dependabot-go_modules 0.383.0 → 0.385.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 74c065d77334d58ec5d9edcd161daece8b1b2e37adc38b1a7afd3fc8e781c2f7
|
|
4
|
+
data.tar.gz: c5093f709c300b889cb8406a2c89fea74f63c838d3a8e100e580710b693173a3
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 02eec6f48647eac9a54a15e8b0eaff4dc2e328ca98baa9e9d5001cfe0043557f4bef13b4ac98a21b51eb21e43b895f97bf53fe22bc20a3a1aad7bb0dddd5a6ad
|
|
7
|
+
data.tar.gz: 7a1e3133a3f13a0624bdfb016078f30988de4822f6bd77abb9ee9efac24f4bce6868e4e0628219090f6593ba17ccc4d86b6e53c84d487ef2af80ada0e0f3868f
|
|
@@ -146,7 +146,7 @@ module Dependabot
|
|
|
146
146
|
return if go_env&.content&.include?("GOPROXY")
|
|
147
147
|
return if goproxy_credentials.any?
|
|
148
148
|
|
|
149
|
-
goprivate = options.fetch(:goprivate, "*")
|
|
149
|
+
goprivate = T.cast(options.fetch(:goprivate, "*"), T.nilable(String))
|
|
150
150
|
ENV["GOPRIVATE"] = goprivate if goprivate
|
|
151
151
|
end
|
|
152
152
|
|
|
@@ -160,7 +160,7 @@ module Dependabot
|
|
|
160
160
|
return if go_env_includes_any?(%w(GONOPROXY GOPRIVATE GOPROXY))
|
|
161
161
|
return if goproxy_credentials.any?
|
|
162
162
|
|
|
163
|
-
gonoproxy = options.fetch(:gonoproxy, nil)
|
|
163
|
+
gonoproxy = T.cast(options.fetch(:gonoproxy, nil), T.nilable(String))
|
|
164
164
|
ENV["GONOPROXY"] = gonoproxy if gonoproxy
|
|
165
165
|
end
|
|
166
166
|
|
|
@@ -171,7 +171,7 @@ module Dependabot
|
|
|
171
171
|
def set_gonosumdb_variable
|
|
172
172
|
return if go_env_includes_any?(%w(GONOSUMDB GOPRIVATE))
|
|
173
173
|
|
|
174
|
-
gonosumdb = options.fetch(:gonosumdb, nil)
|
|
174
|
+
gonosumdb = T.cast(options.fetch(:gonosumdb, nil), T.nilable(String))
|
|
175
175
|
ENV["GONOSUMDB"] = gonosumdb if gonosumdb
|
|
176
176
|
end
|
|
177
177
|
|
|
@@ -34,8 +34,11 @@ module Dependabot
|
|
|
34
34
|
@version_string = T.let(version.to_s.gsub(/^v/, ""), String)
|
|
35
35
|
version = version.gsub(/^v/, "") if version.is_a?(String)
|
|
36
36
|
version = version.to_s.split("+").first if version.to_s.include?("+")
|
|
37
|
-
|
|
38
|
-
|
|
37
|
+
# NOTE: avoid the name `@prerelease`; RubyGems 4's Gem::Version#prerelease?
|
|
38
|
+
# memoizes its boolean result into an `@prerelease` ivar, so reusing that
|
|
39
|
+
# name here would corrupt the inherited prerelease? check.
|
|
40
|
+
@prerelease_suffix = T.let(nil, T.nilable(String))
|
|
41
|
+
version, @prerelease_suffix = version.to_s.split("-", 2) if version.to_s.include?("-")
|
|
39
42
|
|
|
40
43
|
super
|
|
41
44
|
end
|
|
@@ -50,6 +53,19 @@ module Dependabot
|
|
|
50
53
|
@version_string
|
|
51
54
|
end
|
|
52
55
|
|
|
56
|
+
# Go represents prereleases as a dash-suffix (e.g. "1.2.0-pre2"), which is
|
|
57
|
+
# stripped off before being handed to Gem::Version. As a result the parent's
|
|
58
|
+
# prerelease? check (which looks for alphabetic characters in the version it
|
|
59
|
+
# was given) can't see the suffix, so we report the suffix here and otherwise
|
|
60
|
+
# delegate to Gem::Version for dot-style prereleases such as "1.0.0.pre1".
|
|
61
|
+
sig { returns(T::Boolean) }
|
|
62
|
+
def prerelease?
|
|
63
|
+
suffix = @prerelease_suffix
|
|
64
|
+
return true if suffix && !suffix.empty?
|
|
65
|
+
|
|
66
|
+
super
|
|
67
|
+
end
|
|
68
|
+
|
|
53
69
|
sig { params(other: Object).returns(T.nilable(Integer)) }
|
|
54
70
|
def <=>(other)
|
|
55
71
|
result = super
|
|
@@ -57,13 +73,13 @@ module Dependabot
|
|
|
57
73
|
return result unless result.zero?
|
|
58
74
|
|
|
59
75
|
other = self.class.new(other.to_s) unless other.is_a?(Version)
|
|
60
|
-
compare_prerelease(@
|
|
76
|
+
compare_prerelease(@prerelease_suffix || "", T.unsafe(other).prerelease_suffix || "")
|
|
61
77
|
end
|
|
62
78
|
|
|
63
79
|
protected
|
|
64
80
|
|
|
65
81
|
sig { returns(T.nilable(String)) }
|
|
66
|
-
attr_reader :
|
|
82
|
+
attr_reader :prerelease_suffix
|
|
67
83
|
|
|
68
84
|
private
|
|
69
85
|
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-go_modules
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.385.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -15,14 +15,14 @@ dependencies:
|
|
|
15
15
|
requirements:
|
|
16
16
|
- - '='
|
|
17
17
|
- !ruby/object:Gem::Version
|
|
18
|
-
version: 0.
|
|
18
|
+
version: 0.385.0
|
|
19
19
|
type: :runtime
|
|
20
20
|
prerelease: false
|
|
21
21
|
version_requirements: !ruby/object:Gem::Requirement
|
|
22
22
|
requirements:
|
|
23
23
|
- - '='
|
|
24
24
|
- !ruby/object:Gem::Version
|
|
25
|
-
version: 0.
|
|
25
|
+
version: 0.385.0
|
|
26
26
|
- !ruby/object:Gem::Dependency
|
|
27
27
|
name: debug
|
|
28
28
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -275,7 +275,7 @@ licenses:
|
|
|
275
275
|
- MIT
|
|
276
276
|
metadata:
|
|
277
277
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
278
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
278
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.385.0
|
|
279
279
|
rdoc_options: []
|
|
280
280
|
require_paths:
|
|
281
281
|
- lib
|
|
@@ -290,7 +290,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
290
290
|
- !ruby/object:Gem::Version
|
|
291
291
|
version: 3.3.0
|
|
292
292
|
requirements: []
|
|
293
|
-
rubygems_version:
|
|
293
|
+
rubygems_version: 4.0.14
|
|
294
294
|
specification_version: 4
|
|
295
295
|
summary: Provides Dependabot support for Go Modules
|
|
296
296
|
test_files: []
|