dependabot-go_modules 0.159.1 → 0.161.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/go.mod +2 -2
  3. data/helpers/go.sum +4 -4
  4. data/helpers/updatechecker/main.go +2 -1
  5. data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb +1 -1
  6. data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb +3 -1
  7. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b11213f416c5225bc46bdb8674a23e4b548b96dcdc222a6e95dd208f1f773db8
4
- data.tar.gz: 87ed3830ec3854ffa063ef96643dcd191465cd1194295e3254564592a655e415
3
+ metadata.gz: cdc977a32fe4bf62c3744a47a529d63c8831d20f8b347e28b661cad629941893
4
+ data.tar.gz: b64c4dd967b3344b32970bb48bfe8c75907396e6793e3d8c7781e78ab8d2bfb4
5
5
  SHA512:
6
- metadata.gz: 2621ca0ed607cce5e1792a2ee35db2076425e3c11e9bf318233dffb42a21195cdeaff4d06479af7ec19427f06f0b8a9f3eeac9379dbc9d57ecf25a54933a36cd
7
- data.tar.gz: b03bd0204ac46169fbb3edfb74473641a6da24052f4b1c53e3e559039d0bd28f7c11526f5ef086053c8bbd34f8a84f488e45c8bfb6eeecd8b9ac1948e5f8c2db
6
+ metadata.gz: 8cf529c037c40d13e9f9a402621c7aaffec8c47757c2d05578b538267ce90e19352d1cf8a28ac8247c417f9e8cd3313c6d6706a49a2412e3ab7183c8230627a3
7
+ data.tar.gz: be20e3c9bba14cff778890c81341b752ac7e05bc9ad3f0391c74079f6b539a9102c029ea0515e9b7f1aaea24b2f7eaa7f02314b08ac7dcbb67b2672408832f3e
data/helpers/go.mod CHANGED
@@ -4,6 +4,6 @@ go 1.16
4
4
 
5
5
  require (
6
6
  github.com/Masterminds/vcs v1.13.1
7
- github.com/dependabot/gomodules-extracted v1.3.0
8
- golang.org/x/mod v0.4.2
7
+ github.com/dependabot/gomodules-extracted v1.4.1
8
+ golang.org/x/mod v0.5.0
9
9
  )
data/helpers/go.sum CHANGED
@@ -1,12 +1,12 @@
1
1
  github.com/Masterminds/vcs v1.13.1 h1:NL3G1X7/7xduQtA2sJLpVpfHTNBALVNSjob6KEjPXNQ=
2
2
  github.com/Masterminds/vcs v1.13.1/go.mod h1:N09YCmOQr6RLxC6UNHzuVwAdodYbbnycGHSmwVJjcKA=
3
- github.com/dependabot/gomodules-extracted v1.3.0 h1:Rsnl5uR+wjE+7ontePia/B3p48aBRsyEhyNrzCwbkaw=
4
- github.com/dependabot/gomodules-extracted v1.3.0/go.mod h1:cpzrmDX1COyhSDQXHfkRMw0STb0vmguBFqmrkr51h1I=
3
+ github.com/dependabot/gomodules-extracted v1.4.1 h1:GbodKHQWk7P7whnNlM1DgphYibwEDHW320SMpLjjTl0=
4
+ github.com/dependabot/gomodules-extracted v1.4.1/go.mod h1:cpzrmDX1COyhSDQXHfkRMw0STb0vmguBFqmrkr51h1I=
5
5
  golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
6
6
  golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550 h1:ObdrDkeb4kJdCP557AjRjq69pTHfNouLtWZG7j9rPN8=
7
7
  golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
8
- golang.org/x/mod v0.4.2 h1:Gz96sIWK3OalVv/I/qNygP42zyoKp3xptRVCWRFEBvo=
9
- golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
8
+ golang.org/x/mod v0.5.0 h1:UG21uOlmZabA4fW5i7ZX6bjw1xELEGg/ZLgZq9auk/Q=
9
+ golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
10
10
  golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
11
11
  golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
12
12
  golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
data/helpers/updatechecker/main.go CHANGED
@@ -29,7 +29,8 @@ func GetVersions(args *Args) (interface{}, error) {
29
29
 
30
30
  currentVersion := args.Dependency.Version
31
31
 
32
- modload.LoadModFile(context.Background())
32
+ modload.DisallowWriteGoMod()
33
+ _ = modload.LoadModFile(context.Background())
33
34
 
34
35
  repo := modfetch.Lookup("direct", args.Dependency.Name)
35
36
  versions, err := repo.Versions("")
data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb CHANGED
@@ -25,7 +25,7 @@ module Dependabot
25
25
  /fatal: The remote end hung up unexpectedly/,
26
26
  /repository '.+' not found/,
27
27
  # (Private) module could not be fetched
28
- /go: .*: git fetch .*: exit status 128/m.freeze,
28
+ /go: .*: git (fetch|ls-remote) .*: exit status 128/m.freeze,
29
29
  # (Private) module could not be found
30
30
  /cannot find module providing package/.freeze,
31
31
  # Package in module was likely renamed or removed
data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb CHANGED
@@ -19,7 +19,9 @@ module Dependabot
19
19
  # Package url 404s
20
20
  /404 Not Found/,
21
21
  /Repository not found/,
22
- /unrecognized import path/
22
+ /unrecognized import path/,
23
+ # (Private) module could not be fetched
24
+ /module .*: git ls-remote .*: exit status 128/m.freeze
23
25
  ].freeze
24
26
  PSEUDO_VERSION_REGEX = /\b\d{14}-[0-9a-f]{12}$/.freeze
25
27
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-go_modules
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.159.1
4
+ version: 0.161.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-08-16 00:00:00.000000000 Z
11
+ date: 2021-09-01 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.159.1
19
+ version: 0.161.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.159.1
26
+ version: 0.161.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement