dependabot-composer 0.239.0 → 0.240.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 8bc4696ba6e7198423b6beb9781cb0af1bad9fd020dd85686af7ebf3a82ca62e
|
|
4
|
+
data.tar.gz: 7fb74904f6ce723a5ccefeeeb7c19bbdf394be8fd85cdbf14aa2ae6ed96f7534
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 1b4c9e8fb979078e33fb5887fd9e09fd24e00f47ff89af6e9256427acbe03b964c2d6b234f021209e3e3588d8123c3020aa169280431325c16323562e1274b2a
|
|
7
|
+
data.tar.gz: 31d01dfb299ebfdd3fbd8f1657452c448c67ba7548945aa83288fcabb9ac547fd4764985f2761d88d0ce497f44cff364e57f69f976d69da6a8ca37acc9f2379a
|
|
@@ -205,6 +205,7 @@ module Dependabot
|
|
|
205
205
|
end
|
|
206
206
|
|
|
207
207
|
# rubocop:disable Metrics/PerceivedComplexity
|
|
208
|
+
# rubocop:disable Metrics/AbcSize
|
|
208
209
|
def updated_version_requirement_string
|
|
209
210
|
lower_bound =
|
|
210
211
|
if requirements_to_unlock == :none
|
|
@@ -218,7 +219,7 @@ module Dependabot
|
|
|
218
219
|
.select { |req_string| req_string.match?(VERSION_REGEX) }
|
|
219
220
|
.map { |req_string| req_string.match(VERSION_REGEX) }
|
|
220
221
|
.select { |version| requirement_valid?(">= #{version}") }
|
|
221
|
-
.max_by { |version| Composer::Version.new(version) }
|
|
222
|
+
.max_by { |version| Composer::Version.new(version.to_s) }
|
|
222
223
|
|
|
223
224
|
">= #{version_for_requirement || 0}"
|
|
224
225
|
end
|
|
@@ -239,6 +240,7 @@ module Dependabot
|
|
|
239
240
|
lower_bound + ", <= #{latest_allowable_version}"
|
|
240
241
|
end
|
|
241
242
|
# rubocop:enable Metrics/PerceivedComplexity
|
|
243
|
+
# rubocop:enable Metrics/AbcSize
|
|
242
244
|
|
|
243
245
|
# TODO: Extract error handling and share between the lockfile updater
|
|
244
246
|
#
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-composer
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.240.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2024-01-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.240.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.240.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -206,6 +206,20 @@ dependencies:
|
|
|
206
206
|
- - "~>"
|
|
207
207
|
- !ruby/object:Gem::Version
|
|
208
208
|
version: '3.18'
|
|
209
|
+
- !ruby/object:Gem::Dependency
|
|
210
|
+
name: webrick
|
|
211
|
+
requirement: !ruby/object:Gem::Requirement
|
|
212
|
+
requirements:
|
|
213
|
+
- - ">="
|
|
214
|
+
- !ruby/object:Gem::Version
|
|
215
|
+
version: '1.7'
|
|
216
|
+
type: :development
|
|
217
|
+
prerelease: false
|
|
218
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
219
|
+
requirements:
|
|
220
|
+
- - ">="
|
|
221
|
+
- !ruby/object:Gem::Version
|
|
222
|
+
version: '1.7'
|
|
209
223
|
description: Dependabot-Composer provides support for bumping PHP (composer) libraries
|
|
210
224
|
via Dependabot. If you want support for multiple package managers, you probably
|
|
211
225
|
want the meta-gem dependabot-omnibus.
|
|
@@ -258,7 +272,7 @@ licenses:
|
|
|
258
272
|
- Nonstandard
|
|
259
273
|
metadata:
|
|
260
274
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
261
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
275
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.240.0
|
|
262
276
|
post_install_message:
|
|
263
277
|
rdoc_options: []
|
|
264
278
|
require_paths:
|