dependabot-composer 0.305.0 → 0.306.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a9f190bfc3526c27b1479f3f3b1f50a5fdb3b7f17a3907483820b7faab37498f
-  data.tar.gz: c26f0572e781c0318bbad84e8c1cb0d7a0807fff008f0b9a01a8b7e34042f4ea
+  metadata.gz: 0ba29c7692c42a1236de82e5fb3ab8748f284b5381f2c389243ca846c04bbc94
+  data.tar.gz: 0a5aace9e512d0fbe3641763d03a42936e0e28df1f2f08fc04e842d48c2c44c2
 SHA512:
-  metadata.gz: 7a47b7f76f7ba77afb3ee230369342e36e4a385af6e687f7d7c40dbd4b3b982b7718ab3b64560e03da979f9189c774f21bfc0dbfa861ddc463bb42f2a0b0ee7f
-  data.tar.gz: 6903f13326de6df71bab27da8cdf1f77832a4aa328e4c7b2ba45d00fb03b735aaa4394dce42984dec62f3cc7ac92837434a9d3c0b306200b1bfdbb6ff705169c
+  metadata.gz: 6adb479e65085d626a0efc7b1dc4f53cbd1303729a261179db093760ea8ff863c347e4530ca7bd09bb1063480245be150b2903220e732c00f399d538628924b3
+  data.tar.gz: 1f0b0f8c17153be17b6ffb1e551f27c0e1b24cdd99a7c3dcb067ea801b80f903d9c0a843e10f36319981dc5732ab2dbd9363d3945a9fa36d4604741dc7782cdd

data/lib/dependabot/composer/update_checker/version_resolver.rb

@@ -37,8 +37,9 @@ module Dependabot
             (?<=require\s)php(?:\-[^\s\/]+)?\s.*?\s(?=->) # composer v2
           }x
         VERSION_REGEX = /[0-9]+(?:\.[A-Za-z0-9\-_]+)*/
-        SOURCE_TIMED_OUT_REGEX =
-          /The "(?<url>[^"]+packages\.json)".*timed out/
+
+        # Example Timeout error from Composer 2.7.7: "curl error 28 while downloading https://example.com:81/packages.json: Failed to connect to example.com port 81 after 9853 ms: Connection timed out" # rubocop:disable Layout/LineLength
+        SOURCE_TIMED_OUT_REGEX = %r{curl error 28 while downloading (?<url>https?://.+/packages\.json): }
 
         def initialize(credentials:, dependency:, dependency_files:,
                        requirements_to_unlock:, latest_allowable_version:)
@@ -263,8 +264,16 @@ module Dependabot
           # league/csv 9.21.0 requires php ^8.1.2 -> your php version 8.1
           if error.message.include?("your php version")
             tool_name = "PHP"
-            detected_version = error.message.match(/your php version \((.*?)\s*;/)[1]
-            supported_versions = error.message.match(/requires php\s(.*?)\s->/)[1]
+            # Match for the detected PHP version
+            detected_version_match =
+              error.message.match(/your php version \((\d+\.\d+\.\d+)\)/) ||
+              error.message.match(/your php version \((.*?)\s*;/)
+            detected_version = detected_version_match ? detected_version_match[1] : nil
+
+            # Match for the supported PHP versions
+            supported_versions_match = error.message.match(/requires php\s(.*?)\s->/)
+            supported_versions = supported_versions_match ? supported_versions_match[1] : nil
+
             raise ToolVersionNotSupported.new(tool_name, detected_version, supported_versions)
           end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-composer
 version: !ruby/object:Gem::Version
-  version: 0.305.0
+  version: 0.306.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-04-06 00:00:00.000000000 Z
+date: 2025-04-10 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.305.0
+        version: 0.306.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.305.0
+        version: 0.306.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -280,7 +280,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.305.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.306.0
 post_install_message:
 rdoc_options: []
 require_paths: