dependabot-go_modules 0.226.0 → 0.228.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb +2 -2
  3. data/lib/dependabot/go_modules/resolvability_errors.rb +12 -14
  4. data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb +1 -1
  5. metadata +9 -9
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 461bd5d6b002a335aa5d487519f1b11b409c467be3fad52c87017aa1687e8154
4
- data.tar.gz: c628e5be88b130fce99a9af3e80c90d805b66ff4ce6845a029d7566e397f07ee
3
+ metadata.gz: 5b44fa9f728127b4003c2654f3f5848ef682e8a398d3056f5cb735b5f7a11d78
4
+ data.tar.gz: d94ff58e1bff9c363f20efd158b3fa949650942a2324601a8c9ec878f2e7d759
5
5
  SHA512:
6
- metadata.gz: 2fe37090c0a5dc2e99e4c375fa1fcff5665206266895cd5ca8b5fe072fc7c33df00c4b63d539b4ebc7cfb8808f60fc6b3fd7ca4f53d02e8c1ec00488a8b99ef9
7
- data.tar.gz: 555cc2e22d53610244d353ff4b4e203a303ad3f82aeabc8af4a425b7f4a988b02314d117b9e82719ad253ec7fb089ddedeb5188583821c23d9af6379c8bf7de3
6
+ metadata.gz: 70b7c170f5631d3f33f2de907d69edf61a6e58c9fb5363307156be98a6256a3bbc41a80d5cb55e1e6f6d6db4d3dbb78d18df603eaa0cef65b6c0539a33882a0b
7
+ data.tar.gz: 8f5e6c7b6baad727707a91a525cafb06b4ba77e9f46d9737882756213b55366f9da7ec6f846d155b99a0a9bcca2a15d7bb3dd2aecdf787bcd9ec9576ec6e1ed2
data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb CHANGED
@@ -61,7 +61,7 @@ module Dependabot
61
61
  /no space left on device/
62
62
  ].freeze
63
63
 
64
- GO_MOD_VERSION = /^go 1\.[\d]+$/
64
+ GO_MOD_VERSION = /^go 1\.\d+(\.\d+)?$/
65
65
 
66
66
  def initialize(dependencies:, dependency_files:, credentials:, repo_contents_path:,
67
67
  directory:, options:)
@@ -266,7 +266,7 @@ module Dependabot
266
266
  repo_error_regex = REPO_RESOLVABILITY_ERROR_REGEXES.find { |r| stderr =~ r }
267
267
  if repo_error_regex
268
268
  error_message = filter_error_message(message: stderr, regex: repo_error_regex)
269
- ResolvabilityErrors.handle(error_message, credentials: credentials, goprivate: @goprivate)
269
+ ResolvabilityErrors.handle(error_message, goprivate: @goprivate)
270
270
  end
271
271
 
272
272
  path_regex = MODULE_PATH_MISMATCH_REGEXES.find { |r| stderr =~ r }
data/lib/dependabot/go_modules/resolvability_errors.rb CHANGED
@@ -5,29 +5,27 @@ module Dependabot
5
5
  module ResolvabilityErrors
6
6
  GITHUB_REPO_REGEX = %r{github.com/[^:@]*}
7
7
 
8
- def self.handle(message, credentials:, goprivate:)
8
+ def self.handle(message, goprivate:)
9
9
  mod_path = message.scan(GITHUB_REPO_REGEX).last
10
10
  raise Dependabot::DependencyFileNotResolvable, message unless mod_path
11
11
 
12
12
  # Module not found on github.com - query for _any_ version to know if it
13
13
  # doesn't exist (or is private) or we were just given a bad revision by this manifest
14
14
  SharedHelpers.in_a_temporary_directory do
15
- SharedHelpers.with_git_configured(credentials: credentials) do
16
- File.write("go.mod", "module dummy\n")
15
+ File.write("go.mod", "module dummy\n")
17
16
 
18
- mod_split = mod_path.split("/")
19
- repo_path = if mod_split.size > 3
20
- mod_split[0..2].join("/")
21
- else
22
- mod_path
23
- end
17
+ mod_split = mod_path.split("/")
18
+ repo_path = if mod_split.size > 3
19
+ mod_split[0..2].join("/")
20
+ else
21
+ mod_path
22
+ end
24
23
 
25
- env = { "GOPRIVATE" => goprivate }
26
- _, _, status = Open3.capture3(env, SharedHelpers.escape_command("go list -m -versions #{repo_path}"))
27
- raise Dependabot::DependencyFileNotResolvable, message if status.success?
24
+ env = { "GOPRIVATE" => goprivate }
25
+ _, _, status = Open3.capture3(env, SharedHelpers.escape_command("go list -m -versions #{repo_path}"))
26
+ raise Dependabot::DependencyFileNotResolvable, message if status.success?
28
27
 
29
- raise Dependabot::GitDependenciesNotReachable, [repo_path]
30
- end
28
+ raise Dependabot::GitDependenciesNotReachable, [repo_path]
31
29
  end
32
30
  end
33
31
  end
data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb CHANGED
@@ -115,7 +115,7 @@ module Dependabot
115
115
 
116
116
  def handle_subprocess_error(error)
117
117
  if RESOLVABILITY_ERROR_REGEXES.any? { |rgx| error.message =~ rgx }
118
- ResolvabilityErrors.handle(error.message, credentials: credentials, goprivate: @goprivate)
118
+ ResolvabilityErrors.handle(error.message, goprivate: @goprivate)
119
119
  elsif INVALID_VERSION_REGEX.match?(error.message)
120
120
  raise Dependabot::DependencyFileNotResolvable, error.message
121
121
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-go_modules
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.226.0
4
+ version: 0.228.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-08-11 00:00:00.000000000 Z
11
+ date: 2023-08-25 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.226.0
19
+ version: 0.228.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.226.0
26
+ version: 0.228.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -114,28 +114,28 @@ dependencies:
114
114
  requirements:
115
115
  - - "~>"
116
116
  - !ruby/object:Gem::Version
117
- version: 1.50.0
117
+ version: 1.56.0
118
118
  type: :development
119
119
  prerelease: false
120
120
  version_requirements: !ruby/object:Gem::Requirement
121
121
  requirements:
122
122
  - - "~>"
123
123
  - !ruby/object:Gem::Version
124
- version: 1.50.0
124
+ version: 1.56.0
125
125
  - !ruby/object:Gem::Dependency
126
126
  name: rubocop-performance
127
127
  requirement: !ruby/object:Gem::Requirement
128
128
  requirements:
129
129
  - - "~>"
130
130
  - !ruby/object:Gem::Version
131
- version: 1.18.0
131
+ version: 1.19.0
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
- version: 1.18.0
138
+ version: 1.19.0
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: stackprof
141
141
  requirement: !ruby/object:Gem::Requirement
@@ -211,7 +211,7 @@ licenses:
211
211
  - Nonstandard
212
212
  metadata:
213
213
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
214
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.226.0
214
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.228.0
215
215
  post_install_message:
216
216
  rdoc_options: []
217
217
  require_paths: