dependabot-cargo 0.201.1 → 0.204.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 50b569d19b39989dcbd9bd0bb87ab5487c5e60ccbacae27b815b579e0dcd5310
-  data.tar.gz: a0b1f0bad7a036b0f1f4060bf634605c5c3da240712f3ff119d2c5383ed72aea
+  metadata.gz: 2c316667a86f0549971f8b65c79280f33a78397b87a40503bf6d66f0faa2fbde
+  data.tar.gz: 27c9226a6f36df466e0b2e320e9a22a74187010d73c266c20bc31f6a5d69a8e5
 SHA512:
-  metadata.gz: a5162f82fb1e9ef57a98a4901d6f3f991dc1604cae708534b86d8a9a5dcd1ab9cf2041b2be7e242c8744311cf714b25fa40f7621cf4f78d0caac281050cce8dc
-  data.tar.gz: '079559eb51ba364d43e7110d3fde5a6ae0ae9c9f41f34b450216b31ba8054a587c8b7664157de4707be7e3f67df5fe8cc4cf903a214f50dc8b66ee8b26df0d85'
+  metadata.gz: fef84183b2b8aa896e50a9225a5a21688b98b0d093f3fda8ced4ce56ff9b2546769e5fb47cd3c8939d7dc5cbaf8be0734d9ea9abab8322e273e9058b88b0f058
+  data.tar.gz: 32d58bbb5d2ce798fd751407656bf1428e781bb0bfb743c9d772e67e4308b67097eb41155a6cbeb7a93263710361f6845a8de42c946d17a1137ea818bfdc0006

data/lib/dependabot/cargo/metadata_finder.rb

@@ -3,7 +3,7 @@
 require "excon"
 require "dependabot/metadata_finders"
 require "dependabot/metadata_finders/base"
-require "dependabot/shared_helpers"
+require "dependabot/registry_client"
 
 module Dependabot
   module Cargo
@@ -50,12 +50,7 @@ module Dependabot
       def crates_listing
         return @crates_listing unless @crates_listing.nil?
 
-        response = Excon.get(
-          "https://crates.io/api/v1/crates/#{dependency.name}",
-          idempotent: true,
-          **SharedHelpers.excon_defaults
-        )
-
+        response = Dependabot::RegistryClient.get(url: "https://crates.io/api/v1/crates/#{dependency.name}")
         @crates_listing = JSON.parse(response.body)
       end
     end

data/lib/dependabot/cargo/update_checker/latest_version_finder.rb

@@ -3,6 +3,7 @@
 require "excon"
 require "dependabot/cargo/update_checker"
 require "dependabot/update_checkers/version_filters"
+require "dependabot/registry_client"
 
 module Dependabot
   module Cargo
@@ -83,12 +84,7 @@ module Dependabot
         def crates_listing
           return @crates_listing unless @crates_listing.nil?
 
-          response = Excon.get(
-            "https://crates.io/api/v1/crates/#{dependency.name}",
-            idempotent: true,
-            **SharedHelpers.excon_defaults
-          )
-
+          response = Dependabot::RegistryClient.get(url: "https://crates.io/api/v1/crates/#{dependency.name}")
           @crates_listing = JSON.parse(response.body)
         end
 

data/lib/dependabot/cargo/update_checker/version_resolver.rb

@@ -19,6 +19,7 @@ module Dependabot
         OBJECT_PATTERN = /object not found - no match for id \(.*\)/.freeze
         REF_NOT_FOUND_REGEX =
           /#{UNABLE_TO_UPDATE}.*(#{REVSPEC_PATTERN}|#{OBJECT_PATTERN})/m.freeze
+        GIT_REF_NOT_FOUND_REGEX = /Updating git repository `(?<url>[^`]*)`.*fatal: couldn't find remote ref/m.freeze
 
         def initialize(dependency:, credentials:,
                        original_dependency_files:, prepared_dependency_files:)
@@ -179,7 +180,6 @@ module Dependabot
 
         # rubocop:disable Metrics/AbcSize
         # rubocop:disable Metrics/PerceivedComplexity
-        # rubocop:disable Metrics/MethodLength
         def handle_cargo_errors(error)
           if error.message.include?("does not have these features")
             # TODO: Ideally we should update the declaration not to ask
@@ -188,7 +188,8 @@ module Dependabot
           end
 
           if error.message.include?("authenticate when downloading repo") ||
-             error.message.include?("HTTP 200 response: got 401")
+             error.message.include?("HTTP 200 response: got 401") ||
+             error.message.include?("fatal: Authentication failed for")
             # Check all dependencies for reachability (so that we raise a
             # consistent error)
             urls = unreachable_git_urls
@@ -204,17 +205,10 @@ module Dependabot
             raise Dependabot::GitDependenciesNotReachable, urls
           end
 
-          if error.message.match?(BRANCH_NOT_FOUND_REGEX)
-            dependency_url =
-              error.message.match(BRANCH_NOT_FOUND_REGEX).
-              named_captures.fetch("url").split(/[#?]/).first
-            raise Dependabot::GitDependencyReferenceNotFound, dependency_url
-          end
+          [BRANCH_NOT_FOUND_REGEX, REF_NOT_FOUND_REGEX, GIT_REF_NOT_FOUND_REGEX].each do |regex|
+            next unless error.message.match?(regex)
 
-          if error.message.match?(REF_NOT_FOUND_REGEX)
-            dependency_url =
-              error.message.match(REF_NOT_FOUND_REGEX).
-              named_captures.fetch("url").split(/[#?]/).first
+            dependency_url = error.message.match(regex).named_captures.fetch("url").split(/[#?]/).first
             raise Dependabot::GitDependencyReferenceNotFound, dependency_url
           end
 
@@ -245,7 +239,6 @@ module Dependabot
         end
         # rubocop:enable Metrics/AbcSize
         # rubocop:enable Metrics/PerceivedComplexity
-        # rubocop:enable Metrics/MethodLength
 
         def unreachable_git_urls
           return @unreachable_git_urls if defined?(@unreachable_git_urls)

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-cargo
 version: !ruby/object:Gem::Version
-  version: 0.201.1
+  version: 0.204.0
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-07-25 00:00:00.000000000 Z
+date: 2022-08-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.201.1
+        version: 0.204.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.201.1
+        version: 0.204.0
 - !ruby/object:Gem::Dependency
   name: debase
   requirement: !ruby/object:Gem::Requirement