dependabot-gradle 0.118.4 → 0.118.10
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/gradle/update_checker/version_finder.rb +9 -1
- metadata +7 -21
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b0a2c654f49be44a2b9a13961b06583f380aa77376b8b4105fac9bfdf815a961
|
|
4
|
+
data.tar.gz: 63936e234c75f4c0c8cf39db29480495d0319ff77dfb66b153ed013233f1d490
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: cef4ba8cb427b7b1c096f6d6603dcf460d86bed4311ba24ce454cc0eb7b83d323820e22a14cd9359c4a01d9fa839279fd52eeb55fba5276c85344966bbe715ec
|
|
7
|
+
data.tar.gz: 2e764e22aee6868b740488c511baee349508947dc8b6f24d8f160a171eef74bbe40924ea9e4bac0d56f69809b3faa37d0a48a8f6c66101a9a3a114f551eae150
|
|
@@ -15,6 +15,8 @@ module Dependabot
|
|
|
15
15
|
GRADLE_PLUGINS_REPO = "https://plugins.gradle.org/m2"
|
|
16
16
|
TYPE_SUFFICES = %w(jre android java).freeze
|
|
17
17
|
|
|
18
|
+
GRADLE_RANGE_REGEX = /[\(\[].*,.*[\)\]]/.freeze
|
|
19
|
+
|
|
18
20
|
def initialize(dependency:, dependency_files:, credentials:,
|
|
19
21
|
ignored_versions:, raise_on_ignored: false,
|
|
20
22
|
security_advisories:)
|
|
@@ -97,7 +99,7 @@ module Dependabot
|
|
|
97
99
|
filtered = possible_versions
|
|
98
100
|
|
|
99
101
|
ignored_versions.each do |req|
|
|
100
|
-
ignore_req = Gradle::Requirement.new(req
|
|
102
|
+
ignore_req = Gradle::Requirement.new(parse_requirement_string(req))
|
|
101
103
|
filtered =
|
|
102
104
|
filtered.
|
|
103
105
|
reject { |v| ignore_req.satisfied_by?(v.fetch(:version)) }
|
|
@@ -128,6 +130,12 @@ module Dependabot
|
|
|
128
130
|
end
|
|
129
131
|
end
|
|
130
132
|
|
|
133
|
+
def parse_requirement_string(string)
|
|
134
|
+
return string if string.match?(GRADLE_RANGE_REGEX)
|
|
135
|
+
|
|
136
|
+
string.split(",").map(&:strip)
|
|
137
|
+
end
|
|
138
|
+
|
|
131
139
|
def wants_prerelease?
|
|
132
140
|
return false unless dependency.version
|
|
133
141
|
return false unless version_class.correct?(dependency.version)
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-gradle
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.118.
|
|
4
|
+
version: 0.118.10
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-
|
|
11
|
+
date: 2020-08-03 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.118.
|
|
19
|
+
version: 0.118.10
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.118.
|
|
26
|
+
version: 0.118.10
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -94,34 +94,20 @@ dependencies:
|
|
|
94
94
|
- - "~>"
|
|
95
95
|
- !ruby/object:Gem::Version
|
|
96
96
|
version: '1.2'
|
|
97
|
-
- !ruby/object:Gem::Dependency
|
|
98
|
-
name: rspec_junit_formatter
|
|
99
|
-
requirement: !ruby/object:Gem::Requirement
|
|
100
|
-
requirements:
|
|
101
|
-
- - "~>"
|
|
102
|
-
- !ruby/object:Gem::Version
|
|
103
|
-
version: '0.4'
|
|
104
|
-
type: :development
|
|
105
|
-
prerelease: false
|
|
106
|
-
version_requirements: !ruby/object:Gem::Requirement
|
|
107
|
-
requirements:
|
|
108
|
-
- - "~>"
|
|
109
|
-
- !ruby/object:Gem::Version
|
|
110
|
-
version: '0.4'
|
|
111
97
|
- !ruby/object:Gem::Dependency
|
|
112
98
|
name: rubocop
|
|
113
99
|
requirement: !ruby/object:Gem::Requirement
|
|
114
100
|
requirements:
|
|
115
101
|
- - "~>"
|
|
116
102
|
- !ruby/object:Gem::Version
|
|
117
|
-
version: 0.
|
|
103
|
+
version: 0.88.0
|
|
118
104
|
type: :development
|
|
119
105
|
prerelease: false
|
|
120
106
|
version_requirements: !ruby/object:Gem::Requirement
|
|
121
107
|
requirements:
|
|
122
108
|
- - "~>"
|
|
123
109
|
- !ruby/object:Gem::Version
|
|
124
|
-
version: 0.
|
|
110
|
+
version: 0.88.0
|
|
125
111
|
- !ruby/object:Gem::Dependency
|
|
126
112
|
name: vcr
|
|
127
113
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -192,7 +178,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
192
178
|
- !ruby/object:Gem::Version
|
|
193
179
|
version: 2.5.0
|
|
194
180
|
requirements: []
|
|
195
|
-
rubygems_version: 3.
|
|
181
|
+
rubygems_version: 3.1.2
|
|
196
182
|
signing_key:
|
|
197
183
|
specification_version: 4
|
|
198
184
|
summary: Gradle support for dependabot
|