dependabot-common 0.230.0 → 0.231.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c22036233153feb31c0666eb5725abd8f8a1775ad2c155434e1f87f4c32b1a2d
-  data.tar.gz: 6335a799c5254dd0239ba6772bfa8c46f46d2b76a4370c73183c55b2c25eadf3
+  metadata.gz: 5d2f9c9c0156ef16d90d71e67b08b4ce0cc2a489b24cc8513ac15da22ece26ba
+  data.tar.gz: 4a393b071ec3a4cf4623813c9ebbd66f0e59d5aa72c1e26afe06d9373c9aa1f4
 SHA512:
-  metadata.gz: 548029ed8c40f35eb07506e0c1eb1af7766948d93541f8f267867ecd350a1f8f6c549fcae1906f1bef307fa74ebdfa4c4d10ce8a10c335e3f6021c28b8a65344
-  data.tar.gz: cd9ef0643fe38042e018b997f6789e9bf48bd748406994986930bcc38d655ea6c86c6cab091cebee980fa2b6afe6a8dcd642925731cb6c13cf6624d34246e36a
+  metadata.gz: 763323fd77547bec05d7408ccffd972001377feb752287978e065516a8bbf44bda1c10e2ab8349199d70584f3002c40a8d1071d020b329be3c5d05618bf25195
+  data.tar.gz: 23088ec44dfe2e1622217ac1d9b10aa0bf841cbb6873dfcea61384abef048e9b73a3a97a1ba4121bedfa5e3f1e2c7bb9d48c70db9788acddb1fe020940a23079

data/lib/dependabot/clients/azure.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/shared_helpers"
@@ -28,9 +29,9 @@ module Dependabot
 
       def self.for_source(source:, credentials:)
         credential =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          find { |cred| cred["host"] == source.hostname }
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .find { |cred| cred["host"] == source.hostname }
 
         new(source, credential)
       end

data/lib/dependabot/clients/bitbucket.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/shared_helpers"
@@ -20,9 +21,9 @@ module Dependabot
 
       def self.for_source(source:, credentials:)
         credential =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          find { |cred| cred["host"] == source.hostname }
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .find { |cred| cred["host"] == source.hostname }
 
         new(credentials: credential)
       end

data/lib/dependabot/clients/bitbucket_with_retries.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require_relative "bitbucket"
@@ -16,9 +17,9 @@ module Dependabot
 
       def self.for_bitbucket_dot_org(credentials:)
         credential =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          find { |cred| cred["host"] == "bitbucket.org" }
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .find { |cred| cred["host"] == "bitbucket.org" }
 
         new(credentials: credential)
       end

data/lib/dependabot/clients/codecommit.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/shared_helpers"
@@ -13,9 +14,9 @@ module Dependabot
 
       def self.for_source(source:, credentials:)
         credential =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          find { |cred| cred["region"] == source.hostname }
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .find { |cred| cred["region"] == source.hostname }
 
         new(source, credential)
       end
@@ -146,8 +147,8 @@ module Dependabot
             pull_request_id: id
           )
           # only include PRs from the referenced branch
-          if pr_hash.pull_request.pull_request_targets[0].
-             source_reference.include? branch
+          if pr_hash.pull_request.pull_request_targets[0]
+                    .source_reference.include? branch
             result << pr_hash
           end
         end

data/lib/dependabot/clients/github_with_retries.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "octokit"
@@ -38,11 +39,11 @@ module Dependabot
 
       def self.for_source(source:, credentials:)
         access_tokens =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          select { |cred| cred["host"] == source.hostname }.
-          select { |cred| cred["password"] }.
-          map { |cred| cred.fetch("password") }
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .select { |cred| cred["host"] == source.hostname }
+          .select { |cred| cred["password"] }
+          .map { |cred| cred.fetch("password") }
 
         new(
           access_tokens: access_tokens,
@@ -52,11 +53,11 @@ module Dependabot
 
       def self.for_github_dot_com(credentials:)
         access_tokens =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          select { |cred| cred["host"] == "github.com" }.
-          select { |cred| cred["password"] }.
-          map { |cred| cred.fetch("password") }
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .select { |cred| cred["host"] == "github.com" }
+          .select { |cred| cred["password"] }
+          .map { |cred| cred.fetch("password") }
 
         new(access_tokens: access_tokens)
       end

data/lib/dependabot/clients/gitlab_with_retries.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "gitlab"
@@ -18,11 +19,11 @@ module Dependabot
 
       def self.for_source(source:, credentials:)
         access_token =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          select { |cred| cred["password"] }.
-          find { |cred| cred["host"] == source.hostname }&.
-          fetch("password")
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .select { |cred| cred["password"] }
+          .find { |cred| cred["host"] == source.hostname }
+          &.fetch("password")
 
         new(
           endpoint: source.api_endpoint,
@@ -32,11 +33,11 @@ module Dependabot
 
       def self.for_gitlab_dot_com(credentials:)
         access_token =
-          credentials.
-          select { |cred| cred["type"] == "git_source" }.
-          select { |cred| cred["password"] }.
-          find { |cred| cred["host"] == "gitlab.com" }&.
-          fetch("password")
+          credentials
+          .select { |cred| cred["type"] == "git_source" }
+          .select { |cred| cred["password"] }
+          .find { |cred| cred["host"] == "gitlab.com" }
+          &.fetch("password")
 
         new(
           endpoint: "https://gitlab.com/api/v4",

data/lib/dependabot/config/file.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/config/update_config"

data/lib/dependabot/config/file_fetcher.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/file_fetchers/base"

data/lib/dependabot/config/ignore_condition.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/config/update_config.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/config/ignore_condition"
@@ -16,20 +17,20 @@ module Dependabot
         normalizer = name_normaliser_for(dependency)
         dep_name = normalizer.call(dependency.name)
 
-        @ignore_conditions.
-          select { |ic| self.class.wildcard_match?(normalizer.call(ic.dependency_name), dep_name) }.
-          map { |ic| ic.ignored_versions(dependency, security_updates_only) }.
-          flatten.
-          compact.
-          uniq
+        @ignore_conditions
+          .select { |ic| self.class.wildcard_match?(normalizer.call(ic.dependency_name), dep_name) }
+          .map { |ic| ic.ignored_versions(dependency, security_updates_only) }
+          .flatten
+          .compact
+          .uniq
       end
 
       def self.wildcard_match?(wildcard_string, candidate_string)
         return false unless wildcard_string && candidate_string
 
-        regex_string = "a#{wildcard_string.downcase}a".split("*").
-                       map { |p| Regexp.quote(p) }.
-                       join(".*").gsub(/^a|a$/, "")
+        regex_string = "a#{wildcard_string.downcase}a".split("*")
+                                                      .map { |p| Regexp.quote(p) }
+                                                      .join(".*").gsub(/^a|a$/, "")
         regex = /^#{regex_string}$/
         regex.match?(candidate_string.downcase)
       end

data/lib/dependabot/config.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/dependency.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/version"
@@ -50,8 +51,8 @@ module Dependabot
         previous_requirements&.map { |req| symbolize_keys(req) }
       @package_manager = package_manager
       unless top_level? || subdependency_metadata == []
-        @subdependency_metadata = subdependency_metadata&.
-                                  map { |h| symbolize_keys(h) }
+        @subdependency_metadata = subdependency_metadata
+                                  &.map { |h| symbolize_keys(h) }
       end
       @removed = removed
       @metadata = symbolize_keys(metadata || {})
@@ -93,9 +94,9 @@ module Dependabot
 
       groups = requirements.flat_map { |r| r.fetch(:groups).map(&:to_s) }
 
-      self.class.
-        production_check_for_package_manager(package_manager).
-        call(groups)
+      self.class
+          .production_check_for_package_manager(package_manager)
+          .call(groups)
     end
 
     def subdependency_production_check
@@ -148,9 +149,9 @@ module Dependabot
     end
 
     def docker_digest_from_reqs(requirements)
-      requirements.
-        filter_map { |r| r.dig(:source, "digest") || r.dig(:source, :digest) }.
-        first
+      requirements
+        .filter_map { |r| r.dig(:source, "digest") || r.dig(:source, :digest) }
+        .first
     end
 
     def previous_ref
@@ -259,8 +260,8 @@ module Dependabot
 
       required_keys = %i(requirement file groups source)
       optional_keys = %i(metadata)
-      unless requirement_fields.flatten.
-             all? { |r| required_keys.sort == (r.keys - optional_keys).sort }
+      unless requirement_fields.flatten
+                               .all? { |r| required_keys.sort == (r.keys - optional_keys).sort }
         raise ArgumentError, "each requirement must have the following " \
                              "required keys: #{required_keys.join(', ')}." \
                              "Optionally, it may have the following keys: " \

data/lib/dependabot/dependency_file.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "pathname"

data/lib/dependabot/dependency_group.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/experiments"

data/lib/dependabot/errors.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/utils"

data/lib/dependabot/experiments.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/file_fetchers/base.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "stringio"
@@ -125,9 +126,9 @@ module Dependabot
         basename = File.basename(filename)
 
         repo_includes_basename =
-          repo_contents(dir: dir, fetch_submodules: fetch_submodules).
-          reject { |f| f.type == "dir" }.
-          map(&:name).include?(basename)
+          repo_contents(dir: dir, fetch_submodules: fetch_submodules)
+          .reject { |f| f.type == "dir" }
+          .map(&:name).include?(basename)
         return unless repo_includes_basename
 
         fetch_file_from_host(filename, fetch_submodules: fetch_submodules)
@@ -215,8 +216,8 @@ module Dependabot
       end
 
       def default_branch_for_repo
-        @default_branch_for_repo ||= client_for_provider.
-                                     fetch_default_branch(repo)
+        @default_branch_for_repo ||= client_for_provider
+                                     .fetch_default_branch(repo)
       rescue *CLIENT_NOT_FOUND_ERRORS
         raise Dependabot::RepoNotFound, source
       end
@@ -277,22 +278,22 @@ module Dependabot
 
       def azure_client
         @azure_client ||=
-          Dependabot::Clients::Azure.
-          for_source(source: source, credentials: credentials)
+          Dependabot::Clients::Azure
+          .for_source(source: source, credentials: credentials)
       end
 
       def bitbucket_client
         # TODO: When self-hosted Bitbucket is supported this should use
         # `Bitbucket.for_source`
         @bitbucket_client ||=
-          Dependabot::Clients::BitbucketWithRetries.
-          for_bitbucket_dot_org(credentials: credentials)
+          Dependabot::Clients::BitbucketWithRetries
+          .for_bitbucket_dot_org(credentials: credentials)
       end
 
       def codecommit_client
         @codecommit_client ||=
-          Dependabot::Clients::CodeCommit.
-          for_source(source: source, credentials: credentials)
+          Dependabot::Clients::CodeCommit
+          .for_source(source: source, credentials: credentials)
       end
 
       #################################################
@@ -303,8 +304,8 @@ module Dependabot
                                raise_errors: true)
         path = path.gsub(" ", "%20")
         provider, repo, tmp_path, commit =
-          _full_specification_for(path, fetch_submodules: fetch_submodules).
-          values_at(:provider, :repo, :path, :commit)
+          _full_specification_for(path, fetch_submodules: fetch_submodules)
+          .values_at(:provider, :repo, :path, :commit)
 
         _fetch_repo_contents_fully_specified(provider, repo, tmp_path, commit)
       rescue *CLIENT_NOT_FOUND_ERRORS
@@ -315,8 +316,8 @@ module Dependabot
         # it's because we've found a sub-module (and are fetching them). Trigger
         # a retry to get its contents.
         updated_path =
-          _full_specification_for(path, fetch_submodules: fetch_submodules).
-          fetch(:path)
+          _full_specification_for(path, fetch_submodules: fetch_submodules)
+          .fetch(:path)
         retry if updated_path != tmp_path
 
         return result.call unless fetch_submodules && !retrying
@@ -392,9 +393,9 @@ module Dependabot
       end
 
       def _gitlab_repo_contents(repo, path, commit)
-        gitlab_client.
-          repo_tree(repo, path: path, ref: commit, per_page: 100).
-          map do |file|
+        gitlab_client
+          .repo_tree(repo, path: path, ref: commit, per_page: 100)
+          .map do |file|
             # GitLab API essentially returns the output from `git ls-tree`
             type = case file.type
                    when "blob" then "file"
@@ -477,9 +478,9 @@ module Dependabot
           sub_path =
             path.gsub(%r{^#{Regexp.quote(_linked_dir_for(path))}(/|$)}, "")
           new_path =
-            Pathname.new(File.join(linked_dir_details.fetch(:path), sub_path)).
-            cleanpath.to_path.
-            gsub(%r{^/}, "")
+            Pathname.new(File.join(linked_dir_details.fetch(:path), sub_path))
+                    .cleanpath.to_path
+                    .gsub(%r{^/}, "")
           {
             repo: linked_dir_details.fetch(:repo),
             commit: linked_dir_details.fetch(:commit),
@@ -500,8 +501,8 @@ module Dependabot
         path = path.gsub(%r{^/*}, "")
 
         provider, repo, path, commit =
-          _full_specification_for(path, fetch_submodules: fetch_submodules).
-          values_at(:provider, :repo, :path, :commit)
+          _full_specification_for(path, fetch_submodules: fetch_submodules)
+          .values_at(:provider, :repo, :path, :commit)
 
         _fetch_file_content_fully_specified(provider, repo, path, commit)
       rescue *CLIENT_NOT_FOUND_ERRORS
@@ -596,9 +597,9 @@ module Dependabot
 
       def _linked_dir_for(path)
         linked_dirs = @linked_paths.keys
-        linked_dirs.
-          select { |k| path.match?(%r{^#{Regexp.quote(k)}(/|$)}) }.
-          max_by(&:length)
+        linked_dirs
+          .select { |k| path.match?(%r{^#{Regexp.quote(k)}(/|$)}) }
+          .max_by(&:length)
       end
 
       # rubocop:disable Metrics/AbcSize

data/lib/dependabot/file_fetchers.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/file_parsers/base/dependency_set.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency"

data/lib/dependabot/file_parsers/base.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/file_parsers.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/file_updaters/artifact_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency_file"

data/lib/dependabot/file_updaters/base.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/file_updaters/vendor_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency_file"

data/lib/dependabot/file_updaters.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/git_commit_checker.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "excon"
@@ -188,8 +189,8 @@ module Dependabot
     end
 
     def most_specific_version_tag_for_sha(commit_sha)
-      tags = local_tags.select { |t| t.commit_sha == commit_sha && version_class.correct?(t.name) }.
-             sort_by { |t| version_class.new(t.name) }
+      tags = local_tags.select { |t| t.commit_sha == commit_sha && version_class.correct?(t.name) }
+                       .sort_by { |t| version_class.new(t.name) }
       return if tags.empty?
 
       tags[-1].name
@@ -197,16 +198,16 @@ module Dependabot
 
     def allowed_versions(local_tags)
       tags =
-        local_tags.
-        select { |t| version_tag?(t.name) && matches_existing_prefix?(t.name) }
-      filtered = tags.
-                 reject { |t| tag_included_in_ignore_requirements?(t) }
+        local_tags
+        .select { |t| version_tag?(t.name) && matches_existing_prefix?(t.name) }
+      filtered = tags
+                 .reject { |t| tag_included_in_ignore_requirements?(t) }
       if @raise_on_ignored && filter_lower_versions(filtered).empty? && filter_lower_versions(tags).any?
         raise Dependabot::AllVersionsIgnored
       end
 
-      filtered.
-        reject { |t| tag_is_prerelease?(t) && !wants_prerelease? }
+      filtered
+        .reject { |t| tag_is_prerelease?(t) && !wants_prerelease? }
     end
 
     def pinned_ref_in_release?(version)
@@ -285,15 +286,15 @@ module Dependabot
     end
 
     def github_commit_comparison_status(ref1, ref2)
-      client = Clients::GithubWithRetries.
-               for_github_dot_com(credentials: credentials)
+      client = Clients::GithubWithRetries
+               .for_github_dot_com(credentials: credentials)
 
       client.compare(listing_source_repo, ref1, ref2).status
     end
 
     def gitlab_commit_comparison_status(ref1, ref2)
-      client = Clients::GitlabWithRetries.
-               for_gitlab_dot_com(credentials: credentials)
+      client = Clients::GitlabWithRetries
+               .for_gitlab_dot_com(credentials: credentials)
 
       comparison = client.compare(listing_source_repo, ref1, ref2)
 
@@ -309,8 +310,8 @@ module Dependabot
             "#{listing_source_repo}/commits/?" \
             "include=#{ref2}&exclude=#{ref1}"
 
-      client = Clients::BitbucketWithRetries.
-               for_bitbucket_dot_org(credentials: credentials)
+      client = Clients::BitbucketWithRetries
+               .for_bitbucket_dot_org(credentials: credentials)
 
       response = client.get(url)
 
@@ -373,10 +374,10 @@ module Dependabot
             package_manager: dependency.package_manager
           )
 
-          MetadataFinders.
-            for_package_manager(dependency.package_manager).
-            new(dependency: candidate_dep, credentials: credentials).
-            source_url
+          MetadataFinders
+            .for_package_manager(dependency.package_manager)
+            .new(dependency: candidate_dep, credentials: credentials)
+            .source_url
         end
     end
 
@@ -387,9 +388,9 @@ module Dependabot
     end
 
     def listing_tag_for_version(version)
-      listing_tags.
-        find { |t| t.name =~ /(?:[^0-9\.]|\A)#{Regexp.escape(version)}\z/ }&.
-        name
+      listing_tags
+        .find { |t| t.name =~ /(?:[^0-9\.]|\A)#{Regexp.escape(version)}\z/ }
+        &.name
     end
 
     def listing_tags

data/lib/dependabot/git_metadata_fetcher.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "excon"
@@ -50,20 +51,20 @@ module Dependabot
         # causes problems for our `sha_for_update_pack_line` logic. The format
         # of this opening clause is documented at
         # https://git-scm.com/docs/http-protocol#_smart_server_response
-        line = upload_pack.gsub(/^[0-9a-f]{4}# service=git-upload-pack/, "").
-               lines.find { |l| l.include?(" HEAD") }
+        line = upload_pack.gsub(/^[0-9a-f]{4}# service=git-upload-pack/, "")
+                          .lines.find { |l| l.include?(" HEAD") }
         return sha_for_update_pack_line(line) if line
       end
 
-      refs_for_upload_pack.
-        find { |r| r.name == ref }&.
-        commit_sha
+      refs_for_upload_pack
+        .find { |r| r.name == ref }
+        &.commit_sha
     end
 
     def head_commit_for_ref_sha(ref)
-      refs_for_upload_pack.
-        find { |r| r.ref_sha == ref }&.
-        commit_sha
+      refs_for_upload_pack
+        .find { |r| r.ref_sha == ref }
+        &.commit_sha
     end
 
     private
@@ -151,8 +152,8 @@ module Dependabot
       # Loop through the peeled lines, updating the commit_sha for any
       # matching tags in our results hash
       peeled_lines.each do |line|
-        ref_name = line.split(%r{ refs/(tags|heads)/}).
-                   last.strip.gsub(/\^{}$/, "")
+        ref_name = line.split(%r{ refs/(tags|heads)/})
+                       .last.strip.gsub(/\^{}$/, "")
         next unless result[ref_name]
 
         result[ref_name].commit_sha = sha_for_update_pack_line(line)
@@ -190,8 +191,8 @@ module Dependabot
     def uri_with_auth(uri)
       uri = SharedHelpers.scp_to_standard(uri)
       uri = URI(uri)
-      cred = credentials.select { |c| c["type"] == "git_source" }.
-             find { |c| uri.host == c["host"] }
+      cred = credentials.select { |c| c["type"] == "git_source" }
+                        .find { |c| uri.host == c["host"] }
 
       uri.scheme = "https" if uri.scheme != "http"
 

data/lib/dependabot/logger.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "logger"