RubyGems - dependabot-git_submodules - Versions diffs - 0.86.5 → 0.86.6 - Mend

dependabot-git_submodules 0.86.5 → 0.86.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml +4 -4
data/lib/dependabot/git_submodules/file_fetcher.rb +14 -5
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3d2cb9d4cf2615955eeffd12a06634ad30523db016645fe0fb46251d1577360a
-  data.tar.gz: 948fb5f7722c0773bd27ba38b9d34683c76447de7b952b835bbbadd8456705be
+  metadata.gz: 2120aee27d7b74f0943268c797e28660384b2d7ca5828d94e19e3dc324b94a76
+  data.tar.gz: 296bf690c7e0f7066fc5e3c6c0cbc8ab6e77786315e49dede516b4d25dc6a4dc
 SHA512:
-  metadata.gz: 0ab6996df2e8d454004ebb8bab642134b38d91c3f70701d5b1c89387b815630942813376a0481d136fea4f3de7c6ef5fed5da8a67d205395fe857936b8dcc70c
-  data.tar.gz: 8a06685fa48e2997fc17e2b8f515351a33a7169726fdd5426870b241e7d63a0d4f2b248f2846859f02cc94d12c19555a250c874332ab46632d1faab854f9ff7e
+  metadata.gz: f6afaf1b996d8203b8301c686c9a45727d6d426e34cbfff731a8bdf96f49ceb225610844b7fe8cbf8321b890fe5d3f59068f0e29014da44fcfc9ddee05d43ce6
+  data.tar.gz: 62ca92d9d335f869234dfac1cb3656dd49e0c601c9c3b4fa0e62685398623a3b7c98ea8eb54703d4759e6c29fea87f46a5fbc0e4e8e80003ca415ba289adf7af

data/lib/dependabot/git_submodules/file_fetcher.rb CHANGED Viewed

@@ -47,11 +47,7 @@ module Dependabot
                cleanpath.to_path.gsub(%r{^/*}, "")
         sha =  case source.provider
                when "github"
-                 github_client_for_source.contents(
-                   repo,
-                   path: path,
-                   ref: commit
-                 ).sha
+                 fetch_github_submodule_commit(path)
                when "gitlab"
                  tmp_path = path.gsub(%r{^/*}, "")
                  gitlab_client.get_file(repo, tmp_path, commit).blob_id
@@ -67,6 +63,19 @@ module Dependabot
       rescue Octokit::NotFound, Gitlab::Error::NotFound
         raise Dependabot::DependencyFileNotFound, path
       end
+      def fetch_github_submodule_commit(path)
+        content = github_client_for_source.contents(
+          repo,
+          path: path,
+          ref: commit
+        )
+        if content.is_a?(Array) || content.type != "submodule"
+          raise Dependabot::DependencyFileNotFound, path
+        end
+        content.sha
+      end
     end
   end
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-git_submodules
 version: !ruby/object:Gem::Version
-  version: 0.86.5
+  version: 0.86.6
 platform: ruby
 authors:
 - Dependabot
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.86.5
+        version: 0.86.6
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.86.5
+        version: 0.86.6
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement