dependabot-bundler 0.251.0 → 0.252.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/bundler/file_parser.rb +4 -2
  3. data/lib/dependabot/bundler/helpers.rb +2 -2
  4. metadata +5 -5
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: ba73dba0b4c1818a3974d48de55ed45907c6313b7a7d93a7e7f438af22cf20ac
4
- data.tar.gz: 38594d1b08adc8b5e65c1b7716a762c28acd36af9bacde2c38dd88f507407ae7
3
+ metadata.gz: b8e04e23d1f71c28bcb994eadce915c249dbd83cb497c57bf867cfc1bd636803
4
+ data.tar.gz: f720b46fe22dc7e062bde5e8ca67e2aba538751d383ec2785d1665bd95923bcc
5
5
  SHA512:
6
- metadata.gz: e5a26067edfaaaec12e58558f015f0632f2c17a9c929ed2e9714e3767f425cbb6cd441322ee4b4128a245b54b66ec15a405d3338cae9668a8232ef5564c6a53a
7
- data.tar.gz: d56e1a245336c959b9c09c89890efde80cadf9ffd851266fa8be959330d89646894ce00c8c8a93b5e579762ad2d26972292669acb79e41861fac29fcbeaa4ec2
6
+ metadata.gz: 99fa4125ec571a7b73930e5471e71ea3176ee976ce636dab34b93853490391c096f69816d0332619981e904f9a2d89d704385eace1e6d4df23457c530fe96250
7
+ data.tar.gz: 2037aaa0ce2eaca9df55f1aa14c6a152adf3bbde9cf1a36f6fa37f317b90c8632af2d15a04bb8126d083a7008559df6942c0224cda3a94aad2e1d808d64abcb1
data/lib/dependabot/bundler/file_parser.rb CHANGED
@@ -75,7 +75,9 @@ module Dependabot
75
75
  dependencies
76
76
  end
77
77
 
78
- def gemspec_dependencies
78
+ def gemspec_dependencies # rubocop:disable Metrics/PerceivedComplexity
79
+ return @gemspec_dependencies if defined?(@gemspec_dependencies)
80
+
79
81
  queue = Queue.new
80
82
 
81
83
  SharedHelpers.in_a_temporary_repo_directory(base_directory, repo_contents_path) do
@@ -108,7 +110,7 @@ module Dependabot
108
110
 
109
111
  dependency_set = DependencySet.new
110
112
  dependency_set << queue.pop(true) while queue.size.positive?
111
- dependency_set
113
+ @gemspec_dependencies ||= dependency_set
112
114
  end
113
115
 
114
116
  def lockfile_dependencies
data/lib/dependabot/bundler/helpers.rb CHANGED
@@ -30,9 +30,9 @@ module Dependabot
30
30
  return "unknown" unless lockfile
31
31
 
32
32
  if (matches = lockfile.content.match(BUNDLER_MAJOR_VERSION_REGEX))
33
- matches[:version]
33
+ matches[:version].to_i.to_s
34
34
  else
35
- "1"
35
+ "unspecified"
36
36
  end
37
37
  end
38
38
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.251.0
4
+ version: 0.252.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-04-05 00:00:00.000000000 Z
11
+ date: 2024-04-11 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.251.0
19
+ version: 0.252.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.251.0
26
+ version: 0.252.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: parallel
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -342,7 +342,7 @@ licenses:
342
342
  - Nonstandard
343
343
  metadata:
344
344
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
345
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.251.0
345
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.252.0
346
346
  post_install_message:
347
347
  rdoc_options: []
348
348
  require_paths: