dependabot-bundler 0.323.0 → 0.324.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 55a6b99667f0ff80fec338e2dd0309c8877f12c9d990bcabc30b02c608924ffe
|
|
4
|
+
data.tar.gz: 620809604eadbfca78e1bbb75165e84d7bcbf44cf008fffd3a51165eb8be54fa
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: a8ccd2b76ffd4e549aed85317933a71f69955a52f8a68a860c93e67761b5808e54c44fe95d74cb2b13f070fe2d58bd1266807714469c4aea8c6b083866ed2430
|
|
7
|
+
data.tar.gz: 82ad27d48844ae3d19f55e289840de300d546681b357c2ac6dbf2342c3c2fb333d57f09fb95599bb04ff9a7d2d63366ebebe6d3ff193f5f0a39d09cae098a061
|
|
@@ -27,6 +27,8 @@ module Dependabot
|
|
|
27
27
|
PACKAGE_LANGUAGE = "ruby"
|
|
28
28
|
APPLICATION_JSON = "application/json"
|
|
29
29
|
RUBYGEMS = "rubygems"
|
|
30
|
+
GIT = "git"
|
|
31
|
+
OTHER = "other"
|
|
30
32
|
|
|
31
33
|
sig do
|
|
32
34
|
params(
|
|
@@ -54,7 +56,12 @@ module Dependabot
|
|
|
54
56
|
|
|
55
57
|
sig { returns(Dependabot::Package::PackageDetails) }
|
|
56
58
|
def fetch
|
|
57
|
-
|
|
59
|
+
case source_type
|
|
60
|
+
when GIT, OTHER
|
|
61
|
+
package_details([])
|
|
62
|
+
else
|
|
63
|
+
rubygems_versions
|
|
64
|
+
end
|
|
58
65
|
end
|
|
59
66
|
|
|
60
67
|
private
|
|
@@ -183,6 +190,16 @@ module Dependabot
|
|
|
183
190
|
Requirement.new(req_string)
|
|
184
191
|
end
|
|
185
192
|
|
|
193
|
+
sig { returns(T.nilable(String)) }
|
|
194
|
+
def source_type
|
|
195
|
+
return nil unless dependency.requirements.any?
|
|
196
|
+
|
|
197
|
+
first_requirement = dependency.requirements.first
|
|
198
|
+
return nil unless first_requirement && first_requirement[:source]
|
|
199
|
+
|
|
200
|
+
first_requirement[:source][:type]
|
|
201
|
+
end
|
|
202
|
+
|
|
186
203
|
sig { override.returns(String) }
|
|
187
204
|
def bundler_version
|
|
188
205
|
@bundler_version ||= T.let(Helpers.bundler_version(lockfile), T.nilable(String))
|
|
@@ -59,17 +59,15 @@ module Dependabot
|
|
|
59
59
|
|
|
60
60
|
sig { returns(T.nilable(T::Hash[Symbol, T.untyped])) }
|
|
61
61
|
def latest_version_details
|
|
62
|
-
@latest_version_details ||=
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
fetch_latest_version_details
|
|
67
|
-
end
|
|
62
|
+
@latest_version_details ||= begin
|
|
63
|
+
latest_version = fetch_latest_version(language_version: nil)
|
|
64
|
+
latest_version ? { version: latest_version } : nil
|
|
65
|
+
end
|
|
68
66
|
end
|
|
69
67
|
|
|
70
68
|
sig { override.returns(T::Boolean) }
|
|
71
69
|
def cooldown_enabled?
|
|
72
|
-
|
|
70
|
+
true
|
|
73
71
|
end
|
|
74
72
|
|
|
75
73
|
sig { override.returns(T.nilable(T::Array[Dependabot::Package::PackageRelease])) }
|
|
@@ -86,21 +84,6 @@ module Dependabot
|
|
|
86
84
|
|
|
87
85
|
private
|
|
88
86
|
|
|
89
|
-
sig { returns(T.nilable(T::Hash[Symbol, Dependabot::Version])) }
|
|
90
|
-
def fetch_latest_version_details
|
|
91
|
-
return dependency_source.latest_git_version_details if dependency_source.git?
|
|
92
|
-
|
|
93
|
-
relevant_versions = releases_from_dependency_source
|
|
94
|
-
relevant_versions = filter_prerelease_versions(relevant_versions)
|
|
95
|
-
relevant_versions = filter_ignored_versions(relevant_versions)
|
|
96
|
-
|
|
97
|
-
return if relevant_versions.empty?
|
|
98
|
-
|
|
99
|
-
release = relevant_versions.max_by(&:version)
|
|
100
|
-
|
|
101
|
-
{ version: release&.version }
|
|
102
|
-
end
|
|
103
|
-
|
|
104
87
|
sig do
|
|
105
88
|
params(language_version: T.nilable(T.any(String, Dependabot::Version)))
|
|
106
89
|
.returns(T.nilable(Dependabot::Version))
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-bundler
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.324.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -15,14 +15,14 @@ dependencies:
|
|
|
15
15
|
requirements:
|
|
16
16
|
- - '='
|
|
17
17
|
- !ruby/object:Gem::Version
|
|
18
|
-
version: 0.
|
|
18
|
+
version: 0.324.0
|
|
19
19
|
type: :runtime
|
|
20
20
|
prerelease: false
|
|
21
21
|
version_requirements: !ruby/object:Gem::Requirement
|
|
22
22
|
requirements:
|
|
23
23
|
- - '='
|
|
24
24
|
- !ruby/object:Gem::Version
|
|
25
|
-
version: 0.
|
|
25
|
+
version: 0.324.0
|
|
26
26
|
- !ruby/object:Gem::Dependency
|
|
27
27
|
name: parallel
|
|
28
28
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -322,7 +322,7 @@ licenses:
|
|
|
322
322
|
- MIT
|
|
323
323
|
metadata:
|
|
324
324
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
325
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
325
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.324.0
|
|
326
326
|
rdoc_options: []
|
|
327
327
|
require_paths:
|
|
328
328
|
- lib
|