dependabot-docker 0.229.0 → 0.231.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cf873782afa7b0896687c791e6450fbd5fea45849ff9cb749c8bbc7912c9889f
-  data.tar.gz: 85862a643bd1aac81930294812969bd54672700931be4be536be954ae93cc461
+  metadata.gz: cb3d1b7715971fb63f8b1b713987da24f5c2aebbdbdcb216657146292e2f5146
+  data.tar.gz: f5b3ff175503a7ddbcbee37af8a2b387dc4e60c91689f80af04f25d92d1494dc
 SHA512:
-  metadata.gz: 69925228082d2797922875b257145735201290912ca9baf194025d199d2000bc8e6394bf48114a77a0f4cc729949882f6414ba81988f3591f2904f3b53c8d43d
-  data.tar.gz: c0dd603a55c33690f7517f34d0c512996585fbca7b62bea0511c8b122d9da249bfa1557022032961e217a113d94ca3877153978b7aaff3226f8080d0118dc7d7
+  metadata.gz: e23120d2344c090f4dee22bc8086d8021365296caf864ab1fd8477326839353e77f6b2da5ce4bb0932a4ef5fdeac894ba2ee58fef0e7ccf121bb6e48a6119134
+  data.tar.gz: 3ddb555334b80e5d34491036070645abcb8ece0ae4a6149943d56b0020b44e767eeabf85fab2882dfc0aed29880b5c74c4d1477ac093b990439075161aae6ddc

data/lib/dependabot/docker/file_fetcher.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/docker/utils/helpers"
@@ -49,9 +50,9 @@ module Dependabot
 
       def dockerfiles
         @dockerfiles ||=
-          repo_contents(raise_errors: false).
-          select { |f| f.type == "file" && f.name.match?(DOCKER_REGEXP) }.
-          map { |f| fetch_file_from_host(f.name) }
+          repo_contents(raise_errors: false)
+          .select { |f| f.type == "file" && f.name.match?(DOCKER_REGEXP) }
+          .map { |f| fetch_file_from_host(f.name) }
       end
 
       def correctly_encoded_dockerfiles
@@ -64,9 +65,9 @@ module Dependabot
 
       def yamlfiles
         @yamlfiles ||=
-          repo_contents(raise_errors: false).
-          select { |f| f.type == "file" && f.name.match?(YAML_REGEXP) }.
-          map { |f| fetch_file_from_host(f.name) }
+          repo_contents(raise_errors: false)
+          .select { |f| f.type == "file" && f.name.match?(YAML_REGEXP) }
+          .map { |f| fetch_file_from_host(f.name) }
       end
 
       def likely_kubernetes_resource?(resource)

data/lib/dependabot/docker/file_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "docker_registry2"

data/lib/dependabot/docker/file_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/docker/utils/helpers"
@@ -85,9 +86,9 @@ module Dependabot
         old_declaration_regex = /^#{FROM_REGEX}\s+.*@sha256:#{old_digest}/
 
         previous_content.gsub(old_declaration_regex) do |old_dec|
-          old_dec.
-            gsub("@sha256:#{old_digest}", "@sha256:#{new_digest}").
-            gsub(":#{old_tag}", ":#{new_tag}")
+          old_dec
+            .gsub("@sha256:#{old_digest}", "@sha256:#{new_digest}")
+            .gsub(":#{old_tag}", ":#{new_tag}")
         end
       end
 
@@ -116,13 +117,13 @@ module Dependabot
       end
 
       def new_tags(file)
-        requirements(file).
-          map { |r| r.fetch(:source)[:tag] }
+        requirements(file)
+          .map { |r| r.fetch(:source)[:tag] }
       end
 
       def old_tags(file)
-        previous_requirements(file).
-          map { |r| r.fetch(:source)[:tag] }
+        previous_requirements(file)
+          .map { |r| r.fetch(:source)[:tag] }
       end
 
       def private_registry_url(source)
@@ -207,13 +208,13 @@ module Dependabot
       end
 
       def requirements(file)
-        dependency.requirements.
-          select { |r| r[:file] == file.name }
+        dependency.requirements
+                  .select { |r| r[:file] == file.name }
       end
 
       def previous_requirements(file)
-        dependency.previous_requirements.
-          select { |r| r[:file] == file.name }
+        dependency.previous_requirements
+                  .select { |r| r[:file] == file.name }
       end
     end
   end

data/lib/dependabot/docker/metadata_finder.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/metadata_finders"
@@ -30,5 +31,5 @@ module Dependabot
   end
 end
 
-Dependabot::MetadataFinders.
-  register("docker", Dependabot::Docker::MetadataFinder)
+Dependabot::MetadataFinders
+  .register("docker", Dependabot::Docker::MetadataFinder)

data/lib/dependabot/docker/requirement.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/utils"
@@ -30,5 +31,5 @@ module Dependabot
   end
 end
 
-Dependabot::Utils.
-  register_requirement_class("docker", Dependabot::Docker::Requirement)
+Dependabot::Utils
+  .register_requirement_class("docker", Dependabot::Docker::Requirement)

data/lib/dependabot/docker/tag.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/docker/file_parser"

data/lib/dependabot/docker/update_checker.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "docker_registry2"
@@ -174,11 +175,11 @@ module Dependabot
       def latest_tag
         return unless latest_digest
 
-        tags_from_registry.
-          select(&:canonical?).
-          sort_by { |t| comparable_version_from(t) }.
-          reverse.
-          find { |t| digest_of(t.name) == latest_digest }
+        tags_from_registry
+          .select(&:canonical?)
+          .sort_by { |t| comparable_version_from(t) }
+          .reverse
+          .find { |t| digest_of(t.name) == latest_digest }
       end
 
       def updated_digest
@@ -324,8 +325,8 @@ module Dependabot
 
       def filter_ignored(candidate_tags)
         filtered =
-          candidate_tags.
-          reject do |tag|
+          candidate_tags
+          .reject do |tag|
             version = comparable_version_from(tag)
             ignore_requirements.any? { |r| r.satisfied_by?(version) }
           end

data/lib/dependabot/docker/utils/credentials_finder.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "aws-sdk-ecr"
@@ -18,9 +19,9 @@ module Dependabot
 
         def credentials_for_registry(registry_hostname)
           registry_details =
-            credentials.
-            select { |cred| cred["type"] == "docker_registry" }.
-            find { |cred| cred.fetch("registry") == registry_hostname }
+            credentials
+            .select { |cred| cred["type"] == "docker_registry" }
+            .find { |cred| cred.fetch("registry") == registry_hostname }
           return unless registry_details
           return registry_details unless registry_hostname.match?(AWS_ECR_URL)
 

data/lib/dependabot/docker/utils/helpers.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/docker/version.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/version"
@@ -14,16 +15,11 @@ module Dependabot
       def initialize(version)
         release_part, update_part = version.split("_", 2)
 
-        @release_part = Dependabot::Version.new(release_part.tr("-", "."))
+        @release_part = Dependabot::Version.new(release_part.sub("v", "").tr("-", "."))
 
         @update_part = Dependabot::Version.new(update_part&.start_with?(/[0-9]/) ? update_part : 0)
-      end
 
-      def self.correct?(version)
-        super(new(version).to_semver)
-      rescue ArgumentError
-        # if we can't instantiate a version, it can't be correct
-        false
+        super(@release_part)
       end
 
       def to_semver
@@ -47,5 +43,5 @@ module Dependabot
   end
 end
 
-Dependabot::Utils.
-  register_version_class("docker", Dependabot::Docker::Version)
+Dependabot::Utils
+  .register_version_class("docker", Dependabot::Docker::Version)

data/lib/dependabot/docker.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # These all need to be required so the various classes can be registered in a
@@ -11,8 +12,8 @@ require "dependabot/docker/requirement"
 require "dependabot/docker/version"
 
 require "dependabot/pull_request_creator/labeler"
-Dependabot::PullRequestCreator::Labeler.
-  register_label_details("docker", name: "docker", colour: "21ceff")
+Dependabot::PullRequestCreator::Labeler
+  .register_label_details("docker", name: "docker", colour: "21ceff")
 
 require "dependabot/dependency"
 Dependabot::Dependency.register_production_check("docker", ->(_) { true })

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-docker
 version: !ruby/object:Gem::Version
-  version: 0.229.0
+  version: 0.231.0
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-08-30 00:00:00.000000000 Z
+date: 2023-09-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.229.0
+        version: 0.231.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.229.0
+        version: 0.231.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -136,6 +136,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: 1.19.0
+- !ruby/object:Gem::Dependency
+  name: rubocop-sorbet
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.7.3
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.7.3
 - !ruby/object:Gem::Dependency
   name: stackprof
   requirement: !ruby/object:Gem::Requirement
@@ -202,7 +216,7 @@ licenses:
 - Nonstandard
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.229.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.231.0
 post_install_message: 
 rdoc_options: []
 require_paths: