dependabot-github_actions 0.124.6 → 0.125.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b8e1def88206016fb29f46617a649fb2bc23420a8b7d9d62e57f791761c07a3d
-  data.tar.gz: e946e67ac9389b781a3d0907e3b0c28ac1074634fba7765c34c267e914361b37
+  metadata.gz: ed0619334bcc8adebfe7a65af00243abd49a9a4a83c7b4764534af4cfc91f94b
+  data.tar.gz: e2412a368b91983740136f844a838cabc97229af3a23d6cd929817edffc4bd57
 SHA512:
-  metadata.gz: c467d13f5c8f745abb95feef3e0696735e5f46f46d4cb6edbb65baeba90bbc1fe8be5ee32c71651b9918b08e7b4b749647919ac93361d0acf6d75294f6d1f5ed
-  data.tar.gz: 021b5c7d90df43c5557cdb1739f44f03dcbe8bf4fd4bc7d74c800efa7989d3b75a80b42d3875177cdb4c2113c8dc69c127d305b2279900bc7a3d68c7f5f81263
+  metadata.gz: 92b779efa3807774c3dd8dfe49d937a70811607308cf4b927dd76c73dbbe98ddc43c61390ee6bfc52b16de56078e76aadec1caa1eef207e75218723ecfcbeca2
+  data.tar.gz: 9a2ec82c6943d04cf315dbed33ec9a62b31e256cf34bf4f05049817008e5df4249bb6b7bd249918330fd9e25125dd08afaff74a01c19c2599db2f647aeedde02

data/lib/dependabot/github_actions/file_parser.rb

@@ -43,9 +43,7 @@ module Dependabot
 
         uses_strings.each do |string|
           # TODO: Support Docker references and path references
-          if string.match?(GITHUB_REPO_REFERENCE)
-            dependency_set << build_github_dependency(file, string)
-          end
+          dependency_set << build_github_dependency(file, string) if string.match?(GITHUB_REPO_REFERENCE)
         end
 
         dependency_set

data/lib/dependabot/github_actions/update_checker.rb

@@ -24,9 +24,7 @@ module Dependabot
       end
 
       def updated_requirements
-        if updated_source == dependency_source_details
-          return dependency.requirements
-        end
+        return dependency.requirements if updated_source == dependency_source_details
 
         dependency.requirements.map { |req| req.merge(source: updated_source) }
       end
@@ -50,9 +48,7 @@ module Dependabot
       end
 
       def fetch_latest_version_for_git_dependency
-        unless git_commit_checker.pinned?
-          return git_commit_checker.head_commit_for_current_branch
-        end
+        return git_commit_checker.head_commit_for_current_branch unless git_commit_checker.pinned?
 
         # If the dependency is pinned to a tag that looks like a version then
         # we want to update that tag. The latest version will then be the SHA
@@ -109,9 +105,7 @@ module Dependabot
 
         # If there are multiple source types, or multiple source URLs, then it's
         # unclear how we should proceed
-        if sources.map { |s| [s.fetch(:type), s[:url]] }.uniq.count > 1
-          raise "Multiple sources! #{sources.join(', ')}"
-        end
+        raise "Multiple sources! #{sources.join(', ')}" if sources.map { |s| [s.fetch(:type), s[:url]] }.uniq.count > 1
 
         # Otherwise it's reasonable to take the first source and use that. This
         # will happen if we have multiple git sources with difference references

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-github_actions
 version: !ruby/object:Gem::Version
-  version: 0.124.6
+  version: 0.125.2
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-11-02 00:00:00.000000000 Z
+date: 2020-11-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.124.6
+        version: 0.125.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.124.6
+        version: 0.125.2
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement