dependabot-docker 0.113.21 → 0.113.22
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/docker/file_updater.rb +24 -15
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: e934b9d0c4276eb5be7fd6b6c2f542fb403294770212ebfa9c406a46bac9239d
|
|
4
|
+
data.tar.gz: be9f2e7ce4d4c895a08b714ec350fcfbf1d08dce824501fa0b1a18f657bcffcf
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 48af18790bdd820e8283852b0358e5db270c179300c01d949a33eb6eb27abf3de1f06e0bbbade33b395f29e4291aa35224bc2ed790c7d0a2e0cc9d2eb97f2600
|
|
7
|
+
data.tar.gz: 914e8e679302a233a208f88900a3a85f9a552ffb20816d0f97cb825e767a6b8866dbdd57af420ead5b94a7dcde79ff6aa9f09aff3168fffb9d5fb9cf373a2ea4
|
|
@@ -71,21 +71,29 @@ module Dependabot
|
|
|
71
71
|
end
|
|
72
72
|
|
|
73
73
|
def update_tag(file)
|
|
74
|
-
|
|
74
|
+
old_tags = old_tags(file)
|
|
75
|
+
return if old_tags.empty?
|
|
75
76
|
|
|
76
|
-
|
|
77
|
-
if private_registry_url(file) then "#{private_registry_url(file)}/"
|
|
78
|
-
else ""
|
|
79
|
-
end
|
|
80
|
-
old_declaration += "#{dependency.name}:#{old_tag(file)}"
|
|
81
|
-
escaped_declaration = Regexp.escape(old_declaration)
|
|
77
|
+
modified_content = file.content
|
|
82
78
|
|
|
83
|
-
|
|
84
|
-
|
|
79
|
+
old_tags.each do |old_tag|
|
|
80
|
+
old_declaration =
|
|
81
|
+
if private_registry_url(file) then "#{private_registry_url(file)}/"
|
|
82
|
+
else ""
|
|
83
|
+
end
|
|
84
|
+
old_declaration += "#{dependency.name}:#{old_tag}"
|
|
85
|
+
escaped_declaration = Regexp.escape(old_declaration)
|
|
85
86
|
|
|
86
|
-
|
|
87
|
-
|
|
87
|
+
old_declaration_regex =
|
|
88
|
+
%r{^#{FROM_REGEX}\s+(docker\.io/)?#{escaped_declaration}(?=\s|$)}
|
|
89
|
+
|
|
90
|
+
modified_content = modified_content.
|
|
91
|
+
gsub(old_declaration_regex) do |old_dec|
|
|
92
|
+
old_dec.gsub(":#{old_tag}", ":#{new_tag(file)}")
|
|
93
|
+
end
|
|
88
94
|
end
|
|
95
|
+
|
|
96
|
+
modified_content
|
|
89
97
|
end
|
|
90
98
|
|
|
91
99
|
def specified_with_digest?(file)
|
|
@@ -117,10 +125,11 @@ module Dependabot
|
|
|
117
125
|
fetch(:source)[:tag]
|
|
118
126
|
end
|
|
119
127
|
|
|
120
|
-
def
|
|
121
|
-
dependency.
|
|
122
|
-
|
|
123
|
-
|
|
128
|
+
def old_tags(file)
|
|
129
|
+
dependency.
|
|
130
|
+
previous_requirements.
|
|
131
|
+
select { |r| r[:file] == file.name }.
|
|
132
|
+
map { |r| r.fetch(:source)[:tag] }
|
|
124
133
|
end
|
|
125
134
|
|
|
126
135
|
def private_registry_url(file)
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-docker
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.113.
|
|
4
|
+
version: 0.113.22
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2019-11-
|
|
11
|
+
date: 2019-11-22 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.113.
|
|
19
|
+
version: 0.113.22
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.113.
|
|
26
|
+
version: 0.113.22
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|