dependabot-go_modules 0.159.1 → 0.161.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/go.mod +2 -2
  3. data/helpers/go.sum +4 -4
  4. data/helpers/updatechecker/main.go +2 -1
  5. data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb +1 -1
  6. data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb +3 -1
  7. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b11213f416c5225bc46bdb8674a23e4b548b96dcdc222a6e95dd208f1f773db8
4
- data.tar.gz: 87ed3830ec3854ffa063ef96643dcd191465cd1194295e3254564592a655e415
3
+ metadata.gz: cdc977a32fe4bf62c3744a47a529d63c8831d20f8b347e28b661cad629941893
4
+ data.tar.gz: b64c4dd967b3344b32970bb48bfe8c75907396e6793e3d8c7781e78ab8d2bfb4
5
5
  SHA512:
6
- metadata.gz: 2621ca0ed607cce5e1792a2ee35db2076425e3c11e9bf318233dffb42a21195cdeaff4d06479af7ec19427f06f0b8a9f3eeac9379dbc9d57ecf25a54933a36cd
7
- data.tar.gz: b03bd0204ac46169fbb3edfb74473641a6da24052f4b1c53e3e559039d0bd28f7c11526f5ef086053c8bbd34f8a84f488e45c8bfb6eeecd8b9ac1948e5f8c2db
6
+ metadata.gz: 8cf529c037c40d13e9f9a402621c7aaffec8c47757c2d05578b538267ce90e19352d1cf8a28ac8247c417f9e8cd3313c6d6706a49a2412e3ab7183c8230627a3
7
+ data.tar.gz: be20e3c9bba14cff778890c81341b752ac7e05bc9ad3f0391c74079f6b539a9102c029ea0515e9b7f1aaea24b2f7eaa7f02314b08ac7dcbb67b2672408832f3e
data/helpers/go.mod CHANGED
@@ -4,6 +4,6 @@ go 1.16
4
4
 
5
5
  require (
6
6
  github.com/Masterminds/vcs v1.13.1
7
- github.com/dependabot/gomodules-extracted v1.3.0
8
- golang.org/x/mod v0.4.2
7
+ github.com/dependabot/gomodules-extracted v1.4.1
8
+ golang.org/x/mod v0.5.0
9
9
  )
data/helpers/go.sum CHANGED
@@ -1,12 +1,12 @@
1
1
  github.com/Masterminds/vcs v1.13.1 h1:NL3G1X7/7xduQtA2sJLpVpfHTNBALVNSjob6KEjPXNQ=
2
2
  github.com/Masterminds/vcs v1.13.1/go.mod h1:N09YCmOQr6RLxC6UNHzuVwAdodYbbnycGHSmwVJjcKA=
3
- github.com/dependabot/gomodules-extracted v1.3.0 h1:Rsnl5uR+wjE+7ontePia/B3p48aBRsyEhyNrzCwbkaw=
4
- github.com/dependabot/gomodules-extracted v1.3.0/go.mod h1:cpzrmDX1COyhSDQXHfkRMw0STb0vmguBFqmrkr51h1I=
3
+ github.com/dependabot/gomodules-extracted v1.4.1 h1:GbodKHQWk7P7whnNlM1DgphYibwEDHW320SMpLjjTl0=
4
+ github.com/dependabot/gomodules-extracted v1.4.1/go.mod h1:cpzrmDX1COyhSDQXHfkRMw0STb0vmguBFqmrkr51h1I=
5
5
  golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
6
6
  golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550 h1:ObdrDkeb4kJdCP557AjRjq69pTHfNouLtWZG7j9rPN8=
7
7
  golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
8
- golang.org/x/mod v0.4.2 h1:Gz96sIWK3OalVv/I/qNygP42zyoKp3xptRVCWRFEBvo=
9
- golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
8
+ golang.org/x/mod v0.5.0 h1:UG21uOlmZabA4fW5i7ZX6bjw1xELEGg/ZLgZq9auk/Q=
9
+ golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
10
10
  golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
11
11
  golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
12
12
  golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
data/helpers/updatechecker/main.go CHANGED
@@ -29,7 +29,8 @@ func GetVersions(args *Args) (interface{}, error) {
29
29
 
30
30
  currentVersion := args.Dependency.Version
31
31
 
32
- modload.LoadModFile(context.Background())
32
+ modload.DisallowWriteGoMod()
33
+ _ = modload.LoadModFile(context.Background())
33
34
 
34
35
  repo := modfetch.Lookup("direct", args.Dependency.Name)
35
36
  versions, err := repo.Versions("")
data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb CHANGED
@@ -25,7 +25,7 @@ module Dependabot
25
25
  /fatal: The remote end hung up unexpectedly/,
26
26
  /repository '.+' not found/,
27
27
  # (Private) module could not be fetched
28
- /go: .*: git fetch .*: exit status 128/m.freeze,
28
+ /go: .*: git (fetch|ls-remote) .*: exit status 128/m.freeze,
29
29
  # (Private) module could not be found
30
30
  /cannot find module providing package/.freeze,
31
31
  # Package in module was likely renamed or removed
data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb CHANGED
@@ -19,7 +19,9 @@ module Dependabot
19
19
  # Package url 404s
20
20
  /404 Not Found/,
21
21
  /Repository not found/,
22
- /unrecognized import path/
22
+ /unrecognized import path/,
23
+ # (Private) module could not be fetched
24
+ /module .*: git ls-remote .*: exit status 128/m.freeze
23
25
  ].freeze
24
26
  PSEUDO_VERSION_REGEX = /\b\d{14}-[0-9a-f]{12}$/.freeze
25
27
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-go_modules
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.159.1
4
+ version: 0.161.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-08-16 00:00:00.000000000 Z
11
+ date: 2021-09-01 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.159.1
19
+ version: 0.161.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.159.1
26
+ version: 0.161.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement