RubyGems - dependabot-common - Versions diffs - 0.300.0 → 0.301.0 - Mend

dependabot-common 0.300.0 → 0.301.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/lib/dependabot/dependency_file.rb +11 -8
data/lib/dependabot/package/package_latest_version_finder.rb +3 -3
data/lib/dependabot/package/release_cooldown_options.rb +11 -11
data/lib/dependabot.rb +1 -1
metadata +3 -9

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 430d17c9cd55d06157f1d17b68484d6eff404a01556ec23e7c135e6717ab8115
-  data.tar.gz: 59c83e71796d1001cce58205b36ad13878d15e7c20a414fd555725cf3512e1e9
+  metadata.gz: 6e5ad8afb5c78de76b83fc7c242fbbe9a473c9648b71324b54d47aeb31e3a701
+  data.tar.gz: f608054fbeca4427bbe80ce83d71f8b30ec2e411704a9b465c21f82d0eb09529
 SHA512:
-  metadata.gz: 602fec245c2dd192286d03064a2254c86c8817cd2a284401a142714223d55c8374b55abe5f61b60d42d06acbb2efe1ad3ba494b2a639d850fe21b4d3c38b36ed
-  data.tar.gz: 5fbde394f4529f08fced5621d6b406d92f173410acb76a310051f93f4bdf80ed8934bc1bea3e431dfce1bfc45fc151436d40f0be4cf8105d1d3d052912452caa
+  metadata.gz: 45eebb6b045a77cb8c34a707e726de39193fc63b8f6f5d056717417b44fbdd308f319c610fc9675c745d856bb7797c5125863d9c88877a78785dd7964865262d
+  data.tar.gz: 7a04d8d2038ec11faaa0e3353b20e01b0d47cff8fbf8d7688a4540b08fc7904f113ffd55e0e3d4ea7eb36b69110902bd558d9e0d66a0897f97efafe81a30cce2

data/lib/dependabot/dependency_file.rb CHANGED Viewed

@@ -52,10 +52,17 @@ module Dependabot
     end
     class Mode
+      EXECUTABLE = "100755"
       FILE = "100644"
+      TREE = "040000"
       SUBMODULE = "160000"
+      SYMLINK = "120000"
     end
+    # See https://github.com/git/git/blob/a36e024e989f4d35f35987a60e3af8022cac3420/object.h#L144-L153
+    VALID_MODES = T.let([Mode::FILE, Mode::EXECUTABLE, Mode::TREE, Mode::SUBMODULE, Mode::SYMLINK].freeze,
+                        T::Array[String])
     sig do
       params(
         name: String,
@@ -84,6 +91,8 @@ module Dependabot
       @vendored_file = vendored_file
       @content_encoding = content_encoding
       @operation = operation
+      @mode = mode
+      raise ArgumentError, "Invalid Git mode: #{mode}" if mode && !VALID_MODES.include?(mode)
       # Make deleted override the operation. Deleted is kept when operation
       # was introduced to keep compatibility with downstream dependants.
@@ -96,12 +105,6 @@ module Dependabot
       # support_file flag instead)
       @type = type
-      begin
-        @mode = T.let(File.stat(realpath).mode.to_s(8), T.nilable(String))
-      rescue StandardError
-        @mode = mode
-      end
       return unless (type == "symlink") ^ symlink_target
       raise "Symlinks must specify a target!" unless symlink_target
@@ -118,9 +121,9 @@ module Dependabot
         "support_file" => support_file,
         "content_encoding" => content_encoding,
         "deleted" => deleted,
-        "operation" => operation,
-        "mode" => mode
+        "operation" => operation
       }
+      details["mode"] = mode if mode
       details["symlink_target"] = symlink_target if symlink_target
       details

data/lib/dependabot/package/package_latest_version_finder.rb CHANGED Viewed

@@ -319,9 +319,9 @@ module Dependabot
         new_major, new_minor, new_patch = new_version_semver
         # Determine cooldown based on version difference
-        return cooldown.major_days if new_major > current_major
-        return cooldown.minor_days if new_minor > current_minor
-        return cooldown.patch_days if new_patch > current_patch
+        return cooldown.semver_major_days if new_major > current_major
+        return cooldown.semver_minor_days if new_minor > current_minor
+        return cooldown.semver_patch_days if new_patch > current_patch
         cooldown.default_days
       end

data/lib/dependabot/package/release_cooldown_options.rb CHANGED Viewed

@@ -11,34 +11,34 @@ module Dependabot
       sig do
         params(
           default_days: T.nilable(Integer),
-          major_days: T.nilable(Integer),
-          minor_days: T.nilable(Integer),
-          patch_days: T.nilable(Integer),
+          semver_major_days: T.nilable(Integer),
+          semver_minor_days: T.nilable(Integer),
+          semver_patch_days: T.nilable(Integer),
           include: T.nilable(T::Array[String]),
           exclude: T.nilable(T::Array[String])
         ).void
       end
       def initialize(
-        default_days: 0, major_days: 0, minor_days: 0, patch_days: 0,
+        default_days: 0, semver_major_days: 0, semver_minor_days: 0, semver_patch_days: 0,
         include: [], exclude: []
       )
         default_days ||= 0
-        major_days ||= 0
-        minor_days ||= 0
-        patch_days ||= 0
+        semver_major_days ||= 0
+        semver_minor_days ||= 0
+        semver_patch_days ||= 0
         include ||= []
         exclude ||= []
         @default_days = T.let(default_days, Integer)
-        @major_days = T.let(major_days.positive? ? major_days : default_days, Integer)
-        @minor_days = T.let(minor_days.positive? ? minor_days : default_days, Integer)
-        @patch_days = T.let(patch_days.positive? ? patch_days : default_days, Integer)
+        @semver_major_days = T.let(semver_major_days.positive? ? semver_major_days : default_days, Integer)
+        @semver_minor_days = T.let(semver_minor_days.positive? ? semver_minor_days : default_days, Integer)
+        @semver_patch_days = T.let(semver_patch_days.positive? ? semver_patch_days : default_days, Integer)
         @include = T.let(include.to_set, T::Set[String])
         @exclude = T.let(exclude.to_set, T::Set[String])
       end
       sig { returns(Integer) }
-      attr_reader :default_days, :major_days, :minor_days, :patch_days
+      attr_reader :default_days, :semver_major_days, :semver_minor_days, :semver_patch_days
       sig { returns(T::Set[String]) }
       attr_reader :include, :exclude

data/lib/dependabot.rb CHANGED Viewed

@@ -2,5 +2,5 @@
 # frozen_string_literal: true
 module Dependabot
-  VERSION = "0.300.0"
+  VERSION = "0.301.0"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-common
 version: !ruby/object:Gem::Version
-  version: 0.300.0
+  version: 0.301.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-03-06 00:00:00.000000000 Z
+date: 2025-03-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-codecommit
@@ -293,9 +293,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: 1.1.2
-    - - "<"
-      - !ruby/object:Gem::Version
-        version: '4.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -303,9 +300,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: 1.1.2
-    - - "<"
-      - !ruby/object:Gem::Version
-        version: '4.0'
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -620,7 +614,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.300.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.301.0
 post_install_message:
 rdoc_options: []
 require_paths: