dependabot-bundler 0.121.0 → 0.121.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/bundler/file_updater.rb +11 -64
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: b9702d2fb4d55854395b475a6cf258c881222f6052aa2866c9afa3e7ccf380af
|
4
|
+
data.tar.gz: 31e57d6a1b51ca27333521e539ab891599a6339ca39b9bce2dc5a5213a64657c
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: d287fdf1b96b8ef28491c6325f83cab75a8ef5f571e0b45e2462fc2ddbc81969a4628932564f48780e3563fd0ecff3409c9a185f96ba02a8da6f20fea9cad6ac
|
7
|
+
data.tar.gz: 385581b53698e6dfbbbdce6e9d76f8c47a2e207b6e2dc8fabcd0942012304ef9952a59939648849dd7a01717f5908ba3ddcfdd7461444e51691a227f7a2b48dc
|
@@ -2,6 +2,7 @@
|
|
2
2
|
|
3
3
|
require "dependabot/file_updaters"
|
4
4
|
require "dependabot/file_updaters/base"
|
5
|
+
require "dependabot/file_updaters/vendor_updater"
|
5
6
|
|
6
7
|
module Dependabot
|
7
8
|
module Bundler
|
@@ -21,6 +22,7 @@ module Dependabot
|
|
21
22
|
end
|
22
23
|
|
23
24
|
# rubocop:disable Metrics/PerceivedComplexity
|
25
|
+
# rubocop:disable Metrics/AbcSize
|
24
26
|
def updated_dependency_files
|
25
27
|
updated_files = []
|
26
28
|
|
@@ -54,13 +56,16 @@ module Dependabot
|
|
54
56
|
check_updated_files(updated_files)
|
55
57
|
|
56
58
|
base_dir = updated_files.first.directory
|
57
|
-
|
59
|
+
vendor_updater.
|
60
|
+
updated_vendor_cache_files(base_directory: base_dir).
|
61
|
+
each do |file|
|
58
62
|
updated_files << file
|
59
63
|
end
|
60
64
|
|
61
65
|
updated_files
|
62
66
|
end
|
63
67
|
# rubocop:enable Metrics/PerceivedComplexity
|
68
|
+
# rubocop:enable Metrics/AbcSize
|
64
69
|
|
65
70
|
private
|
66
71
|
|
@@ -76,69 +81,11 @@ module Dependabot
|
|
76
81
|
end
|
77
82
|
end
|
78
83
|
|
79
|
-
|
80
|
-
|
81
|
-
|
82
|
-
|
83
|
-
|
84
|
-
return [] unless repo_contents_path && vendor_cache_dir
|
85
|
-
|
86
|
-
Dir.chdir(repo_contents_path) do
|
87
|
-
relative_dir = vendor_cache_dir.sub("#{repo_contents_path}/", "")
|
88
|
-
status = SharedHelpers.run_shell_command(
|
89
|
-
"git status --untracked-files=all --porcelain=v1 #{relative_dir}"
|
90
|
-
)
|
91
|
-
changed_paths = status.split("\n").map { |l| l.split(" ") }
|
92
|
-
changed_paths.map do |type, path|
|
93
|
-
deleted = type == "D"
|
94
|
-
encoding = ""
|
95
|
-
encoded_content = File.read(path) unless deleted
|
96
|
-
if binary_file?(path)
|
97
|
-
encoding = Dependabot::DependencyFile::ContentEncoding::BASE64
|
98
|
-
encoded_content = Base64.encode64(encoded_content) unless deleted
|
99
|
-
end
|
100
|
-
Dependabot::DependencyFile.new(
|
101
|
-
name: path,
|
102
|
-
content: encoded_content,
|
103
|
-
directory: base_directory,
|
104
|
-
deleted: deleted,
|
105
|
-
content_encoding: encoding
|
106
|
-
)
|
107
|
-
end
|
108
|
-
end
|
109
|
-
end
|
110
|
-
|
111
|
-
# notable filenames without a reliable extension:
|
112
|
-
TEXT_FILE_NAMES = [
|
113
|
-
"Gemfile",
|
114
|
-
"Gemfile.lock",
|
115
|
-
".bundlecache",
|
116
|
-
".gitignore"
|
117
|
-
].freeze
|
118
|
-
|
119
|
-
TEXT_FILE_EXTS = [
|
120
|
-
# code
|
121
|
-
".rb",
|
122
|
-
".erb",
|
123
|
-
".gemspec",
|
124
|
-
".js",
|
125
|
-
".html",
|
126
|
-
# config
|
127
|
-
".json",
|
128
|
-
".xml",
|
129
|
-
".toml",
|
130
|
-
".yaml",
|
131
|
-
".yml",
|
132
|
-
# docs
|
133
|
-
".md",
|
134
|
-
".txt"
|
135
|
-
].freeze
|
136
|
-
|
137
|
-
def binary_file?(path)
|
138
|
-
return false if TEXT_FILE_NAMES.include?(File.basename(path))
|
139
|
-
return false if TEXT_FILE_EXTS.include?(File.extname(path))
|
140
|
-
|
141
|
-
true
|
84
|
+
def vendor_updater
|
85
|
+
Dependabot::FileUpdaters::VendorUpdater.new(
|
86
|
+
repo_contents_path: repo_contents_path,
|
87
|
+
vendor_dir: vendor_cache_dir
|
88
|
+
)
|
142
89
|
end
|
143
90
|
|
144
91
|
def check_required_files
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-bundler
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.121.
|
4
|
+
version: 0.121.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-10-
|
11
|
+
date: 2020-10-07 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.121.
|
19
|
+
version: 0.121.1
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.121.
|
26
|
+
version: 0.121.1
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|