dependabot-docker 0.226.0 → 0.227.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/docker/update_checker.rb +11 -10
- metadata +7 -7
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 81fe8e185f867be1dcd353520cacf3d605bf5f345b89f8707589fff41f8bb28d
|
4
|
+
data.tar.gz: b3b8b762d9b97cc90020a0e93eb25e3618159f6f5c5e5079723757b3176d0682
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 1fc30d0ccb0da9a0541d2acc4f19533ae9a602c96c55c68f3890efa24880243e58b7dba01bfb497d737921c95ae6c4b584921451b6cd161daaebac0dbe39cf31
|
7
|
+
data.tar.gz: 50b8e85fbd2244f1a26d04abbfcff010c5b5bcc0b6dc0755cd31a58d2cd60163c9a05f5f3e0650a0f24094d53ec6be5d685e419c0c106cbfa2426031ca225645
|
@@ -171,19 +171,14 @@ module Dependabot
|
|
171
171
|
end
|
172
172
|
end
|
173
173
|
|
174
|
-
def
|
174
|
+
def latest_tag
|
175
175
|
return unless latest_digest
|
176
176
|
|
177
|
-
|
178
|
-
tags_from_registry.
|
177
|
+
tags_from_registry.
|
179
178
|
select(&:canonical?).
|
180
179
|
sort_by { |t| comparable_version_from(t) }.
|
181
180
|
reverse.
|
182
181
|
find { |t| digest_of(t.name) == latest_digest }
|
183
|
-
|
184
|
-
return unless candidate_tag
|
185
|
-
|
186
|
-
comparable_version_from(candidate_tag)
|
187
182
|
end
|
188
183
|
|
189
184
|
def updated_digest
|
@@ -259,10 +254,16 @@ module Dependabot
|
|
259
254
|
return true if tag.looks_like_prerelease?
|
260
255
|
|
261
256
|
# Compare the numeric version against the version of the `latest` tag.
|
262
|
-
return false unless
|
263
|
-
|
257
|
+
return false unless latest_tag
|
258
|
+
|
259
|
+
if comparable_version_from(tag) > comparable_version_from(latest_tag)
|
260
|
+
Dependabot.logger.info "Tag with non-prerelease version name #{tag.name} detected as prerelease, " \
|
261
|
+
"because it sorts higher than #{latest_tag.name}."
|
264
262
|
|
265
|
-
|
263
|
+
true
|
264
|
+
else
|
265
|
+
false
|
266
|
+
end
|
266
267
|
end
|
267
268
|
|
268
269
|
def comparable_version_from(tag)
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-docker
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.227.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-08-
|
11
|
+
date: 2023-08-18 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.227.0
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.
|
26
|
+
version: 0.227.0
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: debug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -128,14 +128,14 @@ dependencies:
|
|
128
128
|
requirements:
|
129
129
|
- - "~>"
|
130
130
|
- !ruby/object:Gem::Version
|
131
|
-
version: 1.
|
131
|
+
version: 1.19.0
|
132
132
|
type: :development
|
133
133
|
prerelease: false
|
134
134
|
version_requirements: !ruby/object:Gem::Requirement
|
135
135
|
requirements:
|
136
136
|
- - "~>"
|
137
137
|
- !ruby/object:Gem::Version
|
138
|
-
version: 1.
|
138
|
+
version: 1.19.0
|
139
139
|
- !ruby/object:Gem::Dependency
|
140
140
|
name: stackprof
|
141
141
|
requirement: !ruby/object:Gem::Requirement
|
@@ -202,7 +202,7 @@ licenses:
|
|
202
202
|
- Nonstandard
|
203
203
|
metadata:
|
204
204
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
205
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
205
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.227.0
|
206
206
|
post_install_message:
|
207
207
|
rdoc_options: []
|
208
208
|
require_paths:
|