dependabot-go_modules 0.226.0 → 0.228.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb +2 -2
  3. data/lib/dependabot/go_modules/resolvability_errors.rb +12 -14
  4. data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb +1 -1
  5. metadata +9 -9
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 461bd5d6b002a335aa5d487519f1b11b409c467be3fad52c87017aa1687e8154
4
- data.tar.gz: c628e5be88b130fce99a9af3e80c90d805b66ff4ce6845a029d7566e397f07ee
3
+ metadata.gz: 5b44fa9f728127b4003c2654f3f5848ef682e8a398d3056f5cb735b5f7a11d78
4
+ data.tar.gz: d94ff58e1bff9c363f20efd158b3fa949650942a2324601a8c9ec878f2e7d759
5
5
  SHA512:
6
- metadata.gz: 2fe37090c0a5dc2e99e4c375fa1fcff5665206266895cd5ca8b5fe072fc7c33df00c4b63d539b4ebc7cfb8808f60fc6b3fd7ca4f53d02e8c1ec00488a8b99ef9
7
- data.tar.gz: 555cc2e22d53610244d353ff4b4e203a303ad3f82aeabc8af4a425b7f4a988b02314d117b9e82719ad253ec7fb089ddedeb5188583821c23d9af6379c8bf7de3
6
+ metadata.gz: 70b7c170f5631d3f33f2de907d69edf61a6e58c9fb5363307156be98a6256a3bbc41a80d5cb55e1e6f6d6db4d3dbb78d18df603eaa0cef65b6c0539a33882a0b
7
+ data.tar.gz: 8f5e6c7b6baad727707a91a525cafb06b4ba77e9f46d9737882756213b55366f9da7ec6f846d155b99a0a9bcca2a15d7bb3dd2aecdf787bcd9ec9576ec6e1ed2
data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb CHANGED
@@ -61,7 +61,7 @@ module Dependabot
61
61
  /no space left on device/
62
62
  ].freeze
63
63
 
64
- GO_MOD_VERSION = /^go 1\.[\d]+$/
64
+ GO_MOD_VERSION = /^go 1\.\d+(\.\d+)?$/
65
65
 
66
66
  def initialize(dependencies:, dependency_files:, credentials:, repo_contents_path:,
67
67
  directory:, options:)
@@ -266,7 +266,7 @@ module Dependabot
266
266
  repo_error_regex = REPO_RESOLVABILITY_ERROR_REGEXES.find { |r| stderr =~ r }
267
267
  if repo_error_regex
268
268
  error_message = filter_error_message(message: stderr, regex: repo_error_regex)
269
- ResolvabilityErrors.handle(error_message, credentials: credentials, goprivate: @goprivate)
269
+ ResolvabilityErrors.handle(error_message, goprivate: @goprivate)
270
270
  end
271
271
 
272
272
  path_regex = MODULE_PATH_MISMATCH_REGEXES.find { |r| stderr =~ r }
data/lib/dependabot/go_modules/resolvability_errors.rb CHANGED
@@ -5,29 +5,27 @@ module Dependabot
5
5
  module ResolvabilityErrors
6
6
  GITHUB_REPO_REGEX = %r{github.com/[^:@]*}
7
7
 
8
- def self.handle(message, credentials:, goprivate:)
8
+ def self.handle(message, goprivate:)
9
9
  mod_path = message.scan(GITHUB_REPO_REGEX).last
10
10
  raise Dependabot::DependencyFileNotResolvable, message unless mod_path
11
11
 
12
12
  # Module not found on github.com - query for _any_ version to know if it
13
13
  # doesn't exist (or is private) or we were just given a bad revision by this manifest
14
14
  SharedHelpers.in_a_temporary_directory do
15
- SharedHelpers.with_git_configured(credentials: credentials) do
16
- File.write("go.mod", "module dummy\n")
15
+ File.write("go.mod", "module dummy\n")
17
16
 
18
- mod_split = mod_path.split("/")
19
- repo_path = if mod_split.size > 3
20
- mod_split[0..2].join("/")
21
- else
22
- mod_path
23
- end
17
+ mod_split = mod_path.split("/")
18
+ repo_path = if mod_split.size > 3
19
+ mod_split[0..2].join("/")
20
+ else
21
+ mod_path
22
+ end
24
23
 
25
- env = { "GOPRIVATE" => goprivate }
26
- _, _, status = Open3.capture3(env, SharedHelpers.escape_command("go list -m -versions #{repo_path}"))
27
- raise Dependabot::DependencyFileNotResolvable, message if status.success?
24
+ env = { "GOPRIVATE" => goprivate }
25
+ _, _, status = Open3.capture3(env, SharedHelpers.escape_command("go list -m -versions #{repo_path}"))
26
+ raise Dependabot::DependencyFileNotResolvable, message if status.success?
28
27
 
29
- raise Dependabot::GitDependenciesNotReachable, [repo_path]
30
- end
28
+ raise Dependabot::GitDependenciesNotReachable, [repo_path]
31
29
  end
32
30
  end
33
31
  end
data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb CHANGED
@@ -115,7 +115,7 @@ module Dependabot
115
115
 
116
116
  def handle_subprocess_error(error)
117
117
  if RESOLVABILITY_ERROR_REGEXES.any? { |rgx| error.message =~ rgx }
118
- ResolvabilityErrors.handle(error.message, credentials: credentials, goprivate: @goprivate)
118
+ ResolvabilityErrors.handle(error.message, goprivate: @goprivate)
119
119
  elsif INVALID_VERSION_REGEX.match?(error.message)
120
120
  raise Dependabot::DependencyFileNotResolvable, error.message
121
121
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-go_modules
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.226.0
4
+ version: 0.228.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-08-11 00:00:00.000000000 Z
11
+ date: 2023-08-25 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.226.0
19
+ version: 0.228.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.226.0
26
+ version: 0.228.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -114,28 +114,28 @@ dependencies:
114
114
  requirements:
115
115
  - - "~>"
116
116
  - !ruby/object:Gem::Version
117
- version: 1.50.0
117
+ version: 1.56.0
118
118
  type: :development
119
119
  prerelease: false
120
120
  version_requirements: !ruby/object:Gem::Requirement
121
121
  requirements:
122
122
  - - "~>"
123
123
  - !ruby/object:Gem::Version
124
- version: 1.50.0
124
+ version: 1.56.0
125
125
  - !ruby/object:Gem::Dependency
126
126
  name: rubocop-performance
127
127
  requirement: !ruby/object:Gem::Requirement
128
128
  requirements:
129
129
  - - "~>"
130
130
  - !ruby/object:Gem::Version
131
- version: 1.18.0
131
+ version: 1.19.0
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
- version: 1.18.0
138
+ version: 1.19.0
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: stackprof
141
141
  requirement: !ruby/object:Gem::Requirement
@@ -211,7 +211,7 @@ licenses:
211
211
  - Nonstandard
212
212
  metadata:
213
213
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
214
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.226.0
214
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.228.0
215
215
  post_install_message:
216
216
  rdoc_options: []
217
217
  require_paths: