dependabot-cargo 0.239.0 → 0.241.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e8ca495347e7bef1e1f27500d06ab99b268c6cfdca5d68f7f93af829a64897bd
-  data.tar.gz: 6864975e06f4147e3c6cff03867fe4b07e44b499f92b49cd0781391889c1ed8e
+  metadata.gz: c6de1ba677ca90d91499552806b2f9a301cf5567db1b52805f144da87705b62e
+  data.tar.gz: 837a3fd2b80759d39b388dbd7e3bc69dedf47502a58a9cbfce7349a10000ecfc
 SHA512:
-  metadata.gz: dd47f174e4837887551fd9f4f023f20e7e9a5674bf96fcaf4059f1e3069010de058acae2f3d6061a91a0341ce7681aa5aaf28d5d524d0085e438bd1076341c6f
-  data.tar.gz: 806aa44c0aa2835a8658fd993d1771fdf5b3f045f96ee223caa0ad3cc5c8ebd3468f0fcdeb093a1685ec719014d3eb4913d38e2f261457cd8eb7af5e9123f66c
+  metadata.gz: 668a9a38e89a5022246f028d1d7ecf2ac4e45b31d69ce3b38960483f45c19add56582a9f3094ebb3a7ac7d88cd850ca36742a4fd58f37e8c580fdb992d7255ac
+  data.tar.gz: 3fe871361acb0258f7768ac8b52e058654c754e894ae1675bf55eadae9abfe386ebc099cbac8e037d9a3bdbfa644b0dfb02dc346113a3d330b02a151e4f3bce7

data/lib/dependabot/cargo/file_parser.rb

@@ -50,9 +50,9 @@ module Dependabot
         msg = "This project is part of a Rust workspace but is not the " \
               "workspace root." \
 
-        if cargo_toml.directory != "/"
+        if cargo_toml&.directory != "/"
           msg += "Please update your settings so Dependabot points at the " \
-                 "workspace root instead of #{cargo_toml.directory}."
+                 "workspace root instead of #{cargo_toml&.directory}."
         end
         raise Dependabot::DependencyFileNotEvaluatable, msg
       end

data/lib/dependabot/cargo/requirement.rb

@@ -36,7 +36,7 @@ module Dependabot
 
         return DefaultRequirement if matches[1] == ">=" && matches[2] == "0"
 
-        [matches[1] || "=", Cargo::Version.new(matches[2])]
+        [matches[1] || "=", Cargo::Version.new(T.must(matches[2]))]
       end
 
       # For consistency with other languages, we define a requirements array.

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-cargo
 version: !ruby/object:Gem::Version
-  version: 0.239.0
+  version: 0.241.0
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-12-28 00:00:00.000000000 Z
+date: 2024-01-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.239.0
+        version: 0.241.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.239.0
+        version: 0.241.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -206,6 +206,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '3.18'
+- !ruby/object:Gem::Dependency
+  name: webrick
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.7'
 description: Dependabot-Cargo provides support for bumping Rust (cargo) crates via
   Dependabot. If you want support for multiple package managers, you probably want
   the meta-gem dependabot-omnibus.
@@ -233,7 +247,7 @@ licenses:
 - Nonstandard
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.239.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.241.0
 post_install_message: 
 rdoc_options: []
 require_paths: