dependabot-bundler 0.133.6 → 0.136.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/helpers/v1/.bundle/config +2 -0
- data/helpers/v1/.gitignore +9 -0
- data/helpers/v1/Gemfile +7 -0
- data/helpers/{build → v1/build} +6 -0
- data/helpers/{lib → v1/lib}/functions.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/conflicting_dependency_resolver.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/dependency_source.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/file_parser.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/force_updater.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/lockfile_updater.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/version_resolver.rb +0 -0
- data/helpers/{monkey_patches → v1/monkey_patches}/definition_bundler_version_patch.rb +0 -0
- data/helpers/{monkey_patches → v1/monkey_patches}/definition_ruby_version_patch.rb +0 -0
- data/helpers/{monkey_patches → v1/monkey_patches}/git_source_patch.rb +0 -0
- data/helpers/{run.rb → v1/run.rb} +0 -0
- data/lib/dependabot/bundler/file_parser.rb +9 -4
- data/lib/dependabot/bundler/file_updater.rb +7 -2
- data/lib/dependabot/bundler/file_updater/gemspec_sanitizer.rb +26 -5
- data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +7 -2
- data/lib/dependabot/bundler/helpers.rb +16 -0
- data/lib/dependabot/bundler/native_helpers.rb +27 -2
- data/lib/dependabot/bundler/update_checker/conflicting_dependency_resolver.rb +9 -2
- data/lib/dependabot/bundler/update_checker/force_updater.rb +7 -2
- data/lib/dependabot/bundler/update_checker/latest_version_finder/dependency_source.rb +18 -6
- data/lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb +9 -4
- data/lib/dependabot/bundler/update_checker/version_resolver.rb +7 -2
- metadata +22 -18
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 393bf9b8a90811c0809226907cbff66998c3fb481f16d23115cbf4e22444ed8e
|
|
4
|
+
data.tar.gz: 7e334d28a93224445785f7f23215d782bc3b2c70b177faf9f35276604ff1adae
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: efbd895bfb249b021160b2806b74449741d4d7dfb1e955436d3ef6919683b8465f8574708be01b9a3fca992dc5df06e055647d4236aea66b219fe3c5f48ade2f
|
|
7
|
+
data.tar.gz: 21d703a2ad5dfe9eeba687172f558ec0cf7abddd5e6b4f9dbf72d05dead39b6a5764857903982d2fa3809fa19b5acf75c2d3b006c5c5ce6e9fc80453f3f7460b
|
data/helpers/v1/Gemfile
ADDED
|
@@ -0,0 +1,7 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
source "https://rubygems.org"
|
|
4
|
+
|
|
5
|
+
# NOTE: This is intentionally left blank as it's currently only used to force
|
|
6
|
+
# bundler to use v1 when executing native helpers by pointing the BUNDLE_GEMFILE
|
|
7
|
+
# env to this Gemfile in Dependabot::Bundler::NativeHelpers
|
data/helpers/{build → v1/build}
RENAMED
|
@@ -10,9 +10,15 @@ fi
|
|
|
10
10
|
|
|
11
11
|
helpers_dir="$(dirname "${BASH_SOURCE[0]}")"
|
|
12
12
|
cp -r \
|
|
13
|
+
"$helpers_dir/.bundle" \
|
|
13
14
|
"$helpers_dir/lib" \
|
|
14
15
|
"$helpers_dir/monkey_patches" \
|
|
15
16
|
"$helpers_dir/run.rb" \
|
|
17
|
+
"$helpers_dir/Gemfile" \
|
|
16
18
|
"$install_dir"
|
|
17
19
|
|
|
18
20
|
cd "$install_dir"
|
|
21
|
+
|
|
22
|
+
# NOTE: Sets `BUNDLED WITH` to match the installed v1 version in Gemfile.lock
|
|
23
|
+
# forcing specs and native helpers to run with the same version
|
|
24
|
+
BUNDLER_VERSION=1 bundle install
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
@@ -5,6 +5,7 @@ require "dependabot/file_parsers"
|
|
|
5
5
|
require "dependabot/file_parsers/base"
|
|
6
6
|
require "dependabot/bundler/file_updater/lockfile_updater"
|
|
7
7
|
require "dependabot/bundler/native_helpers"
|
|
8
|
+
require "dependabot/bundler/helpers"
|
|
8
9
|
require "dependabot/bundler/version"
|
|
9
10
|
require "dependabot/shared_helpers"
|
|
10
11
|
require "dependabot/errors"
|
|
@@ -129,8 +130,8 @@ module Dependabot
|
|
|
129
130
|
repo_contents_path) do
|
|
130
131
|
write_temporary_dependency_files
|
|
131
132
|
|
|
132
|
-
|
|
133
|
-
|
|
133
|
+
NativeHelpers.run_bundler_subprocess(
|
|
134
|
+
bundler_version: bundler_version,
|
|
134
135
|
function: "parsed_gemfile",
|
|
135
136
|
args: {
|
|
136
137
|
gemfile_name: gemfile.name,
|
|
@@ -159,8 +160,8 @@ module Dependabot
|
|
|
159
160
|
repo_contents_path) do
|
|
160
161
|
write_temporary_dependency_files
|
|
161
162
|
|
|
162
|
-
|
|
163
|
-
|
|
163
|
+
NativeHelpers.run_bundler_subprocess(
|
|
164
|
+
bundler_version: bundler_version,
|
|
164
165
|
function: "parsed_gemspec",
|
|
165
166
|
args: {
|
|
166
167
|
gemspec_name: file.name,
|
|
@@ -298,6 +299,10 @@ module Dependabot
|
|
|
298
299
|
select { |f| f.name.end_with?(".rb") }.
|
|
299
300
|
reject { |f| f.name == "gems.rb" }
|
|
300
301
|
end
|
|
302
|
+
|
|
303
|
+
def bundler_version
|
|
304
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
305
|
+
end
|
|
301
306
|
end
|
|
302
307
|
end
|
|
303
308
|
end
|
|
@@ -3,6 +3,7 @@
|
|
|
3
3
|
require "dependabot/file_updaters"
|
|
4
4
|
require "dependabot/file_updaters/base"
|
|
5
5
|
require "dependabot/bundler/native_helpers"
|
|
6
|
+
require "dependabot/bundler/helpers"
|
|
6
7
|
require "dependabot/file_updaters/vendor_updater"
|
|
7
8
|
|
|
8
9
|
module Dependabot
|
|
@@ -75,8 +76,8 @@ module Dependabot
|
|
|
75
76
|
return @vendor_cache_dir if defined?(@vendor_cache_dir)
|
|
76
77
|
|
|
77
78
|
@vendor_cache_dir =
|
|
78
|
-
|
|
79
|
-
|
|
79
|
+
NativeHelpers.run_bundler_subprocess(
|
|
80
|
+
bundler_version: bundler_version,
|
|
80
81
|
function: "vendor_cache_dir",
|
|
81
82
|
args: {
|
|
82
83
|
dir: repo_contents_path
|
|
@@ -159,6 +160,10 @@ module Dependabot
|
|
|
159
160
|
select { |file| file.name.end_with?(".gemspec") }.
|
|
160
161
|
reject(&:support_file?)
|
|
161
162
|
end
|
|
163
|
+
|
|
164
|
+
def bundler_version
|
|
165
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
166
|
+
end
|
|
162
167
|
end
|
|
163
168
|
end
|
|
164
169
|
end
|
|
@@ -234,11 +234,8 @@ module Dependabot
|
|
|
234
234
|
def remove_unnecessary_assignments(node)
|
|
235
235
|
return unless node.is_a?(Parser::AST::Node)
|
|
236
236
|
|
|
237
|
-
if unnecessary_assignment?(node) &&
|
|
238
|
-
|
|
239
|
-
range_to_remove = node.loc.expression.join(
|
|
240
|
-
node.children.last.location.heredoc_end
|
|
241
|
-
)
|
|
237
|
+
if unnecessary_assignment?(node) && node_includes_heredoc?(node)
|
|
238
|
+
range_to_remove = node.loc.expression.join(find_heredoc_end_range(node))
|
|
242
239
|
return replace(range_to_remove, '"sanitized"')
|
|
243
240
|
elsif unnecessary_assignment?(node)
|
|
244
241
|
return replace(node.loc.expression, '"sanitized"')
|
|
@@ -249,6 +246,30 @@ module Dependabot
|
|
|
249
246
|
end
|
|
250
247
|
end
|
|
251
248
|
|
|
249
|
+
def node_includes_heredoc?(node)
|
|
250
|
+
find_heredoc_end_range(node)
|
|
251
|
+
end
|
|
252
|
+
|
|
253
|
+
# Performs a depth-first search for the first heredoc in the given
|
|
254
|
+
# Parser::AST::Node.
|
|
255
|
+
#
|
|
256
|
+
# Returns a Parser::Source::Range identifying the location of the end
|
|
257
|
+
# of the heredoc, or nil if no heredoc was found.
|
|
258
|
+
def find_heredoc_end_range(node)
|
|
259
|
+
return unless node.is_a?(Parser::AST::Node)
|
|
260
|
+
|
|
261
|
+
node.children.each do |child|
|
|
262
|
+
next unless child.is_a?(Parser::AST::Node)
|
|
263
|
+
|
|
264
|
+
return child.location.heredoc_end if child.location.respond_to?(:heredoc_end)
|
|
265
|
+
|
|
266
|
+
range = find_heredoc_end_range(child)
|
|
267
|
+
return range if range
|
|
268
|
+
end
|
|
269
|
+
|
|
270
|
+
nil
|
|
271
|
+
end
|
|
272
|
+
|
|
252
273
|
def unnecessary_assignment?(node)
|
|
253
274
|
return false unless node.is_a?(Parser::AST::Node)
|
|
254
275
|
return false unless node.children.first.is_a?(Parser::AST::Node)
|
|
@@ -6,6 +6,7 @@ require "dependabot/shared_helpers"
|
|
|
6
6
|
require "dependabot/errors"
|
|
7
7
|
require "dependabot/bundler/file_updater"
|
|
8
8
|
require "dependabot/bundler/native_helpers"
|
|
9
|
+
require "dependabot/bundler/helpers"
|
|
9
10
|
|
|
10
11
|
module Dependabot
|
|
11
12
|
module Bundler
|
|
@@ -64,8 +65,8 @@ module Dependabot
|
|
|
64
65
|
) do |tmp_dir|
|
|
65
66
|
write_temporary_dependency_files
|
|
66
67
|
|
|
67
|
-
|
|
68
|
-
|
|
68
|
+
NativeHelpers.run_bundler_subprocess(
|
|
69
|
+
bundler_version: bundler_version,
|
|
69
70
|
function: "update_lockfile",
|
|
70
71
|
args: {
|
|
71
72
|
gemfile_name: gemfile.name,
|
|
@@ -301,6 +302,10 @@ module Dependabot
|
|
|
301
302
|
|
|
302
303
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
303
304
|
end
|
|
305
|
+
|
|
306
|
+
def bundler_version
|
|
307
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
308
|
+
end
|
|
304
309
|
end
|
|
305
310
|
end
|
|
306
311
|
end
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Dependabot
|
|
4
|
+
module Bundler
|
|
5
|
+
module Helpers
|
|
6
|
+
V1 = "1"
|
|
7
|
+
V2 = "2"
|
|
8
|
+
|
|
9
|
+
# TODO: Add support for bundler v2
|
|
10
|
+
# return "v2" if lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
11
|
+
def self.bundler_version(_lockfile)
|
|
12
|
+
V1
|
|
13
|
+
end
|
|
14
|
+
end
|
|
15
|
+
end
|
|
16
|
+
end
|
|
@@ -1,10 +1,35 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
+
require "bundler"
|
|
4
|
+
require "dependabot/shared_helpers"
|
|
5
|
+
|
|
3
6
|
module Dependabot
|
|
4
7
|
module Bundler
|
|
5
8
|
module NativeHelpers
|
|
6
|
-
def self.
|
|
7
|
-
|
|
9
|
+
def self.run_bundler_subprocess(function:, args:, bundler_version:)
|
|
10
|
+
# Run helper suprocess with all bundler-related ENV variables removed
|
|
11
|
+
::Bundler.with_original_env do
|
|
12
|
+
SharedHelpers.run_helper_subprocess(
|
|
13
|
+
command: helper_path(bundler_version: bundler_version),
|
|
14
|
+
function: function,
|
|
15
|
+
args: args,
|
|
16
|
+
env: {
|
|
17
|
+
# Bundler will pick the matching installed major version
|
|
18
|
+
"BUNDLER_VERSION" => bundler_version,
|
|
19
|
+
"BUNDLE_GEMFILE" => File.join(versioned_helper_path(bundler_version: bundler_version), "Gemfile"),
|
|
20
|
+
"BUNDLE_PATH" => File.join(versioned_helper_path(bundler_version: bundler_version), ".bundle")
|
|
21
|
+
}
|
|
22
|
+
)
|
|
23
|
+
end
|
|
24
|
+
end
|
|
25
|
+
|
|
26
|
+
def self.versioned_helper_path(bundler_version:)
|
|
27
|
+
native_helper_version = "v#{bundler_version}"
|
|
28
|
+
File.join(native_helpers_root, native_helper_version)
|
|
29
|
+
end
|
|
30
|
+
|
|
31
|
+
def self.helper_path(bundler_version:)
|
|
32
|
+
"ruby #{File.join(versioned_helper_path(bundler_version: bundler_version), 'run.rb')}"
|
|
8
33
|
end
|
|
9
34
|
|
|
10
35
|
def self.native_helpers_root
|
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
require "dependabot/bundler/update_checker"
|
|
4
4
|
require "dependabot/bundler/native_helpers"
|
|
5
|
+
require "dependabot/bundler/helpers"
|
|
5
6
|
require "dependabot/shared_helpers"
|
|
6
7
|
|
|
7
8
|
module Dependabot
|
|
@@ -28,8 +29,8 @@ module Dependabot
|
|
|
28
29
|
# * requirement [String] the requirement on the target_dependency
|
|
29
30
|
def conflicting_dependencies(dependency:, target_version:)
|
|
30
31
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
31
|
-
|
|
32
|
-
|
|
32
|
+
NativeHelpers.run_bundler_subprocess(
|
|
33
|
+
bundler_version: bundler_version,
|
|
33
34
|
function: "conflicting_dependencies",
|
|
34
35
|
args: {
|
|
35
36
|
dir: tmp_dir,
|
|
@@ -42,6 +43,12 @@ module Dependabot
|
|
|
42
43
|
)
|
|
43
44
|
end
|
|
44
45
|
end
|
|
46
|
+
|
|
47
|
+
private
|
|
48
|
+
|
|
49
|
+
def bundler_version
|
|
50
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
51
|
+
end
|
|
45
52
|
end
|
|
46
53
|
end
|
|
47
54
|
end
|
|
@@ -3,6 +3,7 @@
|
|
|
3
3
|
require "dependabot/bundler/file_parser"
|
|
4
4
|
require "dependabot/bundler/file_updater/lockfile_updater"
|
|
5
5
|
require "dependabot/bundler/native_helpers"
|
|
6
|
+
require "dependabot/bundler/helpers"
|
|
6
7
|
require "dependabot/bundler/update_checker"
|
|
7
8
|
require "dependabot/bundler/update_checker/requirements_updater"
|
|
8
9
|
require "dependabot/errors"
|
|
@@ -43,8 +44,8 @@ module Dependabot
|
|
|
43
44
|
|
|
44
45
|
def force_update
|
|
45
46
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
46
|
-
updated_deps, specs =
|
|
47
|
-
|
|
47
|
+
updated_deps, specs = NativeHelpers.run_bundler_subprocess(
|
|
48
|
+
bundler_version: bundler_version,
|
|
48
49
|
function: "force_update",
|
|
49
50
|
args: {
|
|
50
51
|
dir: tmp_dir,
|
|
@@ -146,6 +147,10 @@ module Dependabot
|
|
|
146
147
|
|
|
147
148
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
148
149
|
end
|
|
150
|
+
|
|
151
|
+
def bundler_version
|
|
152
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
153
|
+
end
|
|
149
154
|
end
|
|
150
155
|
end
|
|
151
156
|
end
|
|
@@ -1,5 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
+
require "dependabot/bundler/native_helpers"
|
|
4
|
+
require "dependabot/bundler/helpers"
|
|
5
|
+
|
|
3
6
|
module Dependabot
|
|
4
7
|
module Bundler
|
|
5
8
|
class UpdateChecker
|
|
@@ -53,8 +56,8 @@ module Dependabot
|
|
|
53
56
|
|
|
54
57
|
SharedHelpers.with_git_configured(credentials: credentials) do
|
|
55
58
|
in_a_native_bundler_context do |tmp_dir|
|
|
56
|
-
|
|
57
|
-
|
|
59
|
+
NativeHelpers.run_bundler_subprocess(
|
|
60
|
+
bundler_version: bundler_version,
|
|
58
61
|
function: "depencency_source_latest_git_version",
|
|
59
62
|
args: {
|
|
60
63
|
dir: tmp_dir,
|
|
@@ -98,8 +101,8 @@ module Dependabot
|
|
|
98
101
|
def private_registry_versions
|
|
99
102
|
@private_registry_versions ||=
|
|
100
103
|
in_a_native_bundler_context do |tmp_dir|
|
|
101
|
-
|
|
102
|
-
|
|
104
|
+
NativeHelpers.run_bundler_subprocess(
|
|
105
|
+
bundler_version: bundler_version,
|
|
103
106
|
function: "private_registry_versions",
|
|
104
107
|
args: {
|
|
105
108
|
dir: tmp_dir,
|
|
@@ -118,8 +121,8 @@ module Dependabot
|
|
|
118
121
|
return @source_type = RUBYGEMS unless gemfile
|
|
119
122
|
|
|
120
123
|
@source_type = in_a_native_bundler_context do |tmp_dir|
|
|
121
|
-
|
|
122
|
-
|
|
124
|
+
NativeHelpers.run_bundler_subprocess(
|
|
125
|
+
bundler_version: bundler_version,
|
|
123
126
|
function: "dependency_source_type",
|
|
124
127
|
args: {
|
|
125
128
|
dir: tmp_dir,
|
|
@@ -135,6 +138,15 @@ module Dependabot
|
|
|
135
138
|
dependency_files.find { |f| f.name == "Gemfile" } ||
|
|
136
139
|
dependency_files.find { |f| f.name == "gems.rb" }
|
|
137
140
|
end
|
|
141
|
+
|
|
142
|
+
def lockfile
|
|
143
|
+
dependency_files.find { |f| f.name == "Gemfile.lock" } ||
|
|
144
|
+
dependency_files.find { |f| f.name == "gems.locked" }
|
|
145
|
+
end
|
|
146
|
+
|
|
147
|
+
def bundler_version
|
|
148
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
149
|
+
end
|
|
138
150
|
end
|
|
139
151
|
end
|
|
140
152
|
end
|
|
@@ -4,6 +4,7 @@ require "excon"
|
|
|
4
4
|
|
|
5
5
|
require "dependabot/bundler/update_checker"
|
|
6
6
|
require "dependabot/bundler/native_helpers"
|
|
7
|
+
require "dependabot/bundler/helpers"
|
|
7
8
|
require "dependabot/shared_helpers"
|
|
8
9
|
require "dependabot/errors"
|
|
9
10
|
|
|
@@ -163,8 +164,8 @@ module Dependabot
|
|
|
163
164
|
|
|
164
165
|
def inaccessible_git_dependencies
|
|
165
166
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
166
|
-
git_specs =
|
|
167
|
-
|
|
167
|
+
git_specs = NativeHelpers.run_bundler_subprocess(
|
|
168
|
+
bundler_version: bundler_version,
|
|
168
169
|
function: "git_specs",
|
|
169
170
|
args: {
|
|
170
171
|
dir: tmp_dir,
|
|
@@ -187,8 +188,8 @@ module Dependabot
|
|
|
187
188
|
|
|
188
189
|
def jfrog_source
|
|
189
190
|
in_a_native_bundler_context(error_handling: false) do |dir|
|
|
190
|
-
|
|
191
|
-
|
|
191
|
+
NativeHelpers.run_bundler_subprocess(
|
|
192
|
+
bundler_version: bundler_version,
|
|
192
193
|
function: "jfrog_source",
|
|
193
194
|
args: {
|
|
194
195
|
dir: dir,
|
|
@@ -236,6 +237,10 @@ module Dependabot
|
|
|
236
237
|
|
|
237
238
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
238
239
|
end
|
|
240
|
+
|
|
241
|
+
def bundler_version
|
|
242
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
243
|
+
end
|
|
239
244
|
end
|
|
240
245
|
end
|
|
241
246
|
end
|
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
require "excon"
|
|
4
4
|
|
|
5
|
+
require "dependabot/bundler/helpers"
|
|
5
6
|
require "dependabot/bundler/update_checker"
|
|
6
7
|
require "dependabot/bundler/file_updater/lockfile_updater"
|
|
7
8
|
require "dependabot/bundler/requirement"
|
|
@@ -75,8 +76,8 @@ module Dependabot
|
|
|
75
76
|
# some errors we want to handle specifically ourselves, including
|
|
76
77
|
# potentially retrying in the case of the Ruby version being locked
|
|
77
78
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
78
|
-
details =
|
|
79
|
-
|
|
79
|
+
details = NativeHelpers.run_bundler_subprocess(
|
|
80
|
+
bundler_version: bundler_version,
|
|
80
81
|
function: "resolve_version",
|
|
81
82
|
args: {
|
|
82
83
|
dependency_name: dependency.name,
|
|
@@ -218,6 +219,10 @@ module Dependabot
|
|
|
218
219
|
|
|
219
220
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
220
221
|
end
|
|
222
|
+
|
|
223
|
+
def bundler_version
|
|
224
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
225
|
+
end
|
|
221
226
|
end
|
|
222
227
|
end
|
|
223
228
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-bundler
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.136.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-
|
|
11
|
+
date: 2021-03-08 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.136.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.136.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -100,14 +100,14 @@ dependencies:
|
|
|
100
100
|
requirements:
|
|
101
101
|
- - "~>"
|
|
102
102
|
- !ruby/object:Gem::Version
|
|
103
|
-
version: 1.
