dependabot-common 0.195.0 → 0.196.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/security_advisory.rb +5 -3
  3. data/lib/dependabot/version.rb +1 -1
  4. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 1480af93a4ba90e81530ef889791cf56042976297d0ef4f245673c2c17b67c64
4
- data.tar.gz: ad52abe54e90dcf78420d0f650fe2088a7f6e2894e692074ed8021fdcd3fcefa
3
+ metadata.gz: b4a10e581ed24fe680c2e17a6b1b424f6ca7f5de254df4d5bea2e6776fa46358
4
+ data.tar.gz: d9376f0856e10cf37c5deced908f88bfc0f9e1b9f019248f0dd5c6b815952491
5
5
  SHA512:
6
- metadata.gz: '08f032bcfeb7fa2cae08bf7cbfb97083e504e3ca0c582b51158f7763d676d8d4c6bc64c14ad75565926021b646cd97e2b6fa9b64202e352dbc137e90b22014a5'
7
- data.tar.gz: 95a64c77eb8313fd68e4211ff28ccc24d0b7d620d1745290e75fffe1eb7958d20613ea091302af8f7dd92320270b21f07462c7699607f2677a43149358db5815
6
+ metadata.gz: '0274888a51342c596d4d7150714b5719c1cdf77ba9f3f4bcac00ef5cdafd0e1465ef2a6004d29e5e7f0f8e3c9c0706fd098c54f620e5ec10e51e43c84adf0b68'
7
+ data.tar.gz: 0bddf0bb3111509f2f44e897890a44ec6ec63af62ffcc57e598700834e36c85e3be0e4b4c00f54034f1a664b0a070f1c79f5c572705c6b5ac54410ed1e73d492
data/lib/dependabot/security_advisory.rb CHANGED
@@ -5,13 +5,15 @@ require "rubygems_version_patch"
5
5
  module Dependabot
6
6
  class SecurityAdvisory
7
7
  attr_reader :dependency_name, :package_manager,
8
- :vulnerable_versions, :safe_versions
8
+ :vulnerable_versions, :safe_versions,
9
+ :vulnerable_version_strings
9
10
 
10
11
  def initialize(dependency_name:, package_manager:,
11
12
  vulnerable_versions: [], safe_versions: [])
12
13
  @dependency_name = dependency_name
13
14
  @package_manager = package_manager
14
- @vulnerable_versions = vulnerable_versions || []
15
+ @vulnerable_version_strings = vulnerable_versions || []
16
+ @vulnerable_versions = []
15
17
  @safe_versions = safe_versions || []
16
18
 
17
19
  convert_string_version_requirements
@@ -91,7 +93,7 @@ module Dependabot
91
93
  private
92
94
 
93
95
  def convert_string_version_requirements
94
- @vulnerable_versions = vulnerable_versions.flat_map do |vuln_str|
96
+ @vulnerable_versions = vulnerable_version_strings.flat_map do |vuln_str|
95
97
  next vuln_str unless vuln_str.is_a?(String)
96
98
 
97
99
  requirement_class.requirements_array(vuln_str)
data/lib/dependabot/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Dependabot
4
- VERSION = "0.195.0"
4
+ VERSION = "0.196.2"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-common
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.195.0
4
+ version: 0.196.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-06-24 00:00:00.000000000 Z
11
+ date: 2022-06-29 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: activesupport