dependabot-bundler 0.180.0 → 0.180.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/v2/build +3 -3
- data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +1 -30
- data/lib/dependabot/bundler/file_updater/requirement_replacer.rb +1 -1
- data/lib/dependabot/bundler/file_updater/ruby_requirement_setter.rb +1 -1
- data/lib/dependabot/bundler/helpers.rb +1 -1
- data/lib/dependabot/bundler/update_checker/version_resolver.rb +2 -1
- metadata +6 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ae082832d77255bfa740e7c46ae5572f06034a689305912b20aa2b2139857536
|
|
4
|
+
data.tar.gz: 90fa21772fbee738a5c59475df24ba1f20408ee54d3311ea69f3ce81e5130777
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 6e943aeaf90030a1b19df2dbc191006202cc26345c6f751df4401e49fe1830c27205636191795cb61ed5895d46cdaaa515ac94f49bdfc375069d94d306fe13dc
|
|
7
|
+
data.tar.gz: 2817bd3bf41db3d2fedfb6919f0f10fdcf56bed991b075d1c4a2fa68957bc5519340b4c59382715968ad67d85a472de98f3c910951971ad9445df4a05db33f89
|
data/helpers/v2/build
CHANGED
|
@@ -22,6 +22,6 @@ cd "$install_dir"
|
|
|
22
22
|
|
|
23
23
|
# NOTE: Sets `BUNDLED WITH` to match the installed v2 version in Gemfile.lock
|
|
24
24
|
# forcing specs and native helpers to run with the same version
|
|
25
|
-
BUNDLER_VERSION=2.3.
|
|
26
|
-
BUNDLER_VERSION=2.3.
|
|
27
|
-
BUNDLER_VERSION=2.3.
|
|
25
|
+
BUNDLER_VERSION=2.3.9 bundle config --local path ".bundle"
|
|
26
|
+
BUNDLER_VERSION=2.3.9 bundle config --local without "test"
|
|
27
|
+
BUNDLER_VERSION=2.3.9 bundle install
|
|
@@ -16,7 +16,6 @@ module Dependabot
|
|
|
16
16
|
require_relative "gemspec_updater"
|
|
17
17
|
require_relative "gemspec_sanitizer"
|
|
18
18
|
require_relative "gemspec_dependency_name_finder"
|
|
19
|
-
require_relative "ruby_requirement_setter"
|
|
20
19
|
|
|
21
20
|
LOCKFILE_ENDING =
|
|
22
21
|
/(?<ending>\s*(?:RUBY VERSION|BUNDLED WITH).*)/m.freeze
|
|
@@ -80,23 +79,10 @@ module Dependabot
|
|
|
80
79
|
)
|
|
81
80
|
end
|
|
82
81
|
post_process_lockfile(lockfile_body)
|
|
83
|
-
rescue SharedHelpers::HelperSubprocessFailed => e
|
|
84
|
-
raise unless ruby_lock_error?(e)
|
|
85
|
-
|
|
86
|
-
@dont_lock_ruby_version = true
|
|
87
|
-
retry
|
|
88
|
-
end
|
|
89
|
-
|
|
90
|
-
def ruby_lock_error?(error)
|
|
91
|
-
return false unless error.error_class == "Bundler::VersionConflict"
|
|
92
|
-
return false unless error.message.include?(" for gem \"ruby\0\"")
|
|
93
|
-
return false if @dont_lock_ruby_version
|
|
94
|
-
|
|
95
|
-
dependency_files.any? { |f| f.name.end_with?(".gemspec") }
|
|
96
82
|
end
|
|
97
83
|
|
|
98
84
|
def write_temporary_dependency_files
|
|
99
|
-
File.write(gemfile.name,
|
|
85
|
+
File.write(gemfile.name, updated_gemfile_content(gemfile))
|
|
100
86
|
File.write(lockfile.name, sanitized_lockfile_body)
|
|
101
87
|
|
|
102
88
|
top_level_gemspecs.each do |gemspec|
|
|
@@ -236,21 +222,6 @@ module Dependabot
|
|
|
236
222
|
end
|
|
237
223
|
# rubocop:enable Metrics/PerceivedComplexity
|
|
238
224
|
|
|
239
|
-
def prepared_gemfile_content(file)
|
|
240
|
-
content =
|
|
241
|
-
GemfileUpdater.new(
|
|
242
|
-
dependencies: dependencies,
|
|
243
|
-
gemfile: file
|
|
244
|
-
).updated_gemfile_content
|
|
245
|
-
return content if @dont_lock_ruby_version
|
|
246
|
-
|
|
247
|
-
top_level_gemspecs.each do |gs|
|
|
248
|
-
content = RubyRequirementSetter.new(gemspec: gs).rewrite(content)
|
|
249
|
-
end
|
|
250
|
-
|
|
251
|
-
content
|
|
252
|
-
end
|
|
253
|
-
|
|
254
225
|
def updated_gemfile_content(file)
|
|
255
226
|
GemfileUpdater.new(
|
|
256
227
|
dependencies: dependencies,
|
|
@@ -73,7 +73,7 @@ module Dependabot
|
|
|
73
73
|
class Rewriter < Parser::TreeRewriter
|
|
74
74
|
# TODO: Ideally we wouldn't have to ignore all of these, but
|
|
75
75
|
# implementing each one will be tricky.
|
|
76
|
-
SKIPPED_TYPES = %i(send lvar dstr begin if splat const or).freeze
|
|
76
|
+
SKIPPED_TYPES = %i(send lvar dstr begin if case splat const or).freeze
|
|
77
77
|
|
|
78
78
|
def initialize(dependency:, file_type:, updated_requirement:,
|
|
79
79
|
insert_if_bare:)
|
|
@@ -11,7 +11,7 @@ module Dependabot
|
|
|
11
11
|
class RubyVersionNotFound < StandardError; end
|
|
12
12
|
|
|
13
13
|
RUBY_VERSIONS = %w(
|
|
14
|
-
1.8.7 1.9.3 2.0.0 2.1.10 2.2.10 2.3.8 2.4.10 2.5.9 2.6.7 2.7.3 3.0.1
|
|
14
|
+
1.8.7 1.9.3 2.0.0 2.1.10 2.2.10 2.3.8 2.4.10 2.5.9 2.6.7 2.7.3 3.0.1 3.1.1
|
|
15
15
|
).freeze
|
|
16
16
|
|
|
17
17
|
attr_reader :gemspec
|
|
@@ -139,7 +139,8 @@ module Dependabot
|
|
|
139
139
|
end
|
|
140
140
|
|
|
141
141
|
def ruby_lock_error?(error)
|
|
142
|
-
return false unless error.message.include?(" for
|
|
142
|
+
return false unless error.message.include?(" for the Ruby\0 version") || # Bundler 2
|
|
143
|
+
error.message.include?(" for gem \"ruby\0\"") # Bundler 1
|
|
143
144
|
return false if @gemspec_ruby_unlocked
|
|
144
145
|
|
|
145
146
|
dependency_files.any? { |f| f.name.end_with?(".gemspec") }
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-bundler
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.180.
|
|
4
|
+
version: 0.180.3
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-
|
|
11
|
+
date: 2022-04-04 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.180.
|
|
19
|
+
version: 0.180.3
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.180.
|
|
26
|
+
version: 0.180.3
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -100,14 +100,14 @@ dependencies:
|
|
|
100
100
|
requirements:
|
|
101
101
|
- - "~>"
|
|
102
102
|
- !ruby/object:Gem::Version
|
|
103
|
-
version: 1.
|
|
103
|
+
version: 1.26.0
|
|
104
104
|
type: :development
|
|
105
105
|
prerelease: false
|
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
|
107
107
|
requirements:
|
|
108
108
|
- - "~>"
|
|
109
109
|
- !ruby/object:Gem::Version
|
|
110
|
-
version: 1.
|
|
110
|
+
version: 1.26.0
|
|
111
111
|
- !ruby/object:Gem::Dependency
|
|
112
112
|
name: simplecov
|
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|