dependabot-bundler 0.181.0 → 0.182.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/v2/build +3 -3
  3. data/helpers/v2/monkey_patches/definition_ruby_version_patch.rb +18 -2
  4. data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +12 -1
  5. data/lib/dependabot/bundler/helpers.rb +1 -1
  6. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: dd13dd7f8f5050ff58f1bc327f8910fd3e055f0ea1948ea86b861d0003f2b5a0
4
- data.tar.gz: fdc7bf5c0c4551757fd75c227244e6cda24761b306faf710b175a24d631fbdd2
3
+ metadata.gz: b6e8b17a6202f2d8376e6c74105653cb6b2f1b509a15eaefe449b7e2910cd176
4
+ data.tar.gz: 497ece32e4c87242d7a265d9285d4f5b39035d484dca5c94da19ff468edf8666
5
5
  SHA512:
6
- metadata.gz: 7647a1c27872515ee4d8156a91d5d7040a36302e4337d59bf06dac29f88478cf2303abe36252130bab534c0e076a3b5b0974bcbb2202cf660ee005ed3f1a7757
7
- data.tar.gz: 6f73826f5f4f7af9abfd957d15ea785cffab809afebdb21e020695cc3f62566a7dae0bddf97f2f200cdb919b87f900f679887651f7e1f630e3fb0227b878c5ff
6
+ metadata.gz: c4e3b2c446bd563b4c92cecdcab9eb8b562f8f85be7cf910f0906fd22dd03490f0ec28e5dbe28028d4ff1a40499e875bb5f6a8da3e27ede67ee81e9a6f372e26
7
+ data.tar.gz: 21132929ba3121c4c91aa5756e156e1c43336a3bb711df73df7293de171168e34b15176dc1f028928dda5c2056a4ca4788310a1c39a02af204d52721a280a544
data/helpers/v2/build CHANGED
@@ -22,6 +22,6 @@ cd "$install_dir"
22
22
 
23
23
  # NOTE: Sets `BUNDLED WITH` to match the installed v2 version in Gemfile.lock
24
24
  # forcing specs and native helpers to run with the same version
25
- BUNDLER_VERSION=2.3.10 bundle config --local path ".bundle"
26
- BUNDLER_VERSION=2.3.10 bundle config --local without "test"
27
- BUNDLER_VERSION=2.3.10 bundle install
25
+ BUNDLER_VERSION=2.3.12 bundle config --local path ".bundle"
26
+ BUNDLER_VERSION=2.3.12 bundle config --local without "test"
27
+ BUNDLER_VERSION=2.3.12 bundle install
data/helpers/v2/monkey_patches/definition_ruby_version_patch.rb CHANGED
@@ -5,16 +5,32 @@ require "bundler/definition"
5
5
  module BundlerDefinitionRubyVersionPatch
6
6
  def source_requirements
7
7
  if ruby_version
8
- requested_version = ruby_version.to_gem_version_with_patchlevel
8
+ requested_version = ruby_version.gem_version
9
9
  sources.metadata_source.specs <<
10
10
  Gem::Specification.new("Ruby\0", requested_version)
11
11
  end
12
12
 
13
13
  sources.metadata_source.specs <<
14
- Gem::Specification.new("Ruby\0", "2.5.3p105")
14
+ Gem::Specification.new("Ruby\0", "2.5.3")
15
15
 
16
16
  super
17
17
  end
18
+
19
+ def metadata_dependencies
20
+ @metadata_dependencies ||=
21
+ [
22
+ Bundler::Dependency.new("Ruby\0", ruby_version_requirements),
23
+ Bundler::Dependency.new("RubyGems\0", Gem::VERSION)
24
+ ]
25
+ end
26
+
27
+ def ruby_version_requirements
28
+ return [] unless ruby_version
29
+
30
+ ruby_version.versions.map do |version|
31
+ Gem::Requirement.new(version)
32
+ end
33
+ end
18
34
  end
19
35
 
20
36
  Bundler::Definition.prepend(BundlerDefinitionRubyVersionPatch)
data/lib/dependabot/bundler/file_updater/lockfile_updater.rb CHANGED
@@ -16,6 +16,7 @@ module Dependabot
16
16
  require_relative "gemspec_updater"
17
17
  require_relative "gemspec_sanitizer"
18
18
  require_relative "gemspec_dependency_name_finder"
19
+ require_relative "ruby_requirement_setter"
19
20
 
20
21
  LOCKFILE_ENDING =
21
22
  /(?<ending>\s*(?:RUBY VERSION|BUNDLED WITH).*)/m.freeze
@@ -82,7 +83,7 @@ module Dependabot
82
83
  end
83
84
 
84
85
  def write_temporary_dependency_files
85
- File.write(gemfile.name, updated_gemfile_content(gemfile))
86
+ File.write(gemfile.name, prepared_gemfile_content(gemfile))
86
87
  File.write(lockfile.name, sanitized_lockfile_body)
87
88
 
88
89
  top_level_gemspecs.each do |gemspec|
@@ -222,6 +223,16 @@ module Dependabot
222
223
  end
223
224
  # rubocop:enable Metrics/PerceivedComplexity
224
225
 
226
+ def prepared_gemfile_content(file)
227
+ content = updated_gemfile_content(file)
228
+
229
+ top_level_gemspecs.each do |gs|
230
+ content = RubyRequirementSetter.new(gemspec: gs).rewrite(content)
231
+ end
232
+
233
+ content
234
+ end
235
+
225
236
  def updated_gemfile_content(file)
226
237
  GemfileUpdater.new(
227
238
  dependencies: dependencies,
data/lib/dependabot/bundler/helpers.rb CHANGED
@@ -4,7 +4,7 @@ module Dependabot
4
4
  module Bundler
5
5
  module Helpers
6
6
  V1 = "1.17.3"
7
- V2 = "2.3.10"
7
+ V2 = "2.3.12"
8
8
  # If we are updating a project with no Gemfile.lock, we default to the
9
9
  # newest version we support
10
10
  DEFAULT = V2
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.181.0
4
+ version: 0.182.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-04-19 00:00:00.000000000 Z
11
+ date: 2022-04-25 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.181.0
19
+ version: 0.182.2
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.181.0
26
+ version: 0.182.2
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debase
29
29
  requirement: !ruby/object:Gem::Requirement