dependabot-github_actions 0.230.0 → 0.231.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/github_actions/file_fetcher.rb +6 -5
- data/lib/dependabot/github_actions/file_parser.rb +3 -2
- data/lib/dependabot/github_actions/file_updater.rb +9 -8
- data/lib/dependabot/github_actions/metadata_finder.rb +3 -2
- data/lib/dependabot/github_actions/requirement.rb +1 -0
- data/lib/dependabot/github_actions/update_checker.rb +5 -4
- data/lib/dependabot/github_actions/version.rb +3 -2
- data/lib/dependabot/github_actions.rb +5 -4
- metadata +19 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d5fbea5d9c497ef635d1d4c6e5039d2337d1ea46edd77fbd488e00388b457a50
|
|
4
|
+
data.tar.gz: 86903826f9646a8419d5e275a1158a1fee94e628b58bcbd6792a81abc0b47847
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 3e0bfd98e93af4715e555ea4db37db504a56b5465f16445530d9da0d97f7c80f52340af522409e6d23c6f68810f947ce6e6a1624fd0abf62dbbf0d5b2424cfa6
|
|
7
|
+
data.tar.gz: 6d87a226409f4d6d0583383dcc54888675cc1d9292f8677f127be5c2d287bfd5bad4a881b01a2a1a1ddcfbc45e25f73248d407cbe55206bca5cccc346660ccc7
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/file_fetchers"
|
|
@@ -60,9 +61,9 @@ module Dependabot
|
|
|
60
61
|
end
|
|
61
62
|
|
|
62
63
|
@workflow_files +=
|
|
63
|
-
repo_contents(dir: workflows_dir, raise_errors: false)
|
|
64
|
-
select { |f| f.type == "file" && f.name.match?(/\.ya?ml$/) }
|
|
65
|
-
map { |f| fetch_file_from_host("#{workflows_dir}/#{f.name}") }
|
|
64
|
+
repo_contents(dir: workflows_dir, raise_errors: false)
|
|
65
|
+
.select { |f| f.type == "file" && f.name.match?(/\.ya?ml$/) }
|
|
66
|
+
.map { |f| fetch_file_from_host("#{workflows_dir}/#{f.name}") }
|
|
66
67
|
end
|
|
67
68
|
|
|
68
69
|
def correctly_encoded_workflow_files
|
|
@@ -76,5 +77,5 @@ module Dependabot
|
|
|
76
77
|
end
|
|
77
78
|
end
|
|
78
79
|
|
|
79
|
-
Dependabot::FileFetchers
|
|
80
|
-
register("github_actions", Dependabot::GithubActions::FileFetcher)
|
|
80
|
+
Dependabot::FileFetchers
|
|
81
|
+
.register("github_actions", Dependabot::GithubActions::FileFetcher)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "yaml"
|
|
@@ -152,5 +153,5 @@ module Dependabot
|
|
|
152
153
|
end
|
|
153
154
|
end
|
|
154
155
|
|
|
155
|
-
Dependabot::FileParsers
|
|
156
|
-
register("github_actions", Dependabot::GithubActions::FileParser)
|
|
156
|
+
Dependabot::FileParsers
|
|
157
|
+
.register("github_actions", Dependabot::GithubActions::FileParser)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/file_updaters"
|
|
@@ -46,8 +47,8 @@ module Dependabot
|
|
|
46
47
|
|
|
47
48
|
def updated_workflow_file_content(file)
|
|
48
49
|
updated_requirement_pairs =
|
|
49
|
-
dependency.requirements.zip(dependency.previous_requirements)
|
|
50
|
-
|
|
50
|
+
dependency.requirements.zip(dependency.previous_requirements)
|
|
51
|
+
.reject do |new_req, old_req|
|
|
51
52
|
next true if new_req[:file] != file.name
|
|
52
53
|
|
|
53
54
|
new_req[:source] == old_req[:source]
|
|
@@ -61,8 +62,8 @@ module Dependabot
|
|
|
61
62
|
|
|
62
63
|
old_declaration = old_req.fetch(:metadata).fetch(:declaration_string)
|
|
63
64
|
new_declaration =
|
|
64
|
-
old_declaration
|
|
65
|
-
gsub(/@.*+/, "@#{new_req.fetch(:source).fetch(:ref)}")
|
|
65
|
+
old_declaration
|
|
66
|
+
.gsub(/@.*+/, "@#{new_req.fetch(:source).fetch(:ref)}")
|
|
66
67
|
|
|
67
68
|
# Replace the old declaration that's preceded by a non-word character
|
|
68
69
|
# and followed by a whitespace character (comments) or EOL.
|
|
@@ -72,8 +73,8 @@ module Dependabot
|
|
|
72
73
|
# we skip updating the comment in case it's a custom note, todo, warning etc of some kind.
|
|
73
74
|
# See the related unit tests for examples.
|
|
74
75
|
updated_content =
|
|
75
|
-
updated_content
|
|
76
|
-
gsub(
|
|
76
|
+
updated_content
|
|
77
|
+
.gsub(
|
|
77
78
|
/(?<=\W|"|')#{Regexp.escape(old_declaration)}(?<comment>\s+#.*)?(?=\s|"|'|$)/
|
|
78
79
|
) do |match|
|
|
79
80
|
comment = Regexp.last_match(:comment)
|
|
@@ -104,5 +105,5 @@ module Dependabot
|
|
|
104
105
|
end
|
|
105
106
|
end
|
|
106
107
|
|
|
107
|
-
Dependabot::FileUpdaters
|
|
108
|
-
register("github_actions", Dependabot::GithubActions::FileUpdater)
|
|
108
|
+
Dependabot::FileUpdaters
|
|
109
|
+
.register("github_actions", Dependabot::GithubActions::FileUpdater)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/metadata_finders"
|
|
@@ -23,5 +24,5 @@ module Dependabot
|
|
|
23
24
|
end
|
|
24
25
|
end
|
|
25
26
|
|
|
26
|
-
Dependabot::MetadataFinders
|
|
27
|
-
register("github_actions", Dependabot::GithubActions::MetadataFinder)
|
|
27
|
+
Dependabot::MetadataFinders
|
|
28
|
+
.register("github_actions", Dependabot::GithubActions::MetadataFinder)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/update_checkers"
|
|
@@ -167,8 +168,8 @@ module Dependabot
|
|
|
167
168
|
def filter_lower_tags(tags_array)
|
|
168
169
|
return tags_array unless current_version
|
|
169
170
|
|
|
170
|
-
tags_array
|
|
171
|
-
select { |tag| tag.fetch(:version) > current_version }
|
|
171
|
+
tags_array
|
|
172
|
+
.select { |tag| tag.fetch(:version) > current_version }
|
|
172
173
|
end
|
|
173
174
|
|
|
174
175
|
def updated_ref
|
|
@@ -256,5 +257,5 @@ module Dependabot
|
|
|
256
257
|
end
|
|
257
258
|
end
|
|
258
259
|
|
|
259
|
-
Dependabot::UpdateCheckers
|
|
260
|
-
register("github_actions", Dependabot::GithubActions::UpdateChecker)
|
|
260
|
+
Dependabot::UpdateCheckers
|
|
261
|
+
.register("github_actions", Dependabot::GithubActions::UpdateChecker)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
require "dependabot/version"
|
|
@@ -25,5 +26,5 @@ module Dependabot
|
|
|
25
26
|
end
|
|
26
27
|
end
|
|
27
28
|
|
|
28
|
-
Dependabot::Utils
|
|
29
|
-
register_version_class("github_actions", Dependabot::GithubActions::Version)
|
|
29
|
+
Dependabot::Utils
|
|
30
|
+
.register_version_class("github_actions", Dependabot::GithubActions::Version)
|
|
@@ -1,3 +1,4 @@
|
|
|
1
|
+
# typed: false
|
|
1
2
|
# frozen_string_literal: true
|
|
2
3
|
|
|
3
4
|
# These all need to be required so the various classes can be registered in a
|
|
@@ -11,8 +12,8 @@ require "dependabot/github_actions/requirement"
|
|
|
11
12
|
require "dependabot/github_actions/version"
|
|
12
13
|
|
|
13
14
|
require "dependabot/pull_request_creator/labeler"
|
|
14
|
-
Dependabot::PullRequestCreator::Labeler
|
|
15
|
-
register_label_details(
|
|
15
|
+
Dependabot::PullRequestCreator::Labeler
|
|
16
|
+
.register_label_details(
|
|
16
17
|
"github_actions",
|
|
17
18
|
name: "github_actions",
|
|
18
19
|
description: "Pull requests that update GitHub Actions code",
|
|
@@ -20,5 +21,5 @@ Dependabot::PullRequestCreator::Labeler.
|
|
|
20
21
|
)
|
|
21
22
|
|
|
22
23
|
require "dependabot/dependency"
|
|
23
|
-
Dependabot::Dependency
|
|
24
|
-
register_production_check("github_actions", ->(_) { true })
|
|
24
|
+
Dependabot::Dependency
|
|
25
|
+
.register_production_check("github_actions", ->(_) { true })
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-github_actions
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.231.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2023-09-
|
|
11
|
+
date: 2023-09-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.231.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.231.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -136,6 +136,20 @@ dependencies:
|
|
|
136
136
|
- - "~>"
|
|
137
137
|
- !ruby/object:Gem::Version
|
|
138
138
|
version: 1.19.0
|
|
139
|
+
- !ruby/object:Gem::Dependency
|
|
140
|
+
name: rubocop-sorbet
|
|
141
|
+
requirement: !ruby/object:Gem::Requirement
|
|
142
|
+
requirements:
|
|
143
|
+
- - "~>"
|
|
144
|
+
- !ruby/object:Gem::Version
|
|
145
|
+
version: 0.7.3
|
|
146
|
+
type: :development
|
|
147
|
+
prerelease: false
|
|
148
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
149
|
+
requirements:
|
|
150
|
+
- - "~>"
|
|
151
|
+
- !ruby/object:Gem::Version
|
|
152
|
+
version: 0.7.3
|
|
139
153
|
- !ruby/object:Gem::Dependency
|
|
140
154
|
name: stackprof
|
|
141
155
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -199,7 +213,7 @@ licenses:
|
|
|
199
213
|
- Nonstandard
|
|
200
214
|
metadata:
|
|
201
215
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
202
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
216
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.231.0
|
|
203
217
|
post_install_message:
|
|
204
218
|
rdoc_options: []
|
|
205
219
|
require_paths:
|