dependabot-github_actions 0.176.0 → 0.178.1

Sign up to get free protection for your applications and to get access to all the features.
Files changed (3) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/github_actions/file_fetcher.rb +6 -3
  3. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: a24b5bc43b1aded3cbbc49fca85b7e112df8317cea447b33dc7305e98bbf6e55
4
- data.tar.gz: f48270ed3c4a0e925bb6928f542523f914a09e0b9ace38c70ec073d2afb79799
3
+ metadata.gz: 87cd5d937e6f3be202c84780b80452d1e9c0ee0acadc3ca5bce216c4d7654e9a
4
+ data.tar.gz: b93477f0989384ca016317e2e7422a9058581adcea62b920b2a5b187ebd750a5
5
5
  SHA512:
6
- metadata.gz: 7b7eb35c171c0225927fb8a8d1a06a9b18afe9dd047d5fa64e8146cca36433c28d35d8486a8f19bcc7e75e6f00d2829f9ec4a191592acec75c24e8e63f7e0d54
7
- data.tar.gz: f6c90ec2a8fcf495916d4f2ae61b9d3be1197e61c2614438fc4117a9005cbb5111cae4fa4050d33832128f85e45c62abb88f953459176e9cef834decf8f05df0
6
+ metadata.gz: cff9be4002e2c57218f0fd7b67786fd2ee5489503e3f9072d661ae551124ec35499283f45f888d9e0199215814a3aa5516422e413d40184c91214de5a5eb829e
7
+ data.tar.gz: 24eaf18f2854bf64cd7cfb7967681dbc29eef07d5b4e97d75a5ef97515c6f41d6ae23bb46d882d0f1d55af33b7ef9467c46cb97c8de452f3090a8138dc1aa3ae
data/lib/dependabot/github_actions/file_fetcher.rb CHANGED
@@ -6,12 +6,14 @@ require "dependabot/file_fetchers/base"
6
6
  module Dependabot
7
7
  module GithubActions
8
8
  class FileFetcher < Dependabot::FileFetchers::Base
9
+ FILENAME_PATTERN = /^(\.github|action.ya?ml)$/.freeze
10
+
9
11
  def self.required_files_in?(filenames)
10
- filenames.any? { |f| f == ".github" }
12
+ filenames.any? { |f| f.match?(FILENAME_PATTERN) }
11
13
  end
12
14
 
13
15
  def self.required_files_message
14
- "Repo must contain a .github/workflows directory with YAML files."
16
+ "Repo must contain a .github/workflows directory with YAML files or an action.yml in the root"
15
17
  end
16
18
 
17
19
  private
@@ -40,7 +42,8 @@ module Dependabot
40
42
  @workflow_files ||=
41
43
  repo_contents(dir: ".github/workflows", raise_errors: false).
42
44
  select { |f| f.type == "file" && f.name.match?(/\.ya?ml$/) }.
43
- map { |f| fetch_file_from_host(".github/workflows/#{f.name}") }
45
+ map { |f| fetch_file_from_host(".github/workflows/#{f.name}") } \
46
+ + [fetch_file_if_present("action.yml"), fetch_file_if_present("action.yaml")].compact
44
47
  end
45
48
 
46
49
  def referenced_local_workflow_files
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-github_actions
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.176.0
4
+ version: 0.178.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-02-28 00:00:00.000000000 Z
11
+ date: 2022-03-14 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.176.0
19
+ version: 0.178.1
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.176.0
26
+ version: 0.178.1
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement