dependabot-dep 0.124.5 → 0.125.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a850249a2985b662e10827825d8ed9c998bc6029f25539c7ae6b6af7cf7b233e
-  data.tar.gz: a9e9b009014e4634c4ca7325929377df3169f34cbdd105e8e8445853a7a058ca
+  metadata.gz: cd1ce4f2523ca7c2d044f31a753b135aa01d09342e15fd820c05de61751bd42f
+  data.tar.gz: 9672a6059603f211b44c3929cf98edd6750c5f2c07c453c49480beeca7887c79
 SHA512:
-  metadata.gz: 34dab535787a8f371dc7f32b42c2f745df851930610aa6d7053575e2c4aa98070a39e35d864776bbf152840e56e8936b90300cc7e06a317415226d89da2c07da
-  data.tar.gz: '04871cefe974cfc85f7bdb1e2335d4aca7870de2e377d90cb0b0e5a10a08354899861ec5fd1557d8870bfd0f6e5243a8b00acea7d4db0ff2d417b6bc84df41dd'
+  metadata.gz: a4fb09b7e9ba5aedba8dd1f33aaa878516deb9962113143d21668580d90cbe1c03e22c167f59bbf76f7847323321972357eaf2df523cc45b2f49eae72955b965
+  data.tar.gz: '091d4cd5ea34abed4efc020a3b2449d750bf94326298511d1368fe895f087f28615a9dfc953ab6a7c764c618c12578f7aa1e4ffe40da83982d5180e63c50a1b9'

data/lib/dependabot/dep/file_parser.rb

@@ -76,9 +76,7 @@ module Dependabot
       end
 
       def requirement_from_declaration(declaration)
-        unless declaration.is_a?(Hash)
-          raise "Unexpected dependency declaration: #{declaration}"
-        end
+        raise "Unexpected dependency declaration: #{declaration}" unless declaration.is_a?(Hash)
 
         return if git_declaration?(declaration)
 

data/lib/dependabot/dep/file_updater/lockfile_updater.rb

@@ -137,9 +137,7 @@ module Dependabot
             parsed_file(lockfile).fetch("projects").
             find { |p| p["name"] == dep.name }
 
-          if original_details["source"]
-            details["source"] = original_details["source"]
-          end
+          details["source"] = original_details["source"] if original_details["source"]
 
           if original_details["version"]
             details["version"] = dep.version
@@ -162,9 +160,7 @@ module Dependabot
             overrides << override
           end
 
-          unless override["source"]
-            override["source"] = "gopkg.in/fsnotify/fsnotify.v1"
-          end
+          override["source"] = "gopkg.in/fsnotify/fsnotify.v1" unless override["source"]
 
           overrides
         end

data/lib/dependabot/dep/requirement.rb

@@ -91,9 +91,7 @@ module Dependabot
       def replace_wildcard_in_lower_bound(req_string)
         after_wildcard = false
 
-        if req_string.start_with?("~")
-          req_string = req_string.gsub(/(?:(?:\.|^)[xX*])(\.[xX*])+/, "")
-        end
+        req_string = req_string.gsub(/(?:(?:\.|^)[xX*])(\.[xX*])+/, "") if req_string.start_with?("~")
 
         req_string.split(".").
           map do |part|

data/lib/dependabot/dep/update_checker.rb

@@ -61,9 +61,7 @@ module Dependabot
 
       def requirements_update_strategy
         # If passed in as an option (in the base class) honour that option
-        if @requirements_update_strategy
-          return @requirements_update_strategy.to_sym
-        end
+        return @requirements_update_strategy.to_sym if @requirements_update_strategy
 
         # Otherwise, widen ranges for libraries and bump versions for apps
         library? ? :widen_ranges : :bump_versions
@@ -109,9 +107,7 @@ module Dependabot
 
         # Otherwise, if the gem isn't pinned, the latest version is just the
         # latest commit for the specified branch.
-        unless git_commit_checker.pinned?
-          return latest_resolvable_commit_with_unchanged_git_source
-        end
+        return latest_resolvable_commit_with_unchanged_git_source unless git_commit_checker.pinned?
 
         # If the dependency is pinned to a tag that looks like a version then
         # we want to update that tag.
@@ -129,17 +125,13 @@ module Dependabot
       def version_from_tag(tag)
         # To compare with the current version we either use the commit SHA
         # (if that's what the parser picked up) of the tag name.
-        if dependency.version&.match?(/^[0-9a-f]{40}$/)
-          return tag&.fetch(:commit_sha)
-        end
+        return tag&.fetch(:commit_sha) if dependency.version&.match?(/^[0-9a-f]{40}$/)
 
         tag&.fetch(:tag)
       end
 
       def latest_resolvable_commit_with_unchanged_git_source
-        if @commit_lookup_attempted
-          return @latest_resolvable_commit_with_unchanged_git_source
-        end
+        return @latest_resolvable_commit_with_unchanged_git_source if @commit_lookup_attempted
 
         @commit_lookup_attempted = true
         @latest_resolvable_commit_with_unchanged_git_source ||=
@@ -269,9 +261,7 @@ module Dependabot
       end
 
       def default_source
-        if modules_dependency?
-          return { type: "default", source: dependency.name }
-        end
+        return { type: "default", source: dependency.name } if modules_dependency?
 
         original_declaration =
           parsed_file(manifest).

data/lib/dependabot/dep/update_checker/file_preparer.rb

@@ -138,9 +138,7 @@ module Dependabot
             overrides << override
           end
 
-          unless override["source"]
-            override["source"] = "gopkg.in/fsnotify/fsnotify.v1"
-          end
+          override["source"] = "gopkg.in/fsnotify/fsnotify.v1" unless override["source"]
 
           parsed_manifest["override"] = overrides
           TomlRB.dump(parsed_manifest)

data/lib/dependabot/dep/update_checker/latest_version_finder.rb

@@ -33,9 +33,7 @@ module Dependabot
                     :ignored_versions
 
         def latest_release_tag_version
-          if @latest_release_tag_lookup_attempted
-            return @latest_release_tag_version
-          end
+          return @latest_release_tag_version if @latest_release_tag_lookup_attempted
 
           @latest_release_tag_lookup_attempted = true
 
@@ -90,9 +88,7 @@ module Dependabot
 
           # Otherwise, if the gem isn't pinned, the latest version is just the
           # latest commit for the specified branch.
-          unless git_commit_checker.pinned?
-            return git_commit_checker.head_commit_for_current_branch
-          end
+          return git_commit_checker.head_commit_for_current_branch unless git_commit_checker.pinned?
 
           # If the dependency is pinned to a tag that looks like a version
           # then we want to update that tag.
@@ -113,9 +109,7 @@ module Dependabot
         def version_from_tag(tag)
           # To compare with the current version we either use the commit SHA
           # (if that's what the parser picked up) of the tag name.
-          if dependency.version&.match?(/^[0-9a-f]{40}$/)
-            return tag&.fetch(:commit_sha)
-          end
+          return tag&.fetch(:commit_sha) if dependency.version&.match?(/^[0-9a-f]{40}$/)
 
           tag&.fetch(:tag)
         end

data/lib/dependabot/dep/update_checker/version_resolver.rb

@@ -22,9 +22,7 @@ module Dependabot
         end
 
         def latest_resolvable_version
-          if defined?(@latest_resolvable_version)
-            return @latest_resolvable_version
-          end
+          return @latest_resolvable_version if defined?(@latest_resolvable_version)
 
           @latest_resolvable_version = fetch_latest_resolvable_version
         end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-dep
 version: !ruby/object:Gem::Version
-  version: 0.124.5
+  version: 0.125.1
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-10-30 00:00:00.000000000 Z
+date: 2020-11-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.124.5
+        version: 0.125.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.124.5
+        version: 0.125.1
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement