dependabot-core 0.76.9 → 0.76.10

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +5 -0
  3. data/lib/dependabot/metadata_finders/base/changelog_finder.rb +6 -5
  4. data/lib/dependabot/pull_request_creator/message_builder.rb +5 -2
  5. data/lib/dependabot/version.rb +1 -1
  6. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 8263437314badd3211ef9b05a237001109779594a212dd43647aaa4a3540f024
4
- data.tar.gz: dea9808860771764d44ecf99ad672a02534f35d1aab936bb80a7e6e46de180be
3
+ metadata.gz: ea5efa14e9bf750844ec81c5566726109c3300827886e530423cdb46dd163d76
4
+ data.tar.gz: 2649ba3489b8286fe121bb203f6afb012e4856e11911c758a0f6f6e70b066c99
5
5
  SHA512:
6
- metadata.gz: 3dc45b44c8463d94a5cb93dd78ab74daa46edcaf4299f3b072e8c37ee62daec83eccd02b3d0eaa64d1d11df91f11405797e0c31b855dfeb7af96c7e508e25269
7
- data.tar.gz: fa949117d4e16394d55b6027dfc72aa58321508ebf84828c946b810c273fe54a0321ee66552134c64bb3507a9a1199c92270b77b4335e833a88ea6fb6df861e2
6
+ metadata.gz: 3c15ebc60b7ed05e863cd331d8881473a3c8cd191c0e49b8837213231a122ff0fede2fe034b80d1ec16ef68d2baa31e15f2309bc1ff1b8e2c85c911f11797500
7
+ data.tar.gz: 4f04914e2406c1a48344e3b486c38b5c555eceb1406e5c99335b3961a600803d8d2ec71e2b812435fee08a4c33f3869d24d54cdcb12a94e9d0be445c03c5bbaa
data/CHANGELOG.md CHANGED
@@ -1,3 +1,8 @@
1
+ ## v0.76.10, 6 December 2018
2
+
3
+ - Cache commit tag lookup in changelog finder
4
+ - Sanitize relative links in release notes
5
+
1
6
  ## v0.76.9, 6 December 2018
2
7
 
3
8
  - Python: Handle bare version requirements in the RequirementUpdater
data/lib/dependabot/metadata_finders/base/changelog_finder.rb CHANGED
@@ -116,11 +116,12 @@ module Dependabot
116
116
  end
117
117
 
118
118
  def tag_for_new_version
119
- CommitsFinder.new(
120
- dependency: dependency,
121
- source: source,
122
- credentials: credentials
123
- ).new_tag
119
+ @tag_for_new_version ||=
120
+ CommitsFinder.new(
121
+ dependency: dependency,
122
+ source: source,
123
+ credentials: credentials
124
+ ).new_tag
124
125
  end
125
126
 
126
127
  def full_changelog_text
data/lib/dependabot/pull_request_creator/message_builder.rb CHANGED
@@ -403,6 +403,7 @@ module Dependabot
403
403
  end
404
404
  msg += "</details>"
405
405
  msg = link_issues(text: msg, dependency: dep)
406
+ msg = fix_relative_links(text: msg, base_url: releases_url(dep))
406
407
  sanitize_template_tags(msg)
407
408
  end
408
409
 
@@ -653,8 +654,10 @@ module Dependabot
653
654
  end
654
655
 
655
656
  def fix_relative_links(text:, base_url:)
656
- text.gsub(/\[.*?\]\(\..*?\)/) do |link|
657
- relative_path = link.match(/\((\..*?)\)/).captures.last
657
+ text.gsub(/\[.*?\]\([^)]+\)/) do |link|
658
+ next link if link.include?("://")
659
+
660
+ relative_path = link.match(/\((.*?)\)/).captures.last
658
661
  base = base_url.split("://").last.gsub(%r{[^/]*$}, "")
659
662
  path = File.join(base, relative_path)
660
663
  absolute_path =
data/lib/dependabot/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Dependabot
4
- VERSION = "0.76.9"
4
+ VERSION = "0.76.10"
5
5
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-core
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.76.9
4
+ version: 0.76.10
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot