dependabot-bundler 0.94.1 → 0.94.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (10) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/bundler/file_updater/lockfile_updater.rb +3 -3
  3. data/lib/dependabot/bundler/update_checker/force_updater.rb +3 -3
  4. data/lib/dependabot/bundler/update_checker/latest_version_finder.rb +3 -3
  5. data/lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb +3 -3
  6. data/lib/dependabot/bundler/update_checker/version_resolver.rb +3 -3
  7. data/lib/dependabot/monkey_patches/bundler/definition_bundler_version_patch.rb +15 -0
  8. data/lib/dependabot/monkey_patches/bundler/definition_ruby_version_patch.rb +14 -0
  9. data/lib/dependabot/monkey_patches/bundler/git_source_patch.rb +27 -0
  10. metadata +7 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 3f0c8f6a10b2b3e4bf17ad90a2f6cd50040da936993b26afbf2cd288eb2d10b4
4
- data.tar.gz: f84f6719c571a92f6c17dbbe4a93ab1012e41c7ace937a55abb39f6c3183a7ff
3
+ metadata.gz: 711f14915dc46523c62673e09ab4d1ab598d47949cc5c2a560c106414e60f177
4
+ data.tar.gz: 8a233b08d1526114c86563c813381931edb096c08b9d579d9b1c7a933354d865
5
5
  SHA512:
6
- metadata.gz: 53d923db69877dfd4cf342414e7e98506e9456a51491f15c6e428b22d85169802ac8b8901e797743536df08125a415bd473d4173cbdeedee50098e2eec2608ce
7
- data.tar.gz: 44534dada40456e9c4841d2ea08d94e38629f0fcf51283c52c798fa2a4d56aecf6971f3f3050c7d44108bc08a98feb82f67ab708c353567744136af75358aacb
6
+ metadata.gz: 226fc556559a0cb7f9a3b2e0c917f1a652e81768998f2be972751f1591cc34c1d98136d72da6b6263bf09184d5d45444f20091b6fc07338ebd74356e57177165
7
+ data.tar.gz: ef29e124269c0e354906a7479215b2bf1f87984e3062b6694e8855053d467e5153a1df817100182decb65213e7c9564088aafb4f9d32b9ccf87a4e01824c35ab
data/lib/dependabot/bundler/file_updater/lockfile_updater.rb CHANGED
@@ -2,9 +2,9 @@
2
2
 
3
3
  require "bundler"
4
4
 
5
- require "bundler_definition_ruby_version_patch"
6
- require "bundler_definition_bundler_version_patch"
7
- require "bundler_git_source_patch"
5
+ require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
6
+ require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
7
+ require "dependabot/monkey_patches/bundler/git_source_patch"
8
8
 
9
9
  require "dependabot/shared_helpers"
10
10
  require "dependabot/errors"
data/lib/dependabot/bundler/update_checker/force_updater.rb CHANGED
@@ -1,8 +1,8 @@
1
1
  # frozen_string_literal: true
2
2
 
3
- require "bundler_definition_ruby_version_patch"
4
- require "bundler_definition_bundler_version_patch"
5
- require "bundler_git_source_patch"
3
+ require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
4
+ require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
5
+ require "dependabot/monkey_patches/bundler/git_source_patch"
6
6
 
7
7
  require "dependabot/bundler/update_checker"
8
8
  require "dependabot/bundler/update_checker/requirements_updater"
data/lib/dependabot/bundler/update_checker/latest_version_finder.rb CHANGED
@@ -1,8 +1,8 @@
1
1
  # frozen_string_literal: true
2
2
 
3
- require "bundler_definition_ruby_version_patch"
4
- require "bundler_definition_bundler_version_patch"
5
- require "bundler_git_source_patch"
3
+ require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
4
+ require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
5
+ require "dependabot/monkey_patches/bundler/git_source_patch"
6
6
 
7
7
  require "excon"
8
8
 
data/lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb CHANGED
@@ -1,8 +1,8 @@
1
1
  # frozen_string_literal: true
2
2
 
3
- require "bundler_definition_ruby_version_patch"
4
- require "bundler_definition_bundler_version_patch"
5
- require "bundler_git_source_patch"
3
+ require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
4
+ require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
5
+ require "dependabot/monkey_patches/bundler/git_source_patch"
6
6
 
7
7
  require "excon"
8
8
 
data/lib/dependabot/bundler/update_checker/version_resolver.rb CHANGED
@@ -1,8 +1,8 @@
1
1
  # frozen_string_literal: true
2
2
 
3
- require "bundler_definition_ruby_version_patch"
4
- require "bundler_definition_bundler_version_patch"
5
- require "bundler_git_source_patch"
3
+ require "dependabot/monkey_patches/bundler/definition_ruby_version_patch"
4
+ require "dependabot/monkey_patches/bundler/definition_bundler_version_patch"
5
+ require "dependabot/monkey_patches/bundler/git_source_patch"
6
6
 
7
7
  require "excon"
8
8
 
data/lib/dependabot/monkey_patches/bundler/definition_bundler_version_patch.rb ADDED
@@ -0,0 +1,15 @@
1
+ # frozen_string_literal: true
2
+
3
+ require "bundler/definition"
4
+
5
+ # Ignore the Bundler version specified in the Gemfile (since the only Bundler
6
+ # version available to us is the one we're using).
7
+ module Bundler
8
+ class Definition
9
+ def expanded_dependencies
10
+ @expanded_dependencies ||=
11
+ expand_dependencies(dependencies + metadata_dependencies, @remote).
12
+ reject { |d| d.name == "bundler" }
13
+ end
14
+ end
15
+ end
data/lib/dependabot/monkey_patches/bundler/definition_ruby_version_patch.rb ADDED
@@ -0,0 +1,14 @@
1
+ # frozen_string_literal: true
2
+
3
+ module BundlerDefinitionRubyVersionPatch
4
+ def index
5
+ @index ||= super.tap do
6
+ if ruby_version
7
+ requested_version = ruby_version.to_gem_version_with_patchlevel
8
+ sources.metadata_source.specs <<
9
+ Gem::Specification.new("ruby\0", requested_version)
10
+ end
11
+ end
12
+ end
13
+ end
14
+ Bundler::Definition.prepend(BundlerDefinitionRubyVersionPatch)
data/lib/dependabot/monkey_patches/bundler/git_source_patch.rb ADDED
@@ -0,0 +1,27 @@
1
+ # frozen_string_literal: true
2
+
3
+ module Bundler
4
+ class Source
5
+ class Git
6
+ class GitProxy
7
+ private
8
+
9
+ # Bundler allows ssh authentication when talking to GitHub but there's
10
+ # no way for Dependabot to do so (it doesn't have any ssh keys).
11
+ # Instead, we convert all `git@github.com:` URLs to use HTTPS.
12
+ def configured_uri_for(uri)
13
+ uri = uri.gsub(/git@(.*?):/, 'https://\1/')
14
+ if uri.match?(/https?:/)
15
+ remote = URI(uri)
16
+ config_auth =
17
+ Bundler.settings[remote.to_s] || Bundler.settings[remote.host]
18
+ remote.userinfo ||= config_auth
19
+ remote.to_s
20
+ else
21
+ uri
22
+ end
23
+ end
24
+ end
25
+ end
26
+ end
27
+ end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-bundler
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.94.1
4
+ version: 0.94.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2019-02-01 00:00:00.000000000 Z
11
+ date: 2019-02-02 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-core
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.94.1
19
+ version: 0.94.2
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.94.1
26
+ version: 0.94.2
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -174,6 +174,9 @@ files:
174
174
  - lib/dependabot/bundler/update_checker/shared_bundler_helpers.rb
175
175
  - lib/dependabot/bundler/update_checker/version_resolver.rb
176
176
  - lib/dependabot/bundler/version.rb
177
+ - lib/dependabot/monkey_patches/bundler/definition_bundler_version_patch.rb
178
+ - lib/dependabot/monkey_patches/bundler/definition_ruby_version_patch.rb
179
+ - lib/dependabot/monkey_patches/bundler/git_source_patch.rb
177
180
  homepage: https://github.com/dependabot/dependabot-core
178
181
  licenses:
179
182
  - Nonstandard