dependabot-common 0.143.3 → 0.143.4

Sign up to get free protection for your applications and to get access to all the features.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/config/ignore_condition.rb +2 -1
  3. data/lib/dependabot/config/update_config.rb +3 -2
  4. data/lib/dependabot/version.rb +1 -1
  5. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: cb8de338ea7c3bb3273bd23ccc824a13d3658cc694f182776b889d3f67414c68
4
- data.tar.gz: 63d9ca895ad038b2ce5d80c3a35bdcb175f8b023e1b09edd85a55d7c387c0609
3
+ metadata.gz: b77a9d2b68d327cac78394acd6c7452e0f802512434ee5fe38b62cde2e2e8393
4
+ data.tar.gz: 4b532ba4ddd784f4adb93977bd34c28bdfd54ae1f8f5500ad9b3179febd1db17
5
5
  SHA512:
6
- metadata.gz: 7850b7c2b9b02b76453f40347a79e5afca046d295a2ae160c27ec11dd05efc9359d34414ed4e28be46b7678aa8d47abbd8ecb24643cb3cc86573c88d979e7334
7
- data.tar.gz: 34110bdb90cb8fef78980ccb724f98c21753f2bce36be8bca3b5896671daa19e756b4430ff24864fbb35ac2caaa57fdaa67a0f84ba0d1cbb54e0baf8b880160e
6
+ metadata.gz: 922b4ae93a6beeffa8e1d11e5b6a5cb329fc7b833ae54e102a6a9dc944681df11ed32a3bdfe04e12b03e2ce96e6d0a5cf40476ba01958112206c93495a2fcd0e
7
+ data.tar.gz: 504b7550c05fcd284c4b41107dd92dbb362666c3258dae96cc42477c50ae6eef12adaaa8e2c68cb9bf6f8cc6f274fdad8a0f28131777f29d069c715d52e24e32
data/lib/dependabot/config/ignore_condition.rb CHANGED
@@ -18,7 +18,8 @@ module Dependabot
18
18
  @update_types = update_types || []
19
19
  end
20
20
 
21
- def ignored_versions(dependency)
21
+ def ignored_versions(dependency, security_updates_only)
22
+ return versions if security_updates_only
22
23
  return [ALL_VERSIONS] if versions.empty? && transformed_update_types.empty?
23
24
 
24
25
  versions_by_type(dependency) + versions
data/lib/dependabot/config/update_config.rb CHANGED
@@ -12,12 +12,13 @@ module Dependabot
12
12
  @commit_message_options = commit_message_options
13
13
  end
14
14
 
15
- def ignored_versions_for(dependency)
15
+ def ignored_versions_for(dependency, security_updates_only: false)
16
16
  normalizer = name_normaliser_for(dependency)
17
17
  dep_name = name_normaliser_for(dependency).call(dependency.name)
18
+
18
19
  @ignore_conditions.
19
20
  select { |ic| self.class.wildcard_match?(normalizer.call(ic.dependency_name), dep_name) }.
20
- map { |ic| ic.ignored_versions(dependency) }.
21
+ map { |ic| ic.ignored_versions(dependency, security_updates_only) }.
21
22
  flatten.
22
23
  compact.
23
24
  uniq
data/lib/dependabot/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Dependabot
4
- VERSION = "0.143.3"
4
+ VERSION = "0.143.4"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-common
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.143.3
4
+ version: 0.143.4
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-04-23 00:00:00.000000000 Z
11
+ date: 2021-04-26 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: activesupport