dependabot-composer 0.221.0 → 0.223.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: d4964526a2725144d8d2fdb24163ffc1130067bc2d7d3ac8b419750898ee4eb4
4
- data.tar.gz: a9163185fb45e9e3ae4609c0b855377e1ce2b2834132f4c1c349dea4c7433910
3
+ metadata.gz: 2ad34119ae69f66e9accee69ae18a00dec736a62ee26b68609f50e405c795e79
4
+ data.tar.gz: f9d269cbac5695fb4c8d0f4e0951e2b73098b700aa5a34a6ae432915bec8f09f
5
5
  SHA512:
6
- metadata.gz: ca0fe34b4fc7d4bb93b80405db1cb6003825c602024c6ae9729e595dd8507126c4ce3dd3e60a931798aa4d96956d63cab887259f48848aa8a13e1ddff8b50c9f
7
- data.tar.gz: 2006057f41d4c75a0581185ee95468b14f01cff66b8417a12b31cbf61e623a69885e04b77a87c3e7f231720823f21bcd402d9d755d110e79ce5ed452361847d1
6
+ metadata.gz: cd82721ea3b5caf1caf19c9af79381076a0bfcbfe8d60c33e7f0cf89a6a24c4ec1f2213b72e1da4ed1303b48dba573408fca5f0a0c680637574026e032c916b3
7
+ data.tar.gz: 0c5a9212c7ff4841fb617eb0b6c454455c154156dabd6e036edb66f68e30dfe2f035585d1f4e90384cc018504a19940f0c74b141f1fe0741feab198f1b171bb3
@@ -17,6 +17,14 @@ module Dependabot
17
17
  "Repo must contain a composer.json."
18
18
  end
19
19
 
20
+ def ecosystem_versions
21
+ {
22
+ package_managers: {
23
+ "composer" => Helpers.composer_version(parsed_composer_json, parsed_lockfile) || "unknown"
24
+ }
25
+ }
26
+ end
27
+
20
28
  private
21
29
 
22
30
  def fetch_files
@@ -16,13 +16,13 @@ module Dependabot
16
16
  def self.composer_version(composer_json, parsed_lockfile = nil)
17
17
  if parsed_lockfile && parsed_lockfile["plugin-api-version"]
18
18
  version = Composer::Version.new(parsed_lockfile["plugin-api-version"])
19
- return version.canonical_segments.first == 1 ? "v1" : "v2"
19
+ return version.canonical_segments.first == 1 ? "1" : "2"
20
20
  else
21
- return "v1" if composer_json["name"] && composer_json["name"] !~ COMPOSER_V2_NAME_REGEX
22
- return "v1" if invalid_v2_requirement?(composer_json)
21
+ return "1" if composer_json["name"] && composer_json["name"] !~ COMPOSER_V2_NAME_REGEX
22
+ return "1" if invalid_v2_requirement?(composer_json)
23
23
  end
24
24
 
25
- "v2"
25
+ "2"
26
26
  end
27
27
 
28
28
  def self.invalid_v2_requirement?(composer_json)
@@ -3,8 +3,8 @@
3
3
  module Dependabot
4
4
  module Composer
5
5
  module NativeHelpers
6
- def self.composer_helper_path(composer_version: "v2")
7
- File.join(composer_helpers_dir, composer_version, "bin/run")
6
+ def self.composer_helper_path(composer_version: "2")
7
+ File.join(composer_helpers_dir, "v#{composer_version}", "bin/run")
8
8
  end
9
9
 
10
10
  def self.composer_helpers_dir
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-composer
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.221.0
4
+ version: 0.223.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-07-13 00:00:00.000000000 Z
11
+ date: 2023-07-25 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.221.0
19
+ version: 0.223.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.221.0
26
+ version: 0.223.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -230,7 +230,7 @@ licenses:
230
230
  - Nonstandard
231
231
  metadata:
232
232
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
233
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.221.0
233
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.223.0
234
234
  post_install_message:
235
235
  rdoc_options: []
236
236
  require_paths: