dependabot-github_actions 0.363.0 → 0.364.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 443f78dd5c8403dd8a056f10601bf2c800a6140e32b3e42046e46de7407d1b9c
|
|
4
|
+
data.tar.gz: 2fcd411381ebdaf4f76ea5736924171518261afd097ddcea43fb36e977317293
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 1631e48e8aac06e765a3b57bfe92ee717eef6bb6c17e7daad418c0159294de41a651782c35a732a8c87ec5837ffc106c64f462eed2fd1b29bde08e94594d5277
|
|
7
|
+
data.tar.gz: c7663855ab22de8ed919aa89147273a267a06bd9dfbde4b75b878cf48b604a9f328c30420a31b42416a164f41ba897c16aa3607933127d044ed1597d2589c89f
|
|
@@ -55,9 +55,9 @@ module Dependabot
|
|
|
55
55
|
updated_requirement_pairs =
|
|
56
56
|
dependency.requirements.zip(T.must(dependency.previous_requirements))
|
|
57
57
|
.reject do |new_req, old_req|
|
|
58
|
-
|
|
58
|
+
next true if new_req[:file] != file.name
|
|
59
59
|
|
|
60
|
-
|
|
60
|
+
new_req[:source] == T.must(old_req)[:source]
|
|
61
61
|
end
|
|
62
62
|
|
|
63
63
|
updated_content = T.must(file.content)
|
|
@@ -158,7 +158,7 @@ module Dependabot
|
|
|
158
158
|
|
|
159
159
|
# Return the pinned git commit if one is available
|
|
160
160
|
if source_git_commit_checker.pinned_ref_looks_like_commit_sha? &&
|
|
161
|
-
(new_commit_sha = latest_commit_sha)
|
|
161
|
+
(new_commit_sha = latest_commit_sha(source_git_commit_checker))
|
|
162
162
|
return new_commit_sha
|
|
163
163
|
end
|
|
164
164
|
|
|
@@ -166,12 +166,12 @@ module Dependabot
|
|
|
166
166
|
nil
|
|
167
167
|
end
|
|
168
168
|
|
|
169
|
-
sig { returns(T.nilable(String)) }
|
|
170
|
-
def latest_commit_sha
|
|
169
|
+
sig { params(source_checker: Dependabot::GitCommitChecker).returns(T.nilable(String)) }
|
|
170
|
+
def latest_commit_sha(source_checker)
|
|
171
171
|
new_tag = T.must(latest_version_finder).latest_version_tag
|
|
172
172
|
return unless new_tag
|
|
173
173
|
|
|
174
|
-
if
|
|
174
|
+
if source_checker.local_tag_for_pinned_sha
|
|
175
175
|
new_tag.fetch(:commit_sha)
|
|
176
176
|
else
|
|
177
177
|
latest_commit_for_pinned_ref
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-github_actions
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.364.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -15,14 +15,14 @@ dependencies:
|
|
|
15
15
|
requirements:
|
|
16
16
|
- - '='
|
|
17
17
|
- !ruby/object:Gem::Version
|
|
18
|
-
version: 0.
|
|
18
|
+
version: 0.364.0
|
|
19
19
|
type: :runtime
|
|
20
20
|
prerelease: false
|
|
21
21
|
version_requirements: !ruby/object:Gem::Requirement
|
|
22
22
|
requirements:
|
|
23
23
|
- - '='
|
|
24
24
|
- !ruby/object:Gem::Version
|
|
25
|
-
version: 0.
|
|
25
|
+
version: 0.364.0
|
|
26
26
|
- !ruby/object:Gem::Dependency
|
|
27
27
|
name: debug
|
|
28
28
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -259,7 +259,7 @@ licenses:
|
|
|
259
259
|
- MIT
|
|
260
260
|
metadata:
|
|
261
261
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
262
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
262
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.364.0
|
|
263
263
|
rdoc_options: []
|
|
264
264
|
require_paths:
|
|
265
265
|
- lib
|