dependabot-docker 0.226.0 → 0.227.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b32a9aefbcd623b4e2bf553b4aec6676f758f3d27f50f67f99156cc32d8206a0
4
- data.tar.gz: f710312b8e2bed67dafabcea2b601be717292fab22301613e447a73153465703
3
+ metadata.gz: 81fe8e185f867be1dcd353520cacf3d605bf5f345b89f8707589fff41f8bb28d
4
+ data.tar.gz: b3b8b762d9b97cc90020a0e93eb25e3618159f6f5c5e5079723757b3176d0682
5
5
  SHA512:
6
- metadata.gz: aa265e080fb4afd058721b5ac0bada493708327f2b5d10d35e0652b15ef0ae3b560ab890fbdd84a20ddf0a8abc7aff34d4bab56423a4b157553dc363ebed285e
7
- data.tar.gz: 7f15e687d41a354f1a36b1e22ec899354d4f16edae0ae909e0ab2f105c57aaf3e59de48349b7005a92a13ded2cfd48ab8596434789001c62e345163d227e3894
6
+ metadata.gz: 1fc30d0ccb0da9a0541d2acc4f19533ae9a602c96c55c68f3890efa24880243e58b7dba01bfb497d737921c95ae6c4b584921451b6cd161daaebac0dbe39cf31
7
+ data.tar.gz: 50b8e85fbd2244f1a26d04abbfcff010c5b5bcc0b6dc0755cd31a58d2cd60163c9a05f5f3e0650a0f24094d53ec6be5d685e419c0c106cbfa2426031ca225645
@@ -171,19 +171,14 @@ module Dependabot
171
171
  end
172
172
  end
173
173
 
174
- def version_of_latest_tag
174
+ def latest_tag
175
175
  return unless latest_digest
176
176
 
177
- candidate_tag =
178
- tags_from_registry.
177
+ tags_from_registry.
179
178
  select(&:canonical?).
180
179
  sort_by { |t| comparable_version_from(t) }.
181
180
  reverse.
182
181
  find { |t| digest_of(t.name) == latest_digest }
183
-
184
- return unless candidate_tag
185
-
186
- comparable_version_from(candidate_tag)
187
182
  end
188
183
 
189
184
  def updated_digest
@@ -259,10 +254,16 @@ module Dependabot
259
254
  return true if tag.looks_like_prerelease?
260
255
 
261
256
  # Compare the numeric version against the version of the `latest` tag.
262
- return false unless latest_digest
263
- return false unless version_of_latest_tag
257
+ return false unless latest_tag
258
+
259
+ if comparable_version_from(tag) > comparable_version_from(latest_tag)
260
+ Dependabot.logger.info "Tag with non-prerelease version name #{tag.name} detected as prerelease, " \
261
+ "because it sorts higher than #{latest_tag.name}."
264
262
 
265
- comparable_version_from(tag) > version_of_latest_tag
263
+ true
264
+ else
265
+ false
266
+ end
266
267
  end
267
268
 
268
269
  def comparable_version_from(tag)
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-docker
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.226.0
4
+ version: 0.227.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-08-11 00:00:00.000000000 Z
11
+ date: 2023-08-18 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.226.0
19
+ version: 0.227.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.226.0
26
+ version: 0.227.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -128,14 +128,14 @@ dependencies:
128
128
  requirements:
129
129
  - - "~>"
130
130
  - !ruby/object:Gem::Version
131
- version: 1.18.0
131
+ version: 1.19.0
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
- version: 1.18.0
138
+ version: 1.19.0
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: stackprof
141
141
  requirement: !ruby/object:Gem::Requirement
@@ -202,7 +202,7 @@ licenses:
202
202
  - Nonstandard
203
203
  metadata:
204
204
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
205
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.226.0
205
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.227.0
206
206
  post_install_message:
207
207
  rdoc_options: []
208
208
  require_paths: