dependabot-common 0.116.0 → 0.116.5
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/git_metadata_fetcher.rb +14 -4
- data/lib/dependabot/update_checkers/base.rb +3 -1
- data/lib/dependabot/version.rb +1 -1
- metadata +10 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 999a78c5cab8fb23387cadf8a8ccb5d2dee82979a3858f8762db6dc99b168693
|
4
|
+
data.tar.gz: 8cfbffcaf398f3a5c311347b68412a009b2020e2ebac5e01c04b43f834dd7e99
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: '098cc18aff2efd626f1d6505ac8242063807105431768dd94279f2902e64bbe7fe84e5fdf6109ce6ce3a347487c2eea0250ad76b187152f21b1251b40a58b1c5'
|
7
|
+
data.tar.gz: e90e52811aad8725153e05ceb562a66d641d5b6701a3c77c0376a0feaae458ddbd0f533428830037e7d3bc40d4a0a7de20c9b5c769f6925f011997624823bcbb
|
@@ -156,16 +156,26 @@ module Dependabot
|
|
156
156
|
cred = credentials.select { |c| c["type"] == "git_source" }.
|
157
157
|
find { |c| bare_uri.start_with?(c["host"]) }
|
158
158
|
|
159
|
+
scheme = scheme_for_uri(uri)
|
160
|
+
|
159
161
|
if bare_uri.match?(%r{[^/]+:[^/]+@})
|
160
162
|
# URI already has authentication details
|
161
|
-
"
|
163
|
+
"#{scheme}://#{bare_uri}"
|
162
164
|
elsif cred&.fetch("username", nil) && cred&.fetch("password", nil)
|
163
165
|
# URI doesn't have authentication details, but we have credentials
|
164
166
|
auth_string = "#{cred.fetch('username')}:#{cred.fetch('password')}"
|
165
|
-
"
|
167
|
+
"#{scheme}://#{auth_string}@#{bare_uri}"
|
168
|
+
else
|
169
|
+
# No credentials, so just return the http(s) URI
|
170
|
+
"#{scheme}://#{bare_uri}"
|
171
|
+
end
|
172
|
+
end
|
173
|
+
|
174
|
+
def scheme_for_uri(uri)
|
175
|
+
if uri.match?(%r{^http://})
|
176
|
+
"http"
|
166
177
|
else
|
167
|
-
|
168
|
-
"https://#{bare_uri}"
|
178
|
+
"https"
|
169
179
|
end
|
170
180
|
end
|
171
181
|
|
@@ -13,13 +13,15 @@ module Dependabot
|
|
13
13
|
|
14
14
|
def initialize(dependency:, dependency_files:, credentials:,
|
15
15
|
ignored_versions: [], security_advisories: [],
|
16
|
-
requirements_update_strategy: nil
|
16
|
+
requirements_update_strategy: nil,
|
17
|
+
security_updates_only: false)
|
17
18
|
@dependency = dependency
|
18
19
|
@dependency_files = dependency_files
|
19
20
|
@credentials = credentials
|
20
21
|
@requirements_update_strategy = requirements_update_strategy
|
21
22
|
@ignored_versions = ignored_versions
|
22
23
|
@security_advisories = security_advisories
|
24
|
+
@security_updates_only = security_updates_only
|
23
25
|
end
|
24
26
|
|
25
27
|
def up_to_date?
|
data/lib/dependabot/version.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-common
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.116.
|
4
|
+
version: 0.116.5
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-01-
|
11
|
+
date: 2020-01-31 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-codecommit
|
@@ -62,16 +62,22 @@ dependencies:
|
|
62
62
|
name: commonmarker
|
63
63
|
requirement: !ruby/object:Gem::Requirement
|
64
64
|
requirements:
|
65
|
-
- - "
|
65
|
+
- - ">="
|
66
66
|
- !ruby/object:Gem::Version
|
67
67
|
version: 0.20.1
|
68
|
+
- - "<"
|
69
|
+
- !ruby/object:Gem::Version
|
70
|
+
version: 0.22.0
|
68
71
|
type: :runtime
|
69
72
|
prerelease: false
|
70
73
|
version_requirements: !ruby/object:Gem::Requirement
|
71
74
|
requirements:
|
72
|
-
- - "
|
75
|
+
- - ">="
|
73
76
|
- !ruby/object:Gem::Version
|
74
77
|
version: 0.20.1
|
78
|
+
- - "<"
|
79
|
+
- !ruby/object:Gem::Version
|
80
|
+
version: 0.22.0
|
75
81
|
- !ruby/object:Gem::Dependency
|
76
82
|
name: docker_registry2
|
77
83
|
requirement: !ruby/object:Gem::Requirement
|