dependabot-bundler 0.113.15 → 0.113.16
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: de023b2e75a79ae21026b44a3a24e85d24adcd8b98bf594eb7a8b157d235861b
|
4
|
+
data.tar.gz: cc4c2b137cc4faede1f1c1caa40d034cec9b61dc67aca5cb017250da6b4b4bc0
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: fa2be8b27cd377645b16830c631afb44d69f073c243c176c9e057c124cd8fb14a8b00494ddc998bbddd7b781609370de026020be74fbf0679540a273d6bb08b7
|
7
|
+
data.tar.gz: 823307c93ddbede9a8b6ff5d7e989a59e7e5670d0ec68816194210ebdde7c2492981a0b6b5469e5245d3be74423b633384fe51c5e05f170dbd49cc0ebff770f4
|
@@ -60,11 +60,11 @@ module Dependabot
|
|
60
60
|
replace_version_assignments(node)
|
61
61
|
|
62
62
|
# Replace the `s.files= ...` assignment with a blank array, as
|
63
|
-
#
|
63
|
+
# occasionally a File.open(..).readlines pattern is used
|
64
64
|
replace_file_assignments(node)
|
65
65
|
|
66
66
|
# Replace the `s.require_path= ...` assignment, as
|
67
|
-
#
|
67
|
+
# occasionally a Dir['lib'] pattern is used
|
68
68
|
replace_require_paths_assignments(node)
|
69
69
|
|
70
70
|
# Replace any `File.read(...)` calls with a dummy string
|
@@ -276,7 +276,7 @@ module Dependabot
|
|
276
276
|
)
|
277
277
|
end
|
278
278
|
|
279
|
-
# Only allow upgrades.
|
279
|
+
# Only allow upgrades. Otherwise it's unlikely that this
|
280
280
|
# resolution will be found by the FileUpdater
|
281
281
|
::Bundler.settings.set_command_option(
|
282
282
|
"only_update_to_newer_versions",
|
@@ -126,7 +126,7 @@ module Dependabot
|
|
126
126
|
|
127
127
|
def error_due_to_restrictive_upper_bound?(error)
|
128
128
|
# We see this when the dependency doesn't appear in the lockfile and
|
129
|
-
# has an overly
|
129
|
+
# has an overly restrictive upper bound that we've added, either due
|
130
130
|
# to an ignore condition or us missing that a pre-release is required
|
131
131
|
# (as another dependency places a pre-release requirement on the dep)
|
132
132
|
return false if dependency.appears_in_lockfile?
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-bundler
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.113.
|
4
|
+
version: 0.113.16
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-10-
|
11
|
+
date: 2019-10-28 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.113.
|
19
|
+
version: 0.113.16
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.113.
|
26
|
+
version: 0.113.16
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|