dependabot-composer 0.247.0 → 0.249.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/composer/file_fetcher/path_dependency_builder.rb +3 -1
- data/lib/dependabot/composer/file_updater/lockfile_updater.rb +4 -2
- data/lib/dependabot/composer/file_updater/manifest_updater.rb +2 -1
- data/lib/dependabot/composer/update_checker/latest_version_finder.rb +5 -2
- data/lib/dependabot/composer/update_checker/requirements_updater.rb +3 -2
- data/lib/dependabot/composer/update_checker/version_resolver.rb +6 -3
- metadata +5 -5
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: a2bab41097eef06116136082d581248605852beecaf89f02f167e560572c912b
|
4
|
+
data.tar.gz: bcecefe28f06658bb7df47d4ff54350d668e98f28c1f325ab36b72a81184df0b
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 7661d2221dadad3699f69e699d3fc6aa8bf6bf969a074ea02585a1bb457f4314ebb286cc8155735c4f63a426df18ecbdb1725c722b3d41b6d24f46716b059da7
|
7
|
+
data.tar.gz: 68ab5fa49a4f519665d5efca017d8a712023a398b5fc7bd9bd345f89001058cade24f5ddde87967d8cc4ad5de36c495923db7171cbc64411b449d072e0bf7b1c
|
@@ -58,8 +58,10 @@ module Dependabot
|
|
58
58
|
|
59
59
|
private
|
60
60
|
|
61
|
-
attr_reader :dependencies
|
62
|
-
|
61
|
+
attr_reader :dependencies
|
62
|
+
attr_reader :dependency_files
|
63
|
+
attr_reader :credentials
|
64
|
+
attr_reader :composer_platform_extensions
|
63
65
|
|
64
66
|
def generate_updated_lockfile_content
|
65
67
|
base_directory = dependency_files.first.directory
|
@@ -34,8 +34,11 @@ module Dependabot
|
|
34
34
|
|
35
35
|
private
|
36
36
|
|
37
|
-
attr_reader :dependency
|
38
|
-
|
37
|
+
attr_reader :dependency
|
38
|
+
attr_reader :dependency_files
|
39
|
+
attr_reader :credentials
|
40
|
+
attr_reader :ignored_versions
|
41
|
+
attr_reader :security_advisories
|
39
42
|
|
40
43
|
def fetch_latest_version
|
41
44
|
versions = available_versions
|
@@ -56,8 +56,9 @@ module Dependabot
|
|
56
56
|
|
57
57
|
private
|
58
58
|
|
59
|
-
attr_reader :requirements
|
60
|
-
|
59
|
+
attr_reader :requirements
|
60
|
+
attr_reader :update_strategy
|
61
|
+
attr_reader :latest_resolvable_version
|
61
62
|
|
62
63
|
def check_update_strategy
|
63
64
|
return if ALLOWED_UPDATE_STRATEGIES.include?(update_strategy)
|
@@ -57,9 +57,12 @@ module Dependabot
|
|
57
57
|
|
58
58
|
private
|
59
59
|
|
60
|
-
attr_reader :credentials
|
61
|
-
|
62
|
-
|
60
|
+
attr_reader :credentials
|
61
|
+
attr_reader :dependency
|
62
|
+
attr_reader :dependency_files
|
63
|
+
attr_reader :requirements_to_unlock
|
64
|
+
attr_reader :latest_allowable_version
|
65
|
+
attr_reader :composer_platform_extensions
|
63
66
|
|
64
67
|
def fetch_latest_resolvable_version
|
65
68
|
version = fetch_latest_resolvable_version_string
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-composer
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.249.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-03-
|
11
|
+
date: 2024-03-28 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.249.0
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.
|
26
|
+
version: 0.249.0
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: debug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -286,7 +286,7 @@ licenses:
|
|
286
286
|
- Nonstandard
|
287
287
|
metadata:
|
288
288
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
289
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
289
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.249.0
|
290
290
|
post_install_message:
|
291
291
|
rdoc_options: []
|
292
292
|
require_paths:
|