dependabot-common 0.327.0 → 0.330.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 79a4252f6734f8bd1ff7e005d0ad1feb8454d67adc9aa606378e508db270da78
-  data.tar.gz: 312d95b14c8207368b6e3014ccbbc721260f15de2f7b8243ef80656aacd89df9
+  metadata.gz: e75354fcd97069450a7897bc3f0c4788fc502b6b7541c7bb1ef01f14779aaec3
+  data.tar.gz: c71e3cf39d50d4510f12d137e17ba63204aacedce829eb66f48c7da672cece39
 SHA512:
-  metadata.gz: 6c1ac6235b527e8ca14df68b2d01a3518e86e7b4e85354c2009807ffa18d51380bac92232ea27dd116e0c1abdc0cfbd724b9eb3459989899df92618fdf92a768
-  data.tar.gz: 11ecbdf6ced6cecfc4fd9db8634037ecb7edcd2bba930a05b108b41a49920b97cee8834d1c6905b8e1c1526ef42e620f81591f1f794038280d1a5340be59e90e
+  metadata.gz: 844f8f4ad3fb9b201791b0499fa8c733667ed792701d19fe0791aaad172170b1dfa399244b32477e440ba97d8f2f2862a882c41eb9ab40e029b96affc8c75a9a
+  data.tar.gz: dd31e1be979b0a984c896be9ba4bc5060175deb1feea9ac0278e03666034dbdc5b711314603c8b56089bd7e2aa93e2e8cbbaa9e552deb75e565d26a3e49129ae

data/lib/dependabot/dependency.rb

@@ -88,6 +88,19 @@ module Dependabot
     sig { returns(T::Hash[Symbol, T.untyped]) }
     attr_reader :metadata
 
+    # Attribution metadata for group membership tracking
+    sig { returns(T.nilable(String)) }
+    attr_accessor :attribution_source_group
+
+    sig { returns(T.nilable(Symbol)) }
+    attr_accessor :attribution_selection_reason
+
+    sig { returns(T.nilable(String)) }
+    attr_accessor :attribution_directory
+
+    sig { returns(T.nilable(Time)) }
+    attr_accessor :attribution_timestamp
+
     # rubocop:disable Metrics/AbcSize
     # rubocop:disable Metrics/PerceivedComplexity
     sig do

data/lib/dependabot/errors.rb

@@ -47,7 +47,10 @@ module Dependabot
     when Dependabot::BranchNotFound
       {
         "error-type": "branch_not_found",
-        "error-detail": { "branch-name": error.branch_name }
+        "error-detail": {
+          "branch-name": error.branch_name,
+          message: error.message
+        }
       }
     when Dependabot::DirectoryNotFound
       {
@@ -152,7 +155,10 @@ module Dependabot
     when Dependabot::BranchNotFound
       {
         "error-type": "branch_not_found",
-        "error-detail": { "branch-name": error.branch_name }
+        "error-detail": {
+          "branch-name": error.branch_name,
+          message: error.message
+        }
       }
     when Dependabot::DependencyFileNotParseable
       {

data/lib/dependabot/shared_helpers.rb

@@ -371,11 +371,13 @@ module Dependabot
       git_store_content = ""
       deduped_credentials.each do |cred|
         next unless cred["type"] == "git_source"
-        next unless cred["username"] && cred["password"]
+        next unless cred["host"]
 
-        authenticated_url =
-          "https://#{cred.fetch('username')}:#{cred.fetch('password')}" \
-          "@#{cred.fetch('host')}"
+        has_creds = cred["username"] && cred["password"]
+
+        # Build authenticated URL with credentials if available
+        creds = has_creds ? "#{cred.fetch('username')}:#{cred.fetch('password')}@" : ""
+        authenticated_url = "https://#{creds}#{cred.fetch('host')}"
 
         git_store_content += authenticated_url + "\n"
         configure_git_to_use_https(cred.fetch("host"))

data/lib/dependabot.rb

@@ -2,5 +2,5 @@
 # frozen_string_literal: true
 
 module Dependabot
-  VERSION = "0.327.0"
+  VERSION = "0.330.0"
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-common
 version: !ruby/object:Gem::Version
-  version: 0.327.0
+  version: 0.330.0
 platform: ruby
 authors:
 - Dependabot
@@ -625,7 +625,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.327.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.330.0
 rdoc_options: []
 require_paths:
 - lib