dependabot-github_actions 0.230.0 → 0.231.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/github_actions/file_fetcher.rb +6 -5
- data/lib/dependabot/github_actions/file_parser.rb +3 -2
- data/lib/dependabot/github_actions/file_updater.rb +9 -8
- data/lib/dependabot/github_actions/metadata_finder.rb +3 -2
- data/lib/dependabot/github_actions/requirement.rb +1 -0
- data/lib/dependabot/github_actions/update_checker.rb +5 -4
- data/lib/dependabot/github_actions/version.rb +3 -2
- data/lib/dependabot/github_actions.rb +5 -4
- metadata +19 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d5fbea5d9c497ef635d1d4c6e5039d2337d1ea46edd77fbd488e00388b457a50
|
|
4
|
+
data.tar.gz: 86903826f9646a8419d5e275a1158a1fee94e628b58bcbd6792a81abc0b47847
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 3e0bfd98e93af4715e555ea4db37db504a56b5465f16445530d9da0d97f7c80f52340af522409e6d23c6f68810f947ce6e6a1624fd0abf62dbbf0d5b2424cfa6
|
|
7
|
+
data.tar.gz: 6d87a226409f4d6d0583383dcc54888675cc1d9292f8677f127be5c2d287bfd5bad4a881b01a2a1a1ddcfbc45e25f73248d407cbe55206bca5cccc346660ccc7
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/file_fetchers"
|
|
@@ -60,9 +61,9 @@ module Dependabot
|
|
|
60
61
|
end
|
|
61
62
|
|
|
62
63
|
@workflow_files +=
|
|
63
|
-
repo_contents(dir: workflows_dir, raise_errors: false)
|
|
64
|
-
select { |f| f.type == "file" && f.name.match?(/\.ya?ml$/) }
|
|
65
|
-
map { |f| fetch_file_from_host("#{workflows_dir}/#{f.name}") }
|
|
64
|
+
repo_contents(dir: workflows_dir, raise_errors: false)
|
|
65
|
+
.select { |f| f.type == "file" && f.name.match?(/\.ya?ml$/) }
|
|
66
|
+
.map { |f| fetch_file_from_host("#{workflows_dir}/#{f.name}") }
|
|
66
67
|
end
|
|
67
68
|
|
|
68
69
|
def correctly_encoded_workflow_files
|
|
@@ -76,5 +77,5 @@ module Dependabot
|
|
|
76
77
|
end
|
|
77
78
|
end
|
|
78
79
|
|
|
79
|
-
Dependabot::FileFetchers
|
|
80
|
-
register("github_actions", Dependabot::GithubActions::FileFetcher)
|
|
80
|
+
Dependabot::FileFetchers
|
|
81
|
+
.register("github_actions", Dependabot::GithubActions::FileFetcher)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "yaml"
|
|
@@ -152,5 +153,5 @@ module Dependabot
|
|
|
152
153
|
end
|
|
153
154
|
end
|
|
154
155
|
|
|
155
|
-
Dependabot::FileParsers
|
|
156
|
-
register("github_actions", Dependabot::GithubActions::FileParser)
|
|
156
|
+
Dependabot::FileParsers
|
|
157
|
+
.register("github_actions", Dependabot::GithubActions::FileParser)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/file_updaters"
|
|
@@ -46,8 +47,8 @@ module Dependabot
|
|
|
46
47
|
|
|
47
48
|
def updated_workflow_file_content(file)
|
|
48
49
|
updated_requirement_pairs =
|
|
49
|
-
dependency.requirements.zip(dependency.previous_requirements)
|
|
50
|
-
|
|
50
|
+
dependency.requirements.zip(dependency.previous_requirements)
|
|
51
|
+
.reject do |new_req, old_req|
|
|
51
52
|
next true if new_req[:file] != file.name
|
|
52
53
|
|
|
53
54
|
new_req[:source] == old_req[:source]
|
|
@@ -61,8 +62,8 @@ module Dependabot
|
|
|
61
62
|
|
|
62
63
|
old_declaration = old_req.fetch(:metadata).fetch(:declaration_string)
|
|
63
64
|
new_declaration =
|
|
64
|
-
old_declaration
|
|
65
|
-
gsub(/@.*+/, "@#{new_req.fetch(:source).fetch(:ref)}")
|
|
65
|
+
old_declaration
|
|
66
|
+
.gsub(/@.*+/, "@#{new_req.fetch(:source).fetch(:ref)}")
|
|
66
67
|
|
|
67
68
|
# Replace the old declaration that's preceded by a non-word character
|
|
68
69
|
# and followed by a whitespace character (comments) or EOL.
|
|
@@ -72,8 +73,8 @@ module Dependabot
|
|
|
72
73
|
# we skip updating the comment in case it's a custom note, todo, warning etc of some kind.
|
|
73
74
|
# See the related unit tests for examples.
|
|
74
75
|
updated_content =
|
|
75
|
-
updated_content
|
|
76
|
-
gsub(
|
|
76
|
+
updated_content
|
|
77
|
+
.gsub(
|
|
77
78
|
/(?<=\W|"|')#{Regexp.escape(old_declaration)}(?<comment>\s+#.*)?(?=\s|"|'|$)/
|
|
78
79
|
) do |match|
|
|
79
80
|
comment = Regexp.last_match(:comment)
|
|
@@ -104,5 +105,5 @@ module Dependabot
|
|
|
104
105
|
end
|
|
105
106
|
end
|
|
106
107
|
|
|
107
|
-
Dependabot::FileUpdaters
|
|
108
|
-
register("github_actions", Dependabot::GithubActions::FileUpdater)
|
|
108
|
+
Dependabot::FileUpdaters
|
|
109
|
+
.register("github_actions", Dependabot::GithubActions::FileUpdater)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/metadata_finders"
|
|
@@ -23,5 +24,5 @@ module Dependabot
|
|
|
23
24
|
end
|
|
24
25
|
end
|
|
25
26
|
|
|
26
|
-
Dependabot::MetadataFinders
|
|
27
|
-
register("github_actions", Dependabot::GithubActions::MetadataFinder)
|
|
27
|
+
Dependabot::MetadataFinders
|
|
28
|
+
.register("github_actions", Dependabot::GithubActions::MetadataFinder)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/update_checkers"
|
|
@@ -167,8 +168,8 @@ module Dependabot
|
|
|
167
168
|
def filter_lower_tags(tags_array)
|
|
168
169
|
return tags_array unless current_version
|
|
169
170
|
|
|
170
|
-
tags_array
|
|
171
|
-
select { |tag| tag.fetch(:version) > current_version }
|
|
171
|
+
tags_array
|
|
172
|
+
.select { |tag| tag.fetch(:version) > current_version }
|
|
172
173
|
end
|
|
173
174
|
|
|
174
175
|
def updated_ref
|
|
@@ -256,5 +257,5 @@ module Dependabot
|
|
|
256
257
|
end
|
|
257
258
|
end
|
|
258
259
|
|
|
259
|
-
Dependabot::UpdateCheckers
|
|
260
|
-
register("github_actions", Dependabot::GithubActions::UpdateChecker)
|
|
260
|
+
Dependabot::UpdateCheckers
|
|
261
|
+
.register("github_actions", Dependabot::GithubActions::UpdateChecker)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/version"
|
|
@@ -25,5 +26,5 @@ module Dependabot
|
|
|
25
26
|
end
|
|
26
27
|
end
|
|
27
28
|
|
|
28
|
-
Dependabot::Utils
|
|
29
|
-
register_version_class("github_actions", Dependabot::GithubActions::Version)
|
|
29
|
+
Dependabot::Utils
|
|
30
|
+
.register_version_class("github_actions", Dependabot::GithubActions::Version)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
# These all need to be required so the various classes can be registered in a
|
|
@@ -11,8 +12,8 @@ require "dependabot/github_actions/requirement"
|
|
|
11
12
|
require "dependabot/github_actions/version"
|
|
12
13
|
|
|
13
14
|
require "dependabot/pull_request_creator/labeler"
|
|
14
|
-
Dependabot::PullRequestCreator::Labeler
|
|
15
|
-
register_label_details(
|
|
15
|
+
Dependabot::PullRequestCreator::Labeler
|
|
16
|
+
.register_label_details(
|
|
16
17
|
"github_actions",
|
|
17
18
|
name: "github_actions",
|
|
18
19
|
description: "Pull requests that update GitHub Actions code",
|
|
@@ -20,5 +21,5 @@ Dependabot::PullRequestCreator::Labeler.
|
|
|
20
21
|
)
|
|
21
22
|
|
|
22
23
|
require "dependabot/dependency"
|
|
23
|
-
Dependabot::Dependency
|
|
24
|
-
register_production_check("github_actions", ->(_) { true })
|
|
24
|
+
Dependabot::Dependency
|
|
25
|
+
.register_production_check("github_actions", ->(_) { true })
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-github_actions
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.231.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2023-09-
|
|
11
|
+
date: 2023-09-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.231.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.231.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -136,6 +136,20 @@ dependencies:
|
|
|
136
136
|
- - "~>"
|
|
137
137
|
- !ruby/object:Gem::Version
|
|
138
138
|
version: 1.19.0
|
|
139
|
+
- !ruby/object:Gem::Dependency
|
|
140
|
+
name: rubocop-sorbet
|
|
141
|
+
requirement: !ruby/object:Gem::Requirement
|
|
142
|
+
requirements:
|
|
143
|
+
- - "~>"
|
|
144
|
+
- !ruby/object:Gem::Version
|
|
145
|
+
version: 0.7.3
|
|
146
|
+
type: :development
|
|
147
|
+
prerelease: false
|
|
148
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
149
|
+
requirements:
|
|
150
|
+
- - "~>"
|
|
151
|
+
- !ruby/object:Gem::Version
|
|
152
|
+
version: 0.7.3
|
|
139
153
|
- !ruby/object:Gem::Dependency
|
|
140
154
|
name: stackprof
|
|
141
155
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -199,7 +213,7 @@ licenses:
|
|
|
199
213
|
- Nonstandard
|
|
200
214
|
metadata:
|
|
201
215
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
202
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
216
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.231.0
|
|
203
217
|
post_install_message:
|
|
204
218
|
rdoc_options: []
|
|
205
219
|
require_paths:
|