dependabot-common 0.295.0 → 0.296.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8089a954a78a6c6c517bca5f73391485dc143ff053c607c55e822d2a0d1233a9
-  data.tar.gz: '08e8842b1209fd1d21f00d380a429ac9852345b2fc13f35f5c3ca4f3a89911ba'
+  metadata.gz: 7931534498ba21a6ffa1ab7b284ce7a17351208b8257966ab4d28b9b534d45fe
+  data.tar.gz: d1fa9e5c8dc06dd38421780800456779e3db7dd07825a347bf86e7f63ebb631b
 SHA512:
-  metadata.gz: 21e75ab998f9608d8da2cf5ed09b7cb9953659fe22b7c3a8a44e61d730b0ffe614141f7af175ad9621be06ab659519c42f1db24ee1ea191d8af2806269c8552e
-  data.tar.gz: c45ae338eff5f21fd8462d539c0367dd1fcb103c3bc013fcf1a4ef5579b9987317ea773e4a40e96f3cfec3f62899aed49bba236afc836fed35e29293f3b353dc
+  metadata.gz: a1d0ed1ec43fd93a6ad2dabc7fda04c59176f2caf7aea307441d7df870c46bb61d36c8b20f7c0019ba23838d1ee04ab1d5bf7846d7d7a3649bc3c2fe4d2a8c20
+  data.tar.gz: 5e8045a62309fa8c4bd43a7fedca2816296074fa6eac9caf3a3163c02857b1d7db49a3c79db87494774981cdf4b4054c10c68da02ad8d2eb23369c495005d71a

data/lib/dependabot/config/file.rb

@@ -58,6 +58,7 @@ module Dependabot
       private
 
       PACKAGE_MANAGER_LOOKUP = T.let({
+        "bun" => "bun",
         "bundler" => "bundler",
         "cargo" => "cargo",
         "composer" => "composer",

data/lib/dependabot/errors.rb

@@ -4,6 +4,7 @@
 require "sorbet-runtime"
 require "dependabot/utils"
 
+# rubocop:disable Metrics/ModuleLength
 module Dependabot
   extend T::Sig
 
@@ -21,6 +22,7 @@ module Dependabot
   end
 
   # rubocop:disable Metrics/MethodLength
+  # rubocop:disable Metrics/CyclomaticComplexity
   sig { params(error: StandardError).returns(T.nilable(T::Hash[Symbol, T.untyped])) }
   def self.fetcher_error_details(error)
     case error
@@ -90,6 +92,11 @@ module Dependabot
         "error-type": "private_source_authentication_failure",
         "error-detail": { source: error.source }
       }
+    when Dependabot::PrivateSourceBadResponse
+      {
+        "error-type": "private_source_bad_response",
+        "error-detail": { source: error.source }
+      }
     when Octokit::Unauthorized
       { "error-type": "octokit_unauthorized" }
     when Octokit::ServerError
@@ -113,6 +120,7 @@ module Dependabot
       }
     end
   end
+  # rubocop:enable Metrics/CyclomaticComplexity
 
   sig { params(error: StandardError).returns(T.nilable(T::Hash[Symbol, T.untyped])) }
   def self.parser_error_details(error)
@@ -167,6 +175,11 @@ module Dependabot
         "error-type": "private_source_authentication_failure",
         "error-detail": { source: error.source }
       }
+    when Dependabot::PrivateSourceBadResponse
+      {
+        "error-type": "private_source_bad_response",
+        "error-detail": { source: error.source }
+      }
     when Dependabot::GitDependenciesNotReachable
       {
         "error-type": "git_dependencies_not_reachable",
@@ -238,6 +251,11 @@ module Dependabot
           "file-path": error.file_path
         }
       }
+    when Dependabot::DependencyFileContentNotChanged
+      {
+        "error-type": "dependency_file_content_not_changed",
+        "error-detail": { message: error.message }
+      }
     when Dependabot::ToolVersionNotSupported
       {
         "error-type": "tool_version_not_supported",
@@ -262,6 +280,11 @@ module Dependabot
         "error-type": "private_source_authentication_failure",
         "error-detail": { source: error.source }
       }
+    when Dependabot::PrivateSourceBadResponse
+      {
+        "error-type": "private_source_bad_response",
+        "error-detail": { source: error.source }
+      }
     when Dependabot::DependencyNotFound
       {
         "error-type": "dependency_not_found",
@@ -623,6 +646,8 @@ module Dependabot
 
   class DependencyFileNotSupported < DependabotError; end
 
+  class DependencyFileContentNotChanged < DependabotError; end
+
   class BadRequirementError < Gem::Requirement::BadRequirementError; end
 
   #######################
@@ -645,6 +670,20 @@ module Dependabot
     end
   end
 
+  class PrivateSourceBadResponse < DependabotError
+    extend T::Sig
+
+    sig { returns(String) }
+    attr_reader :source
+
+    sig { params(source: T.nilable(String)).void }
+    def initialize(source)
+      @source = T.let(sanitize_source(T.must(source)), String)
+      msg = "Bad response error while accessing source: #{@source}"
+      super(msg)
+    end
+  end
+
   class PrivateSourceTimedOut < DependabotError
     extend T::Sig
 
@@ -846,3 +885,4 @@ module Dependabot
     end
   end
 end
+# rubocop:enable Metrics/ModuleLength

data/lib/dependabot.rb

@@ -2,5 +2,5 @@
 # frozen_string_literal: true
 
 module Dependabot
-  VERSION = "0.295.0"
+  VERSION = "0.296.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-common
 version: !ruby/object:Gem::Version
-  version: 0.295.0
+  version: 0.296.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-01-30 00:00:00.000000000 Z
+date: 2025-02-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-codecommit
@@ -615,7 +615,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.295.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.296.0
 post_install_message:
 rdoc_options: []
 require_paths: