dependabot-github_actions 0.119.0 → 0.119.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/github_actions/update_checker.rb +4 -6
- metadata +6 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 42990c7e5179cd62ebfac661648aca53969839be90ced16d7bb6eb5ffcc6ac60
|
|
4
|
+
data.tar.gz: d6adc6165c5dbf600347eb3716111158116e537d2d95c86c11e5ad500f65acad
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 76dead424128b6fa09a19e1de9b3d64c7d8cdc2e9bbe1b4710fac887b4edb3a504b1d2b1ef4d98dfeab1bd296fc233e163b2215bd3039b311838f4708a5797e9
|
|
7
|
+
data.tar.gz: 73daf9aa04df48b797ced1887f42d874b92c57c5134ad89d2ff445762888cad97e27f4464313900d14b8f45bb8e0fdbe85487e4da3e7d735e28f8698ed56700b
|
|
@@ -78,7 +78,6 @@ module Dependabot
|
|
|
78
78
|
dependency.version
|
|
79
79
|
end
|
|
80
80
|
|
|
81
|
-
# rubocop:disable Metrics/PerceivedComplexity
|
|
82
81
|
def updated_source
|
|
83
82
|
# TODO: Support Docker sources
|
|
84
83
|
return dependency_source_details unless git_dependency?
|
|
@@ -90,19 +89,18 @@ module Dependabot
|
|
|
90
89
|
return dependency_source_details.merge(ref: new_tag.fetch(:tag))
|
|
91
90
|
end
|
|
92
91
|
|
|
93
|
-
# Update the git
|
|
92
|
+
# Update the git commit if updating a pinned commit
|
|
94
93
|
if git_commit_checker.pinned_ref_looks_like_commit_sha? &&
|
|
95
94
|
(latest_tag = git_commit_checker.local_tag_for_latest_version) &&
|
|
96
|
-
git_commit_checker.branch_or_ref_in_release?(latest_tag[:version])
|
|
97
|
-
|
|
95
|
+
git_commit_checker.branch_or_ref_in_release?(latest_tag[:version]) &&
|
|
96
|
+
(latest_commit = latest_tag.fetch(:commit_sha)) != current_commit
|
|
97
|
+
return dependency_source_details.merge(ref: latest_commit)
|
|
98
98
|
end
|
|
99
99
|
|
|
100
100
|
# Otherwise return the original source
|
|
101
101
|
dependency_source_details
|
|
102
102
|
end
|
|
103
103
|
|
|
104
|
-
# rubocop:enable Metrics/PerceivedComplexity
|
|
105
|
-
|
|
106
104
|
def dependency_source_details
|
|
107
105
|
sources =
|
|
108
106
|
dependency.requirements.map { |r| r.fetch(:source) }.uniq.compact
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-github_actions
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.119.
|
|
4
|
+
version: 0.119.5
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-
|
|
11
|
+
date: 2020-09-21 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.119.
|
|
19
|
+
version: 0.119.5
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.119.
|
|
26
|
+
version: 0.119.5
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -100,14 +100,14 @@ dependencies:
|
|
|
100
100
|
requirements:
|
|
101
101
|
- - "~>"
|
|
102
102
|
- !ruby/object:Gem::Version
|
|
103
|
-
version: 0.
|
|
103
|
+
version: 0.90.0
|
|
104
104
|
type: :development
|
|
105
105
|
prerelease: false
|
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
|
107
107
|
requirements:
|
|
108
108
|
- - "~>"
|
|
109
109
|
- !ruby/object:Gem::Version
|
|
110
|
-
version: 0.
|
|
110
|
+
version: 0.90.0
|
|
111
111
|
- !ruby/object:Gem::Dependency
|
|
112
112
|
name: vcr
|
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|