dependabot-composer 0.286.0 → 0.287.0

data/helpers/v1/phpstan.dist.neon

@@ -1,5 +0,0 @@
-parameters:
-	inferPrivatePropertyTypeFromConstructor: true
-	level: 5
-	paths:
-		- src

data/helpers/v1/src/DependabotInstallationManager.php

@@ -1,61 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-namespace Dependabot\Composer;
-
-use Composer\DependencyResolver\Operation\InstallOperation;
-use Composer\DependencyResolver\Operation\UninstallOperation;
-use Composer\DependencyResolver\Operation\UpdateOperation;
-use Composer\Installer\InstallationManager;
-use Composer\Package\PackageInterface;
-use Composer\Repository\RepositoryInterface;
-
-final class DependabotInstallationManager extends InstallationManager
-{
-    private array $installed = [];
-    private array $updated = [];
-    private array $uninstalled = [];
-
-    public function install(RepositoryInterface $repo, InstallOperation $operation): void
-    {
-        parent::install($repo, $operation);
-        $this->installed[] = $operation->getPackage();
-    }
-
-    public function update(RepositoryInterface $repo, UpdateOperation $operation): void
-    {
-        parent::update($repo, $operation);
-        $this->updated[] = [$operation->getInitialPackage(), $operation->getTargetPackage()];
-    }
-
-    public function uninstall(RepositoryInterface $repo, UninstallOperation $operation): void
-    {
-        parent::uninstall($repo, $operation);
-        $this->uninstalled[] = $operation->getPackage();
-    }
-
-    /**
-     * @return PackageInterface[]
-     */
-    public function getInstalledPackages(): array
-    {
-        return $this->installed;
-    }
-
-    /**
-     * @return PackageInterface[]
-     */
-    public function getUpdatedPackages(): array
-    {
-        return $this->updated;
-    }
-
-    /**
-     * @return PackageInterface[]
-     */
-    public function getUninstalledPackages(): array
-    {
-        return $this->uninstalled;
-    }
-}

data/helpers/v1/src/DependabotPluginManager.php

@@ -1,23 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-namespace Dependabot\Composer;
-
-use Composer\Package\PackageInterface;
-use Composer\Plugin\PluginManager;
-
-final class DependabotPluginManager extends PluginManager
-{
-    public function registerPackage(PackageInterface $package, $failOnMissingClasses = false): void
-    {
-        // This package does some setup for PHP_CodeSniffer, but errors out the
-        // install if Symfony isn't installed (which it won't be for a lockfile
-        // only install run). Safe to ignore
-        if (strpos($package->getName(), 'phpcodesniffer') !== false) {
-            return;
-        }
-
-        parent::registerPackage($package, $failOnMissingClasses);
-    }
-}

data/helpers/v1/src/ExceptionIO.php

@@ -1,25 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-namespace Dependabot\Composer;
-
-use Composer\IO\NullIO;
-
-final class ExceptionIO extends NullIO
-{
-    private bool $raise_next_error = false;
-
-    public function writeError($messages, $newline = true, $verbosity = self::NORMAL): void
-    {
-        if (is_array($messages)) {
-            return;
-        }
-        if ($this->raise_next_error) {
-            throw new \RuntimeException('Your requirements could not be resolved to an installable set of packages.' . $messages);
-        }
-        if (strpos($messages, 'Your requirements could not be resolved') !== false) {
-            $this->raise_next_error = true;
-        }
-    }
-}

data/helpers/v1/src/Hasher.php

@@ -1,28 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-namespace Dependabot\Composer;
-
-use Composer\Package\Locker;
-
-final class Hasher
-{
-    /**
-     * @throws \RuntimeException
-     */
-    public static function getContentHash(array $args): string
-    {
-        [$workingDirectory] = $args;
-
-        $config = $workingDirectory . '/composer.json';
-
-        $contents = file_get_contents($config);
-
-        if (!is_string($contents)) {
-            throw new \RuntimeException(sprintf('Failed to load contents of "%s".', $config));
-        }
-
-        return Locker::getContentHash($contents);
-    }
-}

data/helpers/v1/src/UpdateChecker.php

@@ -1,121 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-namespace Dependabot\Composer;
-
-use Composer\Factory;
-use Composer\Installer;
-use Composer\Package\PackageInterface;
-
-final class UpdateChecker
-{
-    public static function getLatestResolvableVersion(array $args): ?string
-    {
-        [$workingDirectory, $dependencyName, $gitCredentials, $registryCredentials] = $args;
-
-        $httpBasicCredentials = [];
-
-        foreach ($gitCredentials as $credentials) {
-            $httpBasicCredentials[$credentials['host']] = [
-                'username' => $credentials['username'],
-                'password' => $credentials['password'],
-            ];
-        }
-
-        foreach ($registryCredentials as $credentials) {
-            $httpBasicCredentials[$credentials['registry']] = [
-                'username' => $credentials['username'],
-                'password' => $credentials['password'],
-            ];
-        }
-
-        $io = new ExceptionIO();
-
-        $composer = Factory::create($io, $workingDirectory . '/composer.json');
-
-        $config = $composer->getConfig();
-
-        if (0 < count($httpBasicCredentials)) {
-            $config->merge([
-                'config' => [
-                    'http-basic' => $httpBasicCredentials,
-                ],
-            ]);
-
-            $io->loadConfiguration($config);
-        }
-
-        $installationManager = new DependabotInstallationManager();
-
-        $install = new Installer(
-            $io,
-            $config,
-            $composer->getPackage(),
-            $composer->getDownloadManager(),
-            $composer->getRepositoryManager(),
-            $composer->getLocker(),
-            $installationManager,
-            $composer->getEventDispatcher(),
-            $composer->getAutoloadGenerator()
-        );
-
-        // For all potential options, see UpdateCommand in composer
-        $install
-            ->setDryRun(true)
-            ->setUpdate(true)
-            ->setDevMode(true)
-            ->setUpdateAllowList([$dependencyName])
-            ->setAllowListTransitiveDependencies(true)
-            ->setExecuteOperations(false)
-            ->setDumpAutoloader(false)
-            ->setRunScripts(false)
-            ->setIgnorePlatformRequirements(false);
-
-        $install->run();
-
-        $installedPackages = $installationManager->getInstalledPackages();
-
-        $updatedPackage = current(array_filter($installedPackages, static function (PackageInterface $package) use ($dependencyName): bool {
-            return $package->getName() === $dependencyName;
-        }));
-
-        // We found the package in the list of updated packages. Return its version.
-        if ($updatedPackage instanceof PackageInterface) {
-            return ltrim($updatedPackage->getPrettyVersion(), 'v');
-        }
-
-        // We didn't find the package in the list of updated packages. Check if
-        // it was replaced by another package (in which case we can ignore).
-        foreach ($composer->getPackage()->getReplaces() as $link) {
-            if ($link->getTarget() === $dependencyName) {
-                return null;
-            }
-        }
-
-        foreach ($installedPackages as $package) {
-            foreach ($package->getReplaces() as $link) {
-                if ($link->getTarget() === $dependencyName) {
-                    return null;
-                }
-            }
-        }
-
-        // Similarly, check if the package was provided by any other package.
-        foreach ($composer->getPackage()->getProvides() as $link) {
-            if ($link->getTarget() === $dependencyName) {
-                return ltrim($link->getPrettyConstraint(), 'v');
-            }
-        }
-
-        foreach ($installedPackages as $package) {
-            foreach ($package->getProvides() as $link) {
-                if ($link->getTarget() === $dependencyName) {
-                    return ltrim($link->getPrettyConstraint(), 'v');
-                }
-            }
-        }
-
-        throw new \RuntimeException('Package not found in updated packages!');
-    }
-}

data/helpers/v1/src/Updater.php

@@ -1,98 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-namespace Dependabot\Composer;
-
-use Composer\Factory;
-use Composer\Installer;
-
-final class Updater
-{
-    /**
-     * @throws \RuntimeException
-     */
-    public static function update(array $args): array
-    {
-        [$workingDirectory, $dependencyName, $dependencyVersion, $gitCredentials, $registryCredentials] = $args;
-
-        // Change working directory to the one provided, this ensures that we
-        // install dependencies into the working dir, rather than a vendor folder
-        // in the root of the project
-        $originalDir = getcwd();
-
-        if (!is_string($originalDir)) {
-            throw new \RuntimeException('Failed determining the current working directory.');
-        }
-
-        chdir($workingDirectory);
-
-        $io = new ExceptionIO();
-        $composer = Factory::create($io);
-        $config = $composer->getConfig();
-        $httpBasicCredentials = [];
-
-        $pm = new DependabotPluginManager($io, $composer, null, false);
-        $composer->setPluginManager($pm);
-        $pm->loadInstalledPlugins();
-
-        foreach ($gitCredentials as &$cred) {
-            $httpBasicCredentials[$cred['host']] = [
-                'username' => $cred['username'],
-                'password' => $cred['password'],
-            ];
-        }
-
-        foreach ($registryCredentials as &$cred) {
-            $httpBasicCredentials[$cred['registry']] = [
-                'username' => $cred['username'],
-                'password' => $cred['password'],
-            ];
-        }
-
-        if ($httpBasicCredentials) {
-            $config->merge(
-                [
-                    'config' => [
-                        'http-basic' => $httpBasicCredentials,
-                    ],
-                ]
-            );
-            $io->loadConfiguration($config);
-        }
-
-        $install = new Installer(
-            $io,
-            $config,
-            $composer->getPackage(),
-            $composer->getDownloadManager(),
-            $composer->getRepositoryManager(),
-            $composer->getLocker(),
-            $composer->getInstallationManager(),
-            $composer->getEventDispatcher(),
-            $composer->getAutoloadGenerator()
-        );
-
-        // For all potential options, see UpdateCommand in composer
-        $install
-            ->setWriteLock(true)
-            ->setUpdate(true)
-            ->setDevMode(true)
-            ->setUpdateAllowList([$dependencyName])
-            ->setAllowListTransitiveDependencies(true)
-            ->setExecuteOperations(false)
-            ->setDumpAutoloader(false)
-            ->setRunScripts(false)
-            ->setIgnorePlatformRequirements(false);
-
-        $install->run();
-
-        $result = [
-            'composer.lock' => file_get_contents('composer.lock'),
-        ];
-
-        chdir($originalDir);
-
-        return $result;
-    }
-}