dependabot-bundler 0.226.0 → 0.227.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/v1/lib/functions/force_updater.rb +2 -2
- data/helpers/v1/lib/functions/lockfile_updater.rb +3 -5
- data/helpers/v1/lib/functions/version_resolver.rb +2 -2
- data/helpers/v2/lib/functions/lockfile_updater.rb +3 -3
- data/helpers/v2/lib/functions/version_resolver.rb +2 -2
- metadata +7 -7
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 7023595adf12fbe47753c88f1f18a95d56ef336c503a76fdd1335c33b3bb8494
|
|
4
|
+
data.tar.gz: 2e100abbbdf9ac7c9768000c23386556a655c07022240f7a116f33361cbc11cf
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 2834e755780893f71734a610865eb1575974aa20824b9ebd1a1e340c1c7824700eb7a4ae23546288f74da808228d1258ebe7e446d93af987fb3552db7764badd
|
|
7
|
+
data.tar.gz: d484aa2915784b4cbfafe2105982531471eb2bc86886f369a4d6797b7cce397243299b22edc33cda782e701d7f96fa812796350094bb716fc1cfc2c3f698d8d4
|
|
@@ -147,10 +147,10 @@ module Functions
|
|
|
147
147
|
return [] unless lockfile
|
|
148
148
|
|
|
149
149
|
all_deps = Bundler::LockfileParser.new(lockfile).
|
|
150
|
-
specs.map
|
|
150
|
+
specs.map { |x| x.name.to_s }
|
|
151
151
|
top_level = Bundler::Definition.
|
|
152
152
|
build(gemfile_name, lockfile_name, {}).
|
|
153
|
-
dependencies.map
|
|
153
|
+
dependencies.map { |x| x.name.to_s }
|
|
154
154
|
|
|
155
155
|
all_deps - top_level
|
|
156
156
|
end
|
|
@@ -136,12 +136,11 @@ module Functions
|
|
|
136
136
|
dependencies_to_unlock << gem_name
|
|
137
137
|
end
|
|
138
138
|
|
|
139
|
-
# rubocop:disable Metrics/PerceivedComplexity
|
|
140
139
|
def unlock_blocking_subdeps(dependencies_to_unlock, error)
|
|
141
140
|
all_deps = Bundler::LockfileParser.new(lockfile).
|
|
142
|
-
specs.map
|
|
141
|
+
specs.map { |x| x.name.to_s }
|
|
143
142
|
top_level = build_definition([]).dependencies.
|
|
144
|
-
map
|
|
143
|
+
map { |x| x.name.to_s }
|
|
145
144
|
allowed_new_unlocks = all_deps - top_level - dependencies_to_unlock
|
|
146
145
|
|
|
147
146
|
raise if allowed_new_unlocks.none?
|
|
@@ -163,7 +162,6 @@ module Functions
|
|
|
163
162
|
# information to chart the full path through all conflicts unwound
|
|
164
163
|
dependencies_to_unlock.append(*allowed_new_unlocks)
|
|
165
164
|
end
|
|
166
|
-
# rubocop:enable Metrics/PerceivedComplexity
|
|
167
165
|
|
|
168
166
|
def build_definition(dependencies_to_unlock)
|
|
169
167
|
defn = Bundler::Definition.build(
|
|
@@ -177,7 +175,7 @@ module Functions
|
|
|
177
175
|
# subdeps unlocked, like they were in the UpdateChecker, so we
|
|
178
176
|
# mutate the unlocked gems array.
|
|
179
177
|
unlocked = defn.instance_variable_get(:@unlock).fetch(:gems)
|
|
180
|
-
must_not_unlock = defn.dependencies.map
|
|
178
|
+
must_not_unlock = defn.dependencies.map { |x| x.name.to_s } -
|
|
181
179
|
dependencies_to_unlock
|
|
182
180
|
unlocked.reject! { |n| must_not_unlock.include?(n) }
|
|
183
181
|
|
|
@@ -82,9 +82,9 @@ module Functions
|
|
|
82
82
|
return [] unless lockfile
|
|
83
83
|
|
|
84
84
|
all_deps = ::Bundler::LockfileParser.new(lockfile).
|
|
85
|
-
specs.map
|
|
85
|
+
specs.map { |x| x.name.to_s }.uniq
|
|
86
86
|
top_level = build_definition([]).dependencies.
|
|
87
|
-
map
|
|
87
|
+
map { |x| x.name.to_s }
|
|
88
88
|
|
|
89
89
|
all_deps - top_level
|
|
90
90
|
end
|
|
@@ -144,9 +144,9 @@ module Functions
|
|
|
144
144
|
end
|
|
145
145
|
|
|
146
146
|
def unlock_blocking_subdeps(dependencies_to_unlock, error)
|
|
147
|
-
all_deps = lockfile_specs.map
|
|
147
|
+
all_deps = lockfile_specs.map { |x| x.name.to_s }
|
|
148
148
|
top_level = build_definition([]).dependencies.
|
|
149
|
-
map
|
|
149
|
+
map { |x| x.name.to_s }
|
|
150
150
|
allowed_new_unlocks = all_deps - top_level - dependencies_to_unlock
|
|
151
151
|
|
|
152
152
|
raise if allowed_new_unlocks.none?
|
|
@@ -187,7 +187,7 @@ module Functions
|
|
|
187
187
|
# subdeps unlocked, like they were in the UpdateChecker, so we
|
|
188
188
|
# mutate the unlocked gems array.
|
|
189
189
|
unlocked = defn.instance_variable_get(:@unlock).fetch(:gems)
|
|
190
|
-
must_not_unlock = defn.dependencies.map
|
|
190
|
+
must_not_unlock = defn.dependencies.map { |x| x.name.to_s } -
|
|
191
191
|
dependencies_to_unlock
|
|
192
192
|
unlocked.reject! { |n| must_not_unlock.include?(n) }
|
|
193
193
|
|
|
@@ -82,9 +82,9 @@ module Functions
|
|
|
82
82
|
return [] unless lockfile
|
|
83
83
|
|
|
84
84
|
all_deps = ::Bundler::LockfileParser.new(lockfile).
|
|
85
|
-
specs.map
|
|
85
|
+
specs.map { |x| x.name.to_s }.uniq
|
|
86
86
|
top_level = build_definition([]).dependencies.
|
|
87
|
-
map
|
|
87
|
+
map { |x| x.name.to_s }
|
|
88
88
|
|
|
89
89
|
all_deps - top_level
|
|
90
90
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-bundler
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.227.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2023-08-
|
|
11
|
+
date: 2023-08-18 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.227.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.227.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -128,14 +128,14 @@ dependencies:
|
|
|
128
128
|
requirements:
|
|
129
129
|
- - "~>"
|
|
130
130
|
- !ruby/object:Gem::Version
|
|
131
|
-
version: 1.
|
|
131
|
+
version: 1.19.0
|
|
132
132
|
type: :development
|
|
133
133
|
prerelease: false
|
|
134
134
|
version_requirements: !ruby/object:Gem::Requirement
|
|
135
135
|
requirements:
|
|
136
136
|
- - "~>"
|
|
137
137
|
- !ruby/object:Gem::Version
|
|
138
|
-
version: 1.
|
|
138
|
+
version: 1.19.0
|
|
139
139
|
- !ruby/object:Gem::Dependency
|
|
140
140
|
name: stackprof
|
|
141
141
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -268,7 +268,7 @@ licenses:
|
|
|
268
268
|
- Nonstandard
|
|
269
269
|
metadata:
|
|
270
270
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
271
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
271
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.227.0
|
|
272
272
|
post_install_message:
|
|
273
273
|
rdoc_options: []
|
|
274
274
|
require_paths:
|