dependabot-docker 0.226.0 → 0.227.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b32a9aefbcd623b4e2bf553b4aec6676f758f3d27f50f67f99156cc32d8206a0
4
- data.tar.gz: f710312b8e2bed67dafabcea2b601be717292fab22301613e447a73153465703
3
+ metadata.gz: 81fe8e185f867be1dcd353520cacf3d605bf5f345b89f8707589fff41f8bb28d
4
+ data.tar.gz: b3b8b762d9b97cc90020a0e93eb25e3618159f6f5c5e5079723757b3176d0682
5
5
  SHA512:
6
- metadata.gz: aa265e080fb4afd058721b5ac0bada493708327f2b5d10d35e0652b15ef0ae3b560ab890fbdd84a20ddf0a8abc7aff34d4bab56423a4b157553dc363ebed285e
7
- data.tar.gz: 7f15e687d41a354f1a36b1e22ec899354d4f16edae0ae909e0ab2f105c57aaf3e59de48349b7005a92a13ded2cfd48ab8596434789001c62e345163d227e3894
6
+ metadata.gz: 1fc30d0ccb0da9a0541d2acc4f19533ae9a602c96c55c68f3890efa24880243e58b7dba01bfb497d737921c95ae6c4b584921451b6cd161daaebac0dbe39cf31
7
+ data.tar.gz: 50b8e85fbd2244f1a26d04abbfcff010c5b5bcc0b6dc0755cd31a58d2cd60163c9a05f5f3e0650a0f24094d53ec6be5d685e419c0c106cbfa2426031ca225645
@@ -171,19 +171,14 @@ module Dependabot
171
171
  end
172
172
  end
173
173
 
174
- def version_of_latest_tag
174
+ def latest_tag
175
175
  return unless latest_digest
176
176
 
177
- candidate_tag =
178
- tags_from_registry.
177
+ tags_from_registry.
179
178
  select(&:canonical?).
180
179
  sort_by { |t| comparable_version_from(t) }.
181
180
  reverse.
182
181
  find { |t| digest_of(t.name) == latest_digest }
183
-
184
- return unless candidate_tag
185
-
186
- comparable_version_from(candidate_tag)
187
182
  end
188
183
 
189
184
  def updated_digest
@@ -259,10 +254,16 @@ module Dependabot
259
254
  return true if tag.looks_like_prerelease?
260
255
 
261
256
  # Compare the numeric version against the version of the `latest` tag.
262
- return false unless latest_digest
263
- return false unless version_of_latest_tag
257
+ return false unless latest_tag
258
+
259
+ if comparable_version_from(tag) > comparable_version_from(latest_tag)
260
+ Dependabot.logger.info "Tag with non-prerelease version name #{tag.name} detected as prerelease, " \
261
+ "because it sorts higher than #{latest_tag.name}."
264
262
 
265
- comparable_version_from(tag) > version_of_latest_tag
263
+ true
264
+ else
265
+ false
266
+ end
266
267
  end
267
268
 
268
269
  def comparable_version_from(tag)
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-docker
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.226.0
4
+ version: 0.227.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-08-11 00:00:00.000000000 Z
11
+ date: 2023-08-18 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.226.0
19
+ version: 0.227.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.226.0
26
+ version: 0.227.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -128,14 +128,14 @@ dependencies:
128
128
  requirements:
129
129
  - - "~>"
130
130
  - !ruby/object:Gem::Version
131
- version: 1.18.0
131
+ version: 1.19.0
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
- version: 1.18.0
138
+ version: 1.19.0
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: stackprof
141
141
  requirement: !ruby/object:Gem::Requirement
@@ -202,7 +202,7 @@ licenses:
202
202
  - Nonstandard
203
203
  metadata:
204
204
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
205
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.226.0
205
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.227.0
206
206
  post_install_message:
207
207
  rdoc_options: []
208
208
  require_paths: