dependabot-common 0.108.3 → 0.108.4

Sign up to get free protection for your applications and to get access to all the features.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/pull_request_creator/message_builder.rb +5 -0
  3. data/lib/dependabot/version.rb +1 -1
  4. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 63afec5d63d1ab119badb36496560a89b7a9007bd8429a79d723330c1b1e2f34
4
- data.tar.gz: ddb29af50745ff6e27ec4ac8d016d3db304e4515cc426588b7b9092ddd04d612
3
+ metadata.gz: d68a1ea21546b35950e7072d9178e2579fc797704842e33ef11c497e49687581
4
+ data.tar.gz: ccb18143558489b6012f928ab3b707c116211f8b1ff19ac714a5110f3560cc00
5
5
  SHA512:
6
- metadata.gz: 5513ec93a87c787e3254943dd1e0f5cf125fa1dcb62ceaf90e46648695b791b46b806c3e3eb5fcf7782e182151e3f02ffd75b76559509678d56eaeb436e465ca
7
- data.tar.gz: c94d6e8dda4748b16e3ee5a1a2dedd24dc0768b70e1d4098c8c308cd441f958cec8b3ef667a8ebf92898e6c43b1017ccd09b6ae7ec072546b07efb6fb976d76e
6
+ metadata.gz: a1f3b96758218b145a841bc03b95786f1ea27078e6eadadc128f6d41e36d503d5b97474de3dbe025cc9d6c8a1450ed9ac197463d5812d9a569fcd3e12ce34d94
7
+ data.tar.gz: 6c18251300efc4a18452c5a2b01b6fc3f75bcb8cf642aa7c7abf0d1a49c83dcfda0e99cf91d7f9c39d6cb8caa653a7512203fe9e63b49f2379ad1e09bacc7c86
data/lib/dependabot/pull_request_creator/message_builder.rb CHANGED
@@ -407,6 +407,7 @@ module Dependabot
407
407
  msg = ""
408
408
  fixed_vulns.each { |v| msg += serialized_vulnerability_details(v) }
409
409
  msg = sanitize_template_tags(msg)
410
+ msg = sanitize_links_and_mentions(msg)
410
411
 
411
412
  build_details_tag(summary: "Vulnerabilities fixed", body: msg)
412
413
  end
@@ -431,6 +432,7 @@ module Dependabot
431
432
  base_url: source_url(dep) + "/blob/HEAD/"
432
433
  )
433
434
  msg = sanitize_template_tags(msg)
435
+ msg = sanitize_links_and_mentions(msg)
434
436
 
435
437
  build_details_tag(summary: "Release notes", body: msg)
436
438
  end
@@ -450,6 +452,7 @@ module Dependabot
450
452
  msg = link_issues(text: msg, dependency: dep)
451
453
  msg = fix_relative_links(text: msg, base_url: changelog_url(dep))
452
454
  msg = sanitize_template_tags(msg)
455
+ msg = sanitize_links_and_mentions(msg)
453
456
 
454
457
  build_details_tag(summary: "Changelog", body: msg)
455
458
  end
@@ -470,6 +473,7 @@ module Dependabot
470
473
  msg = link_issues(text: msg, dependency: dep)
471
474
  msg = fix_relative_links(text: msg, base_url: upgrade_url(dep))
472
475
  msg = sanitize_template_tags(msg)
476
+ msg = sanitize_links_and_mentions(msg)
473
477
 
474
478
  build_details_tag(summary: "Upgrade guide", body: msg)
475
479
  end
@@ -496,6 +500,7 @@ module Dependabot
496
500
  "- See full diff in [compare view](#{commits_url(dep)})\n"
497
501
  end
498
502
  msg = link_issues(text: msg, dependency: dep)
503
+ msg = sanitize_links_and_mentions(msg)
499
504
 
500
505
  build_details_tag(summary: "Commits", body: msg)
501
506
  end
data/lib/dependabot/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Dependabot
4
- VERSION = "0.108.3"
4
+ VERSION = "0.108.4"
5
5
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-common
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.108.3
4
+ version: 0.108.4
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot