dependabot-common 0.95.37 → 0.95.38
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/metadata_finders/base/commits_finder.rb +26 -13
- data/lib/dependabot/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 2cd16136446691dedf83884a49397548a4b6ccee205b8a620b085b8f6c8b1d53
|
4
|
+
data.tar.gz: 17d1376d3a58ab2222af571cc5e464e461441e7aca4bc2ecfbb2f15a7aeb01f4
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: eb148c5fc0b9fc92e0d138e8b71749c6d9e1cf39537acd04ec09ccbbe90a21fd092b8939948032ed4fd937d9c0334e86e224dfa7c68feab2164ec94ba6c83cd0
|
7
|
+
data.tar.gz: 41fad9b2357ee3904f22e3574fff4c0ef2d4efa790663de113839e2eaf35b5b18e288b7293c1c642ce5f68934691272e562ceae28ff1c233a2ee7d78147ea06a
|
@@ -78,19 +78,32 @@ module Dependabot
|
|
78
78
|
|
79
79
|
def lowest_tag_satisfying_previous_requirements
|
80
80
|
tags = dependency_tags.
|
81
|
-
select { |t|
|
82
|
-
select
|
83
|
-
|
84
|
-
|
85
|
-
|
86
|
-
|
87
|
-
|
88
|
-
|
89
|
-
|
90
|
-
|
91
|
-
|
92
|
-
|
93
|
-
|
81
|
+
select { |t| version_from_tag(t) }.
|
82
|
+
select { |t| satisfies_previous_reqs?(version_from_tag(t)) }.
|
83
|
+
sort_by { |t| version_from_tag(t) }
|
84
|
+
|
85
|
+
tags.find { |t| t.include?(dependency.name) } || tags.first
|
86
|
+
end
|
87
|
+
|
88
|
+
def version_from_tag(tag)
|
89
|
+
if version_class.correct?(tag.gsub(/^v/, ""))
|
90
|
+
version_class.new(tag.gsub(/^v/, ""))
|
91
|
+
end
|
92
|
+
|
93
|
+
return unless tag.gsub(/^[^\d]*/, "").length > 1
|
94
|
+
return unless version_class.correct?(tag.gsub(/^[^\d]*/, ""))
|
95
|
+
|
96
|
+
version_class.new(tag.gsub(/^[^\d]*/, ""))
|
97
|
+
end
|
98
|
+
|
99
|
+
def satisfies_previous_reqs?(version)
|
100
|
+
dependency.previous_requirements.all? do |req|
|
101
|
+
next true unless req.fetch(:requirement)
|
102
|
+
|
103
|
+
requirement_class.
|
104
|
+
requirements_array(req.fetch(:requirement)).
|
105
|
+
all? { |r| r.satisfied_by?(version) }
|
106
|
+
end
|
94
107
|
end
|
95
108
|
|
96
109
|
# TODO: Refactor me so that Composer doesn't need to be special cased
|
data/lib/dependabot/version.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-common
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.95.
|
4
|
+
version: 0.95.38
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-02-
|
11
|
+
date: 2019-02-19 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-ecr
|