dependabot-go_modules 0.227.0 → 0.229.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c02bc783acee302833e388822ff46540c7cb2123b7383030de0128e5e2afefda
-  data.tar.gz: 7251f4950da361833edbf3febfaf2f07759a8471d010367169a58f7486958583
+  metadata.gz: 25963c13733b77e18a851936eeae42c9c4179ea6b2a460bf56702f34bf6f225a
+  data.tar.gz: 2c8202f2db63396f85c38d76d3415a32679a38afe797299c3855f6e732dffc72
 SHA512:
-  metadata.gz: a775f9b8090ca945718db61ee6b5118374081da7b854db7958b0943396b9e40441f97ebe7b1d98725f6a8dd3984c28eb8cdfb926422e748a92fdf1df26783132
-  data.tar.gz: 3466ac3aaa4534221c3b2c122c29473d0d2f630ebcccdcd9a171fbd7612902c0c935c2f29cce7140c09e915454638698745cf92564769cfc66ddf1a7277c125e
+  metadata.gz: cdad4b2f370fe4530cfa4962042cfa626973741c4339c6c79aa69e527c4d9fbe312f962b50f747c68a9b04bc9e28f71ebe5309be5b6f1b7a11dbaca3ac4fb3e7
+  data.tar.gz: 4fdc69f5455f88320bcce10b42a0d2ba54703977b7bcd233cd5ee98bb1721aa64ff03d14e1269b76d931a717b875807d6233035389a0ea8163cb154ad70185b8

data/lib/dependabot/go_modules/file_updater/go_mod_updater.rb

@@ -266,7 +266,7 @@ module Dependabot
           repo_error_regex = REPO_RESOLVABILITY_ERROR_REGEXES.find { |r| stderr =~ r }
           if repo_error_regex
             error_message = filter_error_message(message: stderr, regex: repo_error_regex)
-            ResolvabilityErrors.handle(error_message, credentials: credentials, goprivate: @goprivate)
+            ResolvabilityErrors.handle(error_message, goprivate: @goprivate)
           end
 
           path_regex = MODULE_PATH_MISMATCH_REGEXES.find { |r| stderr =~ r }

data/lib/dependabot/go_modules/resolvability_errors.rb

@@ -5,29 +5,27 @@ module Dependabot
     module ResolvabilityErrors
       GITHUB_REPO_REGEX = %r{github.com/[^:@]*}
 
-      def self.handle(message, credentials:, goprivate:)
+      def self.handle(message, goprivate:)
         mod_path = message.scan(GITHUB_REPO_REGEX).last
         raise Dependabot::DependencyFileNotResolvable, message unless mod_path
 
         # Module not found on github.com - query for _any_ version to know if it
         # doesn't exist (or is private) or we were just given a bad revision by this manifest
         SharedHelpers.in_a_temporary_directory do
-          SharedHelpers.with_git_configured(credentials: credentials) do
-            File.write("go.mod", "module dummy\n")
+          File.write("go.mod", "module dummy\n")
 
-            mod_split = mod_path.split("/")
-            repo_path = if mod_split.size > 3
-                          mod_split[0..2].join("/")
-                        else
-                          mod_path
-                        end
+          mod_split = mod_path.split("/")
+          repo_path = if mod_split.size > 3
+                        mod_split[0..2].join("/")
+                      else
+                        mod_path
+                      end
 
-            env = { "GOPRIVATE" => goprivate }
-            _, _, status = Open3.capture3(env, SharedHelpers.escape_command("go list -m -versions #{repo_path}"))
-            raise Dependabot::DependencyFileNotResolvable, message if status.success?
+          env = { "GOPRIVATE" => goprivate }
+          _, _, status = Open3.capture3(env, SharedHelpers.escape_command("go list -m -versions #{repo_path}"))
+          raise Dependabot::DependencyFileNotResolvable, message if status.success?
 
-            raise Dependabot::GitDependenciesNotReachable, [repo_path]
-          end
+          raise Dependabot::GitDependenciesNotReachable, [repo_path]
         end
       end
     end

data/lib/dependabot/go_modules/update_checker/latest_version_finder.rb

@@ -115,7 +115,7 @@ module Dependabot
 
         def handle_subprocess_error(error)
           if RESOLVABILITY_ERROR_REGEXES.any? { |rgx| error.message =~ rgx }
-            ResolvabilityErrors.handle(error.message, credentials: credentials, goprivate: @goprivate)
+            ResolvabilityErrors.handle(error.message, goprivate: @goprivate)
           elsif INVALID_VERSION_REGEX.match?(error.message)
             raise Dependabot::DependencyFileNotResolvable, error.message
           end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-go_modules
 version: !ruby/object:Gem::Version
-  version: 0.227.0
+  version: 0.229.0
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-08-18 00:00:00.000000000 Z
+date: 2023-08-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.227.0
+        version: 0.229.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.227.0
+        version: 0.229.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -114,14 +114,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.50.0
+        version: 1.56.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.50.0
+        version: 1.56.0
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
@@ -211,7 +211,7 @@ licenses:
 - Nonstandard
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.227.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.229.0
 post_install_message: 
 rdoc_options: []
 require_paths: