dependabot-docker 0.117.7 → 0.118.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 8b9b7d8acf0264f5067802239fe3aaa609e6bacc4612ab234fbf23a7111ffb5b
4
- data.tar.gz: 7478de1aaef7bbccdbb35f695f2c58c996631bccc1164af2f09cd11c740dd2ae
3
+ metadata.gz: ed74673fb58c766a7b5f2cde16594f02b3044c6d02c83b4df41769877c0e54f2
4
+ data.tar.gz: a4e5fcfbec955602204183f78fb6011efb0591d050805be6e538f64f259933c8
5
5
  SHA512:
6
- metadata.gz: 7ff3e689125666f38afc77ebd591a1ed4c6f97d947e2cc73044b15c57034267974d60eb95ae4900d8a437a68043f1dbc7ad8b0160e7e4c36b21ef525bc6cb367
7
- data.tar.gz: afdbe36bc1bebb2015532dfeac1fd147e42b0f77954d7d42632a09ea07ac9c7c383b2364ede0a9834a0292da7cb2213e6430b1ba9f040ec125caade869cb4849
6
+ metadata.gz: '0487817221988db341ae801bd9d8e2f0a614887d91fd2ff6e606a28438080f0547de8902c7819e78efbb8f8ce6a73619036b4e3cb59bd22b07dcd0790ff8fc13'
7
+ data.tar.gz: c3f29b13d70911741b8d554d95897496ee0ec1c540b30614d05a127577cf5f8fb2ff61b9dd6d0adde063f1245d663165a8845a7ec7512262cdf8d77185a2a2b7
@@ -112,17 +112,14 @@ module Dependabot
112
112
  non_downgrade_tags = remove_version_downgrades(candidate_tags)
113
113
  candidate_tags = non_downgrade_tags if non_downgrade_tags.any?
114
114
 
115
- wants_prerelease = prerelease?(dependency.version)
116
- candidate_tags =
117
- candidate_tags.
118
- reject { |tag| prerelease?(tag) && !wants_prerelease }.
119
- reject do |tag|
120
- version = version_class.new(numeric_version_from(tag))
121
- ignore_reqs.any? { |r| r.satisfied_by?(version) }
122
- end
115
+ unless prerelease?(dependency.version)
116
+ candidate_tags =
117
+ candidate_tags.
118
+ reject { |tag| prerelease?(tag) }
119
+ end
123
120
 
124
121
  latest_tag =
125
- candidate_tags.
122
+ filter_ignored(candidate_tags).
126
123
  max_by do |tag|
127
124
  [version_class.new(numeric_version_from(tag)), tag.length]
128
125
  end
@@ -319,6 +316,20 @@ module Dependabot
319
316
  )
320
317
  end
321
318
 
319
+ def filter_ignored(candidate_tags)
320
+ filtered =
321
+ candidate_tags.
322
+ reject do |tag|
323
+ version = version_class.new(numeric_version_from(tag))
324
+ ignore_reqs.any? { |r| r.satisfied_by?(version) }
325
+ end
326
+ if @raise_on_ignored && filtered.empty? && candidate_tags.any?
327
+ raise AllVersionsIgnored
328
+ end
329
+
330
+ filtered
331
+ end
332
+
322
333
  def ignore_reqs
323
334
  # Note: we use Gem::Requirement here because ignore conditions will
324
335
  # be passed as Ruby ranges
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-docker
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.117.7
4
+ version: 0.118.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2020-04-20 00:00:00.000000000 Z
11
+ date: 2020-05-29 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.117.7
19
+ version: 0.118.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.117.7
26
+ version: 0.118.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -114,14 +114,14 @@ dependencies:
114
114
  requirements:
115
115
  - - "~>"
116
116
  - !ruby/object:Gem::Version
117
- version: 0.82.0
117
+ version: 0.83.0
118
118
  type: :development
119
119
  prerelease: false
120
120
  version_requirements: !ruby/object:Gem::Requirement
121
121
  requirements:
122
122
  - - "~>"
123
123
  - !ruby/object:Gem::Version
124
- version: 0.82.0
124
+ version: 0.83.0
125
125
  - !ruby/object:Gem::Dependency
126
126
  name: vcr
127
127
  requirement: !ruby/object:Gem::Requirement