RubyGems - dependaboat - Versions diffs - 0.2.0 → 0.4.0 - Mend

dependaboat 0.2.0 → 0.4.0

Files changed (4) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 14a88024f9d6d27f1365bfbfe5575ffaf2d8f0b4e84b04eccbe1ae70489da90b
-  data.tar.gz: a5b7200f42a6658de3e5903c6f408097588bd486b1c09452b2762936f34ca691
+  metadata.gz: 9714b2d0607519e378ec45e1337ca20bd14ee3f97936c501c66f73858d9d8406
+  data.tar.gz: 9b89bc28d3a87b36b28baa72dd77e293e4bf3c131c3be9c472560c436cf638e3
 SHA512:
-  metadata.gz: edaddab17c68a16780fd21f7a5318fea7c23d09aad516bcc5bd5b957249ce7d78e344ba9ad12d6bfff6e1d45e2340ed835a890c32e437927c1b380b2bd255e03
-  data.tar.gz: 416daac0c5e9d9e125649c193022c8f7eef01843f3d42013a408c8bb729bc5810ba75e6273ae8226948fee8dd4a35447454fc7aef6a3e96a4be67099964106fc
+  metadata.gz: 97c404d2b04a913c3280f6c75c6a71be891bdef6472d53b5e843c29779ff4698f7403a313108c75531aa625c6411434d43cffed2af8518d6cc4b02052753c98f
+  data.tar.gz: 1bf78d048339cca37ddb97c3e0f77c3ff9b40e54cd8999bc9aa36d949e7e7548036d272c740febbd5dde5ff3cfd38f2adb02b998bb478110bbfccf423b841744

data/lib/dependaboat/cli.rb CHANGED Viewed

@@ -50,17 +50,29 @@ module Dependaboat
       @alerts.each do |alert|
         process_alert(alert)
-        sleep 1 # Rate limiting
+        sleep 2 # Rate limiting
       end
     end
     def process_alert(alert)
-      return if issue_exists?(alert)
-      alert_details = extract_alert_details(alert)
-      create_github_issue(alert, alert_details)
-    rescue StandardError => e
-      logger.error "Error processing alert ##{alert.number}: #{e.message}"
+      retry_count = 0
+      begin
+        return if issue_exists?(alert)
+        alert_details = extract_alert_details(alert)
+        create_github_issue(alert, alert_details)
+      rescue GHX::RateLimitExceededError => e
+        logger.error "Rate limit exceeded!"
+        retry_count += 1
+        if retry_count < 4
+          logger.info "Slowing down and retrying..."
+          sleep 15 * retry_count
+          retry
+        else
+          logger.error "3 Retries failed. Moving on."
+        end
+      rescue => e
+        logger.error "Error processing alert ##{alert.number}: #{e.message}"
+      end
     end
     def issue_exists?(alert)
@@ -76,7 +88,11 @@ module Dependaboat
       alert_severity = alert.security_vulnerability.severity.capitalize
       alert_package_name = alert.security_vulnerability.package.name
       alert_package_ecosystem = alert.security_vulnerability.package.ecosystem
-      alert_created_at = alert.created_at.to_date rescue Date.today
+      alert_created_at = begin
+        alert.created_at.to_date
+      rescue
+        Date.today
+      end
       remediation_deadline = alert_created_at + config.dig("remediation_sla", alert_severity.downcase)
@@ -198,6 +214,29 @@ module Dependaboat
           load_config(config_file)
         end
+        # Option to pass an access token to use for GitHub API requests
+        opts.on("-tACCESS_TOKEN", "--gh-token=ACCESS_TOKEN", "The GitHub access token to use for API requests. Used for _all_ GH requests.") do |access_token|
+          GHX.octokit_token = access_token
+          GHX.graphql_token = access_token
+          GHX.rest_client_token = access_token
+        end
+        # Option to pass an access token to use for Octokit API requests
+        opts.on("--octokit-token=ACCESS_TOKEN", "The GitHub access token to use for Octokit API requests") do |access_token|
+          GHX.octokit_token = access_token
+        end
+        # Option to pass an access token to use for GraphQL API requests
+        opts.on("--graphql-token=ACCESS_TOKEN", "The GitHub access token to use for GraphQL API requests") do |access_token|
+          GHX.graphql_token = access_token
+        end
+        # Option to pass an access token to use for REST client API requests
+        opts.on("--rest-client-token=ACCESS_TOKEN", "The GitHub access token to use for REST client API requests") do |access_token|
+          GHX.rest_client_token = access_token
+        end
+        # Dry run option
         opts.on("-d", "--dry-run", "Run in dry-run mode") do
           @dry_run = true
         end
@@ -210,7 +249,9 @@ module Dependaboat
     end
     def process_templateable_string(s, map)
-      map.reduce(s.dup) { |str, (key, value)| str.gsub!("{{#{key}}}", value.to_s); str }
+      map.each_with_object(s.dup) { |(key, value), str|
+        str.gsub!("{{#{key}}}", value.to_s)
+      }
     end
     def dry_run?

data/lib/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Dependaboat
-  VERSION = "0.2.0"
+  VERSION = "0.4.0"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependaboat
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.4.0
 platform: ruby
 authors:
 - CompanyCam
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-05-21 00:00:00.000000000 Z
+date: 2024-06-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ghx
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0
+        version: 0.4.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0
+        version: 0.4.0
 - !ruby/object:Gem::Dependency
   name: dotenv
   requirement: !ruby/object:Gem::Requirement