dependabot-bundler 0.179.0 → 0.180.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/v1/Gemfile +1 -1
- data/helpers/v1/lib/functions.rb +3 -0
- data/helpers/v1/monkey_patches/fileutils_keyword_splat_patch.rb +19 -0
- data/helpers/v1/run.rb +1 -0
- data/helpers/v1/spec/native_spec_helper.rb +1 -0
- data/helpers/v2/Gemfile +1 -1
- data/helpers/v2/lib/functions.rb +0 -2
- data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +1 -30
- data/lib/dependabot/bundler/update_checker/version_resolver.rb +2 -1
- metadata +11 -10
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 0535faef344ee4973a4c817621bef0ebe3dbfa74bfb0eca094ab3ed68dff50a8
|
4
|
+
data.tar.gz: 4272ece9cf9e2fc630ebbf41773d3c7158763804428b67db7aa55b6c89cb64dd
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 529d04b309784b29ec1e64047dc2fbe0cc7522460e16cbfe1d475c9a6f2dfcf04b94efcdfc41d0ea40d3cd0cf8d8079ec848e151b54d5a55c872973f68b187ff
|
7
|
+
data.tar.gz: 0c132e54905614a067d18683dd33d28bdafd15246aa46e832b21eca90f2df3c884427ff62bf063a454f6d1e7c071978d68e7dddba34a793442eb6c37a5969298
|
data/helpers/v1/Gemfile
CHANGED
data/helpers/v1/lib/functions.rb
CHANGED
@@ -0,0 +1,19 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
require "bundler/vendor/fileutils/lib/fileutils"
|
4
|
+
|
5
|
+
# Port
|
6
|
+
# https://github.com/ruby/fileutils/commit/a5eca84a4240e29bb7886c3ef7085d464a972dd0
|
7
|
+
# to fix keyword argument errors on Ruby 3.1
|
8
|
+
|
9
|
+
module BundlerFileUtilsKeywordSplatPatch
|
10
|
+
def entries
|
11
|
+
opts = {}
|
12
|
+
opts[:encoding] = ::Encoding::UTF_8 if fu_windows?
|
13
|
+
Dir.entries(path, **opts).
|
14
|
+
reject { |n| [".", ".."].include?(n) }.
|
15
|
+
map { |n| self.class.new(prefix, join(rel, n.untaint)) }
|
16
|
+
end
|
17
|
+
end
|
18
|
+
|
19
|
+
Bundler::FileUtils::Entry_.prepend(BundlerFileUtilsKeywordSplatPatch)
|
data/helpers/v1/run.rb
CHANGED
@@ -11,6 +11,7 @@ $LOAD_PATH.unshift(File.expand_path("../monkey_patches", __dir__))
|
|
11
11
|
# Bundler monkey patches
|
12
12
|
require "definition_ruby_version_patch"
|
13
13
|
require "definition_bundler_version_patch"
|
14
|
+
require "fileutils_keyword_splat_patch"
|
14
15
|
require "git_source_patch"
|
15
16
|
require "resolver_spec_group_sane_eql"
|
16
17
|
|
data/helpers/v2/Gemfile
CHANGED
data/helpers/v2/lib/functions.rb
CHANGED
@@ -150,9 +150,7 @@ module Functions
|
|
150
150
|
# NOTE: Prevent bundler from printing resolution information
|
151
151
|
Bundler.ui = Bundler::UI::Silent.new
|
152
152
|
|
153
|
-
# Use HTTPS for GitHub if lockfile
|
154
153
|
Bundler.settings.set_command_option("forget_cli_options", "true")
|
155
|
-
Bundler.settings.set_command_option("github.https", "true")
|
156
154
|
end
|
157
155
|
|
158
156
|
def self.relevant_credentials(credentials)
|
@@ -16,7 +16,6 @@ module Dependabot
|
|
16
16
|
require_relative "gemspec_updater"
|
17
17
|
require_relative "gemspec_sanitizer"
|
18
18
|
require_relative "gemspec_dependency_name_finder"
|
19
|
-
require_relative "ruby_requirement_setter"
|
20
19
|
|
21
20
|
LOCKFILE_ENDING =
|
22
21
|
/(?<ending>\s*(?:RUBY VERSION|BUNDLED WITH).*)/m.freeze
|
@@ -80,23 +79,10 @@ module Dependabot
|
|
80
79
|
)
|
81
80
|
end
|
82
81
|
post_process_lockfile(lockfile_body)
|
83
|
-
rescue SharedHelpers::HelperSubprocessFailed => e
|
84
|
-
raise unless ruby_lock_error?(e)
|
85
|
-
|
86
|
-
@dont_lock_ruby_version = true
|
87
|
-
retry
|
88
|
-
end
|
89
|
-
|
90
|
-
def ruby_lock_error?(error)
|
91
|
-
return false unless error.error_class == "Bundler::VersionConflict"
|
92
|
-
return false unless error.message.include?(" for gem \"ruby\0\"")
|
93
|
-
return false if @dont_lock_ruby_version
|
94
|
-
|
95
|
-
dependency_files.any? { |f| f.name.end_with?(".gemspec") }
|
96
82
|
end
|
97
83
|
|
98
84
|
def write_temporary_dependency_files
|
99
|
-
File.write(gemfile.name,
|
85
|
+
File.write(gemfile.name, updated_gemfile_content(gemfile))
|
100
86
|
File.write(lockfile.name, sanitized_lockfile_body)
|
101
87
|
|
102
88
|
top_level_gemspecs.each do |gemspec|
|
@@ -236,21 +222,6 @@ module Dependabot
|
|
236
222
|
end
|
237
223
|
# rubocop:enable Metrics/PerceivedComplexity
|
238
224
|
|
239
|
-
def prepared_gemfile_content(file)
|
240
|
-
content =
|
241
|
-
GemfileUpdater.new(
|
242
|
-
dependencies: dependencies,
|
243
|
-
gemfile: file
|
244
|
-
).updated_gemfile_content
|
245
|
-
return content if @dont_lock_ruby_version
|
246
|
-
|
247
|
-
top_level_gemspecs.each do |gs|
|
248
|
-
content = RubyRequirementSetter.new(gemspec: gs).rewrite(content)
|
249
|
-
end
|
250
|
-
|
251
|
-
content
|
252
|
-
end
|
253
|
-
|
254
225
|
def updated_gemfile_content(file)
|
255
226
|
GemfileUpdater.new(
|
256
227
|
dependencies: dependencies,
|
@@ -139,7 +139,8 @@ module Dependabot
|
|
139
139
|
end
|
140
140
|
|
141
141
|
def ruby_lock_error?(error)
|
142
|
-
return false unless error.message.include?(" for
|
142
|
+
return false unless error.message.include?(" for the Ruby\0 version") || # Bundler 2
|
143
|
+
error.message.include?(" for gem \"ruby\0\"") # Bundler 1
|
143
144
|
return false if @gemspec_ruby_unlocked
|
144
145
|
|
145
146
|
dependency_files.any? { |f| f.name.end_with?(".gemspec") }
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-bundler
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.180.2
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-03-
|
11
|
+
date: 2022-03-28 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.180.2
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.
|
26
|
+
version: 0.180.2
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: debug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -100,14 +100,14 @@ dependencies:
|
|
100
100
|
requirements:
|
101
101
|
- - "~>"
|
102
102
|
- !ruby/object:Gem::Version
|
103
|
-
version: 1.
|
103
|
+
version: 1.26.0
|
104
104
|
type: :development
|
105
105
|
prerelease: false
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
107
107
|
requirements:
|
108
108
|
- - "~>"
|
109
109
|
- !ruby/object:Gem::Version
|
110
|
-
version: 1.
|
110
|
+
version: 1.26.0
|
111
111
|
- !ruby/object:Gem::Dependency
|
112
112
|
name: simplecov
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|
@@ -156,14 +156,14 @@ dependencies:
|
|
156
156
|
requirements:
|
157
157
|
- - '='
|
158
158
|
- !ruby/object:Gem::Version
|
159
|
-
version: 6.
|
159
|
+
version: 6.1.0
|
160
160
|
type: :development
|
161
161
|
prerelease: false
|
162
162
|
version_requirements: !ruby/object:Gem::Requirement
|
163
163
|
requirements:
|
164
164
|
- - '='
|
165
165
|
- !ruby/object:Gem::Version
|
166
|
-
version: 6.
|
166
|
+
version: 6.1.0
|
167
167
|
- !ruby/object:Gem::Dependency
|
168
168
|
name: webmock
|
169
169
|
requirement: !ruby/object:Gem::Requirement
|
@@ -197,6 +197,7 @@ files:
|
|
197
197
|
- helpers/v1/lib/functions/version_resolver.rb
|
198
198
|
- helpers/v1/monkey_patches/definition_bundler_version_patch.rb
|
199
199
|
- helpers/v1/monkey_patches/definition_ruby_version_patch.rb
|
200
|
+
- helpers/v1/monkey_patches/fileutils_keyword_splat_patch.rb
|
200
201
|
- helpers/v1/monkey_patches/git_source_patch.rb
|
201
202
|
- helpers/v1/monkey_patches/resolver_spec_group_sane_eql.rb
|
202
203
|
- helpers/v1/run.rb
|
@@ -274,12 +275,12 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
274
275
|
requirements:
|
275
276
|
- - ">="
|
276
277
|
- !ruby/object:Gem::Version
|
277
|
-
version: 2.
|
278
|
+
version: 2.7.0
|
278
279
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
279
280
|
requirements:
|
280
281
|
- - ">="
|
281
282
|
- !ruby/object:Gem::Version
|
282
|
-
version: 2.
|
283
|
+
version: 2.7.0
|
283
284
|
requirements: []
|
284
285
|
rubygems_version: 3.2.32
|
285
286
|
signing_key:
|