dependabot-bundler 0.185.0 → 0.186.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 149703a633283283d90f697876543e96944f656162a6011d8e583f4fdc3f86c8
4
- data.tar.gz: d3cc9b9a84e614a943a33fbdc92d403ed61b3941d5485a26b186b647b97a90aa
3
+ metadata.gz: 2a0f90207335cf7528e49bc8773731cf96917a0e4f7dd39e73b6decb189df7ee
4
+ data.tar.gz: a7357ba2899310567bc32698f92b1c9aac88e80e194d7c7fefa8b9cc75b65bd9
5
5
  SHA512:
6
- metadata.gz: 6c2e823978b05cf242308ba15a22470eceb7d777aba00700f3108adbe1ef4bce66a495c937e05dccf929494e53425bb2b5b4155eddd0ce5a95c84e35b60265b8
7
- data.tar.gz: b97fb4091560f8bbcfe627bb8aa72421c66a1739313e8b334ced53d7d7b2204f44f2463a97b2f1c000695a09de230e65e5691cc8e36296d72891fb0213a2862e
6
+ metadata.gz: ce5bc9d8bc8f7a03471f4f5e328145f64e31c8c915690f38241654182e32f5a5a6bec74510f1983387e27564634cdc94e86ad265e768dfbdf4f47cf9e1c2f09c
7
+ data.tar.gz: 6d22fb4bf04d24383bf2de07d56da79acc0f19fc0b552f2bb62696ed9ea2afaabb270b9471062ab9fa7567d370e7e026e6ab8501d25a28bffc4fbc5310467f8f
@@ -1,5 +1,7 @@
1
1
  # frozen_string_literal: true
2
2
 
3
+ require "uri"
4
+
3
5
  module Functions
4
6
  class FileParser
5
7
  def initialize(lockfile_name:)
@@ -73,7 +75,12 @@ module Functions
73
75
  return true if source.nil?
74
76
  return false unless source.is_a?(Bundler::Source::Rubygems)
75
77
 
76
- source.remotes.any? { |r| r.to_s.include?("rubygems.org") }
78
+ source.remotes.any? do |r|
79
+ [
80
+ "rubygems.org",
81
+ "www.rubygems.org"
82
+ ].include?(URI(r.to_s).host)
83
+ end
77
84
  end
78
85
 
79
86
  def serialize_bundler_dependency(dependency)
@@ -1,5 +1,7 @@
1
1
  # frozen_string_literal: true
2
2
 
3
+ require "uri"
4
+
3
5
  module Functions
4
6
  class FileParser
5
7
  def initialize(lockfile_name:)
@@ -74,7 +76,12 @@ module Functions
74
76
  return true if source.nil?
75
77
  return false unless source.is_a?(Bundler::Source::Rubygems)
76
78
 
77
- source.remotes.any? { |r| r.to_s.include?("rubygems.org") }
79
+ source.remotes.any? do |r|
80
+ [
81
+ "rubygems.org",
82
+ "www.rubygems.org"
83
+ ].include?(URI(r.to_s).host)
84
+ end
78
85
  end
79
86
 
80
87
  def serialize_bundler_dependency(dependency)
@@ -1,6 +1,7 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  require "excon"
4
+ require "uri"
4
5
 
5
6
  require "dependabot/bundler/update_checker"
6
7
  require "dependabot/bundler/native_helpers"
@@ -143,7 +144,10 @@ module Dependabot
143
144
  regex = BundlerErrorPatterns::HTTP_ERR_REGEX
144
145
  if error.message.match?(regex)
145
146
  source = error.message.match(regex)[:source]
146
- raise if source.end_with?("rubygems.org/")
147
+ raise if [
148
+ "rubygems.org",
149
+ "www.rubygems.org"
150
+ ].include?(URI(source).host)
147
151
 
148
152
  raise Dependabot::PrivateSourceTimedOut, source
149
153
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.185.0
4
+ version: 0.186.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-05-09 00:00:00.000000000 Z
11
+ date: 2022-05-10 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.185.0
19
+ version: 0.186.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.185.0
26
+ version: 0.186.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debase
29
29
  requirement: !ruby/object:Gem::Requirement