dependabot-bundler 0.176.0 → 0.177.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/v2/build +3 -3
  3. data/helpers/v2/spec/functions/dependency_source_spec.rb +3 -0
  4. data/helpers/v2/spec/functions/version_resolver_spec.rb +9 -1
  5. data/lib/dependabot/bundler/helpers.rb +1 -1
  6. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: e7e11a6d756467fc25da52ec0988e629b120b969e1a313c0fb3eb0afa94fa99c
4
- data.tar.gz: 29c3dbfd5e64c491886e524d8e58dfee45ea25306cccc11a86a05c43a1ad75c0
3
+ metadata.gz: 484eba9a58bf8da06d2d17f496f5ae7063b63e63878161f8cbed52ddb394d834
4
+ data.tar.gz: 0ae6538f3f80a73d40c047a8977f35306a330a930254939b47f879ec29cc8114
5
5
  SHA512:
6
- metadata.gz: ff17793b8eab126f31198dde051f024ed19c8da7b5e7d60c7622550f1ca747fdcc8323ef298518edf34973423518afbda40312c56e32443bba8fa1f49dcc67c0
7
- data.tar.gz: c589a610b3d2af86c974b58ee8e2d08ef73b18fe4a96ece4ff624ad802ada360db286cacb1f8f73c914ffd154b8e0fa383266bf38931d657d7e0f189c4810e91
6
+ metadata.gz: 4ae3a374179fe25ce70ac2ec5dc8b317caee1fd52279ea5cb9adcd3a9fc611bae4cc09e810f6e91e1abd0ac63e4cd2aba6486b3eb9f2c829d1b156b7ca87e5a5
7
+ data.tar.gz: 4b8b9439d97f3c9f1c6a8581999e2f079c76933c587a79f8f5c6a946b9d04ac0a7779afed1427287f9dc45681706b6695c1876202429339a6ce658e2a36a65ac
data/helpers/v2/build CHANGED
@@ -22,6 +22,6 @@ cd "$install_dir"
22
22
 
23
23
  # NOTE: Sets `BUNDLED WITH` to match the installed v2 version in Gemfile.lock
24
24
  # forcing specs and native helpers to run with the same version
25
- BUNDLER_VERSION=2.2.33 bundle config --local path ".bundle"
26
- BUNDLER_VERSION=2.2.33 bundle config --local without "test"
27
- BUNDLER_VERSION=2.2.33 bundle install
25
+ BUNDLER_VERSION=2.3.8 bundle config --local path ".bundle"
26
+ BUNDLER_VERSION=2.3.8 bundle config --local without "test"
27
+ BUNDLER_VERSION=2.3.8 bundle install
data/helpers/v2/spec/functions/dependency_source_spec.rb CHANGED
@@ -115,6 +115,9 @@ RSpec.describe Functions::DependencySource do
115
115
  stub_request(:get, registry_url + "specs.4.8.gz").
116
116
  with(basic_auth: ["SECRET_CODES", ""]).
117
117
  to_return(status: 400)
118
+ stub_request(:get, registry_url + "info/business").
119
+ with(basic_auth: ["SECRET_CODES", ""]).
120
+ to_return(status: 400)
118
121
  end
119
122
 
120
123
  it "blows up with a useful error" do
data/helpers/v2/spec/functions/version_resolver_spec.rb CHANGED
@@ -29,6 +29,15 @@ RSpec.describe Functions::VersionResolver do
29
29
 
30
30
  let(:rubygems_url) { "https://index.rubygems.org/api/v1/" }
31
31
  let(:old_index_url) { rubygems_url + "dependencies" }
32
+ let(:gemfury_url) { "https://repo.fury.io/greysteil/" }
33
+
34
+ before do
35
+ stub_request(:get, "https://rubygems.org/quick/Marshal.4.8/statesman-1.2.1.gemspec.rz").
36
+ to_return(status: 200, body: fixture("rubygems_responses", "statesman-1.2.1.gemspec.rz"))
37
+
38
+ stub_request(:get, %r{quick/Marshal.4.8/business-.*.gemspec.rz}).
39
+ to_return(status: 200, body: fixture("rubygems_responses", "business-1.0.0.gemspec.rz"))
40
+ end
32
41
 
33
42
  describe "#version_details" do
34
43
  subject do
@@ -48,7 +57,6 @@ RSpec.describe Functions::VersionResolver do
48
57
  let(:requirement_string) { ">= 0" }
49
58
 
50
59
  before do
51
- gemfury_url = "https://repo.fury.io/greysteil/"
52
60
  gemfury_deps_url = gemfury_url + "api/v1/dependencies"
53
61
 
54
62
  stub_request(:get, gemfury_url + "versions").
data/lib/dependabot/bundler/helpers.rb CHANGED
@@ -4,7 +4,7 @@ module Dependabot
4
4
  module Bundler
5
5
  module Helpers
6
6
  V1 = "1.17.3"
7
- V2 = "2.2.33"
7
+ V2 = "2.3.8"
8
8
  # If we are updating a project with no Gemfile.lock, we default to the
9
9
  # newest version we support
10
10
  DEFAULT = V2
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.176.0
4
+ version: 0.177.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-02-28 00:00:00.000000000 Z
11
+ date: 2022-03-04 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.176.0
19
+ version: 0.177.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.176.0
26
+ version: 0.177.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement