dependabot-bundler 0.119.0 → 0.119.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 370486ceeb9b73f044ef1db267efe868e1ff23a828d478d76687fcbebc19e02e
-  data.tar.gz: 698fedbed2d58702a509f5356859891feae2bfa09d22b446627ab0e2c3fe03a7
+  metadata.gz: f919e2701e7212b322c404cbaad0bd3f4e956701a24061e5f5221119b72dcb55
+  data.tar.gz: f25342c61a6084654e8430342b0cb1b2d9c24daa9e4dc6dff00611623edf95cb
 SHA512:
-  metadata.gz: 4a35caffacddcb007c23a4a200cea346f592bf1f558bb6d6d1331a7ec3e666f084ecbe0bc951a88db4622266a4e151ad52ee0aed794e54c81b1474f8fe0da240
-  data.tar.gz: 7dda8bc6f9b188f4b3dba15bceb7bd4352192bfc31c14147967fb2f62ad63d24dc5e88fbef67e6947b47578db23b4e3872b00477e0f063118a88a3217d16b561
+  metadata.gz: f3e907de666befff04da6cf7114d3466bd44fdb5617da3566ed3f941aa0853b8894783b83c9c61e2f445b8db5bf3604d39babcf9f662b04ea0c7a866fcd9d25c
+  data.tar.gz: 624ca9a38656e9d9c6e1bc53b7affd15aef79fc9498694d6eff4a9885e9cae836d2826dd717f12ce3d9b49bdf78c715a5e2fa4c48e0ccbb7655350e5b6dc85e6

data/lib/dependabot/bundler/file_updater.rb

@@ -84,13 +84,17 @@ module Dependabot
         Dir.chdir(repo_contents_path) do
           relative_dir = vendor_cache_dir.sub("#{repo_contents_path}/", "")
           status = SharedHelpers.run_shell_command(
-            "git status --porcelain=v1 #{relative_dir}"
+            "git status --untracked-files=all --porcelain=v1 #{relative_dir}"
           )
           changed_paths = status.split("\n").map { |l| l.split(" ") }
           changed_paths.map do |type, path|
             deleted = type == "D"
-            encoding = Dependabot::DependencyFile::ContentEncoding::BASE64
-            encoded_content = Base64.encode64(File.read(path)) unless deleted
+            encoding = ""
+            encoded_content = File.read(path) unless deleted
+            if binary_file?(path)
+              encoding = Dependabot::DependencyFile::ContentEncoding::BASE64
+              encoded_content = Base64.encode64(encoded_content) unless deleted
+            end
             Dependabot::DependencyFile.new(
               name: path,
               content: encoded_content,
@@ -102,6 +106,39 @@ module Dependabot
         end
       end
 
+      # notable filenames without a reliable extension:
+      TEXT_FILE_NAMES = [
+        "Gemfile",
+        "Gemfile.lock",
+        ".bundlecache",
+        ".gitignore"
+      ].freeze
+
+      TEXT_FILE_EXTS = [
+        # code
+        ".rb",
+        ".erb",
+        ".gemspec",
+        ".js",
+        ".html",
+        # config
+        ".json",
+        ".xml",
+        ".toml",
+        ".yaml",
+        ".yml",
+        # docs
+        ".md",
+        ".txt"
+      ].freeze
+
+      def binary_file?(path)
+        return false if TEXT_FILE_NAMES.include?(File.basename(path))
+        return false if TEXT_FILE_EXTS.include?(File.extname(path))
+
+        true
+      end
+
       def check_required_files
         file_names = dependency_files.map(&:name)
 

data/lib/dependabot/bundler/file_updater/lockfile_updater.rb

@@ -170,6 +170,7 @@ module Dependabot
           unlocked_gems = definition.instance_variable_get(:@unlock).
                           fetch(:gems)
           bundler_opts = {
+            cache_all: true,
             cache_all_platforms: true,
             no_prune: true
           }

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-bundler
 version: !ruby/object:Gem::Version
-  version: 0.119.0
+  version: 0.119.1
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-08-26 00:00:00.000000000 Z
+date: 2020-08-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.119.0
+        version: 0.119.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.119.0
+        version: 0.119.1
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement