dependabot-docker 0.174.0 → 0.174.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8e70f59ac338d26bcf890cc7c08fa032e4361e7957e9ecdc9529b3fe5f7c7307
-  data.tar.gz: db371282657cdfd92799420c3fc0a6799d522122c398d53fcb0cc0c6b49ef98f
+  metadata.gz: 8f5be4f2a5c45a357f904ce23f3d60af4a42e34db2f1d11b23ae91f2b4f800e8
+  data.tar.gz: e697b7b2d47caf8dc61e9f7550717028d21ddedb4c83b8e94c7a7faf7ab4b7fc
 SHA512:
-  metadata.gz: a928d2ae84215d1cf2e624fe0765f860713d9737599abb086ae70322d87a5781f2656cf49bf312721eeb847ac72ada080a0d07380682bc1382508144d1a4da11
-  data.tar.gz: d06f5fd324f008db229b5303da9a624f4bdcb96d97162c9c08e3c2b44f07f71506da0ab446ee591195e25a6f84d896af8ed229156469ca9a83ea7dbb50a073bf
+  metadata.gz: 195fe442312c7ff739333415868a826b7815e85faab79a07cd6e55f1096f42f58b25d8e54d028a5e5bb516fb6b08f6851eb05ab6853333e1b35943619b92aa38
+  data.tar.gz: bf4552a2efdba5293dbacfc09af0692ec9e6a5c6ea95952dcad780800f6000dd3c71901bb09307f7440354c0bff367a48db4c227d2fd0bab25ca01030f0e6b5a

data/lib/dependabot/docker/file_parser.rb

@@ -16,16 +16,15 @@ module Dependabot
       # Details of Docker regular expressions is at
       # https://github.com/docker/distribution/blob/master/reference/regexp.go
       DOMAIN_COMPONENT =
-        /[[:alnum:]]|[[:alnum:]][[:alnum:]-]*[[:alnum:]]/.freeze
+        /(?:[[:alnum:]]|[[:alnum:]][[[:alnum:]]-]*[[:alnum:]])/.freeze
       DOMAIN = /(?:#{DOMAIN_COMPONENT}(?:\.#{DOMAIN_COMPONENT})+)/.freeze
       REGISTRY = /(?<registry>#{DOMAIN}(?::\d+)?)/.freeze
 
-      NAME_COMPONENT = /[a-z\d]+(?:(?:[._]|__|[-]*)[a-z\d]+)*/.freeze
+      NAME_COMPONENT = /(?:[a-z\d]+(?:(?:[._]|__|[-]*)[a-z\d]+)*)/.freeze
       IMAGE = %r{(?<image>#{NAME_COMPONENT}(?:/#{NAME_COMPONENT})*)}.freeze
 
-      ARG = /ARG/i.freeze
       FROM = /FROM/i.freeze
-      PLATFORM = /--platform=(?<platform>\S+)/.freeze
+      PLATFORM = /--platform\=(?<platform>\S+)/.freeze
       TAG = /:(?<tag>[\w][\w.-]{0,127})/.freeze
       DIGEST = /@(?<digest>[^\s]+)/.freeze
       NAME = /\s+AS\s+(?<name>[\w-]+)/.freeze
@@ -39,16 +38,7 @@ module Dependabot
         dependency_set = DependencySet.new
 
         dockerfiles.each do |dockerfile|
-          args = {}
           dockerfile.content.each_line do |line|
-            if ARG.match(line)
-              key_value = line.delete_prefix("ARG ").split("=")
-              next if key_value.count != 2 # The ARG has no default value that we can set
-
-              args[key_value[0]] = key_value[1].delete_suffix("\n")
-              next
-            end
-            line = replace_args(line, args)
             next unless FROM_LINE.match?(line)
 
             parsed_from_line = FROM_LINE.match(line).named_captures
@@ -76,13 +66,6 @@ module Dependabot
 
       private
 
-      def replace_args(line, args)
-        line.gsub(/\${?\w+}?/) do |s|
-          escaped = s.delete_prefix("$").delete_prefix("{").delete_suffix("}")
-          args[escaped]
-        end
-      end
-
       def dockerfiles
         # The Docker file fetcher only fetches Dockerfiles, so no need to
         # filter here

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-docker
 version: !ruby/object:Gem::Version
-  version: 0.174.0
+  version: 0.174.1
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-02-18 00:00:00.000000000 Z
+date: 2022-02-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.174.0
+        version: 0.174.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.174.0
+        version: 0.174.1
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement