dependabot-github_actions 0.124.7 → 0.125.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/github_actions/file_parser.rb +1 -3
  3. data/lib/dependabot/github_actions/update_checker.rb +3 -9
  4. metadata +6 -6
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: eba35edfe2c99f6816aa0533dfa58201f64d654b254f4e567819bc77c53eae30
4
- data.tar.gz: e02441322be6b6ffe916e6fcb4adf1e885b8e7197081266579c09e1420c9208a
3
+ metadata.gz: c4aa532bb8f4f43e2d5cd464f4c438f2d58755babc47516d3251bc2bb34a2ce0
4
+ data.tar.gz: f8de0121ffab1da756b4e81e99823720b504a7f0366af445b232a6d1cd68ee77
5
5
  SHA512:
6
- metadata.gz: 4b6fcfc346b315be4c602a1ebd609bdc3644f3e0ac4e80c1ed7423a3a03b9e18f3a8120bd931808827e6cf613818ed5e244ba48a4e1e1bbc87e46bb83c69885f
7
- data.tar.gz: de970333f4df957cb5a49e6fb72ccc0c682f661c2442f81619987bb72d752875b8d5b756688b0fe420215ea17b2ed862009f4b77b20beacb22f686bff4a3112c
6
+ metadata.gz: 986bac925f94e575cce0e7c07448f838ec22e84c2232993e3f5860e8692e125a091f867b06a3c5487cf1414f8e67d5fb2ac4885dad59f06f055a9fbd64a03994
7
+ data.tar.gz: d3770e4e871ba425bfd9833f3c40b39338670792fe72f7ffea0d8d4710033ee0e7f92b61d6b6bcede220616b4bbf3225424700bb9611f156ca3db808ca814e82
data/lib/dependabot/github_actions/file_parser.rb CHANGED
@@ -43,9 +43,7 @@ module Dependabot
43
43
 
44
44
  uses_strings.each do |string|
45
45
  # TODO: Support Docker references and path references
46
- if string.match?(GITHUB_REPO_REFERENCE)
47
- dependency_set << build_github_dependency(file, string)
48
- end
46
+ dependency_set << build_github_dependency(file, string) if string.match?(GITHUB_REPO_REFERENCE)
49
47
  end
50
48
 
51
49
  dependency_set
data/lib/dependabot/github_actions/update_checker.rb CHANGED
@@ -24,9 +24,7 @@ module Dependabot
24
24
  end
25
25
 
26
26
  def updated_requirements
27
- if updated_source == dependency_source_details
28
- return dependency.requirements
29
- end
27
+ return dependency.requirements if updated_source == dependency_source_details
30
28
 
31
29
  dependency.requirements.map { |req| req.merge(source: updated_source) }
32
30
  end
@@ -50,9 +48,7 @@ module Dependabot
50
48
  end
51
49
 
52
50
  def fetch_latest_version_for_git_dependency
53
- unless git_commit_checker.pinned?
54
- return git_commit_checker.head_commit_for_current_branch
55
- end
51
+ return git_commit_checker.head_commit_for_current_branch unless git_commit_checker.pinned?
56
52
 
57
53
  # If the dependency is pinned to a tag that looks like a version then
58
54
  # we want to update that tag. The latest version will then be the SHA
@@ -109,9 +105,7 @@ module Dependabot
109
105
 
110
106
  # If there are multiple source types, or multiple source URLs, then it's
111
107
  # unclear how we should proceed
112
- if sources.map { |s| [s.fetch(:type), s[:url]] }.uniq.count > 1
113
- raise "Multiple sources! #{sources.join(', ')}"
114
- end
108
+ raise "Multiple sources! #{sources.join(', ')}" if sources.map { |s| [s.fetch(:type), s[:url]] }.uniq.count > 1
115
109
 
116
110
  # Otherwise it's reasonable to take the first source and use that. This
117
111
  # will happen if we have multiple git sources with difference references
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-github_actions
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.124.7
4
+ version: 0.125.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2020-11-03 00:00:00.000000000 Z
11
+ date: 2020-11-16 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.124.7
19
+ version: 0.125.3
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.124.7
26
+ version: 0.125.3
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -128,14 +128,14 @@ dependencies:
128
128
  requirements:
129
129
  - - "~>"
130
130
  - !ruby/object:Gem::Version
131
- version: 0.7.2
131
+ version: 0.8.0
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
- version: 0.7.2
138
+ version: 0.8.0
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: vcr
141
141
  requirement: !ruby/object:Gem::Requirement