dependabot-cargo 0.125.0 → 0.125.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d7a23c3aa9be53052471537d93cceedd7995914ad12b798c277c82c136a60cad
-  data.tar.gz: 4e851999123dcfe75921a8cd49695ade92fbc5158b0f8ede11f400b06d2f2874
+  metadata.gz: 7ea7cfc203c9f87da3b5a0fe2667ee2da548e99e69dd9e1f9d1adc753602876c
+  data.tar.gz: fc97363cb5b9cc70a33d15e0571cdda8b171bb0bd1083c1c94a270558d3c5442
 SHA512:
-  metadata.gz: 4004e3e8cad727d10001c8edf3f2c60b70b1d0f56a7a922f2c07153175f2590e29c350ae8a24b05b10368efcf57a4626f500565591328281cfa339193b0aa37a
-  data.tar.gz: 51fe72b7f5c6e2db18498290e85f6122b533f87478561e16373cb3f5fcccf8cafcea8fa06ac99c04714b42f8ac11354920e4e775bbf09b2fd124d437e9831cba
+  metadata.gz: 375ec46bfacfe78635ddeedfa8c7e289f6d375aaaa253af4a25aab6faf7a827c798366f4a6eb742094543bde10c3c548ac4ce7e344c3c010926a7acc3f969858
+  data.tar.gz: 16183ec3c80b5b040c43655cce84eab8786ae8c2c79ed0cefac353ab1ed0013683c072b675abfe50d22e9d80cf16d668366327a5dee8044a06d9f79575e0335f

data/lib/dependabot/cargo/file_parser.rb

@@ -130,30 +130,22 @@ module Dependabot
         if declaration.is_a?(String)
           return declaration == "" ? nil : declaration
         end
-        unless declaration.is_a?(Hash)
-          raise "Unexpected dependency declaration: #{declaration}"
-        end
-        if declaration["version"]&.is_a?(String) && declaration["version"] != ""
-          return declaration["version"]
-        end
+        raise "Unexpected dependency declaration: #{declaration}" unless declaration.is_a?(Hash)
+        return declaration["version"] if declaration["version"]&.is_a?(String) && declaration["version"] != ""
 
         nil
       end
 
       def name_from_declaration(name, declaration)
         return name if declaration.is_a?(String)
-        unless declaration.is_a?(Hash)
-          raise "Unexpected dependency declaration: #{declaration}"
-        end
+        raise "Unexpected dependency declaration: #{declaration}" unless declaration.is_a?(Hash)
 
         declaration.fetch("package", name)
       end
 
       def source_from_declaration(declaration)
         return if declaration.is_a?(String)
-        unless declaration.is_a?(Hash)
-          raise "Unexpected dependency declaration: #{declaration}"
-        end
+        raise "Unexpected dependency declaration: #{declaration}" unless declaration.is_a?(Hash)
 
         return git_source_details(declaration) if declaration["git"]
         return { type: "path" } if declaration["path"]
@@ -203,9 +195,7 @@ module Dependabot
       end
 
       def version_from_lockfile_details(package_details)
-        unless package_details["source"]&.start_with?("git+")
-          return package_details["version"]
-        end
+        return package_details["version"] unless package_details["source"]&.start_with?("git+")
 
         package_details["source"].split("#").last
       end

data/lib/dependabot/cargo/file_updater/lockfile_updater.rb

@@ -38,9 +38,7 @@ module Dependabot
             updated_lockfile = File.read("Cargo.lock")
             updated_lockfile = post_process_lockfile(updated_lockfile)
 
-            if updated_lockfile.include?(desired_lockfile_content)
-              next updated_lockfile
-            end
+            next updated_lockfile if updated_lockfile.include?(desired_lockfile_content)
 
             raise "Failed to update #{dependency.name}!"
           end
@@ -270,9 +268,7 @@ module Dependabot
 
         def remove_default_run_specification(content)
           parsed_manifest = TomlRB.parse(content)
-          if parsed_manifest.dig("package", "default-run")
-            parsed_manifest["package"].delete("default-run")
-          end
+          parsed_manifest["package"].delete("default-run") if parsed_manifest.dig("package", "default-run")
           TomlRB.dump(parsed_manifest)
         end
 

data/lib/dependabot/cargo/update_checker.rb

@@ -49,9 +49,7 @@ module Dependabot
       def lowest_resolvable_security_fix_version
         raise "Dependency not vulnerable!" unless vulnerable?
 