|
|
103
|
+
version: 1.11.0
|
|
104
104
|
type: :development
|
|
105
105
|
prerelease: false
|
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
|
107
107
|
requirements:
|
|
108
108
|
- - "~>"
|
|
109
109
|
- !ruby/object:Gem::Version
|
|
110
|
-
version: 1.
|
|
110
|
+
version: 1.11.0
|
|
111
111
|
- !ruby/object:Gem::Dependency
|
|
112
112
|
name: simplecov
|
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -185,18 +185,21 @@ executables: []
|
|
|
185
185
|
extensions: []
|
|
186
186
|
extra_rdoc_files: []
|
|
187
187
|
files:
|
|
188
|
-
- helpers/
|
|
189
|
-
- helpers/
|
|
190
|
-
- helpers/
|
|
191
|
-
- helpers/
|
|
192
|
-
- helpers/lib/functions
|
|
193
|
-
- helpers/lib/functions/
|
|
194
|
-
- helpers/lib/functions/
|
|
195
|
-
- helpers/lib/functions/
|
|
196
|
-
- helpers/
|
|
197
|
-
- helpers/
|
|
198
|
-
- helpers/
|
|
199
|
-
- helpers/
|
|
188
|
+
- helpers/v1/.bundle/config
|
|
189
|
+
- helpers/v1/.gitignore
|
|
190
|
+
- helpers/v1/Gemfile
|
|
191
|
+
- helpers/v1/build
|
|
192
|
+
- helpers/v1/lib/functions.rb
|
|
193
|
+
- helpers/v1/lib/functions/conflicting_dependency_resolver.rb
|
|
194
|
+
- helpers/v1/lib/functions/dependency_source.rb
|
|
195
|
+
- helpers/v1/lib/functions/file_parser.rb
|
|
196
|
+
- helpers/v1/lib/functions/force_updater.rb
|
|
197
|
+
- helpers/v1/lib/functions/lockfile_updater.rb
|
|
198
|
+
- helpers/v1/lib/functions/version_resolver.rb
|
|
199
|
+
- helpers/v1/monkey_patches/definition_bundler_version_patch.rb
|
|
200
|
+
- helpers/v1/monkey_patches/definition_ruby_version_patch.rb
|
|
201
|
+
- helpers/v1/monkey_patches/git_source_patch.rb
|
|
202
|
+
- helpers/v1/run.rb
|
|
200
203
|
- lib/dependabot/bundler.rb
|
|
201
204
|
- lib/dependabot/bundler/file_fetcher.rb
|
|
202
205
|
- lib/dependabot/bundler/file_fetcher/child_gemfile_finder.rb
|
|
@@ -216,6 +219,7 @@ files:
|
|
|
216
219
|
- lib/dependabot/bundler/file_updater/lockfile_updater.rb
|
|
217
220
|
- lib/dependabot/bundler/file_updater/requirement_replacer.rb
|
|
218
221
|
- lib/dependabot/bundler/file_updater/ruby_requirement_setter.rb
|
|
222
|
+
- lib/dependabot/bundler/helpers.rb
|
|
219
223
|
- lib/dependabot/bundler/metadata_finder.rb
|
|
220
224
|
- lib/dependabot/bundler/native_helpers.rb
|
|
221
225
|
- lib/dependabot/bundler/requirement.rb
|