dependabot-cargo 0.86.14 → 0.86.15

Sign up to get free protection for your applications and to get access to all the features.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/cargo/file_updater/lockfile_updater.rb +7 -0
  3. data/lib/dependabot/cargo/update_checker/version_resolver.rb +3 -1
  4. metadata +3 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 3a91e6038a4ad5c3ade01ba3e6c73081468412325e4484ac6438df801760dbf3
4
- data.tar.gz: ad6360a70c9575155387e83d89f5c827b63427c5b62b727aacdd0f98e2c03d10
3
+ metadata.gz: ea0c28d05ee592c2ff334739e0274790c4d27fe8d3b33f38b83a3eb73eb4e419
4
+ data.tar.gz: 78f5cd24e8938250983dd45d900a28d73add9cf860f39b43d6add997aedf16ac
5
5
  SHA512:
6
- metadata.gz: 1340099d7e5bfa66ad229b9ad93cd8b385360bb56f48354ea3a47c1442a4103ae68a0125e56d12ec557764b12ea6fd6e7b1ab92eedd253cff8b1e60404397bfd
7
- data.tar.gz: 152ade9362f0b0c0a976a0301afb1ed3b666c4aa8b53cf2a61ccc87112e3da6fd1f8ceb20ac60d9d56a50d91032d91452eae9a8e03ab6be214bbb95cf6dfa911
6
+ metadata.gz: 4bd048e360a7655efb231927c6b16745156f2589e5c689f9763fa89841378ff50b56e8c0a04550138ed86059e198057ab2dfe83cc77e7175a57e2cd0cec09c76
7
+ data.tar.gz: 718932385a3090edba8f27ff92fcb449ab7068e4b807f77bb954c4dadab4816c1596db26f8947ac74383da9d21f3e3e2e9f48719633e7a0ef6efffe92ffb82c5
data/lib/dependabot/cargo/file_updater/lockfile_updater.rb CHANGED
@@ -138,6 +138,7 @@ module Dependabot
138
138
  content = updated_manifest_content(file)
139
139
  content = pin_version(content) unless git_dependency?
140
140
  content = replace_ssh_urls(content)
141
+ content = remove_binary_specifications(content)
141
142
  content
142
143
  end
143
144
 
@@ -179,6 +180,12 @@ module Dependabot
179
180
  content
180
181
  end
181
182
 
183
+ def remove_binary_specifications(content)
184
+ parsed_manifest = TomlRB.parse(content)
185
+ parsed_manifest.delete("bin")
186
+ TomlRB.dump(parsed_manifest)
187
+ end
188
+
182
189
  def post_process_lockfile(content)
183
190
  git_ssh_requirements_to_swap.each do |ssh_url, https_url|
184
191
  content = content.gsub(https_url, ssh_url)
data/lib/dependabot/cargo/update_checker/version_resolver.rb CHANGED
@@ -202,8 +202,10 @@ module Dependabot
202
202
  def sanitized_manifest_content(content)
203
203
  object = TomlRB.parse(content)
204
204
 
205
+ object.delete("bin")
206
+
205
207
  package_name = object.dig("package", "name")
206
- return content unless package_name&.match?(/[\{\}]/)
208
+ return TomlRB.dump(object) unless package_name&.match?(/[\{\}]/)
207
209
 
208
210
  if lockfile
209
211
  raise "Sanitizing name for pkg with lockfile. Investigate!"
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-cargo
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.86.14
4
+ version: 0.86.15
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.86.14
19
+ version: 0.86.15
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.86.14
26
+ version: 0.86.15
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement