dependabot-common 0.116.5 → 0.116.6
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/pull_request_creator/branch_namer.rb +24 -8
- data/lib/dependabot/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: cd6d1cb619675f1da2656b37b2eb4d27a6ae0c8789b516c51bce122497cb923a
|
|
4
|
+
data.tar.gz: c9eaca28c8869517e55aeb9605b9e2bfdc698505ebf5cc757eaa565678b4294e
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 618053c87e601c5c5de915b2da255a4e18748fc30ed414894383b2a83fa19526bbab8671e4eeefeefa7f5753977f2569eb43c5086853f049c7ea689354695803
|
|
7
|
+
data.tar.gz: 3fcbdf49ee0f6077fcf33b8bc3ce9895215f4dd9a9d70798f5c84bc73b4913c49d879ab4614a02f751c522366b6d634d5f8df9b1ca336603c8110118782b7a78
|
|
@@ -27,7 +27,11 @@ module Dependabot
|
|
|
27
27
|
elsif dependencies.count > 1 && updating_a_dependency_set?
|
|
28
28
|
dependency_set.fetch(:group)
|
|
29
29
|
else
|
|
30
|
-
dependencies.
|
|
30
|
+
dependencies.
|
|
31
|
+
map(&:name).
|
|
32
|
+
join("-and-").
|
|
33
|
+
tr(":[]", "-").
|
|
34
|
+
tr("@", "")
|
|
31
35
|
end
|
|
32
36
|
|
|
33
37
|
dep = dependencies.first
|
|
@@ -41,12 +45,8 @@ module Dependabot
|
|
|
41
45
|
end
|
|
42
46
|
end
|
|
43
47
|
|
|
44
|
-
branch_name = File.join(prefixes, @name).
|
|
45
|
-
gsub(%r{/\.}, "/dot-").
|
|
46
|
-
gsub(%r{/\.}, "/dot-")
|
|
47
|
-
|
|
48
48
|
# Some users need branch names without slashes
|
|
49
|
-
|
|
49
|
+
sanitize_ref(File.join(prefixes, @name).gsub("/", separator))
|
|
50
50
|
end
|
|
51
51
|
|
|
52
52
|
# rubocop:enable Metrics/PerceivedComplexity
|
|
@@ -113,8 +113,7 @@ module Dependabot
|
|
|
113
113
|
gsub(">", "gt-").
|
|
114
114
|
gsub("<", "lt-").
|
|
115
115
|
gsub("*", "star").
|
|
116
|
-
gsub(",", "-and-")
|
|
117
|
-
sub(/\.$/, "")
|
|
116
|
+
gsub(",", "-and-")
|
|
118
117
|
end
|
|
119
118
|
|
|
120
119
|
def new_version(dependency)
|
|
@@ -169,6 +168,23 @@ module Dependabot
|
|
|
169
168
|
def requirements_changed?(dependency)
|
|
170
169
|
(dependency.requirements - dependency.previous_requirements).any?
|
|
171
170
|
end
|
|
171
|
+
|
|
172
|
+
def sanitize_ref(ref)
|
|
173
|
+
# This isn't a complete implementation of git's ref validation, but it
|
|
174
|
+
# covers most cases that crop up. Its list of allowed charactersr is a
|
|
175
|
+
# bit stricter than git's, but that's for cosmetic reasons.
|
|
176
|
+
ref.
|
|
177
|
+
# Remove forbidden characters (those not already replaced elsewhere)
|
|
178
|
+
gsub(%r{[^A-Za-z0-9/\-_.(){}]}, "").
|
|
179
|
+
# Slashes can't be followed by periods
|
|
180
|
+
gsub(%r{/\.}, "/dot-").
|
|
181
|
+
# Two or more sequential periods are forbidden
|
|
182
|
+
gsub(/\.+/, ".").
|
|
183
|
+
# Two or more sequential slashes are forbidden
|
|
184
|
+
gsub(%r{/+}, "/").
|
|
185
|
+
# Trailing periods are forbidden
|
|
186
|
+
sub(/\.$/, "")
|
|
187
|
+
end
|
|
172
188
|
end
|
|
173
189
|
end
|
|
174
190
|
end
|
data/lib/dependabot/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-common
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.116.
|
|
4
|
+
version: 0.116.6
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-
|
|
11
|
+
date: 2020-02-03 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-codecommit
|