dependabot-common 0.281.0 → 0.282.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/git_metadata_fetcher.rb +1 -1
- data/lib/dependabot/pull_request_creator/branch_namer/base.rb +7 -0
- data/lib/dependabot/pull_request_creator/branch_namer.rb +6 -0
- data/lib/dependabot/pull_request_creator.rb +6 -0
- data/lib/dependabot/version.rb +7 -2
- data/lib/dependabot.rb +1 -1
- metadata +7 -7
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: bab04f92d1012d9c1c6ad35a8a7d1dd1fc6c44871574575fca3a194d77e09d91
|
|
4
|
+
data.tar.gz: 2e55d5191c95ad599cb84cb2a5da47afce5faca28401cb259e87ccae89e0dcfd
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: bce2900b9b4f729e4cc8696636b13e33aef9b6791d727070d88b33e4909437811a1baea39b09272911a5929c4addd002e8177e6b6ad0061c43c1901805c9da13
|
|
7
|
+
data.tar.gz: 2dd3ba8fdf0810637da059b6587658fc6cb0800defa344c3bf724286f2cc63146af79fbd27e6dc0509ef85517e433b1479c13607bbf305ff36e0e49d32b5a89c
|
|
@@ -235,7 +235,7 @@ module Dependabot
|
|
|
235
235
|
|
|
236
236
|
uri.scheme = "https" if uri.scheme != "http"
|
|
237
237
|
|
|
238
|
-
if !uri.password && cred
|
|
238
|
+
if !uri.password && cred&.fetch("username", nil) && cred.fetch("password", nil)
|
|
239
239
|
# URI doesn't have authentication details, but we have credentials
|
|
240
240
|
uri.user = URI.encode_www_form_component(cred["username"])
|
|
241
241
|
uri.password = URI.encode_www_form_component(cred["password"])
|
|
@@ -83,6 +83,9 @@ module Dependabot
|
|
|
83
83
|
|
|
84
84
|
sig { params(ref: String).returns(String) }
|
|
85
85
|
def dedup_existing_branches(ref)
|
|
86
|
+
Dependabot.logger.debug(
|
|
87
|
+
"Dependabot::PullRequestCreator::dedup_existing_branches::ref : #{ref}"
|
|
88
|
+
)
|
|
86
89
|
return ref unless existing_branches.include?(ref)
|
|
87
90
|
|
|
88
91
|
i = 1
|
|
@@ -92,6 +95,10 @@ module Dependabot
|
|
|
92
95
|
new_ref = "#{ref}-#{i}"
|
|
93
96
|
end
|
|
94
97
|
|
|
98
|
+
Dependabot.logger.debug(
|
|
99
|
+
"Dependabot::PullRequestCreator::dedup_existing_branches::new_ref : #{new_ref}"
|
|
100
|
+
)
|
|
101
|
+
|
|
95
102
|
new_ref
|
|
96
103
|
end
|
|
97
104
|
|
|
@@ -77,6 +77,12 @@ module Dependabot
|
|
|
77
77
|
|
|
78
78
|
sig { returns(Dependabot::PullRequestCreator::BranchNamer::Base) }
|
|
79
79
|
def strategy
|
|
80
|
+
if Dependabot::Experiments.enabled?(:dedup_branch_names) && existing_branches
|
|
81
|
+
Dependabot.logger.debug(
|
|
82
|
+
"Dependabot::PullRequestCreator::strategy : #{existing_branches}"
|
|
83
|
+
)
|
|
84
|
+
end
|
|
85
|
+
|
|
80
86
|
@strategy ||= T.let(
|
|
81
87
|
if dependency_group.nil?
|
|
82
88
|
SoloStrategy.new(
|
|
@@ -396,6 +396,12 @@ module Dependabot
|
|
|
396
396
|
|
|
397
397
|
sig { returns(Dependabot::PullRequestCreator::BranchNamer) }
|
|
398
398
|
def branch_namer
|
|
399
|
+
if Dependabot::Experiments.enabled?(:dedup_branch_names) && existing_branches
|
|
400
|
+
Dependabot.logger.debug(
|
|
401
|
+
"Dependabot::PullRequestCreator::branch_namer : #{existing_branches}"
|
|
402
|
+
)
|
|
403
|
+
end
|
|
404
|
+
|
|
399
405
|
@branch_namer ||= T.let(
|
|
400
406
|
BranchNamer.new(
|
|
401
407
|
dependencies: dependencies,
|
data/lib/dependabot/version.rb
CHANGED
|
@@ -52,7 +52,7 @@ module Dependabot
|
|
|
52
52
|
def ignored_minor_versions
|
|
53
53
|
parts = to_semver.split(".")
|
|
54
54
|
version_parts = parts.fill("0", parts.length...2)
|
|
55
|
-
lower_parts = version_parts.first(1) + [version_parts[1].to_i + 1] + [
|
|
55
|
+
lower_parts = version_parts.first(1) + [version_parts[1].to_i + 1] + [lowest_prerelease_suffix]
|
|
56
56
|
upper_parts = version_parts.first(0) + [version_parts[0].to_i + 1]
|
|
57
57
|
lower_bound = ">= #{lower_parts.join('.')}"
|
|
58
58
|
upper_bound = "< #{upper_parts.join('.')}"
|
|
@@ -63,10 +63,15 @@ module Dependabot
|
|
|
63
63
|
sig { overridable.returns(T::Array[String]) }
|
|
64
64
|
def ignored_major_versions
|
|
65
65
|
version_parts = to_semver.split(".")
|
|
66
|
-
lower_parts = [version_parts[0].to_i + 1] + [
|
|
66
|
+
lower_parts = [version_parts[0].to_i + 1] + [lowest_prerelease_suffix]
|
|
67
67
|
lower_bound = ">= #{lower_parts.join('.')}"
|
|
68
68
|
|
|
69
69
|
[lower_bound]
|
|
70
70
|
end
|
|
71
|
+
|
|
72
|
+
sig { returns(String) }
|
|
73
|
+
def lowest_prerelease_suffix
|
|
74
|
+
"a"
|
|
75
|
+
end
|
|
71
76
|
end
|
|
72
77
|
end
|
data/lib/dependabot.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-common
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.282.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-10-
|
|
11
|
+
date: 2024-10-24 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-codecommit
|
|
@@ -396,28 +396,28 @@ dependencies:
|
|
|
396
396
|
requirements:
|
|
397
397
|
- - "~>"
|
|
398
398
|
- !ruby/object:Gem::Version
|
|
399
|
-
version: 1.
|
|
399
|
+
version: 1.67.0
|
|
400
400
|
type: :development
|
|
401
401
|
prerelease: false
|
|
402
402
|
version_requirements: !ruby/object:Gem::Requirement
|
|
403
403
|
requirements:
|
|
404
404
|
- - "~>"
|
|
405
405
|
- !ruby/object:Gem::Version
|
|
406
|
-
version: 1.
|
|
406
|
+
version: 1.67.0
|
|
407
407
|
- !ruby/object:Gem::Dependency
|
|
408
408
|
name: rubocop-performance
|
|
409
409
|
requirement: !ruby/object:Gem::Requirement
|
|
410
410
|
requirements:
|
|
411
411
|
- - "~>"
|
|
412
412
|
- !ruby/object:Gem::Version
|
|
413
|
-
version: 1.
|
|
413
|
+
version: 1.22.1
|
|
414
414
|
type: :development
|
|
415
415
|
prerelease: false
|
|
416
416
|
version_requirements: !ruby/object:Gem::Requirement
|
|
417
417
|
requirements:
|
|
418
418
|
- - "~>"
|
|
419
419
|
- !ruby/object:Gem::Version
|
|
420
|
-
version: 1.
|
|
420
|
+
version: 1.22.1
|
|
421
421
|
- !ruby/object:Gem::Dependency
|
|
422
422
|
name: rubocop-rspec
|
|
423
423
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -614,7 +614,7 @@ licenses:
|
|
|
614
614
|
- MIT
|
|
615
615
|
metadata:
|
|
616
616
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
617
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
617
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.282.0
|
|
618
618
|
post_install_message:
|
|
619
619
|
rdoc_options: []
|
|
620
620
|
require_paths:
|