dependabot-bundler 0.108.24 → 0.108.25
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/bundler/update_checker.rb +20 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: f3579ce9ab11965cc6adf3c8e92731d09e769ddb175fb4fe3d0efdde61c167d5
|
|
4
|
+
data.tar.gz: 0a571f739cb32ab37a4080783248c1afd800747c819f593c817b71045f636cf4
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 61375aada99c2319798aab1b767903ae20b8cf2828c8e2fb03c3ec11c19797171bdd43c2560f45dd8d72bcad8c759a982325867312b577ca4510b6629038d77b
|
|
7
|
+
data.tar.gz: 3bab2058a5d62f0131f746878eab25d6599b46348bd0b8ce7cdbac81d8bc991d7ca972c43c1302e6f23064bb79e3e8f84b396a890d808190d0889635641d80c3
|
|
@@ -158,6 +158,25 @@ module Dependabot
|
|
|
158
158
|
end
|
|
159
159
|
end
|
|
160
160
|
|
|
161
|
+
def git_tag_resolvable?(tag)
|
|
162
|
+
@git_tag_resolvable ||= {}
|
|
163
|
+
return @git_tag_resolvable[tag] if @git_tag_resolvable.key?(tag)
|
|
164
|
+
|
|
165
|
+
@git_tag_resolvable[tag] =
|
|
166
|
+
begin
|
|
167
|
+
VersionResolver.new(
|
|
168
|
+
dependency: dependency,
|
|
169
|
+
unprepared_dependency_files: dependency_files,
|
|
170
|
+
credentials: credentials,
|
|
171
|
+
ignored_versions: ignored_versions,
|
|
172
|
+
replacement_git_pin: tag
|
|
173
|
+
).latest_resolvable_version_details
|
|
174
|
+
true
|
|
175
|
+
rescue Dependabot::DependencyFileNotResolvable
|
|
176
|
+
false
|
|
177
|
+
end
|
|
178
|
+
end
|
|
179
|
+
|
|
161
180
|
def latest_version_details(remove_git_source: false)
|
|
162
181
|
@latest_version_details ||= {}
|
|
163
182
|
@latest_version_details[remove_git_source] ||=
|
|
@@ -253,7 +272,7 @@ module Dependabot
|
|
|
253
272
|
latest_tag_details = git_commit_checker.local_tag_for_latest_version
|
|
254
273
|
return false unless latest_tag_details
|
|
255
274
|
|
|
256
|
-
|
|
275
|
+
git_tag_resolvable?(latest_tag_details.fetch(:tag))
|
|
257
276
|
end
|
|
258
277
|
|
|
259
278
|
def git_branch_or_ref_in_release?(release)
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-bundler
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.108.
|
|
4
|
+
version: 0.108.25
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.108.
|
|
19
|
+
version: 0.108.25
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.108.
|
|
26
|
+
version: 0.108.25
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|