dependabot-bundler 0.94.1 → 0.94.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +3 -3
- data/lib/dependabot/bundler/update_checker/force_updater.rb +3 -3
- data/lib/dependabot/bundler/update_checker/latest_version_finder.rb +3 -3
- data/lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb +3 -3
- data/lib/dependabot/bundler/update_checker/version_resolver.rb +3 -3
- data/lib/dependabot/monkey_patches/bundler/definition_bundler_version_patch.rb +15 -0
- data/lib/dependabot/monkey_patches/bundler/definition_ruby_version_patch.rb +14 -0
- data/lib/dependabot/monkey_patches/bundler/git_source_patch.rb +27 -0
- metadata +7 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 711f14915dc46523c62673e09ab4d1ab598d47949cc5c2a560c106414e60f177
|
|
4
|
+
data.tar.gz: 8a233b08d1526114c86563c813381931edb096c08b9d579d9b1c7a933354d865
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 226fc556559a0cb7f9a3b2e0c917f1a652e81768998f2be972751f1591cc34c1d98136d72da6b6263bf09184d5d45444f20091b6fc07338ebd74356e57177165
|
|
7
|
+
data.tar.gz: ef29e124269c0e354906a7479215b2bf1f87984e3062b6694e8855053d467e5153a1df817100182decb65213e7c9564088aafb4f9d32b9ccf87a4e01824c35ab
|
|
@@ -2,9 +2,9 @@
|
|
|
2
2
|
|
|
3
3
|
require "bundler"
|
|
4
4
|
|
|
5
|
-
require "
|
|
6
|
-
require "
|
|
7
|
-
require "
|
|
5
|
+
require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
|
|
6
|
+
require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
|
|
7
|
+
require "dependabot/monkey_patches/bundler/git_source_patch"
|
|
8
8
|
|
|
9
9
|
require "dependabot/shared_helpers"
|
|
10
10
|
require "dependabot/errors"
|
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require "
|
|
4
|
-
require "
|
|
5
|
-
require "
|
|
3
|
+
require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
|
|
4
|
+
require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
|
|
5
|
+
require "dependabot/monkey_patches/bundler/git_source_patch"
|
|
6
6
|
|
|
7
7
|
require "dependabot/bundler/update_checker"
|
|
8
8
|
require "dependabot/bundler/update_checker/requirements_updater"
|
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require "
|
|
4
|
-
require "
|
|
5
|
-
require "
|
|
3
|
+
require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
|
|
4
|
+
require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
|
|
5
|
+
require "dependabot/monkey_patches/bundler/git_source_patch"
|
|
6
6
|
|
|
7
7
|
require "excon"
|
|
8
8
|
|
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require "
|
|
4
|
-
require "
|
|
5
|
-
require "
|
|
3
|
+
require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
|
|
4
|
+
require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
|
|
5
|
+
require "dependabot/monkey_patches/bundler/git_source_patch"
|
|
6
6
|
|
|
7
7
|
require "excon"
|
|
8
8
|
|
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require "
|
|
4
|
-
require "
|
|
5
|
-
require "
|
|
3
|
+
require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
|
|
4
|
+
require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
|
|
5
|
+
require "dependabot/monkey_patches/bundler/git_source_patch"
|
|
6
6
|
|
|
7
7
|
require "excon"
|
|
8
8
|
|
|
@@ -0,0 +1,15 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require "bundler/definition"
|
|
4
|
+
|
|
5
|
+
# Ignore the Bundler version specified in the Gemfile (since the only Bundler
|
|
6
|
+
# version available to us is the one we're using).
|
|
7
|
+
module Bundler
|
|
8
|
+
class Definition
|
|
9
|
+
def expanded_dependencies
|
|
10
|
+
@expanded_dependencies ||=
|
|
11
|
+
expand_dependencies(dependencies + metadata_dependencies, @remote).
|
|
12
|
+
reject { |d| d.name == "bundler" }
|
|
13
|
+
end
|
|
14
|
+
end
|
|
15
|
+
end
|
|
@@ -0,0 +1,14 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module BundlerDefinitionRubyVersionPatch
|
|
4
|
+
def index
|
|
5
|
+
@index ||= super.tap do
|
|
6
|
+
if ruby_version
|
|
7
|
+
requested_version = ruby_version.to_gem_version_with_patchlevel
|
|
8
|
+
sources.metadata_source.specs <<
|
|
9
|
+
Gem::Specification.new("ruby\0", requested_version)
|
|
10
|
+
end
|
|
11
|
+
end
|
|
12
|
+
end
|
|
13
|
+
end
|
|
14
|
+
Bundler::Definition.prepend(BundlerDefinitionRubyVersionPatch)
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Bundler
|
|
4
|
+
class Source
|
|
5
|
+
class Git
|
|
6
|
+
class GitProxy
|
|
7
|
+
private
|
|
8
|
+
|
|
9
|
+
# Bundler allows ssh authentication when talking to GitHub but there's
|
|
10
|
+
# no way for Dependabot to do so (it doesn't have any ssh keys).
|
|
11
|
+
# Instead, we convert all `git@github.com:` URLs to use HTTPS.
|
|
12
|
+
def configured_uri_for(uri)
|
|
13
|
+
uri = uri.gsub(/git@(.*?):/, 'https://\1/')
|
|
14
|
+
if uri.match?(/https?:/)
|
|
15
|
+
remote = URI(uri)
|
|
16
|
+
config_auth =
|
|
17
|
+
Bundler.settings[remote.to_s] || Bundler.settings[remote.host]
|
|
18
|
+
remote.userinfo ||= config_auth
|
|
19
|
+
remote.to_s
|
|
20
|
+
else
|
|
21
|
+
uri
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
end
|
|
25
|
+
end
|
|
26
|
+
end
|
|
27
|
+
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-bundler
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.94.
|
|
4
|
+
version: 0.94.2
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2019-02-
|
|
11
|
+
date: 2019-02-02 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-core
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.94.
|
|
19
|
+
version: 0.94.2
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.94.
|
|
26
|
+
version: 0.94.2
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -174,6 +174,9 @@ files:
|
|
|
174
174
|
- lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb
|
|
175
175
|
- lib/dependabot/bundler/update_checker/version_resolver.rb
|
|
176
176
|
- lib/dependabot/bundler/version.rb
|
|
177
|
+
- lib/dependabot/monkey_patches/bundler/definition_bundler_version_patch.rb
|
|
178
|
+
- lib/dependabot/monkey_patches/bundler/definition_ruby_version_patch.rb
|
|
179
|
+
- lib/dependabot/monkey_patches/bundler/git_source_patch.rb
|
|
177
180
|
homepage: https://github.com/dependabot/dependabot-core
|
|
178
181
|
licenses:
|
|
179
182
|
- Nonstandard
|