dependabot-dep 0.90.6 → 0.90.7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/dep/file_updater.rb +2 -5
- data/lib/dependabot/dep/update_checker.rb +6 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: db50722142d304d00f8e723c09364dcdda41d517fb458404995c2bcc2b2a621a
|
|
4
|
+
data.tar.gz: ce27b479f6a04630ed1973b5c7f14ba43d147d86277d2b5b8a95e7a7d5491227
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: a6aca463327071ef9f6f66c842248105524028bed7edaeb68bc16ac56eccdddac0b75e08ad8cd1d63c6b9947726856136a4e2bc14848cc7c1002e007f8fa90b5
|
|
7
|
+
data.tar.gz: 04f727c54cbd291543656e7f267b87090e3213c569796ceb90520cccc8d8d5de8b8abb109273c5c5566874ece9a896fd1e764787298d411d3b737fe038df1213
|
|
@@ -13,9 +13,7 @@ module Dependabot
|
|
|
13
13
|
def self.updated_files_regex
|
|
14
14
|
[
|
|
15
15
|
/^Gopkg\.toml$/,
|
|
16
|
-
/^Gopkg\.lock
|
|
17
|
-
/^go\.mod$/,
|
|
18
|
-
/^go\.sum$/
|
|
16
|
+
/^Gopkg\.lock$/
|
|
19
17
|
]
|
|
20
18
|
end
|
|
21
19
|
|
|
@@ -44,9 +42,8 @@ module Dependabot
|
|
|
44
42
|
|
|
45
43
|
def check_required_files
|
|
46
44
|
return if get_original_file("Gopkg.toml")
|
|
47
|
-
return if get_original_file("go.mod")
|
|
48
45
|
|
|
49
|
-
raise "No Gopkg.toml
|
|
46
|
+
raise "No Gopkg.toml!"
|
|
50
47
|
end
|
|
51
48
|
|
|
52
49
|
def manifest
|
|
@@ -23,6 +23,9 @@ module Dependabot
|
|
|
23
23
|
end
|
|
24
24
|
|
|
25
25
|
def latest_resolvable_version
|
|
26
|
+
# We don't yet support updating indirect dependencies for dep
|
|
27
|
+
return dependency.version unless dependency.top_level?
|
|
28
|
+
|
|
26
29
|
@latest_resolvable_version ||=
|
|
27
30
|
if modules_dependency?
|
|
28
31
|
latest_version
|
|
@@ -78,7 +81,9 @@ module Dependabot
|
|
|
78
81
|
# since not all dep git dependencies have a SHA version (sometimes their
|
|
79
82
|
# version is the tag)
|
|
80
83
|
def existing_version_is_sha?
|
|
81
|
-
git_dependency?
|
|
84
|
+
return git_dependency? if dependency.top_level?
|
|
85
|
+
|
|
86
|
+
super
|
|
82
87
|
end
|
|
83
88
|
|
|
84
89
|
def library?
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-dep
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.90.
|
|
4
|
+
version: 0.90.7
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2019-01-
|
|
11
|
+
date: 2019-01-15 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-core
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.90.
|
|
19
|
+
version: 0.90.7
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.90.
|
|
26
|
+
version: 0.90.7
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|