RubyGems - dependaboat - Versions diffs - 0.2.0 → 0.3.0 - Mend

dependaboat 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 14a88024f9d6d27f1365bfbfe5575ffaf2d8f0b4e84b04eccbe1ae70489da90b
-  data.tar.gz: a5b7200f42a6658de3e5903c6f408097588bd486b1c09452b2762936f34ca691
+  metadata.gz: da50e06178dc26bfe2e3daf101ec72d5ab0b73d88dbf2849d1a5613364201182
+  data.tar.gz: 10f7a9d28275547c050a68bcd921b3a88296892368c33b66679760e563d79e75
 SHA512:
-  metadata.gz: edaddab17c68a16780fd21f7a5318fea7c23d09aad516bcc5bd5b957249ce7d78e344ba9ad12d6bfff6e1d45e2340ed835a890c32e437927c1b380b2bd255e03
-  data.tar.gz: 416daac0c5e9d9e125649c193022c8f7eef01843f3d42013a408c8bb729bc5810ba75e6273ae8226948fee8dd4a35447454fc7aef6a3e96a4be67099964106fc
+  metadata.gz: 826279a76087a2615ff3d78708177840ba44473cb55a39e1eb0d55cf673649d556ee114cfe90918b5ca0995abd144a666497b7fde0109536b0dc4ff8e8f1a15c
+  data.tar.gz: '0157953412ab5f62a4c0abb125d9faecfb078926ddb991a6b5a97dbd643f77018a9a7e3f025897d42a8f031c9fe176905c38657c2b6491a2a3c7f2d793c4d39e'

data/lib/dependaboat/cli.rb CHANGED Viewed

@@ -50,17 +50,29 @@ module Dependaboat
       @alerts.each do |alert|
         process_alert(alert)
-        sleep 1 # Rate limiting
+        sleep 2 # Rate limiting
       end
     end
     def process_alert(alert)
-      return if issue_exists?(alert)
-      alert_details = extract_alert_details(alert)
-      create_github_issue(alert, alert_details)
-    rescue StandardError => e
-      logger.error "Error processing alert ##{alert.number}: #{e.message}"
+      retry_count = 0
+      begin
+        return if issue_exists?(alert)
+        alert_details = extract_alert_details(alert)
+        create_github_issue(alert, alert_details)
+      rescue GHX::RateLimitExceededError => e
+        logger.error "Rate limit exceeded!"
+        retry_count += 1
+        if retry_count < 4
+          logger.info "Slowing down and retrying..."
+          sleep 15 * retry_count
+          retry
+        else
+          logger.error "3 Retries failed. Moving on."
+        end
+      rescue => e
+        logger.error "Error processing alert ##{alert.number}: #{e.message}"
+      end
     end
     def issue_exists?(alert)
@@ -76,7 +88,11 @@ module Dependaboat
       alert_severity = alert.security_vulnerability.severity.capitalize
       alert_package_name = alert.security_vulnerability.package.name
       alert_package_ecosystem = alert.security_vulnerability.package.ecosystem
-      alert_created_at = alert.created_at.to_date rescue Date.today
+      alert_created_at = begin
+        alert.created_at.to_date
+      rescue
+        Date.today
+      end
       remediation_deadline = alert_created_at + config.dig("remediation_sla", alert_severity.downcase)
@@ -210,7 +226,9 @@ module Dependaboat
     end
     def process_templateable_string(s, map)
-      map.reduce(s.dup) { |str, (key, value)| str.gsub!("{{#{key}}}", value.to_s); str }
+      map.each_with_object(s.dup) { |(key, value), str|
+        str.gsub!("{{#{key}}}", value.to_s)
+      }
     end
     def dry_run?

data/lib/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Dependaboat
-  VERSION = "0.2.0"
+  VERSION = "0.3.0"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependaboat
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.0
 platform: ruby
 authors:
 - CompanyCam
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-05-21 00:00:00.000000000 Z
+date: 2024-05-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ghx