RubyGems - dependabot-go_modules - Versions diffs - 0.140.1 → 0.142.0 - Mend

dependabot-go_modules 0.140.1 → 0.142.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml +4 -4
data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb +9 -3
metadata +5 -5

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6bf43a42098ba260cc053559d269e6c52cc108317b9af2eb44397cc3c1b60cf3
-  data.tar.gz: 1f48ed349f303afad842a5d21c514fe06e69338b47c3475b7fe8381b0f7ecc3e
+  metadata.gz: 93ccbc8d286c5d1fe5953a54837a313d0776f00788757157fef2b28c1c9a8472
+  data.tar.gz: 379ae90a7453e93c684e0112bf130dc89c3e9e2355f33dffa6eb5a75d99f0001
 SHA512:
-  metadata.gz: 98f15a169d695a42555df6d3c983f77e0b6d24f24965f761e626fbfd0b40f48b62470024f83079cbf28d6045630518eb3bb0c1709bec73054405ca5a38f47d8a
-  data.tar.gz: f61146f169507d8a69f0a243e7b04329cd96c808a25c8e39405384edea4833416d7aa8a87944319ccabcc3d46e269620f9ecba2e8a2e5b2a9fed09450ab95446
+  metadata.gz: ced08eaf16398aea4147a85a400fee2bc1f72d93a5c52e8168ca71b352dfb759a179ae13090b19632a4088c40e8183a4f7a66698a98f06d0959f5fc827e5c731
+  data.tar.gz: 9eb48c20f2822ede56cac54dc199ccd4717fcc6b566696c4e55c3aac2c0bfd2f58305e7e0b9a7df91d869d2b56553497020864298a9176af9beb8f2b8c42828d

data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb CHANGED Viewed

@@ -15,12 +15,14 @@ module Dependabot
         ENVIRONMENT = { "GOPRIVATE" => "*" }.freeze
         RESOLVABILITY_ERROR_REGEXES = [
-          # The checksum in go.sum does not match the dowloaded content
+          # The checksum in go.sum does not match the downloaded content
           /verifying .*: checksum mismatch/.freeze,
           /go: .*: go.mod has post-v\d+ module path/
         ].freeze
         REPO_RESOLVABILITY_ERROR_REGEXES = [
+          /fatal: The remote end hung up unexpectedly/,
+          /repository '.+' not found/,
           # (Private) module could not be fetched
           /go: .*: git fetch .*: exit status 128/.freeze,
           # (Private) module could not be found
@@ -36,6 +38,7 @@ module Dependabot
         ].freeze
         MODULE_PATH_MISMATCH_REGEXES = [
+          /go get: \S+ updating to\n\s+\S+\sparsing\sgo.mod:\n\s+module declares its path as: \S+\n\s+but was required as: \S+/,
           /go: ([^@\s]+)(?:@[^\s]+)?: .* has non-.* module path "(.*)" at/,
           /go: ([^@\s]+)(?:@[^\s]+)?: .* unexpected module path "(.*)"/,
           /go: ([^@\s]+)(?:@[^\s]+)?: .* declares its path as: ([\S]*)/m
@@ -193,8 +196,7 @@ module Dependabot
         end
         def in_repo_path(&block)
-          SharedHelpers.
-            in_a_temporary_repo_directory(directory, repo_contents_path) do
+          SharedHelpers.in_a_temporary_repo_directory(directory, repo_contents_path) do
             SharedHelpers.with_git_configured(credentials: credentials) do
               block.call
             end
@@ -292,6 +294,10 @@ module Dependabot
             raise Dependabot::OutOfDisk.new, error_message
           end
+          if (matches = stderr.match(/Authentication failed for '(?<url>.+)'/))
+            raise Dependabot::PrivateSourceAuthenticationFailure, matches[:url]
+          end
           # We don't know what happened so we raise a generic error
           msg = stderr.lines.last(10).join.strip
           raise Dependabot::DependabotError, msg

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-go_modules
 version: !ruby/object:Gem::Version
-  version: 0.140.1
+  version: 0.142.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-04-08 00:00:00.000000000 Z
+date: 2021-04-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.140.1
+        version: 0.142.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.140.1
+        version: 0.142.0
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement
@@ -227,7 +227,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: 2.5.0
 requirements: []
-rubygems_version: 3.2.3
+rubygems_version: 3.2.15
 signing_key:
 specification_version: 4
 summary: Go modules support for dependabot