dependabot-bundler 0.183.0 → 0.186.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/v1/lib/functions/file_parser.rb +8 -1
  3. data/helpers/v2/lib/functions/file_parser.rb +8 -1
  4. data/lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb +5 -1
  5. metadata +24 -10
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 9f6a0f1e467dcdd82c6884edfe4bec3b97cefd3c5cea942274c7ffde0183d3e2
4
- data.tar.gz: f3b0653b2dae2a251cb1827b7111b0fe658f10a9545091d2c9bc8a9cf860b255
3
+ metadata.gz: 2a0f90207335cf7528e49bc8773731cf96917a0e4f7dd39e73b6decb189df7ee
4
+ data.tar.gz: a7357ba2899310567bc32698f92b1c9aac88e80e194d7c7fefa8b9cc75b65bd9
5
5
  SHA512:
6
- metadata.gz: 7546b06f325eef94bd09a0a6b934d0a58fb2f4e6173343ca4740370b506b441963ef2491da6751deafe2fac5a6c4138cea068d5b9461d61147db0cd425bab0cc
7
- data.tar.gz: f35d76e5cdc0a0fd284a01f731bf9e2b9c28135f136a11a261317d28e6b030e688923ec81c1bae47ab0642c7211418ac897d931e62bb8a51909b0d2120fd05db
6
+ metadata.gz: ce5bc9d8bc8f7a03471f4f5e328145f64e31c8c915690f38241654182e32f5a5a6bec74510f1983387e27564634cdc94e86ad265e768dfbdf4f47cf9e1c2f09c
7
+ data.tar.gz: 6d22fb4bf04d24383bf2de07d56da79acc0f19fc0b552f2bb62696ed9ea2afaabb270b9471062ab9fa7567d370e7e026e6ab8501d25a28bffc4fbc5310467f8f
data/helpers/v1/lib/functions/file_parser.rb CHANGED
@@ -1,5 +1,7 @@
1
1
  # frozen_string_literal: true
2
2
 
3
+ require "uri"
4
+
3
5
  module Functions
4
6
  class FileParser
5
7
  def initialize(lockfile_name:)
@@ -73,7 +75,12 @@ module Functions
73
75
  return true if source.nil?
74
76
  return false unless source.is_a?(Bundler::Source::Rubygems)
75
77
 
76
- source.remotes.any? { |r| r.to_s.include?("rubygems.org") }
78
+ source.remotes.any? do |r|
79
+ [
80
+ "rubygems.org",
81
+ "www.rubygems.org"
82
+ ].include?(URI(r.to_s).host)
83
+ end
77
84
  end
78
85
 
79
86
  def serialize_bundler_dependency(dependency)
data/helpers/v2/lib/functions/file_parser.rb CHANGED
@@ -1,5 +1,7 @@
1
1
  # frozen_string_literal: true
2
2
 
3
+ require "uri"
4
+
3
5
  module Functions
4
6
  class FileParser
5
7
  def initialize(lockfile_name:)
@@ -74,7 +76,12 @@ module Functions
74
76
  return true if source.nil?
75
77
  return false unless source.is_a?(Bundler::Source::Rubygems)
76
78
 
77
- source.remotes.any? { |r| r.to_s.include?("rubygems.org") }
79
+ source.remotes.any? do |r|
80
+ [
81
+ "rubygems.org",
82
+ "www.rubygems.org"
83
+ ].include?(URI(r.to_s).host)
84
+ end
78
85
  end
79
86
 
80
87
  def serialize_bundler_dependency(dependency)
data/lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb CHANGED
@@ -1,6 +1,7 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  require "excon"
4
+ require "uri"
4
5
 
5
6
  require "dependabot/bundler/update_checker"
6
7
  require "dependabot/bundler/native_helpers"
@@ -143,7 +144,10 @@ module Dependabot
143
144
  regex = BundlerErrorPatterns::HTTP_ERR_REGEX
144
145
  if error.message.match?(regex)
145
146
  source = error.message.match(regex)[:source]
146
- raise if source.end_with?("rubygems.org/")
147
+ raise if [
148
+ "rubygems.org",
149
+ "www.rubygems.org"
150
+ ].include?(URI(source).host)
147
151
 
148
152
  raise Dependabot::PrivateSourceTimedOut, source
149
153
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.183.0
4
+ version: 0.186.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-04-29 00:00:00.000000000 Z
11
+ date: 2022-05-10 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,28 +16,42 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.183.0
19
+ version: 0.186.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.183.0
26
+ version: 0.186.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debase
29
29
  requirement: !ruby/object:Gem::Requirement
30
30
  requirements:
31
- - - "~>"
31
+ - - '='
32
32
  - !ruby/object:Gem::Version
33
- version: 0.2.4.1
33
+ version: 0.2.3
34
34
  type: :development
35
35
  prerelease: false
36
36
  version_requirements: !ruby/object:Gem::Requirement
37
37
  requirements:
38
- - - "~>"
38
+ - - '='
39
+ - !ruby/object:Gem::Version
40
+ version: 0.2.3
41
+ - !ruby/object:Gem::Dependency
42
+ name: debase-ruby_core_source
43
+ requirement: !ruby/object:Gem::Requirement
44
+ requirements:
45
+ - - '='
46
+ - !ruby/object:Gem::Version
47
+ version: 0.10.14
48
+ type: :development
49
+ prerelease: false
50
+ version_requirements: !ruby/object:Gem::Requirement
51
+ requirements:
52
+ - - '='
39
53
  - !ruby/object:Gem::Version
40
- version: 0.2.4.1
54
+ version: 0.10.14
41
55
  - !ruby/object:Gem::Dependency
42
56
  name: debug
43
57
  requirement: !ruby/object:Gem::Requirement
@@ -114,14 +128,14 @@ dependencies:
114
128
  requirements:
115
129
  - - "~>"
116
130
  - !ruby/object:Gem::Version
117
- version: 1.27.0
131
+ version: 1.28.2
118
132
  type: :development
119
133
  prerelease: false
120
134
  version_requirements: !ruby/object:Gem::Requirement
121
135
  requirements:
122
136
  - - "~>"
123
137
  - !ruby/object:Gem::Version
124
- version: 1.27.0
138
+ version: 1.28.2
125
139
  - !ruby/object:Gem::Dependency
126
140
  name: ruby-debug-ide
127
141
  requirement: !ruby/object:Gem::Requirement