dependabot-composer 0.148.9 → 0.149.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/composer/file_updater/lockfile_updater.rb +11 -10
  3. data/lib/dependabot/composer/update_checker/version_resolver.rb +3 -1
  4. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 70fc7cb7461f28a3b85cd71afb52ffbc5a80aa9f1e6d8f531d0121a579fadd9a
4
- data.tar.gz: fafb6ba0e5afbc61cb22a5fcedb99522f058358b8812cdc89ca4ddea5d1a06b5
3
+ metadata.gz: 41cadd9c46436abf9e34a3a3e99b6c064c77eddc2d22034de45673a493eec0b8
4
+ data.tar.gz: d50430b2dd11e91cbc834c32132d26177eac5338c62be7cd46d2a8807c9c74bc
5
5
  SHA512:
6
- metadata.gz: 1a8e09763faaa113d0f39eaa443229297d869f290745eceb2af43f5fadcf0f9376e15c83a5413184f2b2ec2f2d8c2b3c59d884fa9de63b503b5fc1058733c6e2
7
- data.tar.gz: 22d4a0547fcee78f23c4d1b6d53844b73e8a122b6b514f46f80dae6feff5a596198a6cfbd46fe0c3d942287492c05cc9118b7dcf605164c1a0e67773838c3458
6
+ metadata.gz: 36ff8778e8b67bb03e7f412bb0829db2b31c91bf7c8e76816e4169ca9065d27ad6d7353d80c509e34d9256a3958a2306c4adc8ab0d20b6eab0bd972b03f2df7f
7
+ data.tar.gz: 191eb8d638844c71fafb108c0fad50192f3f0762c25df3451ac54a5198fdb319b4de6377dc12af703d37cf02c87e40a604fa6313d25498ad652e27f5c8b3b2a6
data/lib/dependabot/composer/file_updater/lockfile_updater.rb CHANGED
@@ -8,6 +8,7 @@ require "dependabot/composer/version"
8
8
  require "dependabot/composer/requirement"
9
9
  require "dependabot/composer/native_helpers"
10
10
  require "dependabot/composer/helpers"
11
+ require "dependabot/composer/update_checker/version_resolver"
11
12
 
12
13
  # rubocop:disable Metrics/ClassLength
13
14
  module Dependabot
@@ -125,6 +126,8 @@ module Dependabot
125
126
  error.message.start_with?("Could not authenticate against")
126
127
  end
127
128
 
129
+ # TODO: Extract error handling and share between the version resolver
130
+ #
128
131
  # rubocop:disable Metrics/AbcSize
129
132
  # rubocop:disable Metrics/CyclomaticComplexity
130
133
  # rubocop:disable Metrics/MethodLength
@@ -167,18 +170,16 @@ module Dependabot
167
170
  raise PrivateSourceAuthenticationFailure, "nova.laravel.com"
168
171
  end
169
172
 
170
- if error.message.start_with?("Failed to execute git clone")
171
- dependency_url =
172
- error.message.match(/(?:mirror|checkout) '(?<url>.*?)'/).
173
- named_captures.fetch("url")
174
- raise GitDependenciesNotReachable, dependency_url
173
+ if error.message.match?(UpdateChecker::VersionResolver::FAILED_GIT_CLONE_WITH_MIRROR)
174
+ dependency_url = error.message.match(UpdateChecker::VersionResolver::FAILED_GIT_CLONE_WITH_MIRROR).
175
+ named_captures.fetch("url")
176
+ raise Dependabot::GitDependenciesNotReachable, dependency_url
175
177
  end
176
178
 
177
- if error.message.start_with?("Failed to clone")
178
- dependency_url =
179
- error.message.match(/Failed to clone (?<url>.*?) via/).
180
- named_captures.fetch("url")
181
- raise GitDependenciesNotReachable, dependency_url
179
+ if error.message.match?(UpdateChecker::VersionResolver::FAILED_GIT_CLONE)
180
+ dependency_url = error.message.match(UpdateChecker::VersionResolver::FAILED_GIT_CLONE).
181
+ named_captures.fetch("url")
182
+ raise Dependabot::GitDependenciesNotReachable, dependency_url
182
183
  end
183
184
 
184
185
  # NOTE: This matches an error message from composer plugins used to install ACF PRO
data/lib/dependabot/composer/update_checker/version_resolver.rb CHANGED
@@ -37,7 +37,7 @@ module Dependabot
37
37
  VERSION_REGEX = /[0-9]+(?:\.[A-Za-z0-9\-_]+)*/.freeze
38
38
  SOURCE_TIMED_OUT_REGEX =
39
39
  /The "(?<url>[^"]+packages\.json)".*timed out/.freeze
40
- FAILED_GIT_CLONE_WITH_MIRROR = /Failed to execute git clone --mirror[^']*'(?<url>.*?)'/.freeze
40
+ FAILED_GIT_CLONE_WITH_MIRROR = /Failed to execute git clone --(mirror|checkout)[^']*'(?<url>.*?)'/.freeze
41
41
  FAILED_GIT_CLONE = /Failed to clone (?<url>.*?) via/.freeze
42
42
 
43
43
  def initialize(credentials:, dependency:, dependency_files:,
@@ -233,6 +233,8 @@ module Dependabot
233
233
  # rubocop:enable Metrics/AbcSize
234
234
  # rubocop:enable Metrics/PerceivedComplexity
235
235
 
236
+ # TODO: Extract error handling and share between the lockfile updater
237
+ #
236
238
  # rubocop:disable Metrics/PerceivedComplexity
237
239
  # rubocop:disable Metrics/AbcSize
238
240
  # rubocop:disable Metrics/CyclomaticComplexity
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-composer
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.148.9
4
+ version: 0.149.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-05-26 00:00:00.000000000 Z
11
+ date: 2021-05-28 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.148.9
19
+ version: 0.149.3
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.148.9
26
+ version: 0.149.3
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement