dependabot-github_actions 0.125.0 → 0.125.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 52902ba3cda0e816f930284c54ca884ff087a34292b25c4e011bcb98031426fa
|
|
4
|
+
data.tar.gz: 2b7ec4db9240172ac9cc5a4e85035dea33fea8aa47c394b1f31c9fed5a1651ea
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 5cbdbbacc1aa790e6348a2b695da0dfc7ab1ed155472ee0aa64f23948ab9b56f20a1cf995e8276338aea7e84b23c8c2edae9848b9e5b0136ae4f36d3c4c3ce3a
|
|
7
|
+
data.tar.gz: 84ac36d32a11837b2daf8abf278cfb365f9cd775a48cd2ebb986b49b9d60243823ecc8243d9673288f1163df183847c0c77cf3604e417fe6ff76d14c0daa9c40
|
|
@@ -43,9 +43,7 @@ module Dependabot
|
|
|
43
43
|
|
|
44
44
|
uses_strings.each do |string|
|
|
45
45
|
# TODO: Support Docker references and path references
|
|
46
|
-
if string.match?(GITHUB_REPO_REFERENCE)
|
|
47
|
-
dependency_set << build_github_dependency(file, string)
|
|
48
|
-
end
|
|
46
|
+
dependency_set << build_github_dependency(file, string) if string.match?(GITHUB_REPO_REFERENCE)
|
|
49
47
|
end
|
|
50
48
|
|
|
51
49
|
dependency_set
|
|
@@ -24,9 +24,7 @@ module Dependabot
|
|
|
24
24
|
end
|
|
25
25
|
|
|
26
26
|
def updated_requirements
|
|
27
|
-
if updated_source == dependency_source_details
|
|
28
|
-
return dependency.requirements
|
|
29
|
-
end
|
|
27
|
+
return dependency.requirements if updated_source == dependency_source_details
|
|
30
28
|
|
|
31
29
|
dependency.requirements.map { |req| req.merge(source: updated_source) }
|
|
32
30
|
end
|
|
@@ -50,9 +48,7 @@ module Dependabot
|
|
|
50
48
|
end
|
|
51
49
|
|
|
52
50
|
def fetch_latest_version_for_git_dependency
|
|
53
|
-
unless git_commit_checker.pinned?
|
|
54
|
-
return git_commit_checker.head_commit_for_current_branch
|
|
55
|
-
end
|
|
51
|
+
return git_commit_checker.head_commit_for_current_branch unless git_commit_checker.pinned?
|
|
56
52
|
|
|
57
53
|
# If the dependency is pinned to a tag that looks like a version then
|
|
58
54
|
# we want to update that tag. The latest version will then be the SHA
|
|
@@ -109,9 +105,7 @@ module Dependabot
|
|
|
109
105
|
|
|
110
106
|
# If there are multiple source types, or multiple source URLs, then it's
|
|
111
107
|
# unclear how we should proceed
|
|
112
|
-
if sources.map { |s| [s.fetch(:type), s[:url]] }.uniq.count > 1
|
|
113
|
-
raise "Multiple sources! #{sources.join(', ')}"
|
|
114
|
-
end
|
|
108
|
+
raise "Multiple sources! #{sources.join(', ')}" if sources.map { |s| [s.fetch(:type), s[:url]] }.uniq.count > 1
|
|
115
109
|
|
|
116
110
|
# Otherwise it's reasonable to take the first source and use that. This
|
|
117
111
|
# will happen if we have multiple git sources with difference references
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-github_actions
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.125.
|
|
4
|
+
version: 0.125.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.125.
|
|
19
|
+
version: 0.125.1
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.125.
|
|
26
|
+
version: 0.125.1
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|