dependabot-docker 0.111.0 → 0.111.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/docker/update_checker.rb +19 -5
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 1b64a3fd9b6612178f92d0fc50d982d1d6e36bc096e3e1120bc84267a1dbd70a
|
4
|
+
data.tar.gz: f6d26b730c5361e6d1882c2fbaade11281e1bbfe46caa9b54d36c63e45857f13
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 3415fc685691295190d3739c34943dccabec88a72a540392cbdb297cefe2833c9d805ce35157b02b3970dabc9ccf8c934e1bc40a37d2a7e85817d5ff7044e1e5
|
7
|
+
data.tar.gz: 702024ab2a577d453181827d77f6e92cee3d3562957ec6d80066867b520e1f308c580fe41e619496ff44335151e64871a06fbf846d52d6ed4aa7cd256ab6a384
|
@@ -12,11 +12,12 @@ require "dependabot/docker/utils/credentials_finder"
|
|
12
12
|
module Dependabot
|
13
13
|
module Docker
|
14
14
|
class UpdateChecker < Dependabot::UpdateCheckers::Base
|
15
|
-
VERSION_REGEX =
|
16
|
-
|
17
|
-
|
15
|
+
VERSION_REGEX =
|
16
|
+
/v?(?<version>[0-9]+(?:(?:\.[a-z0-9]+)|(?:-(?:kb)?[0-9]+))*)/i.freeze
|
17
|
+
VERSION_WITH_SFX = /^#{VERSION_REGEX}(?<suffix>-[a-z0-9.\-]+)?$/i.freeze
|
18
|
+
VERSION_WITH_PFX = /^(?<prefix>[a-z0-9.\-]+-)?#{VERSION_REGEX}$/i.freeze
|
18
19
|
VERSION_WITH_PFX_AND_SFX =
|
19
|
-
/^(?<prefix>[a-z\-]+-)?#{VERSION_REGEX}(?<suffix>-[a-z\-]+)
|
20
|
+
/^(?<prefix>[a-z\-]+-)?#{VERSION_REGEX}(?<suffix>-[a-z\-]+)?$/i.
|
20
21
|
freeze
|
21
22
|
NAME_WITH_VERSION =
|
22
23
|
/
|
@@ -130,11 +131,13 @@ module Dependabot
|
|
130
131
|
def comparable_tags_from_registry
|
131
132
|
original_prefix = prefix_of(dependency.version)
|
132
133
|
original_suffix = suffix_of(dependency.version)
|
134
|
+
original_format = format_of(dependency.version)
|
133
135
|
|
134
136
|
tags_from_registry.
|
135
137
|
select { |tag| tag.match?(NAME_WITH_VERSION) }.
|
136
138
|
select { |tag| prefix_of(tag) == original_prefix }.
|
137
139
|
select { |tag| suffix_of(tag) == original_suffix }.
|
140
|
+
select { |tag| format_of(tag) == original_format }.
|
138
141
|
reject { |tag| commit_sha_suffix?(tag) }
|
139
142
|
end
|
140
143
|
|
@@ -251,8 +254,19 @@ module Dependabot
|
|
251
254
|
tag.match(NAME_WITH_VERSION).named_captures.fetch("suffix")
|
252
255
|
end
|
253
256
|
|
257
|
+
def format_of(tag)
|
258
|
+
version = numeric_version_from(tag)
|
259
|
+
|
260
|
+
return :year_month if version.match?(/^[12]\d{3}(?:[.\-]|$)/)
|
261
|
+
return :year_month_day if version.match?(/^[12]\d{5}(?:[.\-]|$)/)
|
262
|
+
|
263
|
+
:normal
|
264
|
+
end
|
265
|
+
|
254
266
|
def prerelease?(tag)
|
255
|
-
|
267
|
+
if numeric_version_from(tag).gsub(/kb/i, "").match?(/[a-zA-Z]/)
|
268
|
+
return true
|
269
|
+
end
|
256
270
|
|
257
271
|
# If we're dealing with a numeric version we can compare it against
|
258
272
|
# the digest for the `latest` tag.
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-docker
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.111.
|
4
|
+
version: 0.111.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-07-
|
11
|
+
date: 2019-07-07 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.111.
|
19
|
+
version: 0.111.1
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.111.
|
26
|
+
version: 0.111.1
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|