dependabot-common 0.108.3 → 0.108.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/pull_request_creator/message_builder.rb +5 -0
  3. data/lib/dependabot/version.rb +1 -1
  4. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 63afec5d63d1ab119badb36496560a89b7a9007bd8429a79d723330c1b1e2f34
4
- data.tar.gz: ddb29af50745ff6e27ec4ac8d016d3db304e4515cc426588b7b9092ddd04d612
3
+ metadata.gz: d68a1ea21546b35950e7072d9178e2579fc797704842e33ef11c497e49687581
4
+ data.tar.gz: ccb18143558489b6012f928ab3b707c116211f8b1ff19ac714a5110f3560cc00
5
5
  SHA512:
6
- metadata.gz: 5513ec93a87c787e3254943dd1e0f5cf125fa1dcb62ceaf90e46648695b791b46b806c3e3eb5fcf7782e182151e3f02ffd75b76559509678d56eaeb436e465ca
7
- data.tar.gz: c94d6e8dda4748b16e3ee5a1a2dedd24dc0768b70e1d4098c8c308cd441f958cec8b3ef667a8ebf92898e6c43b1017ccd09b6ae7ec072546b07efb6fb976d76e
6
+ metadata.gz: a1f3b96758218b145a841bc03b95786f1ea27078e6eadadc128f6d41e36d503d5b97474de3dbe025cc9d6c8a1450ed9ac197463d5812d9a569fcd3e12ce34d94
7
+ data.tar.gz: 6c18251300efc4a18452c5a2b01b6fc3f75bcb8cf642aa7c7abf0d1a49c83dcfda0e99cf91d7f9c39d6cb8caa653a7512203fe9e63b49f2379ad1e09bacc7c86
data/lib/dependabot/pull_request_creator/message_builder.rb CHANGED
@@ -407,6 +407,7 @@ module Dependabot
407
407
  msg = ""
408
408
  fixed_vulns.each { |v| msg += serialized_vulnerability_details(v) }
409
409
  msg = sanitize_template_tags(msg)
410
+ msg = sanitize_links_and_mentions(msg)
410
411
 
411
412
  build_details_tag(summary: "Vulnerabilities fixed", body: msg)
412
413
  end
@@ -431,6 +432,7 @@ module Dependabot
431
432
  base_url: source_url(dep) + "/blob/HEAD/"
432
433
  )
433
434
  msg = sanitize_template_tags(msg)
435
+ msg = sanitize_links_and_mentions(msg)
434
436
 
435
437
  build_details_tag(summary: "Release notes", body: msg)
436
438
  end
@@ -450,6 +452,7 @@ module Dependabot
450
452
  msg = link_issues(text: msg, dependency: dep)
451
453
  msg = fix_relative_links(text: msg, base_url: changelog_url(dep))
452
454
  msg = sanitize_template_tags(msg)
455
+ msg = sanitize_links_and_mentions(msg)
453
456
 
454
457
  build_details_tag(summary: "Changelog", body: msg)
455
458
  end
@@ -470,6 +473,7 @@ module Dependabot
470
473
  msg = link_issues(text: msg, dependency: dep)
471
474
  msg = fix_relative_links(text: msg, base_url: upgrade_url(dep))
472
475
  msg = sanitize_template_tags(msg)
476
+ msg = sanitize_links_and_mentions(msg)
473
477
 
474
478
  build_details_tag(summary: "Upgrade guide", body: msg)
475
479
  end
@@ -496,6 +500,7 @@ module Dependabot
496
500
  "- See full diff in [compare view](#{commits_url(dep)})\n"
497
501
  end
498
502
  msg = link_issues(text: msg, dependency: dep)
503
+ msg = sanitize_links_and_mentions(msg)
499
504
 
500
505
  build_details_tag(summary: "Commits", body: msg)
501
506
  end
data/lib/dependabot/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Dependabot
4
- VERSION = "0.108.3"
4
+ VERSION = "0.108.4"
5
5
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-common
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.108.3
4
+ version: 0.108.4
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot