bundleup 0.8.0 → 1.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 41775d894ceef821d639e5a283e9880a453695e1638ae007b707fb3b9641043f
-  data.tar.gz: e3f6ea14d551dbc1e561d8573579894fa21579415576ef551bfc08ae95984d9f
+  metadata.gz: 34d18c6d9e39ccd56bb47b656745a19d022981a7a8c735a277eb2a782b106df8
+  data.tar.gz: 787cba0d2ec134b82de3dbae1819f609ebd55c98bfbdbc9fe58609eb35e861ab
 SHA512:
-  metadata.gz: bc8901a74431a2c75ef87b334d9aad4669ee0c62df4a0c41ec24017113f8a942f7ea582b80018100c77ce1301e4f266c283bbda88590ad50f76bf44cd9fb179d
-  data.tar.gz: 5a09c595275237a78cb914bb7bcde07d4d7ef54340579d1c207bee88a21070b239bdfc39cbba081af946f5491f22634252133064731531b0b6c4076e429bd0a7
+  metadata.gz: efcf4a177c7dc9b7e774b6f800f811abf6351d5e884858d9d4d2e626dddb28c2d09164485812032b61a8c15161ff809891b1a918c574ab63c46c57e96fe28108
+  data.tar.gz: 2bd482d805cf7f0e0c340d1c5e0c5bf0e12c018e5055533481aa882b792f9fa342ca70fbd57f6b51f13ec21b113bca9f98919b51f8867fb796f91492e35de14c

data/.github/workflows/push.yml

@@ -0,0 +1,14 @@
+name: Release Drafter
+
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  update_release_draft:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: release-drafter/release-drafter@v5
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

data/.gitignore

@@ -2,7 +2,6 @@
 /.yardoc
 /Gemfile.lock
 /_yardoc/
-/coverage/
 /doc/
 /pkg/
 /spec/reports/

data/.rubocop.yml

@@ -1,8 +1,10 @@
 require:
+  - rubocop-minitest
   - rubocop-performance
 
 AllCops:
-  TargetRubyVersion: 2.4
+  NewCops: enable
+  TargetRubyVersion: 2.5
   Exclude:
     - "*.gemspec"
     - "vendor/**/*"
@@ -40,8 +42,5 @@ Style/DoubleNegation:
 Style/FrozenStringLiteralComment:
   Enabled: false
 
-Style/HashSyntax:
-  EnforcedStyle: ruby19
-
 Style/StringLiterals:
   EnforcedStyle: double_quotes

data/.travis.yml

@@ -1,16 +1,14 @@
 ---
-sudo: false
 language: ruby
 cache: bundler
 branches:
   only:
-  - master
+  - main
 rvm:
-- 2.4.6
-- 2.5.5
-- 2.6.3
+- 2.5.8
+- 2.6.6
+- 2.7.1
 - ruby-head
 before_install:
-- gem update --system
-- gem install bundler -v 2.0.2 --conservative --no-document
+- gem install bundler -v 2.1.4 --conservative --no-document
 - gem install executable-hooks --conservative --no-document

data/LICENSE.txt

@@ -1,6 +1,6 @@
 The MIT License (MIT)
 
-Copyright (c) 2019 Matt Brictson
+Copyright (c) 2020 Matt Brictson
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md

@@ -1,22 +1,25 @@
 # bundleup
 
 [![Gem Version](https://badge.fury.io/rb/bundleup.svg)](http://badge.fury.io/rb/bundleup)
-[![Build Status](https://travis-ci.org/mattbrictson/bundleup.svg?branch=master)](https://travis-ci.org/mattbrictson/bundleup)
-[![Coverage Status](https://coveralls.io/repos/mattbrictson/bundleup/badge.svg?branch=master&service=github)](https://coveralls.io/github/mattbrictson/bundleup?branch=master)
+[![Build Status](https://travis-ci.org/mattbrictson/bundleup.svg?branch=main)](https://travis-ci.org/mattbrictson/bundleup)
 
 **Run `bundleup` on a Ruby project containing a Gemfile to see what gem dependencies need updating.** It is a friendlier command-line interface to [Bundler’s][bundler] `bundle update` and `bundle outdated`.
 
 You might like bundleup because it:
 
-* shows you exactly what gems will be updated lets you decide whether to proceed
-* uses color to call your attention to important gem updates (based on [Semver][])
-* lets you know when a version "pin" in your Gemfile is preventing an update
-* relies on standard Bundler output and does not patch code or use Bundler internals
+- shows you exactly what gems will be updated lets you decide whether to proceed
+- uses color to call your attention to important gem updates (based on [Semver][])
+- lets you know when a version "pin" in your Gemfile is preventing an update
+- relies on standard Bundler output and does not patch code or use Bundler internals
 
 Here it is in action:
 
-<img src="https://raw.github.com/mattbrictson/bundleup/master/sample.png" width="599" height="553" alt="Sample output">
+<img src="https://raw.github.com/mattbrictson/bundleup/main/sample.png" width="599" height="553" alt="Sample output">
 
+## Requirements
+
+- Bundler 1.16 or later
+- Ruby 2.5 or later
 
 ## Usage
 
@@ -43,29 +46,26 @@ bundleup --group=development
 
 ## How it works
 
-bundleup starts by making a backup copy of your Gemfile.lock. Next it runs `bundle show`, then `bundle update` and `bundle show` again to find what gems versions are being used before and after Bundler does its updating magic. (Since gems are actually being installed into your Ruby environment during these steps, the process may take a few moments to complete, especially if gems with native extensions need to be compiled.)
+bundleup starts by making a backup copy of your Gemfile.lock. Next it runs `bundle list`, then `bundle update` and `bundle list` again to find what gems versions are being used before and after Bundler does its updating magic. (Since gems are actually being installed into your Ruby environment during these steps, the process may take a few moments to complete, especially if gems with native extensions need to be compiled.)
 
-Finally, bundleup runs `bundle outdated` to see the gems that were *not* updated due to Gemfile restrictions.
+Finally, bundleup runs `bundle outdated` to see the gems that were _not_ updated due to Gemfile restrictions.
 
 After displaying its findings, bundleup gives you the option of keeping the changes. If you answer "no", bundleup will restore your original Gemfile.lock from its backup, leaving your project untouched.
 
-
 ## Roadmap
 
 bundleup is a very simple script at this point, but it could be more. Some possibilities:
 
-* Automatically commit the Gemfile.lock changes with a nice commit message
-* Integrate with bundler-audit to mark upgrades that have important security fixes
-* Display relevant CHANGELOG entries for major upgrades
-* Non-interactive mode
+- Automatically commit the Gemfile.lock changes with a nice commit message
+- Integrate with bundler-audit to mark upgrades that have important security fixes
+- Display relevant CHANGELOG entries for major upgrades
+- Non-interactive mode
 
 If you have other ideas, open an issue on GitHub!
 
-
 ## Contributing
 
 Code contributions are also welcome! Read [CONTRIBUTING.md](CONTRIBUTING.md) to get started.
 
-
 [bundler]: http://bundler.io
-[Semver]: http://semver.org
+[semver]: http://semver.org

data/Rakefile

@@ -21,8 +21,9 @@ task bump: %w[bump:bundler bump:ruby bump:year]
 
 namespace :bump do
   task :bundler do
-    version = Gemfile.bundler_version
+    version = Gem.latest_version_for("bundler").to_s
     replace_in_file ".travis.yml", /bundler -v (\S+)/ => version
+    replace_in_file "Gemfile.lock", /^BUNDLED WITH\n\s+([\d.]+)$/ => version
   end
 
   task :ruby do
@@ -31,6 +32,7 @@ namespace :bump do
 
     replace_in_file "bundleup.gemspec", /ruby_version = ">= (.*)"/ => lowest
     replace_in_file ".rubocop.yml", /TargetRubyVersion: (.*)/ => lowest_minor
+    replace_in_file "README.md", /Ruby (\d+\.\d+)/ => lowest_minor
 
     travis = YAML.safe_load(open(".travis.yml"))
     travis["rvm"] = RubyVersions.latest_supported_patches + ["ruby-head"]
@@ -58,20 +60,6 @@ def replace_in_file(path, replacements)
   IO.write(path, contents) if contents != orig_contents
 end
 
-module Gemfile
-  class << self
-    def bundler_version
-      lock_file[/BUNDLED WITH\n   (\S+)$/, 1]
-    end
-
-    private
-
-    def lock_file
-      @_lock_file ||= IO.read("Gemfile.lock")
-    end
-  end
-end
-
 module RubyVersions
   class << self
     def lowest_supported
@@ -95,7 +83,7 @@ module RubyVersions
 
     def versions
       @_versions ||= begin
-        yaml = open(
+        yaml = URI.open(
           "https://raw.githubusercontent.com/ruby/www.ruby-lang.org/master/_data/downloads.yml"
         )
         YAML.safe_load(yaml, symbolize_names: true)

data/bundleup.gemspec

@@ -11,6 +11,15 @@ Gem::Specification.new do |spec|
 
   spec.summary       = "A friendlier command-line interface for Bundler’s "\
                        "`update` and `outdated` commands."
+  spec.description   = "Use `bundleup` whenever you want to update the "\
+                       "locked Gemfile dependencies of a Ruby project. It "\
+                       "shows exactly what gems will be updated with color "\
+                       "output that calls attention to significant semver "\
+                       "changes. Bundleup will also let you know when a "\
+                       'version "pin" in your Gemfile is preventing an '\
+                       "update. Bundleup is a standalone tool that leverages "\
+                       "standard Bundler output and does not patch code or "\
+                       "use Bundler internals."
   spec.homepage      = "https://github.com/mattbrictson/bundleup"
   spec.license       = "MIT"
 
@@ -19,13 +28,13 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
 
-  spec.required_ruby_version = ">= 2.4.0"
+  spec.required_ruby_version = ">= 2.5.0"
 
   spec.add_development_dependency "bundler", "~> 2.0"
-  spec.add_development_dependency "coveralls", "~> 0.8.19"
   spec.add_development_dependency "minitest", "~> 5.0"
   spec.add_development_dependency "minitest-reporters", "~> 1.1"
-  spec.add_development_dependency "rake", "~> 12.0"
-  spec.add_development_dependency "rubocop", "0.71.0"
-  spec.add_development_dependency "rubocop-performance", "1.4.0"
+  spec.add_development_dependency "rake", "~> 13.0"
+  spec.add_development_dependency "rubocop", "0.86.0"
+  spec.add_development_dependency "rubocop-minitest", "0.9.0"
+  spec.add_development_dependency "rubocop-performance", "1.6.1"
 end

data/lib/bundleup.rb

@@ -3,5 +3,6 @@ require "bundleup/console"
 require "bundleup/bundle_commands"
 require "bundleup/gem_status"
 require "bundleup/gemfile"
+require "bundleup/outdated_parser"
 require "bundleup/upgrade"
 require "bundleup/cli"

data/lib/bundleup/bundle_commands.rb

@@ -8,8 +8,8 @@ module Bundleup
       run(%w[bundle outdated], true)
     end
 
-    def show
-      run(%w[bundle show])
+    def list
+      run(%w[bundle list])
     end
 
     def update(args=[])

data/lib/bundleup/outdated_parser.rb

@@ -0,0 +1,17 @@
+module Bundleup
+  module OutdatedParser
+    def self.parse(output)
+      expr = if output.match?(/^Gem\s+Current\s+Latest/)
+               # Bundler >= 2.2 format
+               /^(\S+)\s\s+\S+\s\s+(\d\S+)\s\s+(\S.*?)(?:$|\s\s)/
+             else
+               # Bundler < 2.2
+               /\* (\S+) \(newest (\S+),.* requested (.*)\)/
+             end
+
+      output.scan(expr).map do |name, newest, pin|
+        { name: name, newest: newest, pin: pin }
+      end
+    end
+  end
+end

data/lib/bundleup/upgrade.rb

@@ -40,15 +40,14 @@ module Bundleup
     end
 
     def find_pinned_versions
-      expr = /\* (\S+) \(newest (\S+),.* requested (.*)\)/
-      commands.outdated.scan(expr) do |name, newest, pin|
-        gem_status(name).newest_version = newest
-        gem_status(name).pin = pin
+      OutdatedParser.parse(commands.outdated).each do |gem|
+        gem_status(gem[:name]).newest_version = gem[:newest]
+        gem_status(gem[:name]).pin = gem[:pin]
       end
     end
 
     def find_versions(type)
-      commands.show.scan(/\* (\S+) \((\S+)(?: (\S+))?\)/) do |name, ver, sha|
+      commands.list.scan(/\* (\S+) \((\S+)(?: (\S+))?\)/) do |name, ver, sha|
         gem_status(name).public_send("#{type}_version=", sha || ver)
       end
     end

data/lib/bundleup/version.rb

@@ -1,3 +1,3 @@
 module Bundleup
-  VERSION = "0.8.0".freeze
+  VERSION = "1.2.0".freeze
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: bundleup
 version: !ruby/object:Gem::Version
-  version: 0.8.0
+  version: 1.2.0
 platform: ruby
 authors:
 - Matt Brictson
-autorequire: 
+autorequire:
 bindir: exe
 cert_chain: []
-date: 2019-06-23 00:00:00.000000000 Z
+date: 2020-07-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -25,90 +25,95 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '2.0'
 - !ruby/object:Gem::Dependency
-  name: coveralls
+  name: minitest
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.19
+        version: '5.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.19
+        version: '5.0'
 - !ruby/object:Gem::Dependency
-  name: minitest
+  name: minitest-reporters
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.0'
+        version: '1.1'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.0'
+        version: '1.1'
 - !ruby/object:Gem::Dependency
-  name: minitest-reporters
+  name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '13.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '13.0'
 - !ruby/object:Gem::Dependency
-  name: rake
+  name: rubocop
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: '12.0'
+        version: 0.86.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - '='
       - !ruby/object:Gem::Version
-        version: '12.0'
+        version: 0.86.0
 - !ruby/object:Gem::Dependency
-  name: rubocop
+  name: rubocop-minitest
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.71.0
+        version: 0.9.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.71.0
+        version: 0.9.0
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.4.0
+        version: 1.6.1
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.4.0
-description: 
+        version: 1.6.1
+description: Use `bundleup` whenever you want to update the locked Gemfile dependencies
+  of a Ruby project. It shows exactly what gems will be updated with color output
+  that calls attention to significant semver changes. Bundleup will also let you know
+  when a version "pin" in your Gemfile is preventing an update. Bundleup is a standalone
+  tool that leverages standard Bundler output and does not patch code or use Bundler
+  internals.
 email:
 - bundleup@mattbrictson.com
 executables:
@@ -116,8 +121,8 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
-- ".github/main.workflow"
 - ".github/release-drafter.yml"
+- ".github/workflows/push.yml"
 - ".gitignore"
 - ".rubocop.yml"
 - ".travis.yml"
@@ -138,6 +143,7 @@ files:
 - lib/bundleup/console.rb
 - lib/bundleup/gem_status.rb
 - lib/bundleup/gemfile.rb
+- lib/bundleup/outdated_parser.rb
 - lib/bundleup/upgrade.rb
 - lib/bundleup/version.rb
 - sample.png
@@ -145,7 +151,7 @@ homepage: https://github.com/mattbrictson/bundleup
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -153,15 +159,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.4.0
+      version: 2.5.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.4
-signing_key: 
+rubygems_version: 3.1.4
+signing_key:
 specification_version: 4
 summary: A friendlier command-line interface for Bundler’s `update` and `outdated`
   commands.

data/.github/main.workflow

@@ -1,9 +0,0 @@
-workflow "Push" {
-  on = "push"
-  resolves = ["Draft Release"]
-}
-
-action "Draft Release" {
-  uses = "toolmantim/release-drafter@v5.1.1"
-  secrets = ["GITHUB_TOKEN"]
-}