dependabot-bundler 0.135.0 → 0.136.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/v1/.bundle/config +2 -0
- data/helpers/v1/.gitignore +9 -0
- data/helpers/v1/Gemfile +7 -0
- data/helpers/{build → v1/build} +6 -0
- data/helpers/{lib → v1/lib}/functions.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/conflicting_dependency_resolver.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/dependency_source.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/file_parser.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/force_updater.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/lockfile_updater.rb +0 -0
- data/helpers/{lib → v1/lib}/functions/version_resolver.rb +0 -0
- data/helpers/{monkey_patches → v1/monkey_patches}/definition_bundler_version_patch.rb +0 -0
- data/helpers/{monkey_patches → v1/monkey_patches}/definition_ruby_version_patch.rb +0 -0
- data/helpers/{monkey_patches → v1/monkey_patches}/git_source_patch.rb +0 -0
- data/helpers/{run.rb → v1/run.rb} +0 -0
- data/lib/dependabot/bundler/file_parser.rb +9 -4
- data/lib/dependabot/bundler/file_updater.rb +7 -2
- data/lib/dependabot/bundler/file_updater/gemspec_sanitizer.rb +26 -5
- data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +7 -2
- data/lib/dependabot/bundler/helpers.rb +16 -0
- data/lib/dependabot/bundler/native_helpers.rb +27 -2
- data/lib/dependabot/bundler/update_checker/conflicting_dependency_resolver.rb +9 -2
- data/lib/dependabot/bundler/update_checker/force_updater.rb +7 -2
- data/lib/dependabot/bundler/update_checker/latest_version_finder/dependency_source.rb +18 -6
- data/lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb +9 -4
- data/lib/dependabot/bundler/update_checker/version_resolver.rb +7 -2
- metadata +20 -16
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 393bf9b8a90811c0809226907cbff66998c3fb481f16d23115cbf4e22444ed8e
|
|
4
|
+
data.tar.gz: 7e334d28a93224445785f7f23215d782bc3b2c70b177faf9f35276604ff1adae
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: efbd895bfb249b021160b2806b74449741d4d7dfb1e955436d3ef6919683b8465f8574708be01b9a3fca992dc5df06e055647d4236aea66b219fe3c5f48ade2f
|
|
7
|
+
data.tar.gz: 21d703a2ad5dfe9eeba687172f558ec0cf7abddd5e6b4f9dbf72d05dead39b6a5764857903982d2fa3809fa19b5acf75c2d3b006c5c5ce6e9fc80453f3f7460b
|
data/helpers/v1/Gemfile
ADDED
|
@@ -0,0 +1,7 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
source "https://rubygems.org"
|
|
4
|
+
|
|
5
|
+
# NOTE: This is intentionally left blank as it's currently only used to force
|
|
6
|
+
# bundler to use v1 when executing native helpers by pointing the BUNDLE_GEMFILE
|
|
7
|
+
# env to this Gemfile in Dependabot::Bundler::NativeHelpers
|
data/helpers/{build → v1/build}
RENAMED
|
@@ -10,9 +10,15 @@ fi
|
|
|
10
10
|
|
|
11
11
|
helpers_dir="$(dirname "${BASH_SOURCE[0]}")"
|
|
12
12
|
cp -r \
|
|
13
|
+
"$helpers_dir/.bundle" \
|
|
13
14
|
"$helpers_dir/lib" \
|
|
14
15
|
"$helpers_dir/monkey_patches" \
|
|
15
16
|
"$helpers_dir/run.rb" \
|
|
17
|
+
"$helpers_dir/Gemfile" \
|
|
16
18
|
"$install_dir"
|
|
17
19
|
|
|
18
20
|
cd "$install_dir"
|
|
21
|
+
|
|
22
|
+
# NOTE: Sets `BUNDLED WITH` to match the installed v1 version in Gemfile.lock
|
|
23
|
+
# forcing specs and native helpers to run with the same version
|
|
24
|
+
BUNDLER_VERSION=1 bundle install
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
File without changes
|
|
@@ -5,6 +5,7 @@ require "dependabot/file_parsers"
|
|
|
5
5
|
require "dependabot/file_parsers/base"
|
|
6
6
|
require "dependabot/bundler/file_updater/lockfile_updater"
|
|
7
7
|
require "dependabot/bundler/native_helpers"
|
|
8
|
+
require "dependabot/bundler/helpers"
|
|
8
9
|
require "dependabot/bundler/version"
|
|
9
10
|
require "dependabot/shared_helpers"
|
|
10
11
|
require "dependabot/errors"
|
|
@@ -129,8 +130,8 @@ module Dependabot
|
|
|
129
130
|
repo_contents_path) do
|
|
130
131
|
write_temporary_dependency_files
|
|
131
132
|
|
|
132
|
-
|
|
133
|
-
|
|
133
|
+
NativeHelpers.run_bundler_subprocess(
|
|
134
|
+
bundler_version: bundler_version,
|
|
134
135
|
function: "parsed_gemfile",
|
|
135
136
|
args: {
|
|
136
137
|
gemfile_name: gemfile.name,
|
|
@@ -159,8 +160,8 @@ module Dependabot
|
|
|
159
160
|
repo_contents_path) do
|
|
160
161
|
write_temporary_dependency_files
|
|
161
162
|
|
|
162
|
-
|
|
163
|
-
|
|
163
|
+
NativeHelpers.run_bundler_subprocess(
|
|
164
|
+
bundler_version: bundler_version,
|
|
164
165
|
function: "parsed_gemspec",
|
|
165
166
|
args: {
|
|
166
167
|
gemspec_name: file.name,
|
|
@@ -298,6 +299,10 @@ module Dependabot
|
|
|
298
299
|
select { |f| f.name.end_with?(".rb") }.
|
|
299
300
|
reject { |f| f.name == "gems.rb" }
|
|
300
301
|
end
|
|
302
|
+
|
|
303
|
+
def bundler_version
|
|
304
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
305
|
+
end
|
|
301
306
|
end
|
|
302
307
|
end
|
|
303
308
|
end
|
|
@@ -3,6 +3,7 @@
|
|
|
3
3
|
require "dependabot/file_updaters"
|
|
4
4
|
require "dependabot/file_updaters/base"
|
|
5
5
|
require "dependabot/bundler/native_helpers"
|
|
6
|
+
require "dependabot/bundler/helpers"
|
|
6
7
|
require "dependabot/file_updaters/vendor_updater"
|
|
7
8
|
|
|
8
9
|
module Dependabot
|
|
@@ -75,8 +76,8 @@ module Dependabot
|
|
|
75
76
|
return @vendor_cache_dir if defined?(@vendor_cache_dir)
|
|
76
77
|
|
|
77
78
|
@vendor_cache_dir =
|
|
78
|
-
|
|
79
|
-
|
|
79
|
+
NativeHelpers.run_bundler_subprocess(
|
|
80
|
+
bundler_version: bundler_version,
|
|
80
81
|
function: "vendor_cache_dir",
|
|
81
82
|
args: {
|
|
82
83
|
dir: repo_contents_path
|
|
@@ -159,6 +160,10 @@ module Dependabot
|
|
|
159
160
|
select { |file| file.name.end_with?(".gemspec") }.
|
|
160
161
|
reject(&:support_file?)
|
|
161
162
|
end
|
|
163
|
+
|
|
164
|
+
def bundler_version
|
|
165
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
166
|
+
end
|
|
162
167
|
end
|
|
163
168
|
end
|
|
164
169
|
end
|
|
@@ -234,11 +234,8 @@ module Dependabot
|
|
|
234
234
|
def remove_unnecessary_assignments(node)
|
|
235
235
|
return unless node.is_a?(Parser::AST::Node)
|
|
236
236
|
|
|
237
|
-
if unnecessary_assignment?(node) &&
|
|
238
|
-
|
|
239
|
-
range_to_remove = node.loc.expression.join(
|
|
240
|
-
node.children.last.location.heredoc_end
|
|
241
|
-
)
|
|
237
|
+
if unnecessary_assignment?(node) && node_includes_heredoc?(node)
|
|
238
|
+
range_to_remove = node.loc.expression.join(find_heredoc_end_range(node))
|
|
242
239
|
return replace(range_to_remove, '"sanitized"')
|
|
243
240
|
elsif unnecessary_assignment?(node)
|
|
244
241
|
return replace(node.loc.expression, '"sanitized"')
|
|
@@ -249,6 +246,30 @@ module Dependabot
|
|
|
249
246
|
end
|
|
250
247
|
end
|
|
251
248
|
|
|
249
|
+
def node_includes_heredoc?(node)
|
|
250
|
+
find_heredoc_end_range(node)
|
|
251
|
+
end
|
|
252
|
+
|
|
253
|
+
# Performs a depth-first search for the first heredoc in the given
|
|
254
|
+
# Parser::AST::Node.
|
|
255
|
+
#
|
|
256
|
+
# Returns a Parser::Source::Range identifying the location of the end
|
|
257
|
+
# of the heredoc, or nil if no heredoc was found.
|
|
258
|
+
def find_heredoc_end_range(node)
|
|
259
|
+
return unless node.is_a?(Parser::AST::Node)
|
|
260
|
+
|
|
261
|
+
node.children.each do |child|
|
|
262
|
+
next unless child.is_a?(Parser::AST::Node)
|
|
263
|
+
|
|
264
|
+
return child.location.heredoc_end if child.location.respond_to?(:heredoc_end)
|
|
265
|
+
|
|
266
|
+
range = find_heredoc_end_range(child)
|
|
267
|
+
return range if range
|
|
268
|
+
end
|
|
269
|
+
|
|
270
|
+
nil
|
|
271
|
+
end
|
|
272
|
+
|
|
252
273
|
def unnecessary_assignment?(node)
|
|
253
274
|
return false unless node.is_a?(Parser::AST::Node)
|
|
254
275
|
return false unless node.children.first.is_a?(Parser::AST::Node)
|
|
@@ -6,6 +6,7 @@ require "dependabot/shared_helpers"
|
|
|
6
6
|
require "dependabot/errors"
|
|
7
7
|
require "dependabot/bundler/file_updater"
|
|
8
8
|
require "dependabot/bundler/native_helpers"
|
|
9
|
+
require "dependabot/bundler/helpers"
|
|
9
10
|
|
|
10
11
|
module Dependabot
|
|
11
12
|
module Bundler
|
|
@@ -64,8 +65,8 @@ module Dependabot
|
|
|
64
65
|
) do |tmp_dir|
|
|
65
66
|
write_temporary_dependency_files
|
|
66
67
|
|
|
67
|
-
|
|
68
|
-
|
|
68
|
+
NativeHelpers.run_bundler_subprocess(
|
|
69
|
+
bundler_version: bundler_version,
|
|
69
70
|
function: "update_lockfile",
|
|
70
71
|
args: {
|
|
71
72
|
gemfile_name: gemfile.name,
|
|
@@ -301,6 +302,10 @@ module Dependabot
|
|
|
301
302
|
|
|
302
303
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
303
304
|
end
|
|
305
|
+
|
|
306
|
+
def bundler_version
|
|
307
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
308
|
+
end
|
|
304
309
|
end
|
|
305
310
|
end
|
|
306
311
|
end
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Dependabot
|
|
4
|
+
module Bundler
|
|
5
|
+
module Helpers
|
|
6
|
+
V1 = "1"
|
|
7
|
+
V2 = "2"
|
|
8
|
+
|
|
9
|
+
# TODO: Add support for bundler v2
|
|
10
|
+
# return "v2" if lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
11
|
+
def self.bundler_version(_lockfile)
|
|
12
|
+
V1
|
|
13
|
+
end
|
|
14
|
+
end
|
|
15
|
+
end
|
|
16
|
+
end
|
|
@@ -1,10 +1,35 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
+
require "bundler"
|
|
4
|
+
require "dependabot/shared_helpers"
|
|
5
|
+
|
|
3
6
|
module Dependabot
|
|
4
7
|
module Bundler
|
|
5
8
|
module NativeHelpers
|
|
6
|
-
def self.
|
|
7
|
-
|
|
9
|
+
def self.run_bundler_subprocess(function:, args:, bundler_version:)
|
|
10
|
+
# Run helper suprocess with all bundler-related ENV variables removed
|
|
11
|
+
::Bundler.with_original_env do
|
|
12
|
+
SharedHelpers.run_helper_subprocess(
|
|
13
|
+
command: helper_path(bundler_version: bundler_version),
|
|
14
|
+
function: function,
|
|
15
|
+
args: args,
|
|
16
|
+
env: {
|
|
17
|
+
# Bundler will pick the matching installed major version
|
|
18
|
+
"BUNDLER_VERSION" => bundler_version,
|
|
19
|
+
"BUNDLE_GEMFILE" => File.join(versioned_helper_path(bundler_version: bundler_version), "Gemfile"),
|
|
20
|
+
"BUNDLE_PATH" => File.join(versioned_helper_path(bundler_version: bundler_version), ".bundle")
|
|
21
|
+
}
|
|
22
|
+
)
|
|
23
|
+
end
|
|
24
|
+
end
|
|
25
|
+
|
|
26
|
+
def self.versioned_helper_path(bundler_version:)
|
|
27
|
+
native_helper_version = "v#{bundler_version}"
|
|
28
|
+
File.join(native_helpers_root, native_helper_version)
|
|
29
|
+
end
|
|
30
|
+
|
|
31
|
+
def self.helper_path(bundler_version:)
|
|
32
|
+
"ruby #{File.join(versioned_helper_path(bundler_version: bundler_version), 'run.rb')}"
|
|
8
33
|
end
|
|
9
34
|
|
|
10
35
|
def self.native_helpers_root
|
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
require "dependabot/bundler/update_checker"
|
|
4
4
|
require "dependabot/bundler/native_helpers"
|
|
5
|
+
require "dependabot/bundler/helpers"
|
|
5
6
|
require "dependabot/shared_helpers"
|
|
6
7
|
|
|
7
8
|
module Dependabot
|
|
@@ -28,8 +29,8 @@ module Dependabot
|
|
|
28
29
|
# * requirement [String] the requirement on the target_dependency
|
|
29
30
|
def conflicting_dependencies(dependency:, target_version:)
|
|
30
31
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
31
|
-
|
|
32
|
-
|
|
32
|
+
NativeHelpers.run_bundler_subprocess(
|
|
33
|
+
bundler_version: bundler_version,
|
|
33
34
|
function: "conflicting_dependencies",
|
|
34
35
|
args: {
|
|
35
36
|
dir: tmp_dir,
|
|
@@ -42,6 +43,12 @@ module Dependabot
|
|
|
42
43
|
)
|
|
43
44
|
end
|
|
44
45
|
end
|
|
46
|
+
|
|
47
|
+
private
|
|
48
|
+
|
|
49
|
+
def bundler_version
|
|
50
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
51
|
+
end
|
|
45
52
|
end
|
|
46
53
|
end
|
|
47
54
|
end
|
|
@@ -3,6 +3,7 @@
|
|
|
3
3
|
require "dependabot/bundler/file_parser"
|
|
4
4
|
require "dependabot/bundler/file_updater/lockfile_updater"
|
|
5
5
|
require "dependabot/bundler/native_helpers"
|
|
6
|
+
require "dependabot/bundler/helpers"
|
|
6
7
|
require "dependabot/bundler/update_checker"
|
|
7
8
|
require "dependabot/bundler/update_checker/requirements_updater"
|
|
8
9
|
require "dependabot/errors"
|
|
@@ -43,8 +44,8 @@ module Dependabot
|
|
|
43
44
|
|
|
44
45
|
def force_update
|
|
45
46
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
46
|
-
updated_deps, specs =
|
|
47
|
-
|
|
47
|
+
updated_deps, specs = NativeHelpers.run_bundler_subprocess(
|
|
48
|
+
bundler_version: bundler_version,
|
|
48
49
|
function: "force_update",
|
|
49
50
|
args: {
|
|
50
51
|
dir: tmp_dir,
|
|
@@ -146,6 +147,10 @@ module Dependabot
|
|
|
146
147
|
|
|
147
148
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
148
149
|
end
|
|
150
|
+
|
|
151
|
+
def bundler_version
|
|
152
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
153
|
+
end
|
|
149
154
|
end
|
|
150
155
|
end
|
|
151
156
|
end
|
|
@@ -1,5 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
+
require "dependabot/bundler/native_helpers"
|
|
4
|
+
require "dependabot/bundler/helpers"
|
|
5
|
+
|
|
3
6
|
module Dependabot
|
|
4
7
|
module Bundler
|
|
5
8
|
class UpdateChecker
|
|
@@ -53,8 +56,8 @@ module Dependabot
|
|
|
53
56
|
|
|
54
57
|
SharedHelpers.with_git_configured(credentials: credentials) do
|
|
55
58
|
in_a_native_bundler_context do |tmp_dir|
|
|
56
|
-
|
|
57
|
-
|
|
59
|
+
NativeHelpers.run_bundler_subprocess(
|
|
60
|
+
bundler_version: bundler_version,
|
|
58
61
|
function: "depencency_source_latest_git_version",
|
|
59
62
|
args: {
|
|
60
63
|
dir: tmp_dir,
|
|
@@ -98,8 +101,8 @@ module Dependabot
|
|
|
98
101
|
def private_registry_versions
|
|
99
102
|
@private_registry_versions ||=
|
|
100
103
|
in_a_native_bundler_context do |tmp_dir|
|
|
101
|
-
|
|
102
|
-
|
|
104
|
+
NativeHelpers.run_bundler_subprocess(
|
|
105
|
+
bundler_version: bundler_version,
|
|
103
106
|
function: "private_registry_versions",
|
|
104
107
|
args: {
|
|
105
108
|
dir: tmp_dir,
|
|
@@ -118,8 +121,8 @@ module Dependabot
|
|
|
118
121
|
return @source_type = RUBYGEMS unless gemfile
|
|
119
122
|
|
|
120
123
|
@source_type = in_a_native_bundler_context do |tmp_dir|
|
|
121
|
-
|
|
122
|
-
|
|
124
|
+
NativeHelpers.run_bundler_subprocess(
|
|
125
|
+
bundler_version: bundler_version,
|
|
123
126
|
function: "dependency_source_type",
|
|
124
127
|
args: {
|
|
125
128
|
dir: tmp_dir,
|
|
@@ -135,6 +138,15 @@ module Dependabot
|
|
|
135
138
|
dependency_files.find { |f| f.name == "Gemfile" } ||
|
|
136
139
|
dependency_files.find { |f| f.name == "gems.rb" }
|
|
137
140
|
end
|
|
141
|
+
|
|
142
|
+
def lockfile
|
|
143
|
+
dependency_files.find { |f| f.name == "Gemfile.lock" } ||
|
|
144
|
+
dependency_files.find { |f| f.name == "gems.locked" }
|
|
145
|
+
end
|
|
146
|
+
|
|
147
|
+
def bundler_version
|
|
148
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
149
|
+
end
|
|
138
150
|
end
|
|
139
151
|
end
|
|
140
152
|
end
|
|
@@ -4,6 +4,7 @@ require "excon"
|
|
|
4
4
|
|
|
5
5
|
require "dependabot/bundler/update_checker"
|
|
6
6
|
require "dependabot/bundler/native_helpers"
|
|
7
|
+
require "dependabot/bundler/helpers"
|
|
7
8
|
require "dependabot/shared_helpers"
|
|
8
9
|
require "dependabot/errors"
|
|
9
10
|
|
|
@@ -163,8 +164,8 @@ module Dependabot
|
|
|
163
164
|
|
|
164
165
|
def inaccessible_git_dependencies
|
|
165
166
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
166
|
-
git_specs =
|
|
167
|
-
|
|
167
|
+
git_specs = NativeHelpers.run_bundler_subprocess(
|
|
168
|
+
bundler_version: bundler_version,
|
|
168
169
|
function: "git_specs",
|
|
169
170
|
args: {
|
|
170
171
|
dir: tmp_dir,
|
|
@@ -187,8 +188,8 @@ module Dependabot
|
|
|
187
188
|
|
|
188
189
|
def jfrog_source
|
|
189
190
|
in_a_native_bundler_context(error_handling: false) do |dir|
|
|
190
|
-
|
|
191
|
-
|
|
191
|
+
NativeHelpers.run_bundler_subprocess(
|
|
192
|
+
bundler_version: bundler_version,
|
|
192
193
|
function: "jfrog_source",
|
|
193
194
|
args: {
|
|
194
195
|
dir: dir,
|
|
@@ -236,6 +237,10 @@ module Dependabot
|
|
|
236
237
|
|
|
237
238
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
238
239
|
end
|
|
240
|
+
|
|
241
|
+
def bundler_version
|
|
242
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
243
|
+
end
|
|
239
244
|
end
|
|
240
245
|
end
|
|
241
246
|
end
|
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
require "excon"
|
|
4
4
|
|
|
5
|
+
require "dependabot/bundler/helpers"
|
|
5
6
|
require "dependabot/bundler/update_checker"
|
|
6
7
|
require "dependabot/bundler/file_updater/lockfile_updater"
|
|
7
8
|
require "dependabot/bundler/requirement"
|
|
@@ -75,8 +76,8 @@ module Dependabot
|
|
|
75
76
|
# some errors we want to handle specifically ourselves, including
|
|
76
77
|
# potentially retrying in the case of the Ruby version being locked
|
|
77
78
|
in_a_native_bundler_context(error_handling: false) do |tmp_dir|
|
|
78
|
-
details =
|
|
79
|
-
|
|
79
|
+
details = NativeHelpers.run_bundler_subprocess(
|
|
80
|
+
bundler_version: bundler_version,
|
|
80
81
|
function: "resolve_version",
|
|
81
82
|
args: {
|
|
82
83
|
dependency_name: dependency.name,
|
|
@@ -218,6 +219,10 @@ module Dependabot
|
|
|
218
219
|
|
|
219
220
|
lockfile.content.match?(/BUNDLED WITH\s+2/m)
|
|
220
221
|
end
|
|
222
|
+
|
|
223
|
+
def bundler_version
|
|
224
|
+
@bundler_version ||= Helpers.bundler_version(lockfile)
|
|
225
|
+
end
|
|
221
226
|
end
|
|
222
227
|
end
|
|
223
228
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-bundler
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.136.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-03-
|
|
11
|
+
date: 2021-03-08 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.136.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.136.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -185,18 +185,21 @@ executables: []
|
|
|
185
185
|
extensions: []
|
|
186
186
|
extra_rdoc_files: []
|
|
187
187
|
files:
|
|
188
|
-
- helpers/
|
|
189
|
-
- helpers/
|
|
190
|
-
- helpers/
|
|
191
|
-
- helpers/
|
|
192
|
-
- helpers/lib/functions
|
|
193
|
-
- helpers/lib/functions/
|
|
194
|
-
- helpers/lib/functions/
|
|
195
|
-
- helpers/lib/functions/
|
|
196
|
-
- helpers/
|
|
197
|
-
- helpers/
|
|
198
|
-
- helpers/
|
|
199
|
-
- helpers/
|
|
188
|
+
- helpers/v1/.bundle/config
|
|
189
|
+
- helpers/v1/.gitignore
|
|
190
|
+
- helpers/v1/Gemfile
|
|
191
|
+
- helpers/v1/build
|
|
192
|
+
- helpers/v1/lib/functions.rb
|
|
193
|
+
- helpers/v1/lib/functions/conflicting_dependency_resolver.rb
|
|
194
|
+
- helpers/v1/lib/functions/dependency_source.rb
|
|
195
|
+
- helpers/v1/lib/functions/file_parser.rb
|
|
196
|
+
- helpers/v1/lib/functions/force_updater.rb
|
|
197
|
+
- helpers/v1/lib/functions/lockfile_updater.rb
|
|
198
|
+
- helpers/v1/lib/functions/version_resolver.rb
|
|
199
|
+
- helpers/v1/monkey_patches/definition_bundler_version_patch.rb
|
|
200
|
+
- helpers/v1/monkey_patches/definition_ruby_version_patch.rb
|
|
201
|
+
- helpers/v1/monkey_patches/git_source_patch.rb
|
|
202
|
+
- helpers/v1/run.rb
|
|
200
203
|
- lib/dependabot/bundler.rb
|
|
201
204
|
- lib/dependabot/bundler/file_fetcher.rb
|
|
202
205
|
- lib/dependabot/bundler/file_fetcher/child_gemfile_finder.rb
|
|
@@ -216,6 +219,7 @@ files:
|
|
|
216
219
|
- lib/dependabot/bundler/file_updater/lockfile_updater.rb
|
|
217
220
|
- lib/dependabot/bundler/file_updater/requirement_replacer.rb
|
|
218
221
|
- lib/dependabot/bundler/file_updater/ruby_requirement_setter.rb
|
|
222
|
+
- lib/dependabot/bundler/helpers.rb
|
|
219
223
|
- lib/dependabot/bundler/metadata_finder.rb
|
|
220
224
|
- lib/dependabot/bundler/native_helpers.rb
|
|
221
225
|
- lib/dependabot/bundler/requirement.rb
|