dependabot-composer 0.362.0 → 0.363.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4912f52cf35c23c4d91320bc34033e436f974b38b2b105dd36bb1ae6c4a9bff3
|
|
4
|
+
data.tar.gz: 40651b2f30eeefa3d0d01d1f2ff92e0aa1d04de9abe3393d2ba5c147ed4dbc05
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 2c6677bb9936585d269e801d6dd0fe1ee52253d41e5c6ed58c7aef3cf1513dad6e223ec7a002048dcdf5401ff4440a8e4c6acf65944c69bb0c5dc537e2232b06
|
|
7
|
+
data.tar.gz: 8f09f7219d12163072eeafcc538b45c2e9cd49c4efa30740b3da943b63d802509cde81e7ca957750874198de3011debc4783cacae5f7eccd8f4ce672447eb719
|
|
@@ -88,12 +88,12 @@ module Dependabot
|
|
|
88
88
|
.select { |file| file.type == "file" && file.name.end_with?(".zip") }
|
|
89
89
|
.map { |file| File.join(url, file.name) }
|
|
90
90
|
.map do |zip_file|
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
|
|
96
|
-
|
|
91
|
+
DependencyFile.new(
|
|
92
|
+
name: zip_file,
|
|
93
|
+
content: _fetch_file_content(zip_file),
|
|
94
|
+
directory: directory,
|
|
95
|
+
type: "file"
|
|
96
|
+
)
|
|
97
97
|
end
|
|
98
98
|
end.flatten,
|
|
99
99
|
T.nilable(T::Array[Dependabot::DependencyFile])
|
|
@@ -175,8 +175,8 @@ module Dependabot
|
|
|
175
175
|
missing_extensions =
|
|
176
176
|
error.message.scan(MISSING_EXPLICIT_PLATFORM_REQ_REGEX)
|
|
177
177
|
.map do |extension_string|
|
|
178
|
-
|
|
179
|
-
|
|
178
|
+
name, requirement = T.cast(extension_string, String).strip.split(" ", 2)
|
|
179
|
+
{ name: name, requirement: requirement }
|
|
180
180
|
end
|
|
181
181
|
raise MissingExtensions, missing_extensions
|
|
182
182
|
elsif error.message.match?(MISSING_IMPLICIT_PLATFORM_REQ_REGEX) &&
|
|
@@ -186,8 +186,8 @@ module Dependabot
|
|
|
186
186
|
missing_extensions =
|
|
187
187
|
error.message.scan(MISSING_IMPLICIT_PLATFORM_REQ_REGEX)
|
|
188
188
|
.map do |extension_string|
|
|
189
|
-
|
|
190
|
-
|
|
189
|
+
name, requirement = T.cast(extension_string, String).strip.split(" ", 2)
|
|
190
|
+
{ name: name, requirement: requirement }
|
|
191
191
|
end
|
|
192
192
|
|
|
193
193
|
missing_extension = missing_extensions.find do |hash|
|
|
@@ -261,8 +261,8 @@ module Dependabot
|
|
|
261
261
|
missing_extensions =
|
|
262
262
|
message.scan(MISSING_IMPLICIT_PLATFORM_REQ_REGEX)
|
|
263
263
|
.map do |extension_string|
|
|
264
|
-
|
|
265
|
-
|
|
264
|
+
name, requirement = T.cast(extension_string, String).strip.split(" ", 2)
|
|
265
|
+
{ name: name, requirement: requirement }
|
|
266
266
|
end
|
|
267
267
|
|
|
268
268
|
missing_extensions.any? do |hash|
|
|
@@ -321,7 +321,7 @@ module Dependabot
|
|
|
321
321
|
|
|
322
322
|
old_req =
|
|
323
323
|
dep.requirements.find { |r| r[:file] == PackageManager::MANIFEST_FILENAME }
|
|
324
|
-
|
|
324
|
+
&.fetch(:requirement)
|
|
325
325
|
|
|
326
326
|
# When updating a subdep there won't be an old requirement
|
|
327
327
|
next content unless old_req
|
|
@@ -389,24 +389,24 @@ module Dependabot
|
|
|
389
389
|
JSON.parse(T.must(lockfile.content))
|
|
390
390
|
.fetch(package_type, [])
|
|
391
391
|
.each do |details|
|
|
392
|
-
|
|
393
|
-
|
|
392
|
+
next unless details["extra"].is_a?(Hash)
|
|
393
|
+
next unless (patches = details.dig("extra", "patches_applied"))
|
|
394
394
|
|
|
395
|
-
|
|
396
|
-
|
|
397
|
-
|
|
398
|
-
|
|
399
|
-
|
|
395
|
+
updated_object = JSON.parse(content)
|
|
396
|
+
updated_object_package =
|
|
397
|
+
updated_object
|
|
398
|
+
.fetch(package_type, [])
|
|
399
|
+
.find { |d| d["name"] == details["name"] }
|
|
400
400
|
|
|
401
|
-
|
|
401
|
+
next unless updated_object_package
|
|
402
402
|
|
|
403
|
-
|
|
404
|
-
|
|
403
|
+
updated_object_package["extra"] ||= {}
|
|
404
|
+
updated_object_package["extra"]["patches_applied"] = patches
|
|
405
405
|
|
|
406
|
-
|
|
407
|
-
|
|
408
|
-
|
|
409
|
-
|
|
406
|
+
content =
|
|
407
|
+
JSON.pretty_generate(updated_object, indent: " ")
|
|
408
|
+
.gsub(/\[\n\n\s*\]/, "[]")
|
|
409
|
+
.gsub(/\}\z/, "}\n")
|
|
410
410
|
end
|
|
411
411
|
end
|
|
412
412
|
content
|
|
@@ -69,8 +69,8 @@ module Dependabot
|
|
|
69
69
|
def fetch_releases
|
|
70
70
|
available_version_details = registry_version_details
|
|
71
71
|
.select do |version_details|
|
|
72
|
-
|
|
73
|
-
|
|
72
|
+
version = version_details.fetch("version")
|
|
73
|
+
version && version_class.correct?(version.gsub(/^v/, ""))
|
|
74
74
|
end
|
|
75
75
|
|
|
76
76
|
releases = available_version_details.map do |version_details|
|
|
@@ -83,8 +83,8 @@ module Dependabot
|
|
|
83
83
|
def fetch
|
|
84
84
|
available_version_details = registry_version_details
|
|
85
85
|
.select do |version_details|
|
|
86
|
-
|
|
87
|
-
|
|
86
|
+
version = version_details.fetch("version")
|
|
87
|
+
version && version_class.correct?(version.gsub(/^v/, ""))
|
|
88
88
|
end
|
|
89
89
|
|
|
90
90
|
releases = available_version_details.map do |version_details|
|
|
@@ -282,11 +282,11 @@ module Dependabot
|
|
|
282
282
|
else
|
|
283
283
|
version_for_requirement =
|
|
284
284
|
dependency.requirements.filter_map { |r| r[:requirement] }
|
|
285
|
-
|
|
286
|
-
|
|
287
|
-
|
|
288
|
-
|
|
289
|
-
|
|
285
|
+
.reject { |req_string| req_string.start_with?("<") }
|
|
286
|
+
.select { |req_string| req_string.match?(VERSION_REGEX) }
|
|
287
|
+
.map { |req_string| req_string.match(VERSION_REGEX) }
|
|
288
|
+
.select { |version| requirement_valid?(">= #{version}") }
|
|
289
|
+
.max_by { |version| Composer::Version.new(version.to_s) }
|
|
290
290
|
|
|
291
291
|
">= #{version_for_requirement || 0}"
|
|
292
292
|
end
|
|
@@ -334,12 +334,12 @@ module Dependabot
|
|
|
334
334
|
missing_extensions =
|
|
335
335
|
error.message.scan(MISSING_EXPLICIT_PLATFORM_REQ_REGEX)
|
|
336
336
|
.map do |extension_string|
|
|
337
|
-
|
|
338
|
-
|
|
339
|
-
|
|
340
|
-
|
|
341
|
-
|
|
342
|
-
|
|
337
|
+
name, requirement = if extension_string.is_a?(Array)
|
|
338
|
+
[extension_string.first.to_s.strip, extension_string.last.to_s]
|
|
339
|
+
else
|
|
340
|
+
extension_string.to_s.strip.split(" ", 2)
|
|
341
|
+
end
|
|
342
|
+
{ name: name, requirement: requirement }
|
|
343
343
|
end
|
|
344
344
|
raise MissingExtensions, missing_extensions
|
|
345
345
|
elsif error.message.match?(MISSING_IMPLICIT_PLATFORM_REQ_REGEX) &&
|
|
@@ -349,8 +349,8 @@ module Dependabot
|
|
|
349
349
|
missing_extensions =
|
|
350
350
|
error.message.scan(MISSING_IMPLICIT_PLATFORM_REQ_REGEX)
|
|
351
351
|
.map do |extension_string|
|
|
352
|
-
|
|
353
|
-
|
|
352
|
+
name, requirement = T.cast(extension_string, String).strip.split(" ", 2)
|
|
353
|
+
{ name: name, requirement: requirement }
|
|
354
354
|
end
|
|
355
355
|
|
|
356
356
|
missing_extension = missing_extensions.find do |hash|
|
|
@@ -442,8 +442,8 @@ module Dependabot
|
|
|
442
442
|
missing_extensions =
|
|
443
443
|
message.scan(MISSING_IMPLICIT_PLATFORM_REQ_REGEX)
|
|
444
444
|
.map do |extension_string|
|
|
445
|
-
|
|
446
|
-
|
|
445
|
+
name, requirement = T.cast(extension_string, String).strip.split(" ", 2)
|
|
446
|
+
{ name: name, requirement: requirement }
|
|
447
447
|
end
|
|
448
448
|
|
|
449
449
|
missing_extensions.any? do |hash|
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-composer
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.363.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -15,14 +15,14 @@ dependencies:
|
|
|
15
15
|
requirements:
|
|
16
16
|
- - '='
|
|
17
17
|
- !ruby/object:Gem::Version
|
|
18
|
-
version: 0.
|
|
18
|
+
version: 0.363.0
|
|
19
19
|
type: :runtime
|
|
20
20
|
prerelease: false
|
|
21
21
|
version_requirements: !ruby/object:Gem::Requirement
|
|
22
22
|
requirements:
|
|
23
23
|
- - '='
|
|
24
24
|
- !ruby/object:Gem::Version
|
|
25
|
-
version: 0.
|
|
25
|
+
version: 0.363.0
|
|
26
26
|
- !ruby/object:Gem::Dependency
|
|
27
27
|
name: debug
|
|
28
28
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -85,14 +85,14 @@ dependencies:
|
|
|
85
85
|
requirements:
|
|
86
86
|
- - "~>"
|
|
87
87
|
- !ruby/object:Gem::Version
|
|
88
|
-
version: '
|
|
88
|
+
version: '2.0'
|
|
89
89
|
type: :development
|
|
90
90
|
prerelease: false
|
|
91
91
|
version_requirements: !ruby/object:Gem::Requirement
|
|
92
92
|
requirements:
|
|
93
93
|
- - "~>"
|
|
94
94
|
- !ruby/object:Gem::Version
|
|
95
|
-
version: '
|
|
95
|
+
version: '2.0'
|
|
96
96
|
- !ruby/object:Gem::Dependency
|
|
97
97
|
name: rspec-sorbet
|
|
98
98
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -276,7 +276,7 @@ licenses:
|
|
|
276
276
|
- MIT
|
|
277
277
|
metadata:
|
|
278
278
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
279
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
279
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.363.0
|
|
280
280
|
rdoc_options: []
|
|
281
281
|
require_paths:
|
|
282
282
|
- lib
|