dependabot-go_modules 0.124.5 → 0.125.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ba7d076d63977048ff74175bebb2b741e420a2a7e0bdd9405624fb9f41693a49
-  data.tar.gz: ca15ee23fb0d747360f46dc3c3b63c6efe5d6e4326fa2e42d6dacae390cc426f
+  metadata.gz: 938fbd55ae7e15ed375af08ff52f4e880542b7dd3ef877cf555926f96db5c562
+  data.tar.gz: 383e4b76b2014d5ad3837c6f0153730e7ac6aa81ca70a0a276963726cdb060dc
 SHA512:
-  metadata.gz: 4c79bb431a51fdef3612cf997c414a945c2fdcbf4a538dfce31dc9aab01a5b9fa58169048aacad5052f333b26ba52591af81893a95e1af4aa928fc7723a151a1
-  data.tar.gz: d25550d90b1caf944f3652c036e30b69ade9265b31de704cbde55f57a549d8e971a052d05cc6a44f7e446f2dbb40a39bab97e18b5f25ea2a61adb744ac6c6513
+  metadata.gz: 9c0e2bb0834d17d6f9e16bca2d5fb29130a545fbb89526bb27582c055382bebc82cfb4fbb943db30a943de4261afd307017447d407e32977d8c5a656ebf2ee27
+  data.tar.gz: 324459b3127a4663edb326b8e4209530e99a6f35e0d5bb6cf5e0cb2107b4fcc30958cf44e87beac881045696f8a924301eaf5b82fc124f0528735bda47a3e431

data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb

@@ -24,7 +24,9 @@ module Dependabot
           /module .* found \(.*\), but does not contain package/m.freeze,
           # Package does not exist, has been pulled or cannot be reached due to
           # auth problems with either git or the go proxy
-          /go: .*: unknown revision/m.freeze
+          /go: .*: unknown revision/m.freeze,
+          # Package version doesn't match the module major version
+          /go: .*: go.mod has post-v\d+ module path/m.freeze
         ].freeze
 
         MODULE_PATH_MISMATCH_REGEXES = [

data/lib/dependabot/go_modules/requirement.rb

@@ -91,9 +91,7 @@ module Dependabot
       def replace_wildcard_in_lower_bound(req_string)
         after_wildcard = false
 
-        if req_string.start_with?("~")
-          req_string = req_string.gsub(/(?:(?:\.|^)[xX*])(\.[xX*])+/, "")
-        end
+        req_string = req_string.gsub(/(?:(?:\.|^)[xX*])(\.[xX*])+/, "") if req_string.start_with?("~")
 
         req_string.split(".").
           map do |part|

data/lib/dependabot/go_modules/update_checker.rb

@@ -121,9 +121,7 @@ module Dependabot
       def version_from_tag(tag)
         # To compare with the current version we either use the commit SHA
         # (if that's what the parser picked up) of the tag name.
-        if dependency.version&.match?(/^[0-9a-f]{40}$/)
-          return tag&.fetch(:commit_sha)
-        end
+        return tag&.fetch(:commit_sha) if dependency.version&.match?(/^[0-9a-f]{40}$/)
 
         tag&.fetch(:tag)
       end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-go_modules
 version: !ruby/object:Gem::Version
-  version: 0.124.5
+  version: 0.125.1
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-10-30 00:00:00.000000000 Z
+date: 2020-11-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.124.5
+        version: 0.125.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.124.5
+        version: 0.125.1
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement