RubyGems - dependabot-common - Versions diffs - 0.249.0 → 0.250.0 - Mend

dependabot-common 0.249.0 → 0.250.0

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 217c5c870b824a19e49395f0ae3ecb4a01326f04c48acea4014aaca26ba7735d
-  data.tar.gz: 9a587a5c8c08853903d2e3ed5aec1ebdd943da45d82bbe1f7c2a83187a241d3e
+  metadata.gz: '0983823ada7f861d47f3399954e68acd51ac9489e92a8720db43eff4d3cefb49'
+  data.tar.gz: 2fdc3a9999f7ed9d5127a350d17677618765f6c57bdf751c1f67402f48f35ef6
 SHA512:
-  metadata.gz: 87a101be9e06ab4602930b296950db93b8b27ae81319a3ba1523f42866f7e2ea4dde7320ccfc69f604bd87c2aa720023716ca92f1e42bea8f4aeab0ecdde7045
-  data.tar.gz: efdcc0bc5bc3a49cd0f4746a490582cf07884c3a4a4618a784d40aa7f09edf8dcc28b3af05949e39fded10a0450ce30a6bc87ac9d489eeb1baa7e2a38f225c5e
+  metadata.gz: 27bc497b5c23a14648786d5406bb7e53c70b369fdb0e9f37c91fb6820bf6534bb4d4f6ecae92fb2d479eaf4624ee4d3788a69b563ae6803969397fd8e65a8227
+  data.tar.gz: 387cbc59de29fedd731f0c82352006e6f935a28afcae87a9ada8f78e0378c754482dc988ff690d9e68d858a08a302a29e10c8a2d945c11150bbea270c8069763

data/lib/dependabot/file_fetchers/base.rb CHANGED Viewed

@@ -159,7 +159,7 @@ module Dependabot
       end
       # Returns the path to the cloned repo
-      sig { returns(String) }
+      sig { overridable.returns(String) }
       def clone_repo_contents
         @clone_repo_contents ||= T.let(
           _clone_repo_contents(target_directory: repo_contents_path),

@@ -15,6 +15,8 @@ module Dependabot
         sig { override.returns(String) }
         def new_branch_name
+          return short_branch_name if branch_name_might_be_long?
           @name ||=
             T.let(
               begin
@@ -198,6 +200,27 @@ module Dependabot
         def requirements_changed?(dependency)
           (dependency.requirements - T.must(dependency.previous_requirements)).any?
         end
+        sig { returns(T::Boolean) }
+        def branch_name_might_be_long?
+          dependencies.count > 1 && !updating_a_property? && !updating_a_dependency_set?
+        end
+        sig { returns(String) }
+        def short_branch_name
+          # Fix long branch names by using a digest of the dependencies instead of their names.
+          sanitize_branch_name(File.join(prefixes, "multi-#{dependency_digest}"))
+        end
+        sig { returns(T.nilable(String)) }
+        def dependency_digest
+          T.let(
+            Digest::MD5.hexdigest(dependencies.map do |dependency|
+              "#{dependency.name}-#{dependency.removed? ? 'removed' : dependency.version}"
+            end.sort.join(",")).slice(0, 10),
+            T.nilable(String)
+          )
+        end
       end
     end
   end

data/lib/dependabot.rb CHANGED Viewed

@@ -2,5 +2,5 @@
 # frozen_string_literal: true
 module Dependabot
-  VERSION = "0.249.0"
+  VERSION = "0.250.0"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-common
 version: !ruby/object:Gem::Version
-  version: 0.249.0
+  version: 0.250.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-03-28 00:00:00.000000000 Z
+date: 2024-04-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-codecommit
@@ -583,7 +583,7 @@ licenses:
 - Nonstandard
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.249.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.250.0
 post_install_message:
 rdoc_options: []
 require_paths: