dependabot-common 0.119.6 → 0.120.0
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of dependabot-common might be problematic. Click here for more details.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 8a591ed018e9734955f64c0f830dd403c103706b4ffe9f9db18c5eb9c701061d
|
|
4
|
+
data.tar.gz: 86c1b8b7d36005ec164c35016144cf60a00027c1e95e5943fb0199ae2b4772ba
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: '02211953c4f4ca35f549629a4196a18ef875cb4aa9a67e06af8f56c564cd9dcd5e2322c5c3e8fa2a57e7517c90e6a3806c93c4ecea8e2ae6d2befc04167da875'
|
|
7
|
+
data.tar.gz: 31b207db8ee1fe5a2b36f598b3082a044b7e01de990f06c37d3864fa591982804e1b0921243613b0754dabcf5b01cff914dac4f56beac5418e1d636f81ca6064
|
|
@@ -153,8 +153,9 @@ module Dependabot
|
|
|
153
153
|
"/pushes?api-version=5.0", content.to_json)
|
|
154
154
|
end
|
|
155
155
|
|
|
156
|
+
# rubocop:disable Metrics/ParameterLists
|
|
156
157
|
def create_pull_request(pr_name, source_branch, target_branch,
|
|
157
|
-
pr_description, labels)
|
|
158
|
+
pr_description, labels, work_item = nil)
|
|
158
159
|
# Azure DevOps only support descriptions up to 4000 characters
|
|
159
160
|
# https://developercommunity.visualstudio.com/content/problem/608770/remove-4000-character-limit-on-pull-request-descri.html
|
|
160
161
|
azure_max_length = 3999
|
|
@@ -163,13 +164,15 @@ module Dependabot
|
|
|
163
164
|
truncate_length = azure_max_length - truncated_msg.length
|
|
164
165
|
pr_description = pr_description[0..truncate_length] + truncated_msg
|
|
165
166
|
end
|
|
167
|
+
# rubocop:enable Metrics/ParameterLists
|
|
166
168
|
|
|
167
169
|
content = {
|
|
168
170
|
sourceRefName: "refs/heads/" + source_branch,
|
|
169
171
|
targetRefName: "refs/heads/" + target_branch,
|
|
170
172
|
title: pr_name,
|
|
171
173
|
description: pr_description,
|
|
172
|
-
labels: labels.map { |label| { name: label } }
|
|
174
|
+
labels: labels.map { |label| { name: label } },
|
|
175
|
+
workItemRefs: [{ id: work_item }]
|
|
173
176
|
}
|
|
174
177
|
|
|
175
178
|
post(source.api_endpoint +
|
|
@@ -17,13 +17,23 @@ module Dependabot
|
|
|
17
17
|
class RepoDisabled < StandardError; end
|
|
18
18
|
class NoHistoryInCommon < StandardError; end
|
|
19
19
|
|
|
20
|
+
# AnnotationError is raised if a PR was created, but failed annotation
|
|
21
|
+
class AnnotationError < StandardError
|
|
22
|
+
attr_reader :cause, :pull_request
|
|
23
|
+
def initialize(cause, pull_request)
|
|
24
|
+
super(cause.message)
|
|
25
|
+
@cause = cause
|
|
26
|
+
@pull_request = pull_request
|
|
27
|
+
end
|
|
28
|
+
end
|
|
29
|
+
|
|
20
30
|
attr_reader :source, :dependencies, :files, :base_commit,
|
|
21
31
|
:credentials, :pr_message_header, :pr_message_footer,
|
|
22
32
|
:custom_labels, :author_details, :signature_key,
|
|
23
33
|
:commit_message_options, :vulnerabilities_fixed,
|
|
24
34
|
:reviewers, :assignees, :milestone, :branch_name_separator,
|
|
25
35
|
:branch_name_prefix, :github_redirection_service,
|
|
26
|
-
:custom_headers
|
|
36
|
+
:custom_headers, :provider_metadata
|
|
27
37
|
|
|
28
38
|
def initialize(source:, base_commit:, dependencies:, files:, credentials:,
|
|
29
39
|
pr_message_header: nil, pr_message_footer: nil,
|
|
@@ -33,7 +43,8 @@ module Dependabot
|
|
|
33
43
|
branch_name_separator: "/", branch_name_prefix: "dependabot",
|
|
34
44
|
label_language: false, automerge_candidate: false,
|
|
35
45
|
github_redirection_service: "github-redirect.dependabot.com",
|
|
36
|
-
custom_headers: nil, require_up_to_date_base: false
|
|
46
|
+
custom_headers: nil, require_up_to_date_base: false,
|
|
47
|
+
provider_metadata: {})
|
|
37
48
|
@dependencies = dependencies
|
|
38
49
|
@source = source
|
|
39
50
|
@base_commit = base_commit
|
|
@@ -56,6 +67,7 @@ module Dependabot
|
|
|
56
67
|
@github_redirection_service = github_redirection_service
|
|
57
68
|
@custom_headers = custom_headers
|
|
58
69
|
@require_up_to_date_base = require_up_to_date_base
|
|
70
|
+
@provider_metadata = provider_metadata
|
|
59
71
|
|
|
60
72
|
check_dependencies_have_previous_version
|
|
61
73
|
end
|
|
@@ -142,7 +154,8 @@ module Dependabot
|
|
|
142
154
|
pr_description: message_builder.pr_message,
|
|
143
155
|
pr_name: message_builder.pr_name,
|
|
144
156
|
author_details: author_details,
|
|
145
|
-
labeler: labeler
|
|
157
|
+
labeler: labeler,
|
|
158
|
+
work_item: provider_metadata&.fetch(:work_item, nil)
|
|
146
159
|
)
|
|
147
160
|
end
|
|
148
161
|
|
|
@@ -8,11 +8,11 @@ module Dependabot
|
|
|
8
8
|
class Azure
|
|
9
9
|
attr_reader :source, :branch_name, :base_commit, :credentials,
|
|
10
10
|
:files, :commit_message, :pr_description, :pr_name,
|
|
11
|
-
:author_details, :labeler
|
|
11
|
+
:author_details, :labeler, :work_item
|
|
12
12
|
|
|
13
13
|
def initialize(source:, branch_name:, base_commit:, credentials:,
|
|
14
14
|
files:, commit_message:, pr_description:, pr_name:,
|
|
15
|
-
author_details:, labeler:)
|
|
15
|
+
author_details:, labeler:, work_item: nil)
|
|
16
16
|
@source = source
|
|
17
17
|
@branch_name = branch_name
|
|
18
18
|
@base_commit = base_commit
|
|
@@ -23,6 +23,7 @@ module Dependabot
|
|
|
23
23
|
@pr_name = pr_name
|
|
24
24
|
@author_details = author_details
|
|
25
25
|
@labeler = labeler
|
|
26
|
+
@work_item = work_item
|
|
26
27
|
end
|
|
27
28
|
|
|
28
29
|
def create
|
|
@@ -46,9 +47,7 @@ module Dependabot
|
|
|
46
47
|
end
|
|
47
48
|
|
|
48
49
|
def branch_exists?
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
@branch_ref
|
|
50
|
+
azure_client_for_source.branch(branch_name)
|
|
52
51
|
rescue ::Azure::Error::NotFound
|
|
53
52
|
false
|
|
54
53
|
end
|
|
@@ -79,7 +78,8 @@ module Dependabot
|
|
|
79
78
|
branch_name,
|
|
80
79
|
source.branch || default_branch,
|
|
81
80
|
pr_description,
|
|
82
|
-
labeler.labels_for_pr
|
|
81
|
+
labeler.labels_for_pr,
|
|
82
|
+
work_item
|
|
83
83
|
)
|
|
84
84
|
end
|
|
85
85
|
|
|
@@ -7,6 +7,7 @@ require "dependabot/pull_request_creator"
|
|
|
7
7
|
require "dependabot/pull_request_creator/commit_signer"
|
|
8
8
|
module Dependabot
|
|
9
9
|
class PullRequestCreator
|
|
10
|
+
# rubocop:disable Metrics/ClassLength
|
|
10
11
|
class Github
|
|
11
12
|
attr_reader :source, :branch_name, :base_commit, :credentials,
|
|
12
13
|
:files, :pr_description, :pr_name, :commit_message,
|
|
@@ -41,7 +42,7 @@ module Dependabot
|
|
|
41
42
|
return if require_up_to_date_base? && !base_commit_is_up_to_date?
|
|
42
43
|
|
|
43
44
|
create_annotated_pull_request
|
|
44
|
-
rescue Octokit::Error => e
|
|
45
|
+
rescue AnnotationError, Octokit::Error => e
|
|
45
46
|
handle_error(e)
|
|
46
47
|
end
|
|
47
48
|
|
|
@@ -111,7 +112,11 @@ module Dependabot
|
|
|
111
112
|
pull_request = create_pull_request
|
|
112
113
|
return unless pull_request
|
|
113
114
|
|
|
114
|
-
|
|
115
|
+
begin
|
|
116
|
+
annotate_pull_request(pull_request)
|
|
117
|
+
rescue StandardError => e
|
|
118
|
+
raise AnnotationError.new(e, pull_request)
|
|
119
|
+
end
|
|
115
120
|
|
|
116
121
|
pull_request
|
|
117
122
|
end
|
|
@@ -417,24 +422,49 @@ module Dependabot
|
|
|
417
422
|
end
|
|
418
423
|
|
|
419
424
|
def handle_error(err)
|
|
420
|
-
case err
|
|
425
|
+
cause = case err
|
|
426
|
+
when AnnotationError
|
|
427
|
+
err.cause
|
|
428
|
+
else
|
|
429
|
+
err
|
|
430
|
+
end
|
|
431
|
+
|
|
432
|
+
case cause
|
|
421
433
|
when Octokit::Forbidden
|
|
422
|
-
|
|
423
|
-
|
|
434
|
+
if err.message.include?("disabled")
|
|
435
|
+
raise_custom_error err, RepoDisabled, err.message
|
|
436
|
+
elsif err.message.include?("archived")
|
|
437
|
+
raise_custom_error err, RepoArchived, err.message
|
|
438
|
+
end
|
|
424
439
|
|
|
425
440
|
raise err
|
|
426
441
|
when Octokit::NotFound
|
|
427
442
|
raise err if repo_exists?
|
|
428
443
|
|
|
429
|
-
|
|
444
|
+
raise_custom_error err, RepoNotFound, err.message
|
|
430
445
|
when Octokit::UnprocessableEntity
|
|
431
|
-
|
|
446
|
+
if err.message.include?("no history in common")
|
|
447
|
+
raise_custom_error err, NoHistoryInCommon, err.message
|
|
448
|
+
end
|
|
432
449
|
|
|
433
|
-
raise
|
|
450
|
+
raise err
|
|
434
451
|
else
|
|
435
452
|
raise err
|
|
436
453
|
end
|
|
437
454
|
end
|
|
455
|
+
|
|
456
|
+
def raise_custom_error(base_err, type, message)
|
|
457
|
+
case base_err
|
|
458
|
+
when AnnotationError
|
|
459
|
+
raise AnnotationError.new(
|
|
460
|
+
type.new(message),
|
|
461
|
+
base_err.pull_request
|
|
462
|
+
)
|
|
463
|
+
else
|
|
464
|
+
raise type, message
|
|
465
|
+
end
|
|
466
|
+
end
|
|
438
467
|
end
|
|
468
|
+
# rubocop:enable Metrics/ClassLength
|
|
439
469
|
end
|
|
440
470
|
end
|
data/lib/dependabot/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-common
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.120.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-09-
|
|
11
|
+
date: 2020-09-24 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-codecommit
|
|
@@ -292,14 +292,14 @@ dependencies:
|
|
|
292
292
|
requirements:
|
|
293
293
|
- - "~>"
|
|
294
294
|
- !ruby/object:Gem::Version
|
|
295
|
-
version: 0.
|
|
295
|
+
version: 0.91.0
|
|
296
296
|
type: :development
|
|
297
297
|
prerelease: false
|
|
298
298
|
version_requirements: !ruby/object:Gem::Requirement
|
|
299
299
|
requirements:
|
|
300
300
|
- - "~>"
|
|
301
301
|
- !ruby/object:Gem::Version
|
|
302
|
-
version: 0.
|
|
302
|
+
version: 0.91.0
|
|
303
303
|
- !ruby/object:Gem::Dependency
|
|
304
304
|
name: vcr
|
|
305
305
|
requirement: !ruby/object:Gem::Requirement
|