dependabot-cargo 0.117.9 → 0.118.2

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 81345bf5c235f445ce271b26b275ce5f9e392b939e9c3ee9a82c1b64c583d667
4
- data.tar.gz: 7bd2974757aeb5b87fbc340845b64cbe921562e225a8333616263ed1808cccf9
3
+ metadata.gz: adeaa93b81df2f3fbf43ccf0463721a7572808a44167866be44bdd1d7a953c49
4
+ data.tar.gz: dde7651ba275c58c44686a43390a0b2923f217f4935c917976cee921287b4974
5
5
  SHA512:
6
- metadata.gz: c3574615408c73c78ab6e2a6a206031625c6f5e850c2e99cf79ae08c690f589802feefcb810c10ab30db4f60667398fdf75584d8747c8bd6d4a52b44a552cf3c
7
- data.tar.gz: b6553c87a6e189b0b18cd85f7a21a15202328408e72f046252e4a9e7779b061d999fd20b5ead5d9b649756b2874601a71c94913c450edfcc2ce18725e5c1923f
6
+ metadata.gz: b08763b3856057b90f8ef6077a52a9b6a70da8af7ec0b3ce964fe66641dd9c1f8219e66ee4683c914fde6cf128248f0e6cf75f53febc8da668ea8b1342852610
7
+ data.tar.gz: becc81b7765728f6cd2c041a24a4fd7bfc16683e9811d431c2ec1784d23a2db26de1a7edcc2b3a18ddbeaad174cf13447f2cf3f7ab2abe58f04abcd01ffab817
@@ -170,6 +170,8 @@ module Dependabot
170
170
 
171
171
  next if virtual_manifest?(file)
172
172
 
173
+ File.write(File.join(dir, "build.rs"), dummy_app_content)
174
+
173
175
  FileUtils.mkdir_p(File.join(dir, "src"))
174
176
  File.write(File.join(dir, "src/lib.rs"), dummy_app_content)
175
177
  File.write(File.join(dir, "src/main.rs"), dummy_app_content)
@@ -109,6 +109,7 @@ module Dependabot
109
109
  dependency_files: dependency_files,
110
110
  credentials: credentials,
111
111
  ignored_versions: ignored_versions,
112
+ raise_on_ignored: raise_on_ignored,
112
113
  security_advisories: security_advisories
113
114
  )
114
115
  end
@@ -8,11 +8,13 @@ module Dependabot
8
8
  class UpdateChecker
9
9
  class LatestVersionFinder
10
10
  def initialize(dependency:, dependency_files:, credentials:,
11
- ignored_versions:, security_advisories:)
11
+ ignored_versions:, raise_on_ignored: false,
12
+ security_advisories:)
12
13
  @dependency = dependency
13
14
  @dependency_files = dependency_files
14
15
  @credentials = credentials
15
16
  @ignored_versions = ignored_versions
17
+ @raise_on_ignored = raise_on_ignored
16
18
  @security_advisories = security_advisories
17
19
  end
18
20
 
@@ -39,8 +41,8 @@ module Dependabot
39
41
  def fetch_lowest_security_fix_version
40
42
  versions = available_versions
41
43
  versions = filter_prerelease_versions(versions)
42
- versions = filter_ignored_versions(versions)
43
44
  versions = filter_vulnerable_versions(versions)
45
+ versions = filter_ignored_versions(versions)
44
46
  versions = filter_lower_versions(versions)
45
47
  versions.min
46
48
  end
@@ -52,8 +54,13 @@ module Dependabot
52
54
  end
53
55
 
54
56
  def filter_ignored_versions(versions_array)
55
- versions_array.
56
- reject { |v| ignore_reqs.any? { |r| r.satisfied_by?(v) } }
57
+ filtered = versions_array.
58
+ reject { |v| ignore_reqs.any? { |r| r.satisfied_by?(v) } }
59
+ if @raise_on_ignored && filtered.empty? && versions_array.any?
60
+ raise Dependabot::AllVersionsIgnored
61
+ end
62
+
63
+ filtered
57
64
  end
58
65
 
59
66
  def filter_vulnerable_versions(versions_array)
@@ -337,6 +337,8 @@ module Dependabot
337
337
 
338
338
  next if virtual_manifest?(file)
339
339
 
340
+ File.write(File.join(dir, "build.rs"), dummy_app_content)
341
+
340
342
  FileUtils.mkdir_p(File.join(dir, "src"))
341
343
  File.write(File.join(dir, "src/lib.rs"), dummy_app_content)
342
344
  File.write(File.join(dir, "src/main.rs"), dummy_app_content)
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-cargo
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.117.9
4
+ version: 0.118.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2020-05-19 00:00:00.000000000 Z
11
+ date: 2020-06-16 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.117.9
19
+ version: 0.118.2
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.117.9
26
+ version: 0.118.2
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -114,28 +114,28 @@ dependencies:
114
114
  requirements:
115
115
  - - "~>"
116
116
  - !ruby/object:Gem::Version
117
- version: 0.83.0
117
+ version: 0.85.0
118
118
  type: :development
119
119
  prerelease: false
120
120
  version_requirements: !ruby/object:Gem::Requirement
121
121
  requirements:
122
122
  - - "~>"
123
123
  - !ruby/object:Gem::Version
124
- version: 0.83.0
124
+ version: 0.85.0
125
125
  - !ruby/object:Gem::Dependency
126
126
  name: vcr
127
127
  requirement: !ruby/object:Gem::Requirement
128
128
  requirements:
129
129
  - - '='
130
130
  - !ruby/object:Gem::Version
131
- version: '5.0'
131
+ version: 6.0.0
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - '='
137
137
  - !ruby/object:Gem::Version
138
- version: '5.0'
138
+ version: 6.0.0
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: webmock
141
141
  requirement: !ruby/object:Gem::Requirement