dependabot-bundler 0.98.50 → 0.98.51
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 353f6b8c7ddb03fc2d942503738fd61409e3ce5a8e151bb0a0cfd1cc48184d52
|
4
|
+
data.tar.gz: c87376300ede9d08538fe2d09f9e3af2546c2e6c2df5237b4b04c94a4e062d99
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 8f02cef3e6037cdc214047a4813970a0fc537bb07ac46ef74cbfc13f5a85ab86361cd9b9f64c41267ac7d9448b7b38a2e1fa59181b838d184a16e0d4a79da423
|
7
|
+
data.tar.gz: 92a63299fbad11c0aef5287d5920485c550d32ee24936e82eca8f3394a5aae3a07e05452b1243d18766a13428cc8daa35699bcbfb7df3b4020e6a37c967e271f
|
@@ -141,19 +141,23 @@ module Dependabot
|
|
141
141
|
when "Bundler::Fetcher::AuthenticationRequiredError"
|
142
142
|
regex = /bundle config (?<source>.*) username:password/
|
143
143
|
source = error.error_message.match(regex)[:source]
|
144
|
+
source = "https://" + source unless source.match?(%r{^https?://})
|
144
145
|
raise Dependabot::PrivateSourceAuthenticationFailure, source
|
145
146
|
when "Bundler::Fetcher::BadAuthenticationError"
|
146
147
|
regex = /Bad username or password for (?<source>.*)\.$/
|
147
148
|
source = error.error_message.match(regex)[:source]
|
149
|
+
source = "https://" + source unless source.match?(%r{^https?://})
|
148
150
|
raise Dependabot::PrivateSourceAuthenticationFailure, source
|
149
151
|
when "Bundler::Fetcher::CertificateFailureError"
|
150
152
|
regex = /verify the SSL certificate for (?<source>.*)\.$/
|
151
153
|
source = error.error_message.match(regex)[:source]
|
154
|
+
source = "https://" + source unless source.match?(%r{^https?://})
|
152
155
|
raise Dependabot::PrivateSourceCertificateFailure, source
|
153
156
|
when "Bundler::HTTPError"
|
154
157
|
regex = /Could not fetch specs from (?<source>.*)$/
|
155
158
|
if error.error_message.match?(regex)
|
156
159
|
source = error.error_message.match(regex)[:source]
|
160
|
+
source = "https://" + source unless source.match?(%r{^https?://})
|
157
161
|
raise if source.include?("rubygems.org")
|
158
162
|
|
159
163
|
raise Dependabot::PrivateSourceTimedOut, source
|
@@ -201,13 +205,18 @@ module Dependabot
|
|
201
205
|
end
|
202
206
|
|
203
207
|
def jfrog_source
|
204
|
-
|
205
|
-
|
206
|
-
|
207
|
-
|
208
|
-
|
209
|
-
|
210
|
-
|
208
|
+
source =
|
209
|
+
in_a_temporary_bundler_context(error_handling: false) do
|
210
|
+
::Bundler::Definition.build(gemfile.name, nil, {}).
|
211
|
+
send(:sources).
|
212
|
+
rubygems_remotes.
|
213
|
+
find { |uri| uri.host.include?("jfrog") }&.
|
214
|
+
host
|
215
|
+
end
|
216
|
+
return unless source
|
217
|
+
|
218
|
+
source = "https://" + source unless source.match?(%r{^https?://})
|
219
|
+
source
|
211
220
|
end
|
212
221
|
|
213
222
|
def write_temporary_dependency_files
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-bundler
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.98.
|
4
|
+
version: 0.98.51
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-03-
|
11
|
+
date: 2019-03-30 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.98.
|
19
|
+
version: 0.98.51
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.98.
|
26
|
+
version: 0.98.51
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|