dependabot-common 0.249.0 → 0.250.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 217c5c870b824a19e49395f0ae3ecb4a01326f04c48acea4014aaca26ba7735d
4
- data.tar.gz: 9a587a5c8c08853903d2e3ed5aec1ebdd943da45d82bbe1f7c2a83187a241d3e
3
+ metadata.gz: '0983823ada7f861d47f3399954e68acd51ac9489e92a8720db43eff4d3cefb49'
4
+ data.tar.gz: 2fdc3a9999f7ed9d5127a350d17677618765f6c57bdf751c1f67402f48f35ef6
5
5
  SHA512:
6
- metadata.gz: 87a101be9e06ab4602930b296950db93b8b27ae81319a3ba1523f42866f7e2ea4dde7320ccfc69f604bd87c2aa720023716ca92f1e42bea8f4aeab0ecdde7045
7
- data.tar.gz: efdcc0bc5bc3a49cd0f4746a490582cf07884c3a4a4618a784d40aa7f09edf8dcc28b3af05949e39fded10a0450ce30a6bc87ac9d489eeb1baa7e2a38f225c5e
6
+ metadata.gz: 27bc497b5c23a14648786d5406bb7e53c70b369fdb0e9f37c91fb6820bf6534bb4d4f6ecae92fb2d479eaf4624ee4d3788a69b563ae6803969397fd8e65a8227
7
+ data.tar.gz: 387cbc59de29fedd731f0c82352006e6f935a28afcae87a9ada8f78e0378c754482dc988ff690d9e68d858a08a302a29e10c8a2d945c11150bbea270c8069763
@@ -159,7 +159,7 @@ module Dependabot
159
159
  end
160
160
 
161
161
  # Returns the path to the cloned repo
162
- sig { returns(String) }
162
+ sig { overridable.returns(String) }
163
163
  def clone_repo_contents
164
164
  @clone_repo_contents ||= T.let(
165
165
  _clone_repo_contents(target_directory: repo_contents_path),
@@ -15,6 +15,8 @@ module Dependabot
15
15
 
16
16
  sig { override.returns(String) }
17
17
  def new_branch_name
18
+ return short_branch_name if branch_name_might_be_long?
19
+
18
20
  @name ||=
19
21
  T.let(
20
22
  begin
@@ -198,6 +200,27 @@ module Dependabot
198
200
  def requirements_changed?(dependency)
199
201
  (dependency.requirements - T.must(dependency.previous_requirements)).any?
200
202
  end
203
+
204
+ sig { returns(T::Boolean) }
205
+ def branch_name_might_be_long?
206
+ dependencies.count > 1 && !updating_a_property? && !updating_a_dependency_set?
207
+ end
208
+
209
+ sig { returns(String) }
210
+ def short_branch_name
211
+ # Fix long branch names by using a digest of the dependencies instead of their names.
212
+ sanitize_branch_name(File.join(prefixes, "multi-#{dependency_digest}"))
213
+ end
214
+
215
+ sig { returns(T.nilable(String)) }
216
+ def dependency_digest
217
+ T.let(
218
+ Digest::MD5.hexdigest(dependencies.map do |dependency|
219
+ "#{dependency.name}-#{dependency.removed? ? 'removed' : dependency.version}"
220
+ end.sort.join(",")).slice(0, 10),
221
+ T.nilable(String)
222
+ )
223
+ end
201
224
  end
202
225
  end
203
226
  end
data/lib/dependabot.rb CHANGED
@@ -2,5 +2,5 @@
2
2
  # frozen_string_literal: true
3
3
 
4
4
  module Dependabot
5
- VERSION = "0.249.0"
5
+ VERSION = "0.250.0"
6
6
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-common
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.249.0
4
+ version: 0.250.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-03-28 00:00:00.000000000 Z
11
+ date: 2024-04-02 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-codecommit
@@ -583,7 +583,7 @@ licenses:
583
583
  - Nonstandard
584
584
  metadata:
585
585
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
586
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.249.0
586
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.250.0
587
587
  post_install_message:
588
588
  rdoc_options: []
589
589
  require_paths: