dependabot-common 0.98.30 → 0.98.31
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/git_commit_checker.rb +9 -31
- data/lib/dependabot/version.rb +1 -1
- metadata +1 -1
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: acad640cd551e4c5ee343d17311bac5cdfc4ad10807aa90f980b26299e87e9e1
|
4
|
+
data.tar.gz: 70f12e0ac10bc80c53a319e5222cfc94a554e8b344d654414fbbf886bf259cec
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: f7ac6b7e472065c2513514a5544681cad0392d7a54b64b6168d11cfdf9189cb52974d6bcc9c3197c4df25aaa39fdb891589f6ebe13e237ec9d19e75fc0806097
|
7
|
+
data.tar.gz: 33701004d42ae340edb275da8bdb6780a271f99f74ba34af35705fb9996f7e161c17e242a507457bf33c6c9972ff977c7753313b76c98f5fe5fa6ef9cf9c4f20
|
@@ -3,6 +3,8 @@
|
|
3
3
|
require "excon"
|
4
4
|
require "gitlab"
|
5
5
|
require "dependabot/clients/github_with_retries"
|
6
|
+
require "dependabot/clients/gitlab_with_retries"
|
7
|
+
require "dependabot/clients/bitbucket"
|
6
8
|
require "dependabot/metadata_finders"
|
7
9
|
require "dependabot/errors"
|
8
10
|
require "dependabot/utils"
|
@@ -10,7 +12,6 @@ require "dependabot/source"
|
|
10
12
|
require "dependabot/dependency"
|
11
13
|
require "dependabot/git_metadata_fetcher"
|
12
14
|
|
13
|
-
# rubocop:disable Metrics/ClassLength
|
14
15
|
module Dependabot
|
15
16
|
class GitCommitChecker
|
16
17
|
VERSION_REGEX = /(?<version>[0-9]+\.[0-9]+(?:\.[a-zA-Z0-9\-]+)*)$/.freeze
|
@@ -166,6 +167,7 @@ module Dependabot
|
|
166
167
|
|
167
168
|
allow_identical && status == "identical"
|
168
169
|
rescue Octokit::NotFound, Gitlab::Error::NotFound,
|
170
|
+
Clients::Bitbucket::NotFound,
|
169
171
|
Octokit::InternalServerError
|
170
172
|
false
|
171
173
|
end
|
@@ -178,13 +180,8 @@ module Dependabot
|
|
178
180
|
end
|
179
181
|
|
180
182
|
def gitlab_commit_comparison_status(ref1, ref2)
|
181
|
-
|
182
|
-
|
183
|
-
find { |cred| cred["host"] == "gitlab.com" }&.
|
184
|
-
fetch("token")
|
185
|
-
|
186
|
-
client = Gitlab.client(endpoint: "https://gitlab.com/api/v4",
|
187
|
-
private_token: access_token.to_s)
|
183
|
+
client = Clients::GitlabWithRetries.
|
184
|
+
for_gitlab_dot_com(credentials: credentials)
|
188
185
|
|
189
186
|
comparison = client.compare(listing_source_repo, ref1, ref2)
|
190
187
|
|
@@ -199,10 +196,10 @@ module Dependabot
|
|
199
196
|
"#{listing_source_repo}/commits/?"\
|
200
197
|
"include=#{ref2}&exclude=#{ref1}"
|
201
198
|
|
202
|
-
|
203
|
-
|
204
|
-
|
205
|
-
|
199
|
+
client = Clients::Bitbucket.
|
200
|
+
for_bitbucket_dot_org(credentials: credentials)
|
201
|
+
|
202
|
+
response = client.get(url)
|
206
203
|
|
207
204
|
# Conservatively assume that ref2 is ahead in the equality case, of
|
208
205
|
# if we get an unexpected format (e.g., due to a 404)
|
@@ -211,24 +208,6 @@ module Dependabot
|
|
211
208
|
end
|
212
209
|
end
|
213
210
|
|
214
|
-
def bitbucket_auth_header
|
215
|
-
token = credentials.
|
216
|
-
select { |cred| cred["type"] == "git_source" }.
|
217
|
-
find { |cred| cred["host"] == "bitbucket.org" }&.
|
218
|
-
fetch("token")
|
219
|
-
|
220
|
-
if token.nil? then {}
|
221
|
-
elsif token.include?(":")
|
222
|
-
encoded_token = Base64.encode64(token).delete("\n")
|
223
|
-
{ "Authorization" => "Basic #{encoded_token}" }
|
224
|
-
elsif Base64.decode64(token).ascii_only? &&
|
225
|
-
Base64.decode64(token).include?(":")
|
226
|
-
{ "Authorization" => "Basic #{token.delete("\n")}" }
|
227
|
-
else
|
228
|
-
{ "Authorization" => "Bearer #{token}" }
|
229
|
-
end
|
230
|
-
end
|
231
|
-
|
232
211
|
def dependency_source_details
|
233
212
|
sources =
|
234
213
|
dependency.requirements.map { |r| r.fetch(:source) }.uniq.compact
|
@@ -361,4 +340,3 @@ module Dependabot
|
|
361
340
|
end
|
362
341
|
end
|
363
342
|
end
|
364
|
-
# rubocop:enable Metrics/ClassLength
|
data/lib/dependabot/version.rb
CHANGED