RubyGems - dependabot-cargo - Versions diffs - 0.372.0 → 0.373.0 - Mend

dependabot-cargo 0.372.0 → 0.373.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +4 -4
data/lib/dependabot/cargo/file_updater/lockfile_updater.rb +4 -0
data/lib/dependabot/cargo/update_checker/version_resolver.rb +4 -0
metadata +4 -4

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 32769fa39bd3e72d396e109bc244bc0bcc0dc1d57b9cd00b1c2ffc65e6462099
-  data.tar.gz: c3d87e9bd6c26570f8a3993d8a2de69d589aa3b1215737ac4b16e7c19a75e2db
+  metadata.gz: fbd8702976abcb7605ae301567e2c69170255f4bede215014b601a1b6321dd8f
+  data.tar.gz: 0bd0d7ef4223ffc7066a27325079a32b3bb4303b9e2eb4d45a8ac3fbb17e4a0a
 SHA512:
-  metadata.gz: 1eff9ee4696e8c7ad613f01b9dac8f6fc7baf29dfd972a9847f9985edb2cd29f3a28fdbc0a502c48c8de6dfc411b96f9e430638ee3aacb0f26be0a56d1955510
-  data.tar.gz: 1e396963c052bd172367073c14f183f447a8d274d59682bac02df7bf600feeca426a011d7ac16179fd271d446b8ba5a99bb6ecc3b57f55302f432d038271bb7a
+  metadata.gz: e7ef3121684bcc9e1ee5ee56f0887f3922e178c02e1ffe696eb06d0c37515241e94c713ba513ced8586eae90c62aeda5cd32fc7e12edea1e3699bd2123981272
+  data.tar.gz: 1cd491c8ed61d07b5837821911a4acc5d817e29b42974660aec0e5b8b5f9f05a4cbeeccc43d2a5411b560f82c9e35f36e2414836416609c8f4110937aa0ed5ee

data/lib/dependabot/cargo/file_updater/lockfile_updater.rb CHANGED Viewed

@@ -291,6 +291,10 @@ module Dependabot
         def using_old_toolchain?(message)
           return true if message.include?("usage of sparse registries requires `-Z sparse-registry`")
+          # Detect rustup installation failures for old toolchains (e.g. "syncing channel updates for 1.67-x86_64-...")
+          rustup_channel = /syncing channel updates for (?<version>\d+\.\d+)-/.match(message)
+          return version_class.new(rustup_channel[:version]) < version_class.new("1.68") if rustup_channel
           version_log = /rust version (?<version>\d.\d+)/.match(message)
           return false unless version_log

data/lib/dependabot/cargo/update_checker/version_resolver.rb CHANGED Viewed

@@ -338,6 +338,10 @@ module Dependabot
         def using_old_toolchain?(message)
           return true if T.must(message).include?("usage of sparse registries requires `-Z sparse-registry`")
+          # Detect rustup installation failures for old toolchains (e.g. "syncing channel updates for 1.67-x86_64-...")
+          rustup_channel = /syncing channel updates for (?<version>\d+\.\d+)-/.match(T.must(message))
+          return version_class.new(rustup_channel[:version]) < version_class.new("1.68") if rustup_channel
           version_log = /rust version (?<version>\d.\d+)/.match(message)
           return false unless version_log

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-cargo
 version: !ruby/object:Gem::Version
-  version: 0.372.0
+  version: 0.373.0
 platform: ruby
 authors:
 - Dependabot
@@ -15,14 +15,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.372.0
+        version: 0.373.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.372.0
+        version: 0.373.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -266,7 +266,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.372.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.373.0
 rdoc_options: []
 require_paths:
 - lib