dependabot-go_modules 0.246.0 → 0.248.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 0aa95e6a02b761020d32e76225b9237400c1c6f81c72cb29e50753fa20197e46
4
- data.tar.gz: cb999eea307817d7138f1305ff11e5b791dc6bd8aabb6c32ad2e8becd19d9c26
3
+ metadata.gz: e7476dde1b288dd6ee4a82cd421837ed66efa0f08d2da98e2fcea56f6491e11b
4
+ data.tar.gz: c72cce92a6860a2d66f63941be2f8c91a134792281d7bfb2893aeb00ae774e23
5
5
  SHA512:
6
- metadata.gz: 98afdc03ee45b5b2697a1c2b143008d63b9ba96ab5160ff3291b9eaeaa2b355b80683e86066efbb8037b1aa6a14f75446aa411f3ea3fbf8caf7de61e5a2159e0
7
- data.tar.gz: 4877a525a0aca109ded8be8a29f321bca44178071200e2cb63a45184dfa0f97d03cac53c0069b400d01230c86bea15da0d4000a06702099d6ac4c2fa5df20d09
6
+ metadata.gz: b783358ead8f4180fe472c4f40e16d31240d046b0ef7a54ed1860ccac49e4c1b85beb59d50b0e0c88710c7327a1d14c8d7914bfb8e25b10abf1a8fa5ecb4cc33
7
+ data.tar.gz: 31a099b196ee68e8103b8a7a3b13d2bf78da7264beb4c6eb7f2c4f822aff3ccc18a08a06b9a37d0fa67cebbe686ab8dc8d52a9bf8920ee097b6c19bbf8eaa593
@@ -55,10 +55,6 @@ module Dependabot
55
55
 
56
56
  @go_sum = fetch_file_if_present("go.sum")
57
57
  end
58
-
59
- def recurse_submodules_when_cloning?
60
- true
61
- end
62
58
  end
63
59
  end
64
60
  end
@@ -9,11 +9,14 @@ require "dependabot/shared_helpers"
9
9
  require "dependabot/errors"
10
10
  require "dependabot/go_modules/requirement"
11
11
  require "dependabot/go_modules/resolvability_errors"
12
+ require "sorbet-runtime"
12
13
 
13
14
  module Dependabot
14
15
  module GoModules
15
16
  class UpdateChecker
16
17
  class LatestVersionFinder
18
+ extend T::Sig
19
+
17
20
  RESOLVABILITY_ERROR_REGEXES = [
18
21
  # Package url/proxy doesn't include any redirect meta tags
19
22
  /no go-import meta tags/,
@@ -136,10 +139,15 @@ module Dependabot
136
139
  end
137
140
  end
138
141
 
142
+ sig { params(versions_array: T::Array[Gem::Version]).returns(T::Array[Gem::Version]) }
139
143
  def filter_prerelease_versions(versions_array)
140
144
  return versions_array if wants_prerelease?
141
145
 
142
- versions_array.reject(&:prerelease?)
146
+ filtered = versions_array.reject(&:prerelease?)
147
+ if versions_array.count > filtered.count
148
+ Dependabot.logger.info("Filtered out #{versions_array.count - filtered.count} pre-release versions")
149
+ end
150
+ filtered
143
151
  end
144
152
 
145
153
  def filter_lower_versions(versions_array)
@@ -149,6 +157,7 @@ module Dependabot
149
157
  .select { |version| version > dependency.numeric_version }
150
158
  end
151
159
 
160
+ sig { params(versions_array: T::Array[Gem::Version]).returns(T::Array[Gem::Version]) }
152
161
  def filter_ignored_versions(versions_array)
153
162
  filtered = versions_array
154
163
  .reject { |v| ignore_requirements.any? { |r| r.satisfied_by?(v) } }
@@ -156,6 +165,10 @@ module Dependabot
156
165
  raise AllVersionsIgnored
157
166
  end
158
167
 
168
+ if versions_array.count > filtered.count
169
+ Dependabot.logger.info("Filtered out #{versions_array.count - filtered.count} ignored versions")
170
+ end
171
+
159
172
  filtered
160
173
  end
161
174
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-go_modules
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.246.0
4
+ version: 0.248.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-03-01 00:00:00.000000000 Z
11
+ date: 2024-03-21 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.246.0
19
+ version: 0.248.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.246.0
26
+ version: 0.248.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -136,6 +136,20 @@ dependencies:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
138
  version: 1.19.0
139
+ - !ruby/object:Gem::Dependency
140
+ name: rubocop-rspec
141
+ requirement: !ruby/object:Gem::Requirement
142
+ requirements:
143
+ - - "~>"
144
+ - !ruby/object:Gem::Version
145
+ version: 2.27.1
146
+ type: :development
147
+ prerelease: false
148
+ version_requirements: !ruby/object:Gem::Requirement
149
+ requirements:
150
+ - - "~>"
151
+ - !ruby/object:Gem::Version
152
+ version: 2.27.1
139
153
  - !ruby/object:Gem::Dependency
140
154
  name: rubocop-sorbet
141
155
  requirement: !ruby/object:Gem::Requirement
@@ -253,7 +267,7 @@ licenses:
253
267
  - Nonstandard
254
268
  metadata:
255
269
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
256
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.246.0
270
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.248.0
257
271
  post_install_message:
258
272
  rdoc_options: []
259
273
  require_paths: