dependabot-github_actions 0.119.1 → 0.119.6
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/github_actions/update_checker.rb +4 -6
- metadata +6 -6
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: c91bf1693974900d701d1b0a2b0b4a258fe0068d980ff9c7fa6e402f8277a5e6
|
4
|
+
data.tar.gz: 2ec676ad54726297bb576726f628022cbcad6f53316c07e0856809818e325c80
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 3d481f7ffe9fca80ccdab7735c462922f763f13995b5664ebbfcf708ede25ff06902e445ed37b97aebd198680d2be7ebf11802649dec6a6a9c2f137f960ccbbf
|
7
|
+
data.tar.gz: 3ff4467a06217e23f0f340916f030a0ae0ef2a937a46c622836eb4baee9fce569f89e6f28785e675390189ffeda24778308f80e2abe10f2456f9a5ac4a1efbe4
|
@@ -78,7 +78,6 @@ module Dependabot
|
|
78
78
|
dependency.version
|
79
79
|
end
|
80
80
|
|
81
|
-
# rubocop:disable Metrics/PerceivedComplexity
|
82
81
|
def updated_source
|
83
82
|
# TODO: Support Docker sources
|
84
83
|
return dependency_source_details unless git_dependency?
|
@@ -90,19 +89,18 @@ module Dependabot
|
|
90
89
|
return dependency_source_details.merge(ref: new_tag.fetch(:tag))
|
91
90
|
end
|
92
91
|
|
93
|
-
# Update the git
|
92
|
+
# Update the git commit if updating a pinned commit
|
94
93
|
if git_commit_checker.pinned_ref_looks_like_commit_sha? &&
|
95
94
|
(latest_tag = git_commit_checker.local_tag_for_latest_version) &&
|
96
|
-
git_commit_checker.branch_or_ref_in_release?(latest_tag[:version])
|
97
|
-
|
95
|
+
git_commit_checker.branch_or_ref_in_release?(latest_tag[:version]) &&
|
96
|
+
(latest_commit = latest_tag.fetch(:commit_sha)) != current_commit
|
97
|
+
return dependency_source_details.merge(ref: latest_commit)
|
98
98
|
end
|
99
99
|
|
100
100
|
# Otherwise return the original source
|
101
101
|
dependency_source_details
|
102
102
|
end
|
103
103
|
|
104
|
-
# rubocop:enable Metrics/PerceivedComplexity
|
105
|
-
|
106
104
|
def dependency_source_details
|
107
105
|
sources =
|
108
106
|
dependency.requirements.map { |r| r.fetch(:source) }.uniq.compact
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-github_actions
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.119.
|
4
|
+
version: 0.119.6
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-
|
11
|
+
date: 2020-09-21 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.119.
|
19
|
+
version: 0.119.6
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.119.
|
26
|
+
version: 0.119.6
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -100,14 +100,14 @@ dependencies:
|
|
100
100
|
requirements:
|
101
101
|
- - "~>"
|
102
102
|
- !ruby/object:Gem::Version
|
103
|
-
version: 0.
|
103
|
+
version: 0.90.0
|
104
104
|
type: :development
|
105
105
|
prerelease: false
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
107
107
|
requirements:
|
108
108
|
- - "~>"
|
109
109
|
- !ruby/object:Gem::Version
|
110
|
-
version: 0.
|
110
|
+
version: 0.90.0
|
111
111
|
- !ruby/object:Gem::Dependency
|
112
112
|
name: vcr
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|