dependabot-common 0.305.0 → 0.308.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/package/package_latest_version_finder.rb +6 -0
- data/lib/dependabot.rb +1 -1
- metadata +4 -7
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ee9db0fd53ccd502a29fa5d808c3ada11c9dd44d894950235385a09d47cc0b42
|
|
4
|
+
data.tar.gz: 6d6e9c2f1d2c868439780347ef0cc8f46af52483fc208060f3966345cf45ec5e
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 9162c6137db121121788d26d6de7570e82670f6977786a99777a82a74fb3f1deedf0656b737fe70db043c811beb1ce2533836472f38f7ec225c81adbc37b66fb
|
|
7
|
+
data.tar.gz: b4cc1266fbee2bfc8739ad3e72eca1039352f66853c0e59edc5b02eb09df5ae29cbd436378b55afea2b1007133e1e3942f9f587b6a8f593540479ad91648f61f
|
|
@@ -174,10 +174,16 @@ module Dependabot
|
|
|
174
174
|
)
|
|
175
175
|
versions = filter_ignored_versions(versions)
|
|
176
176
|
versions = filter_lower_versions(versions)
|
|
177
|
+
versions = apply_post_fetch_lowest_security_fix_versions_filter(versions)
|
|
177
178
|
|
|
178
179
|
versions.min
|
|
179
180
|
end
|
|
180
181
|
|
|
182
|
+
sig { params(versions: T::Array[Dependabot::Version]).returns(T::Array[Dependabot::Version]) }
|
|
183
|
+
def apply_post_fetch_lowest_security_fix_versions_filter(versions)
|
|
184
|
+
versions
|
|
185
|
+
end
|
|
186
|
+
|
|
181
187
|
sig do
|
|
182
188
|
params(releases: T::Array[Dependabot::Package::PackageRelease])
|
|
183
189
|
.returns(T::Array[Dependabot::Package::PackageRelease])
|
data/lib/dependabot.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,13 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-common
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.308.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
|
-
autorequire:
|
|
9
8
|
bindir: bin
|
|
10
9
|
cert_chain: []
|
|
11
|
-
date: 2025-04-
|
|
10
|
+
date: 2025-04-12 00:00:00.000000000 Z
|
|
12
11
|
dependencies:
|
|
13
12
|
- !ruby/object:Gem::Dependency
|
|
14
13
|
name: aws-sdk-codecommit
|
|
@@ -628,8 +627,7 @@ licenses:
|
|
|
628
627
|
- MIT
|
|
629
628
|
metadata:
|
|
630
629
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
631
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
632
|
-
post_install_message:
|
|
630
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.308.0
|
|
633
631
|
rdoc_options: []
|
|
634
632
|
require_paths:
|
|
635
633
|
- lib
|
|
@@ -644,8 +642,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
644
642
|
- !ruby/object:Gem::Version
|
|
645
643
|
version: 3.3.7
|
|
646
644
|
requirements: []
|
|
647
|
-
rubygems_version: 3.
|
|
648
|
-
signing_key:
|
|
645
|
+
rubygems_version: 3.6.3
|
|
649
646
|
specification_version: 4
|
|
650
647
|
summary: Shared code used across Dependabot Core
|
|
651
648
|
test_files: []
|