dependabot-bundler 0.179.0 → 0.180.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (11) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/v1/Gemfile +1 -1
  3. data/helpers/v1/lib/functions.rb +3 -0
  4. data/helpers/v1/monkey_patches/fileutils_keyword_splat_patch.rb +19 -0
  5. data/helpers/v1/run.rb +1 -0
  6. data/helpers/v1/spec/native_spec_helper.rb +1 -0
  7. data/helpers/v2/Gemfile +1 -1
  8. data/helpers/v2/lib/functions.rb +0 -2
  9. data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +1 -30
  10. data/lib/dependabot/bundler/update_checker/version_resolver.rb +2 -1
  11. metadata +11 -10
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 2b0b7f36161c154701d4786b521cb6f1f1a670bd532657bec1a2e778455baa71
4
- data.tar.gz: e4fb69f5997088cf2b357eee4326623c0505965a7cc07294d8b3ec0af2806149
3
+ metadata.gz: 0535faef344ee4973a4c817621bef0ebe3dbfa74bfb0eca094ab3ed68dff50a8
4
+ data.tar.gz: 4272ece9cf9e2fc630ebbf41773d3c7158763804428b67db7aa55b6c89cb64dd
5
5
  SHA512:
6
- metadata.gz: 0b6e7c768c04de86a36efc45eeb05e137f644741382bb6185322804986ebdb21568870d7d35a6b940fd8a5c4fd5c1eddb01dc2b9176589ec3cedd022aa7edc81
7
- data.tar.gz: 8c0f2295f33510a0dde7f75becc592fd064fd79092d77457bd2eef726c426b1bc06298cc98c34832c68591ecd5287629b48751131abb85dfa5c9eecbb7659bd9
6
+ metadata.gz: 529d04b309784b29ec1e64047dc2fbe0cc7522460e16cbfe1d475c9a6f2dfcf04b94efcdfc41d0ea40d3cd0cf8d8079ec848e151b54d5a55c872973f68b187ff
7
+ data.tar.gz: 0c132e54905614a067d18683dd33d28bdafd15246aa46e832b21eca90f2df3c884427ff62bf063a454f6d1e7c071978d68e7dddba34a793442eb6c37a5969298
data/helpers/v1/Gemfile CHANGED
@@ -7,6 +7,6 @@ group :test do
7
7
  gem "debug", ">= 1.0.0"
8
8
  gem "rspec", "~> 3.8"
9
9
  gem "rspec-its", "~> 1.2"
10
- gem "vcr", "6.0.0"
10
+ gem "vcr", "6.1.0"
11
11
  gem "webmock", "~> 3.4"
12
12
  end
data/helpers/v1/lib/functions.rb CHANGED
@@ -144,6 +144,9 @@ module Functions
144
144
  token.gsub("@", "%40F").gsub("?", "%3F")
145
145
  )
146
146
  end
147
+
148
+ # Use HTTPS for GitHub if lockfile
149
+ Bundler.settings.set_command_option("github.https", "true")
147
150
  end
148
151
 
149
152
  def self.relevant_credentials(credentials)
data/helpers/v1/monkey_patches/fileutils_keyword_splat_patch.rb ADDED
@@ -0,0 +1,19 @@
1
+ # frozen_string_literal: true
2
+
3
+ require "bundler/vendor/fileutils/lib/fileutils"
4
+
5
+ # Port
6
+ # https://github.com/ruby/fileutils/commit/a5eca84a4240e29bb7886c3ef7085d464a972dd0
7
+ # to fix keyword argument errors on Ruby 3.1
8
+
9
+ module BundlerFileUtilsKeywordSplatPatch
10
+ def entries
11
+ opts = {}
12
+ opts[:encoding] = ::Encoding::UTF_8 if fu_windows?
13
+ Dir.entries(path, **opts).
14
+ reject { |n| [".", ".."].include?(n) }.
15
+ map { |n| self.class.new(prefix, join(rel, n.untaint)) }
16
+ end
17
+ end
18
+
19
+ Bundler::FileUtils::Entry_.prepend(BundlerFileUtilsKeywordSplatPatch)
data/helpers/v1/run.rb CHANGED
@@ -14,6 +14,7 @@ end
14
14
  # Bundler monkey patches
15
15
  require "definition_ruby_version_patch"
16
16
  require "definition_bundler_version_patch"
17
+ require "fileutils_keyword_splat_patch"
17
18
  require "git_source_patch"
18
19
  require "resolver_spec_group_sane_eql"
19
20
 
data/helpers/v1/spec/native_spec_helper.rb CHANGED
@@ -11,6 +11,7 @@ $LOAD_PATH.unshift(File.expand_path("../monkey_patches", __dir__))
11
11
  # Bundler monkey patches
12
12
  require "definition_ruby_version_patch"
13
13
  require "definition_bundler_version_patch"
14
+ require "fileutils_keyword_splat_patch"
14
15
  require "git_source_patch"
15
16
  require "resolver_spec_group_sane_eql"
16
17
 
data/helpers/v2/Gemfile CHANGED
@@ -7,6 +7,6 @@ group :test do
7
7
  gem "debug", ">= 1.0.0"
8
8
  gem "rspec", "~> 3.8"
9
9
  gem "rspec-its", "~> 1.2"
10
- gem "vcr", "6.0.0"
10
+ gem "vcr", "6.1.0"
11
11
  gem "webmock", "~> 3.4"
12
12
  end
data/helpers/v2/lib/functions.rb CHANGED
@@ -150,9 +150,7 @@ module Functions
150
150
  # NOTE: Prevent bundler from printing resolution information
151
151
  Bundler.ui = Bundler::UI::Silent.new
152
152
 
153
- # Use HTTPS for GitHub if lockfile
154
153
  Bundler.settings.set_command_option("forget_cli_options", "true")
155
- Bundler.settings.set_command_option("github.https", "true")
156
154
  end
157
155
 
158
156
  def self.relevant_credentials(credentials)
data/lib/dependabot/bundler/file_updater/lockfile_updater.rb CHANGED
@@ -16,7 +16,6 @@ module Dependabot
16
16
  require_relative "gemspec_updater"
17
17
  require_relative "gemspec_sanitizer"
18
18
  require_relative "gemspec_dependency_name_finder"
19
- require_relative "ruby_requirement_setter"
20
19
 
21
20
  LOCKFILE_ENDING =
22
21
  /(?<ending>\s*(?:RUBY VERSION|BUNDLED WITH).*)/m.freeze
@@ -80,23 +79,10 @@ module Dependabot
80
79
  )
81
80
  end
82
81
  post_process_lockfile(lockfile_body)
83
- rescue SharedHelpers::HelperSubprocessFailed => e
84
- raise unless ruby_lock_error?(e)
85
-
86
- @dont_lock_ruby_version = true
87
- retry
88
- end
89
-
90
- def ruby_lock_error?(error)
91
- return false unless error.error_class == "Bundler::VersionConflict"
92
- return false unless error.message.include?(" for gem \"ruby\0\"")
93
- return false if @dont_lock_ruby_version
94
-
95
- dependency_files.any? { |f| f.name.end_with?(".gemspec") }
96
82
  end
97
83
 
98
84
  def write_temporary_dependency_files
99
- File.write(gemfile.name, prepared_gemfile_content(gemfile))
85
+ File.write(gemfile.name, updated_gemfile_content(gemfile))
100
86
  File.write(lockfile.name, sanitized_lockfile_body)
101
87
 
102
88
  top_level_gemspecs.each do |gemspec|
@@ -236,21 +222,6 @@ module Dependabot
236
222
  end
237
223
  # rubocop:enable Metrics/PerceivedComplexity
238
224
 
239
- def prepared_gemfile_content(file)
240
- content =
241
- GemfileUpdater.new(
242
- dependencies: dependencies,
243
- gemfile: file
244
- ).updated_gemfile_content
245
- return content if @dont_lock_ruby_version
246
-
247
- top_level_gemspecs.each do |gs|
248
- content = RubyRequirementSetter.new(gemspec: gs).rewrite(content)
249
- end
250
-
251
- content
252
- end
253
-
254
225
  def updated_gemfile_content(file)
255
226
  GemfileUpdater.new(
256
227
  dependencies: dependencies,
data/lib/dependabot/bundler/update_checker/version_resolver.rb CHANGED
@@ -139,7 +139,8 @@ module Dependabot
139
139
  end
140
140
 
141
141
  def ruby_lock_error?(error)
142
- return false unless error.message.include?(" for gem \"ruby\0\"")
142
+ return false unless error.message.include?(" for the Ruby\0 version") || # Bundler 2
143
+ error.message.include?(" for gem \"ruby\0\"") # Bundler 1
143
144
  return false if @gemspec_ruby_unlocked
144
145
 
145
146
  dependency_files.any? { |f| f.name.end_with?(".gemspec") }
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.179.0
4
+ version: 0.180.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-03-16 00:00:00.000000000 Z
11
+ date: 2022-03-28 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.179.0
19
+ version: 0.180.2
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.179.0
26
+ version: 0.180.2
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -100,14 +100,14 @@ dependencies:
100
100
  requirements:
101
101
  - - "~>"
102
102
  - !ruby/object:Gem::Version
103
- version: 1.23.0
103
+ version: 1.26.0
104
104
  type: :development
105
105
  prerelease: false
106
106
  version_requirements: !ruby/object:Gem::Requirement
107
107
  requirements:
108
108
  - - "~>"
109
109
  - !ruby/object:Gem::Version
110
- version: 1.23.0
110
+ version: 1.26.0
111
111
  - !ruby/object:Gem::Dependency
112
112
  name: simplecov
113
113
  requirement: !ruby/object:Gem::Requirement
@@ -156,14 +156,14 @@ dependencies:
156
156
  requirements:
157
157
  - - '='
158
158
  - !ruby/object:Gem::Version
159
- version: 6.0.0
159
+ version: 6.1.0
160
160
  type: :development
161
161
  prerelease: false
162
162
  version_requirements: !ruby/object:Gem::Requirement
163
163
  requirements:
164
164
  - - '='
165
165
  - !ruby/object:Gem::Version
166
- version: 6.0.0
166
+ version: 6.1.0
167
167
  - !ruby/object:Gem::Dependency
168
168
  name: webmock
169
169
  requirement: !ruby/object:Gem::Requirement
@@ -197,6 +197,7 @@ files:
197
197
  - helpers/v1/lib/functions/version_resolver.rb
198
198
  - helpers/v1/monkey_patches/definition_bundler_version_patch.rb
199
199
  - helpers/v1/monkey_patches/definition_ruby_version_patch.rb
200
+ - helpers/v1/monkey_patches/fileutils_keyword_splat_patch.rb
200
201
  - helpers/v1/monkey_patches/git_source_patch.rb
201
202
  - helpers/v1/monkey_patches/resolver_spec_group_sane_eql.rb
202
203
  - helpers/v1/run.rb
@@ -274,12 +275,12 @@ required_ruby_version: !ruby/object:Gem::Requirement
274
275
  requirements:
275
276
  - - ">="
276
277
  - !ruby/object:Gem::Version
277
- version: 2.5.0
278
+ version: 2.7.0
278
279
  required_rubygems_version: !ruby/object:Gem::Requirement
279
280
  requirements:
280
281
  - - ">="
281
282
  - !ruby/object:Gem::Version
282
- version: 2.5.0
283
+ version: 2.7.0
283
284
  requirements: []
284
285
  rubygems_version: 3.2.32
285
286
  signing_key: