dependabot-cargo 0.86.14 → 0.86.15
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ea0c28d05ee592c2ff334739e0274790c4d27fe8d3b33f38b83a3eb73eb4e419
|
|
4
|
+
data.tar.gz: 78f5cd24e8938250983dd45d900a28d73add9cf860f39b43d6add997aedf16ac
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 4bd048e360a7655efb231927c6b16745156f2589e5c689f9763fa89841378ff50b56e8c0a04550138ed86059e198057ab2dfe83cc77e7175a57e2cd0cec09c76
|
|
7
|
+
data.tar.gz: 718932385a3090edba8f27ff92fcb449ab7068e4b807f77bb954c4dadab4816c1596db26f8947ac74383da9d21f3e3e2e9f48719633e7a0ef6efffe92ffb82c5
|
|
@@ -138,6 +138,7 @@ module Dependabot
|
|
|
138
138
|
content = updated_manifest_content(file)
|
|
139
139
|
content = pin_version(content) unless git_dependency?
|
|
140
140
|
content = replace_ssh_urls(content)
|
|
141
|
+
content = remove_binary_specifications(content)
|
|
141
142
|
content
|
|
142
143
|
end
|
|
143
144
|
|
|
@@ -179,6 +180,12 @@ module Dependabot
|
|
|
179
180
|
content
|
|
180
181
|
end
|
|
181
182
|
|
|
183
|
+
def remove_binary_specifications(content)
|
|
184
|
+
parsed_manifest = TomlRB.parse(content)
|
|
185
|
+
parsed_manifest.delete("bin")
|
|
186
|
+
TomlRB.dump(parsed_manifest)
|
|
187
|
+
end
|
|
188
|
+
|
|
182
189
|
def post_process_lockfile(content)
|
|
183
190
|
git_ssh_requirements_to_swap.each do |ssh_url, https_url|
|
|
184
191
|
content = content.gsub(https_url, ssh_url)
|
|
@@ -202,8 +202,10 @@ module Dependabot
|
|
|
202
202
|
def sanitized_manifest_content(content)
|
|
203
203
|
object = TomlRB.parse(content)
|
|
204
204
|
|
|
205
|
+
object.delete("bin")
|
|
206
|
+
|
|
205
207
|
package_name = object.dig("package", "name")
|
|
206
|
-
return
|
|
208
|
+
return TomlRB.dump(object) unless package_name&.match?(/[\{\}]/)
|
|
207
209
|
|
|
208
210
|
if lockfile
|
|
209
211
|
raise "Sanitizing name for pkg with lockfile. Investigate!"
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-cargo
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.86.
|
|
4
|
+
version: 0.86.15
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.86.
|
|
19
|
+
version: 0.86.15
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.86.
|
|
26
|
+
version: 0.86.15
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|