dependabot-common 0.110.12 → 0.110.13

Sign up to get free protection for your applications and to get access to all the features.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/update_checkers/base.rb +15 -4
  3. data/lib/dependabot/version.rb +1 -1
  4. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 556c0bc433573913fb1dd86b15cd7f8ed0879ba421f9780ffd7b5b7542760059
4
- data.tar.gz: f7fc4d0fdc508a81e6848a9b91b75757c80071a971ef2e40bf59dd0cd7f9feda
3
+ metadata.gz: 41b1e5a412eb80bf0c323a70a33da82947b33a07f4d26283a68ed70cea5bb83b
4
+ data.tar.gz: b11fdb218f0e01ed967d8f9035cdfdfa15347d05f6e96970f0fe9b2094e88451
5
5
  SHA512:
6
- metadata.gz: 2f60dcd57569cec7394602a11b7d7947d8c68e3629f55615779b3044450509f9a60d583a2be0788d0c4627fdf9b0b734d64df86f15ff3b6a3b54d149b51d8ef8
7
- data.tar.gz: 65a7b6a96817fc55c9a38d710e0e84ed2b00d1abd48ada306dbe973968f89a79f1f83927f1821912e5e4746c465d44c84098d3593882fcb5678f3cfc2d5a832a
6
+ metadata.gz: 3661b28499e5c0a0888aa614c9caaefbb39143d8c34f81d92cb41d4532867753f38afbaf3223c5c31abb0bd0bf9b743795d2fd7f68e16605039ce74cc333aadc
7
+ data.tar.gz: 960b2533e9fe7d2d59d05c2aa1f38c7355dbbbbd16a6c2c846eab1000be1f2ee04da39bb579514eba03e20244db1f09463fd4d318f31a6f43657a4117d0cdd05
data/lib/dependabot/update_checkers/base.rb CHANGED
@@ -186,8 +186,7 @@ module Dependabot
186
186
  new_version = latest_resolvable_version_with_no_unlock
187
187
  new_version && !new_version.to_s.start_with?(dependency.version)
188
188
  when :own
189
- new_version = preferred_resolvable_version
190
- new_version && !new_version.to_s.start_with?(dependency.version)
189
+ preferred_version_resolvable_with_unlock?
191
190
  when :all
192
191
  latest_version_resolvable_with_full_unlock?
193
192
  else raise "Unknown unlock level '#{requirements_to_unlock}'"
@@ -213,14 +212,26 @@ module Dependabot
213
212
  new_version = latest_resolvable_version_with_no_unlock
214
213
  new_version && new_version > version_class.new(dependency.version)
215
214
  when :own
216
- new_version = preferred_resolvable_version
217
- new_version && new_version > version_class.new(dependency.version)
215
+ preferred_version_resolvable_with_unlock?
218
216
  when :all
219
217
  latest_version_resolvable_with_full_unlock?
220
218
  else raise "Unknown unlock level '#{requirements_to_unlock}'"
221
219
  end
222
220
  end
223
221
 
222
+ def preferred_version_resolvable_with_unlock?
223
+ new_version = preferred_resolvable_version
224
+ return false unless new_version
225
+
226
+ if existing_version_is_sha?
227
+ return false if new_version.to_s.start_with?(dependency.version)
228
+ elsif new_version <= version_class.new(dependency.version)
229
+ return false
230
+ end
231
+
232
+ updated_requirements.none? { |r| r[:requirement] == :unfixable }
233
+ end
234
+
224
235
  def requirements_up_to_date?
225
236
  return true if (updated_requirements - dependency.requirements).none?
226
237
  return false unless latest_version
data/lib/dependabot/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Dependabot
4
- VERSION = "0.110.12"
4
+ VERSION = "0.110.13"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-common
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.110.12
4
+ version: 0.110.13
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2019-07-01 00:00:00.000000000 Z
11
+ date: 2019-07-02 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-ecr