dependabot-dep 0.124.6 → 0.125.2

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 28c64d66e63d6c9bf95c11ad67cf30d0c1680278a567f8a69503b77106c89779
4
- data.tar.gz: f7ab8e14eb0421cb23bb836bca17e54e5f33afb99197083f3b2bc9c2c09fa627
3
+ metadata.gz: adc03f9f662cce77104c35a05ffe16d5ba9e26bbe72f0ba526553c282d80dab0
4
+ data.tar.gz: 6d6eb9bc9f2c6fba3e9880ba6dd1630f6f764e4a8e38704f6fabae995c124e75
5
5
  SHA512:
6
- metadata.gz: 62f1bf81847aa355204ef3c07a4d20580ed931d31a8eace291b7028b4c5e349a27e380dcbdde29591030195507c61d7cafd24b10378106deaf769fdf3b2d3e45
7
- data.tar.gz: 6a446d1b9e7d1ef04f73a2117207a77f49bc75ac2dd4521c00eff26d1d117f3a4a76b5b4b7bc5ee21f43868a52b60b19b40fe90b83ac3db80835894e12b429da
6
+ metadata.gz: 67d7d43b41531b120e50abc495ebcb3835e470dbcb9ce1d1191f2a781abf30a6ec2ff40058f7a11b24d24d332d1f468845ca82a1781763c23d7e77e136b28a94
7
+ data.tar.gz: a1db3a2973a18087f0d45e93cc6a2f2484eae97488426012658f0cf9f158a634f8fe4a7d70d18ffbe8c14d8679c2a897518c18e11659d73e9dabeb339c7bda1d
@@ -76,9 +76,7 @@ module Dependabot
76
76
  end
77
77
 
78
78
  def requirement_from_declaration(declaration)
79
- unless declaration.is_a?(Hash)
80
- raise "Unexpected dependency declaration: #{declaration}"
81
- end
79
+ raise "Unexpected dependency declaration: #{declaration}" unless declaration.is_a?(Hash)
82
80
 
83
81
  return if git_declaration?(declaration)
84
82
 
@@ -137,9 +137,7 @@ module Dependabot
137
137
  parsed_file(lockfile).fetch("projects").
138
138
  find { |p| p["name"] == dep.name }
139
139
 
140
- if original_details["source"]
141
- details["source"] = original_details["source"]
142
- end
140
+ details["source"] = original_details["source"] if original_details["source"]
143
141
 
144
142
  if original_details["version"]
145
143
  details["version"] = dep.version
@@ -162,9 +160,7 @@ module Dependabot
162
160
  overrides << override
163
161
  end
164
162
 
165
- unless override["source"]
166
- override["source"] = "gopkg.in/fsnotify/fsnotify.v1"
167
- end
163
+ override["source"] = "gopkg.in/fsnotify/fsnotify.v1" unless override["source"]
168
164
 
169
165
  overrides
170
166
  end
@@ -91,9 +91,7 @@ module Dependabot
91
91
  def replace_wildcard_in_lower_bound(req_string)
92
92
  after_wildcard = false
93
93
 
94
- if req_string.start_with?("~")
95
- req_string = req_string.gsub(/(?:(?:\.|^)[xX*])(\.[xX*])+/, "")
96
- end
94
+ req_string = req_string.gsub(/(?:(?:\.|^)[xX*])(\.[xX*])+/, "") if req_string.start_with?("~")
97
95
 
98
96
  req_string.split(".").
99
97
  map do |part|
@@ -61,9 +61,7 @@ module Dependabot
61
61
 
62
62
  def requirements_update_strategy
63
63
  # If passed in as an option (in the base class) honour that option
64
- if @requirements_update_strategy
65
- return @requirements_update_strategy.to_sym
66
- end
64
+ return @requirements_update_strategy.to_sym if @requirements_update_strategy
67
65
 
68
66
  # Otherwise, widen ranges for libraries and bump versions for apps
69
67
  library? ? :widen_ranges : :bump_versions
@@ -109,9 +107,7 @@ module Dependabot
109
107
 
110
108
  # Otherwise, if the gem isn't pinned, the latest version is just the
111
109
  # latest commit for the specified branch.
112
- unless git_commit_checker.pinned?
113
- return latest_resolvable_commit_with_unchanged_git_source
114
- end
110
+ return latest_resolvable_commit_with_unchanged_git_source unless git_commit_checker.pinned?
115
111
 
116
112
  # If the dependency is pinned to a tag that looks like a version then
117
113
  # we want to update that tag.
@@ -129,17 +125,13 @@ module Dependabot
129
125
  def version_from_tag(tag)
130
126
  # To compare with the current version we either use the commit SHA
131
127
  # (if that's what the parser picked up) of the tag name.
132
- if dependency.version&.match?(/^[0-9a-f]{40}$/)
133
- return tag&.fetch(:commit_sha)
134
- end
128
+ return tag&.fetch(:commit_sha) if dependency.version&.match?(/^[0-9a-f]{40}$/)
135
129
 
136
130
  tag&.fetch(:tag)
137
131
  end
138
132
 
139
133
  def latest_resolvable_commit_with_unchanged_git_source
140
- if @commit_lookup_attempted
141
- return @latest_resolvable_commit_with_unchanged_git_source
142
- end
134
+ return @latest_resolvable_commit_with_unchanged_git_source if @commit_lookup_attempted
143
135
 
144
136
  @commit_lookup_attempted = true
145
137
  @latest_resolvable_commit_with_unchanged_git_source ||=
@@ -269,9 +261,7 @@ module Dependabot
269
261
  end
270
262
 
271
263
  def default_source
272
- if modules_dependency?
273
- return { type: "default", source: dependency.name }
274
- end
264
+ return { type: "default", source: dependency.name } if modules_dependency?
275
265
 
276
266
  original_declaration =
277
267
  parsed_file(manifest).
@@ -138,9 +138,7 @@ module Dependabot
138
138
  overrides << override
139
139
  end
140
140
 
141
- unless override["source"]
142
- override["source"] = "gopkg.in/fsnotify/fsnotify.v1"
143
- end
141
+ override["source"] = "gopkg.in/fsnotify/fsnotify.v1" unless override["source"]
144
142
 
145
143
  parsed_manifest["override"] = overrides
146
144
  TomlRB.dump(parsed_manifest)
@@ -33,9 +33,7 @@ module Dependabot
33
33
  :ignored_versions
34
34
 
35
35
  def latest_release_tag_version
36
- if @latest_release_tag_lookup_attempted
37
- return @latest_release_tag_version
38
- end
36
+ return @latest_release_tag_version if @latest_release_tag_lookup_attempted
39
37
 
40
38
  @latest_release_tag_lookup_attempted = true
41
39
 
@@ -90,9 +88,7 @@ module Dependabot
90
88
 
91
89
  # Otherwise, if the gem isn't pinned, the latest version is just the
92
90
  # latest commit for the specified branch.
93
- unless git_commit_checker.pinned?
94
- return git_commit_checker.head_commit_for_current_branch
95
- end
91
+ return git_commit_checker.head_commit_for_current_branch unless git_commit_checker.pinned?
96
92
 
97
93
  # If the dependency is pinned to a tag that looks like a version
98
94
  # then we want to update that tag.
@@ -113,9 +109,7 @@ module Dependabot
113
109
  def version_from_tag(tag)
114
110
  # To compare with the current version we either use the commit SHA
115
111
  # (if that's what the parser picked up) of the tag name.
116
- if dependency.version&.match?(/^[0-9a-f]{40}$/)
117
- return tag&.fetch(:commit_sha)
118
- end
112
+ return tag&.fetch(:commit_sha) if dependency.version&.match?(/^[0-9a-f]{40}$/)
119
113
 
120
114
  tag&.fetch(:tag)
121
115
  end
@@ -22,9 +22,7 @@ module Dependabot
22
22
  end
23
23
 
24
24
  def latest_resolvable_version
25
- if defined?(@latest_resolvable_version)
26
- return @latest_resolvable_version
27
- end
25
+ return @latest_resolvable_version if defined?(@latest_resolvable_version)
28
26
 
29
27
  @latest_resolvable_version = fetch_latest_resolvable_version
30
28
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-dep
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.124.6
4
+ version: 0.125.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2020-11-02 00:00:00.000000000 Z
11
+ date: 2020-11-11 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.124.6
19
+ version: 0.125.2
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.124.6
26
+ version: 0.125.2
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement