dependabot-bundler 0.176.0 → 0.177.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/v2/build +3 -3
  3. data/helpers/v2/spec/functions/dependency_source_spec.rb +3 -0
  4. data/helpers/v2/spec/functions/version_resolver_spec.rb +9 -1
  5. data/lib/dependabot/bundler/helpers.rb +1 -1
  6. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: e7e11a6d756467fc25da52ec0988e629b120b969e1a313c0fb3eb0afa94fa99c
4
- data.tar.gz: 29c3dbfd5e64c491886e524d8e58dfee45ea25306cccc11a86a05c43a1ad75c0
3
+ metadata.gz: 484eba9a58bf8da06d2d17f496f5ae7063b63e63878161f8cbed52ddb394d834
4
+ data.tar.gz: 0ae6538f3f80a73d40c047a8977f35306a330a930254939b47f879ec29cc8114
5
5
  SHA512:
6
- metadata.gz: ff17793b8eab126f31198dde051f024ed19c8da7b5e7d60c7622550f1ca747fdcc8323ef298518edf34973423518afbda40312c56e32443bba8fa1f49dcc67c0
7
- data.tar.gz: c589a610b3d2af86c974b58ee8e2d08ef73b18fe4a96ece4ff624ad802ada360db286cacb1f8f73c914ffd154b8e0fa383266bf38931d657d7e0f189c4810e91
6
+ metadata.gz: 4ae3a374179fe25ce70ac2ec5dc8b317caee1fd52279ea5cb9adcd3a9fc611bae4cc09e810f6e91e1abd0ac63e4cd2aba6486b3eb9f2c829d1b156b7ca87e5a5
7
+ data.tar.gz: 4b8b9439d97f3c9f1c6a8581999e2f079c76933c587a79f8f5c6a946b9d04ac0a7779afed1427287f9dc45681706b6695c1876202429339a6ce658e2a36a65ac
data/helpers/v2/build CHANGED
@@ -22,6 +22,6 @@ cd "$install_dir"
22
22
 
23
23
  # NOTE: Sets `BUNDLED WITH` to match the installed v2 version in Gemfile.lock
24
24
  # forcing specs and native helpers to run with the same version
25
- BUNDLER_VERSION=2.2.33 bundle config --local path ".bundle"
26
- BUNDLER_VERSION=2.2.33 bundle config --local without "test"
27
- BUNDLER_VERSION=2.2.33 bundle install
25
+ BUNDLER_VERSION=2.3.8 bundle config --local path ".bundle"
26
+ BUNDLER_VERSION=2.3.8 bundle config --local without "test"
27
+ BUNDLER_VERSION=2.3.8 bundle install
data/helpers/v2/spec/functions/dependency_source_spec.rb CHANGED
@@ -115,6 +115,9 @@ RSpec.describe Functions::DependencySource do
115
115
  stub_request(:get, registry_url + "specs.4.8.gz").
116
116
  with(basic_auth: ["SECRET_CODES", ""]).
117
117
  to_return(status: 400)
118
+ stub_request(:get, registry_url + "info/business").
119
+ with(basic_auth: ["SECRET_CODES", ""]).
120
+ to_return(status: 400)
118
121
  end
119
122
 
120
123
  it "blows up with a useful error" do
data/helpers/v2/spec/functions/version_resolver_spec.rb CHANGED
@@ -29,6 +29,15 @@ RSpec.describe Functions::VersionResolver do
29
29
 
30
30
  let(:rubygems_url) { "https://index.rubygems.org/api/v1/" }
31
31
  let(:old_index_url) { rubygems_url + "dependencies" }
32
+ let(:gemfury_url) { "https://repo.fury.io/greysteil/" }
33
+
34
+ before do
35
+ stub_request(:get, "https://rubygems.org/quick/Marshal.4.8/statesman-1.2.1.gemspec.rz").
36
+ to_return(status: 200, body: fixture("rubygems_responses", "statesman-1.2.1.gemspec.rz"))
37
+
38
+ stub_request(:get, %r{quick/Marshal.4.8/business-.*.gemspec.rz}).
39
+ to_return(status: 200, body: fixture("rubygems_responses", "business-1.0.0.gemspec.rz"))
40
+ end
32
41
 
33
42
  describe "#version_details" do
34
43
  subject do
@@ -48,7 +57,6 @@ RSpec.describe Functions::VersionResolver do
48
57
  let(:requirement_string) { ">= 0" }
49
58
 
50
59
  before do
51
- gemfury_url = "https://repo.fury.io/greysteil/"
52
60
  gemfury_deps_url = gemfury_url + "api/v1/dependencies"
53
61
 
54
62
  stub_request(:get, gemfury_url + "versions").
data/lib/dependabot/bundler/helpers.rb CHANGED
@@ -4,7 +4,7 @@ module Dependabot
4
4
  module Bundler
5
5
  module Helpers
6
6
  V1 = "1.17.3"
7
- V2 = "2.2.33"
7
+ V2 = "2.3.8"
8
8
  # If we are updating a project with no Gemfile.lock, we default to the
9
9
  # newest version we support
10
10
  DEFAULT = V2
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.176.0
4
+ version: 0.177.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-02-28 00:00:00.000000000 Z
11
+ date: 2022-03-04 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.176.0
19
+ version: 0.177.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.176.0
26
+ version: 0.177.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement