffs - 2.2.26 → 2.2.27 - Mend

bundler 2.2.26 → 2.2.27

Potentially problematic release.

This version of bundler might be problematic. Click here for more details.

Files changed (18) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +15 -0
data/lib/bundler/build_metadata.rb +2 -2
data/lib/bundler/cli/check.rb +1 -1
data/lib/bundler/definition.rb +6 -0
data/lib/bundler/installer.rb +0 -1
data/lib/bundler/plugin/installer.rb +2 -0
data/lib/bundler/plugin.rb +23 -6
data/lib/bundler/rubygems_integration.rb +2 -0
data/lib/bundler/settings.rb +9 -1
data/lib/bundler/source/rubygems.rb +8 -1
data/lib/bundler/source.rb +2 -0
data/lib/bundler/source_list.rb +4 -0
data/lib/bundler/spec_set.rb +1 -1
data/lib/bundler/templates/newgem/github/workflows/main.yml.tt +2 -1
data/lib/bundler/version.rb +1 -1
data/lib/bundler.rb +11 -17
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0f6b49cdd4d65c0b945ba09e5a1f49de540a778e19e0157ed2a376a6daf9511c
-  data.tar.gz: 52ade727aa83b8390bb5eeaceda718c1d194d00251ea535013c9da8e58b79094
+  metadata.gz: 5988e5fd0ca1324bf9c9b8e72a362895d08607a7abc9a50505a86bab3fd1edf8
+  data.tar.gz: 1b1d0176667a30f138c328ac6a44e303f468786b9449f027c7d4a93343724d85
 SHA512:
-  metadata.gz: 2e9f6084d7c8059af49ed11ccc1b0748babe41d40d6a363b7dad9091762c979091ad5388cc913545eb2853867ebe9ee7088c3ffb331e667eb57d04345799ab87
-  data.tar.gz: dab0d503f64a592ec7dcc8e91ff509f149cc65e20b83db73857ea3e750f10bec57301042db96639f3d77707db78fea0a1f29338a4a3c5721dad3b8db906fd71b
+  metadata.gz: 70567def38031cfe17536a800a8c49ec5733a1e3f4e4399fc675bd634dfa7b87f78293bd648b387bc77a0023f06f095d7899516125032a5f7c5de4698f204170
+  data.tar.gz: d4c4c08b25b691821035d712cac6f31553c2d73c9b6682d1eb3e355183453cd3980d008f736cc5042d3f7a647181e3ab0875463679192cfc16305232866f5413

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,18 @@
+# 2.2.27 (September 3, 2021)
+## Enhancements:
+  - Optimize some requires [#4887](https://github.com/rubygems/rubygems/pull/4887)
+  - Correctly redact credentials when using x-oauth-basic [#4866](https://github.com/rubygems/rubygems/pull/4866)
+## Bug fixes:
+  - Add missing key `branches:` to template for GitHub Actions [#4883](https://github.com/rubygems/rubygems/pull/4883)
+  - Fix `bundle plugin install` detection of already installed plugins [#4869](https://github.com/rubygems/rubygems/pull/4869)
+  - Make plugin installation idempotent [#4864](https://github.com/rubygems/rubygems/pull/4864)
+  - Fix `bundle check` showing duplicated gems when multiple platforms are locked [#4854](https://github.com/rubygems/rubygems/pull/4854)
+  - Fix `bundle check` incorrectly considering cached gems [#4853](https://github.com/rubygems/rubygems/pull/4853)
 # 2.2.26 (August 17, 2021)
 ## Enhancements:

data/lib/bundler/build_metadata.rb CHANGED Viewed

@@ -4,8 +4,8 @@ module Bundler
   # Represents metadata from when the Bundler gem was built.
   module BuildMetadata
     # begin ivars
-    @built_at = "2021-08-17".freeze
-    @git_commit_sha = "21fd333002".freeze
+    @built_at = "2021-09-03".freeze
+    @git_commit_sha = "b737e1c930".freeze
     @release = true
     # end ivars

data/lib/bundler/cli/check.rb CHANGED Viewed

@@ -15,7 +15,7 @@ module Bundler
       definition.validate_runtime!
       begin
-        definition.resolve_with_cache!
+        definition.resolve_only_locally!
         not_installed = definition.missing_specs
       rescue GemNotFound, VersionConflict
         Bundler.ui.error "Bundler can't satisfy your Gemfile's dependencies."

data/lib/bundler/definition.rb CHANGED Viewed

@@ -161,6 +161,12 @@ module Bundler
       @multisource_allowed
     end
+    def resolve_only_locally!
+      @remote = false
+      sources.local_only!
+      resolve
+    end
     def resolve_with_cache!
       sources.cached!
       resolve

data/lib/bundler/installer.rb CHANGED Viewed

@@ -1,6 +1,5 @@
 # frozen_string_literal: true
-require "rubygems/dependency_installer"
 require_relative "worker"
 require_relative "installer/parallel_installer"
 require_relative "installer/standalone"

data/lib/bundler/plugin/installer.rb CHANGED Viewed

@@ -81,6 +81,8 @@ module Bundler
         deps = names.map {|name| Dependency.new name, version }
+        Bundler.configure_gem_home_and_path(Plugin.root)
         definition = Definition.new(nil, deps, source_list, true)
         install_definition(definition)
       end

data/lib/bundler/plugin.rb CHANGED Viewed

@@ -13,6 +13,7 @@ module Bundler
     class MalformattedPlugin < PluginError; end
     class UndefinedCommandError < PluginError; end
     class UnknownSourceError < PluginError; end
+    class PluginInstallError < PluginError; end
     PLUGIN_FILE_NAME = "plugins.rb".freeze
@@ -38,12 +39,11 @@ module Bundler
       specs = Installer.new.install(names, options)
       save_plugins names, specs
-    rescue PluginError => e
+    rescue PluginError
       specs_to_delete = specs.select {|k, _v| names.include?(k) && !index.commands.values.include?(k) }
       specs_to_delete.each_value {|spec| Bundler.rm_rf(spec.full_gem_path) }
-      names_list = names.map {|name| "`#{name}`" }.join(", ")
-      Bundler.ui.error "Failed to install the following plugins: #{names_list}. The underlying error was: #{e.message}.\n #{e.backtrace.join("\n ")}"
+      raise
     end
     # Uninstalls plugins by the given names
@@ -245,10 +245,11 @@ module Bundler
     # @param [Array<String>] names of inferred source plugins that can be ignored
     def save_plugins(plugins, specs, optional_plugins = [])
       plugins.each do |name|
+        next if index.installed?(name)
         spec = specs[name]
-        validate_plugin! Pathname.new(spec.full_gem_path)
-        installed = register_plugin(name, spec, optional_plugins.include?(name))
-        Bundler.ui.info "Installed plugin #{name}" if installed
+        save_plugin(name, spec, optional_plugins.include?(name))
       end
     end
@@ -263,6 +264,22 @@ module Bundler
       raise MalformattedPlugin, "#{PLUGIN_FILE_NAME} was not found in the plugin." unless plugin_file.file?
     end
+    # Validates and registers a plugin.
+    #
+    # @param [String] name the name of the plugin
+    # @param [Specification] spec of installed plugin
+    # @param [Boolean] optional_plugin, removed if there is conflict with any
+    #                     other plugin (used for default source plugins)
+    #
+    # @raise [PluginInstallError] if validation or registration raises any error
+    def save_plugin(name, spec, optional_plugin = false)
+      validate_plugin! Pathname.new(spec.full_gem_path)
+      installed = register_plugin(name, spec, optional_plugin)
+      Bundler.ui.info "Installed plugin #{name}" if installed
+    rescue PluginError => e
+      raise PluginInstallError, "Failed to install plugin `#{spec.name}`, due to #{e.class} (#{e.message})"
+    end
     # Runs the plugins.rb file in an isolated namespace, records the plugin
     # actions it registers for and then passes the data to index to be stored.
     #

data/lib/bundler/rubygems_integration.rb CHANGED Viewed

@@ -34,10 +34,12 @@ module Bundler
     end
     def build_args
+      require "rubygems/command"
       Gem::Command.build_args
     end
     def build_args=(args)
+      require "rubygems/command"
       Gem::Command.build_args = args
     end

data/lib/bundler/settings.rb CHANGED Viewed

@@ -419,7 +419,15 @@ module Bundler
       elsif is_credential(key)
         "[REDACTED]"
       elsif is_userinfo(converted)
-        converted.gsub(/:.*$/, ":[REDACTED]")
+        username, pass = converted.split(":", 2)
+        if pass == "x-oauth-basic"
+          username = "[REDACTED]"
+        else
+          pass = "[REDACTED]"
+        end
+        [username, pass].join(":")
       else
         converted
       end

data/lib/bundler/source/rubygems.rb CHANGED Viewed

@@ -26,6 +26,13 @@ module Bundler
         Array(options["remotes"]).reverse_each {|r| add_remote(r) }
       end
+      def local_only!
+        @specs = nil
+        @allow_local = true
+        @allow_cached = false
+        @allow_remote = false
+      end
       def local!
         return if @allow_local
@@ -137,7 +144,7 @@ module Bundler
           end
         end
-        if (installed?(spec) || Plugin.installed?(spec.name)) && !force
+        if installed?(spec) && !force
           print_using_message "Using #{version_message(spec)}"
           return nil # no post-install message
         end

data/lib/bundler/source.rb CHANGED Viewed

@@ -36,6 +36,8 @@ module Bundler
     def local!; end
+    def local_only!; end
     def cached!; end
     def remote!; end

data/lib/bundler/source_list.rb CHANGED Viewed

@@ -136,6 +136,10 @@ module Bundler
       different_sources?(lock_sources, replacement_sources)
     end
+    def local_only!
+      all_sources.each(&:local_only!)
+    end
     def cached!
       all_sources.each(&:cached!)
     end

data/lib/bundler/spec_set.rb CHANGED Viewed

@@ -24,7 +24,7 @@ module Bundler
         specs_for_dep = spec_for_dependency(dep, match_current_platform)
         if specs_for_dep.any?
-          specs += specs_for_dep
+          match_current_platform ? specs += specs_for_dep : specs |= specs_for_dep
           specs_for_dep.first.dependencies.each do |d|
             next if d.type == :development

data/lib/bundler/templates/newgem/github/workflows/main.yml.tt CHANGED Viewed

@@ -2,7 +2,8 @@ name: Ruby
 on:
   push:
-    - <%= config[:git_default_branch] %>
+    branches:
+      - <%= config[:git_default_branch] %>
   pull_request:

data/lib/bundler/version.rb CHANGED Viewed

@@ -1,7 +1,7 @@
 # frozen_string_literal: false
 module Bundler
-  VERSION = "2.2.26".freeze
+  VERSION = "2.2.27".freeze
   def self.bundler_major_version
     @bundler_major_version ||= VERSION.split(".").first.to_i

data/lib/bundler.rb CHANGED Viewed

@@ -636,6 +636,12 @@ EOF
       @rubygems = nil
     end
+    def configure_gem_home_and_path(path = bundle_path)
+      configure_gem_path
+      configure_gem_home(path)
+      Bundler.rubygems.clear_paths
+    end
     private
     def eval_yaml_gemspec(path, contents)
@@ -656,29 +662,17 @@ EOF
       raise GemspecError, Dsl::DSLError.new(msg, path, e.backtrace, contents)
     end
-    def configure_gem_home_and_path
-      configure_gem_path
-      configure_gem_home
-      bundle_path
-    end
-    def configure_gem_path(env = ENV)
-      blank_home = env["GEM_HOME"].nil? || env["GEM_HOME"].empty?
-      if !use_system_gems?
+    def configure_gem_path
+      unless use_system_gems?
         # this needs to be empty string to cause
         # PathSupport.split_gem_path to only load up the
         # Bundler --path setting as the GEM_PATH.
-        env["GEM_PATH"] = ""
-      elsif blank_home
-        possibles = [Bundler.rubygems.gem_dir, Bundler.rubygems.gem_path]
-        paths = possibles.flatten.compact.uniq.reject(&:empty?)
-        env["GEM_PATH"] = paths.join(File::PATH_SEPARATOR)
+        Bundler::SharedHelpers.set_env "GEM_PATH", ""
       end
     end
-    def configure_gem_home
-      Bundler::SharedHelpers.set_env "GEM_HOME", File.expand_path(bundle_path, root)
-      Bundler.rubygems.clear_paths
+    def configure_gem_home(path)
+      Bundler::SharedHelpers.set_env "GEM_HOME", path.to_s
     end
     def tmp_home_path

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: bundler
 version: !ruby/object:Gem::Version
-  version: 2.2.26
+  version: 2.2.27
 platform: ruby
 authors:
 - André Arko
@@ -22,7 +22,7 @@ authors:
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2021-08-17 00:00:00.000000000 Z
+date: 2021-09-03 00:00:00.000000000 Z
 dependencies: []
 description: Bundler manages an application's dependencies through its entire life,
   across many machines, systematically and repeatably
@@ -354,7 +354,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: 2.5.2
 requirements: []
-rubygems_version: 3.2.26
+rubygems_version: 3.2.27
 signing_key:
 specification_version: 4
 summary: The best way to manage your application's dependencies