dependabot-common 0.116.5 → 0.116.6
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/pull_request_creator/branch_namer.rb +24 -8
- data/lib/dependabot/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: cd6d1cb619675f1da2656b37b2eb4d27a6ae0c8789b516c51bce122497cb923a
|
4
|
+
data.tar.gz: c9eaca28c8869517e55aeb9605b9e2bfdc698505ebf5cc757eaa565678b4294e
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 618053c87e601c5c5de915b2da255a4e18748fc30ed414894383b2a83fa19526bbab8671e4eeefeefa7f5753977f2569eb43c5086853f049c7ea689354695803
|
7
|
+
data.tar.gz: 3fcbdf49ee0f6077fcf33b8bc3ce9895215f4dd9a9d70798f5c84bc73b4913c49d879ab4614a02f751c522366b6d634d5f8df9b1ca336603c8110118782b7a78
|
@@ -27,7 +27,11 @@ module Dependabot
|
|
27
27
|
elsif dependencies.count > 1 && updating_a_dependency_set?
|
28
28
|
dependency_set.fetch(:group)
|
29
29
|
else
|
30
|
-
dependencies.
|
30
|
+
dependencies.
|
31
|
+
map(&:name).
|
32
|
+
join("-and-").
|
33
|
+
tr(":[]", "-").
|
34
|
+
tr("@", "")
|
31
35
|
end
|
32
36
|
|
33
37
|
dep = dependencies.first
|
@@ -41,12 +45,8 @@ module Dependabot
|
|
41
45
|
end
|
42
46
|
end
|
43
47
|
|
44
|
-
branch_name = File.join(prefixes, @name).
|
45
|
-
gsub(%r{/\.}, "/dot-").
|
46
|
-
gsub(%r{/\.}, "/dot-")
|
47
|
-
|
48
48
|
# Some users need branch names without slashes
|
49
|
-
|
49
|
+
sanitize_ref(File.join(prefixes, @name).gsub("/", separator))
|
50
50
|
end
|
51
51
|
|
52
52
|
# rubocop:enable Metrics/PerceivedComplexity
|
@@ -113,8 +113,7 @@ module Dependabot
|
|
113
113
|
gsub(">", "gt-").
|
114
114
|
gsub("<", "lt-").
|
115
115
|
gsub("*", "star").
|
116
|
-
gsub(",", "-and-")
|
117
|
-
sub(/\.$/, "")
|
116
|
+
gsub(",", "-and-")
|
118
117
|
end
|
119
118
|
|
120
119
|
def new_version(dependency)
|
@@ -169,6 +168,23 @@ module Dependabot
|
|
169
168
|
def requirements_changed?(dependency)
|
170
169
|
(dependency.requirements - dependency.previous_requirements).any?
|
171
170
|
end
|
171
|
+
|
172
|
+
def sanitize_ref(ref)
|
173
|
+
# This isn't a complete implementation of git's ref validation, but it
|
174
|
+
# covers most cases that crop up. Its list of allowed charactersr is a
|
175
|
+
# bit stricter than git's, but that's for cosmetic reasons.
|
176
|
+
ref.
|
177
|
+
# Remove forbidden characters (those not already replaced elsewhere)
|
178
|
+
gsub(%r{[^A-Za-z0-9/\-_.(){}]}, "").
|
179
|
+
# Slashes can't be followed by periods
|
180
|
+
gsub(%r{/\.}, "/dot-").
|
181
|
+
# Two or more sequential periods are forbidden
|
182
|
+
gsub(/\.+/, ".").
|
183
|
+
# Two or more sequential slashes are forbidden
|
184
|
+
gsub(%r{/+}, "/").
|
185
|
+
# Trailing periods are forbidden
|
186
|
+
sub(/\.$/, "")
|
187
|
+
end
|
172
188
|
end
|
173
189
|
end
|
174
190
|
end
|
data/lib/dependabot/version.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-common
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.116.
|
4
|
+
version: 0.116.6
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-
|
11
|
+
date: 2020-02-03 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-codecommit
|