dependabot-composer 0.239.0 → 0.240.0
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 8bc4696ba6e7198423b6beb9781cb0af1bad9fd020dd85686af7ebf3a82ca62e
|
|
4
|
+
data.tar.gz: 7fb74904f6ce723a5ccefeeeb7c19bbdf394be8fd85cdbf14aa2ae6ed96f7534
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 1b4c9e8fb979078e33fb5887fd9e09fd24e00f47ff89af6e9256427acbe03b964c2d6b234f021209e3e3588d8123c3020aa169280431325c16323562e1274b2a
|
|
7
|
+
data.tar.gz: 31d01dfb299ebfdd3fbd8f1657452c448c67ba7548945aa83288fcabb9ac547fd4764985f2761d88d0ce497f44cff364e57f69f976d69da6a8ca37acc9f2379a
|
|
@@ -205,6 +205,7 @@ module Dependabot
|
|
|
205
205
|
end
|
|
206
206
|
|
|
207
207
|
# rubocop:disable Metrics/PerceivedComplexity
|
|
208
|
+
# rubocop:disable Metrics/AbcSize
|
|
208
209
|
def updated_version_requirement_string
|
|
209
210
|
lower_bound =
|
|
210
211
|
if requirements_to_unlock == :none
|
|
@@ -218,7 +219,7 @@ module Dependabot
|
|
|
218
219
|
.select { |req_string| req_string.match?(VERSION_REGEX) }
|
|
219
220
|
.map { |req_string| req_string.match(VERSION_REGEX) }
|
|
220
221
|
.select { |version| requirement_valid?(">= #{version}") }
|
|
221
|
-
.max_by { |version| Composer::Version.new(version) }
|
|
222
|
+
.max_by { |version| Composer::Version.new(version.to_s) }
|
|
222
223
|
|
|
223
224
|
">= #{version_for_requirement || 0}"
|
|
224
225
|
end
|
|
@@ -239,6 +240,7 @@ module Dependabot
|
|
|
239
240
|
lower_bound + ", <= #{latest_allowable_version}"
|
|
240
241
|
end
|
|
241
242
|
# rubocop:enable Metrics/PerceivedComplexity
|
|
243
|
+
# rubocop:enable Metrics/AbcSize
|
|
242
244
|
|
|
243
245
|
# TODO: Extract error handling and share between the lockfile updater
|
|
244
246
|
#
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-composer
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.240.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2024-01-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.240.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.240.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -206,6 +206,20 @@ dependencies:
|
|
|
206
206
|
- - "~>"
|
|
207
207
|
- !ruby/object:Gem::Version
|
|
208
208
|
version: '3.18'
|
|
209
|
+
- !ruby/object:Gem::Dependency
|
|
210
|
+
name: webrick
|
|
211
|
+
requirement: !ruby/object:Gem::Requirement
|
|
212
|
+
requirements:
|
|
213
|
+
- - ">="
|
|
214
|
+
- !ruby/object:Gem::Version
|
|
215
|
+
version: '1.7'
|
|
216
|
+
type: :development
|
|
217
|
+
prerelease: false
|
|
218
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
219
|
+
requirements:
|
|
220
|
+
- - ">="
|
|
221
|
+
- !ruby/object:Gem::Version
|
|
222
|
+
version: '1.7'
|
|
209
223
|
description: Dependabot-Composer provides support for bumping PHP (composer) libraries
|
|
210
224
|
via Dependabot. If you want support for multiple package managers, you probably
|
|
211
225
|
want the meta-gem dependabot-omnibus.
|
|
@@ -258,7 +272,7 @@ licenses:
|
|
|
258
272
|
- Nonstandard
|
|
259
273
|
metadata:
|
|
260
274
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
261
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
275
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.240.0
|
|
262
276
|
post_install_message:
|
|
263
277
|
rdoc_options: []
|
|
264
278
|
require_paths:
|