-        if defined?(@lowest_resolvable_security_fix_version)
-          return @lowest_resolvable_security_fix_version
-        end
+        return @lowest_resolvable_security_fix_version if defined?(@lowest_resolvable_security_fix_version)
 
         @lowest_resolvable_security_fix_version =
           fetch_lowest_resolvable_security_fix_version
@@ -125,9 +123,7 @@ module Dependabot
       def latest_git_version_sha
         # If the gem isn't pinned, the latest version is just the latest
         # commit for the specified branch.
-        unless git_commit_checker.pinned?
-          return git_commit_checker.head_commit_for_current_branch
-        end
+        return git_commit_checker.head_commit_for_current_branch unless git_commit_checker.pinned?
 
         # If the dependency is pinned to a tag that looks like a version then
         # we want to update that tag. The latest version will then be the SHA
@@ -145,9 +141,7 @@ module Dependabot
       def latest_resolvable_version_for_git_dependency
         # If the gem isn't pinned, the latest version is just the latest
         # commit for the specified branch.
-        unless git_commit_checker.pinned?
-          return latest_resolvable_commit_with_unchanged_git_source
-        end
+        return latest_resolvable_commit_with_unchanged_git_source unless git_commit_checker.pinned?
 
         # If the dependency is pinned to a tag that looks like a version then
         # we want to update that tag. The latest version will then be the SHA
@@ -221,9 +215,7 @@ module Dependabot
         fix_version = lowest_security_fix_version
         return latest_resolvable_version if fix_version.nil?
 
-        if path_dependency? || git_dependency? || git_subdependency?
-          return latest_resolvable_version
-        end
+        return latest_resolvable_version if path_dependency? || git_dependency? || git_subdependency?
 
         prepared_files = FilePreparer.new(
           dependency_files: dependency_files,

data/lib/dependabot/cargo/update_checker/file_preparer.rb

@@ -120,13 +120,9 @@ module Dependabot
               next unless req.is_a?(Hash)
               next unless [req["tag"], req["rev"]].compact.uniq.count == 1
 
-              if req["tag"]
-                parsed_manifest[type][name]["tag"] = replacement_git_pin
-              end
+              parsed_manifest[type][name]["tag"] = replacement_git_pin if req["tag"]
 
-              if req["rev"]
-                parsed_manifest[type][name]["rev"] = replacement_git_pin
-              end
+              parsed_manifest[type][name]["rev"] = replacement_git_pin if req["rev"]
             end
           end
 
@@ -255,9 +251,7 @@ module Dependabot
 
         def name_from_declaration(name, declaration)
           return name if declaration.is_a?(String)
-          unless declaration.is_a?(Hash)
-            raise "Unexpected dependency declaration: #{declaration}"
-          end
+          raise "Unexpected dependency declaration: #{declaration}" unless declaration.is_a?(Hash)
 
           declaration.fetch("package", name)
         end

data/lib/dependabot/cargo/update_checker/latest_version_finder.rb

@@ -56,9 +56,7 @@ module Dependabot
         def filter_ignored_versions(versions_array)
           filtered = versions_array.
                      reject { |v| ignore_reqs.any? { |r| r.satisfied_by?(v) } }
-          if @raise_on_ignored && filtered.empty? && versions_array.any?
-            raise Dependabot::AllVersionsIgnored
-          end
+          raise Dependabot::AllVersionsIgnored if @raise_on_ignored && filtered.empty? && versions_array.any?
 
           filtered
         end

data/lib/dependabot/cargo/update_checker/version_resolver.rb

@@ -214,9 +214,7 @@ module Dependabot
             raise Dependabot::GitDependencyReferenceNotFound, dependency_url
           end
 
-          if resolvability_error?(error.message)
-            raise Dependabot::DependencyFileNotResolvable, error.message
-          end
+          raise Dependabot::DependencyFileNotResolvable, error.message if resolvability_error?(error.message)
 
           if workspace_native_library_update_error?(error.message)
             # This happens when we're updating one part of a workspace which
@@ -373,16 +371,12 @@ module Dependabot
 
           object.delete("bin")
 
-          if object.dig("package", "default-run")
-            object["package"].delete("default-run")
-          end
+          object["package"].delete("default-run") if object.dig("package", "default-run")
 
           package_name = object.dig("package", "name")
           return TomlRB.dump(object) unless package_name&.match?(/[\{\}]/)
 
-          if lockfile
-            raise "Sanitizing name for pkg with lockfile. Investigate!"
-          end
+          raise "Sanitizing name for pkg with lockfile. Investigate!" if lockfile
 
           object["package"]["name"] = "sanitized"
           TomlRB.dump(object)

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-cargo
 version: !ruby/object:Gem::Version
-  version: 0.125.0
+  version: 0.125.1
 platform: ruby
 authors:
 - Dependabot
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.125.0
+        version: 0.125.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.125.0
+        version: 0.125.1
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement