dependabot-gradle 0.239.0 → 0.241.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/gradle/file_fetcher.rb +2 -12
  3. data/lib/dependabot/gradle/metadata_finder.rb +4 -4
  4. data/lib/dependabot/gradle/requirement.rb +1 -1
  5. metadata +21 -7
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 63e8e39c8268a8230fc199170e110a9cf3c2091e412a325decf124c1eff0621e
4
- data.tar.gz: b8f7c1f2257af45a1948528cc979fdab820b68ac75ed053d62da29a13ba6427a
3
+ metadata.gz: a38e4914e2e31d21c059dbb70e0d2e780d6729c669fd344f4c9ed2670ca1f39b
4
+ data.tar.gz: fe455d63441700f7c4ca9548a62d108aff64dcf1ddd445ad7e98816e492ff00d
5
5
  SHA512:
6
- metadata.gz: 16792e65936029689adafa0896e7da514fde1baa1f992b4521ea56025a24790e479b1ea1eb2afaf5412c5fcf4489598f32acebe6c4ea09f075baa9180497bb72
7
- data.tar.gz: 414264783e8bd7185b9a8f1b144e24845601a1d6d5b3b6f9dc6817b4081a0b656f45249812d54b1ed55eadc52d101a6cea2979974c4a6ae8b9cecc7890fa750d
6
+ metadata.gz: 4c2288bf7bdc933c3a6d439b088b63100a277020b956a9c83baf1bca6752efa75dd53b91b9472ba2dda2f25c353a98415d1c617ef049bef708ee20a76978c628
7
+ data.tar.gz: 1d1f9a103b0609a09195205378675946ce30a7ba854fe73304282686c08a4173107559cb451d71a5edba118e24e09f9b4a49bead90ed0ffc344867306b0a35d9
data/lib/dependabot/gradle/file_fetcher.rb CHANGED
@@ -26,7 +26,7 @@ module Dependabot
26
26
 
27
27
  def self.required_files_in?(filenames)
28
28
  filenames.any? do |filename|
29
- SUPPORTED_BUILD_FILE_NAMES.include?(filename)
29
+ SUPPORTED_BUILD_FILE_NAMES.any? { |supported| filename.end_with?(supported) }
30
30
  end
31
31
  end
32
32
 
@@ -36,9 +36,7 @@ module Dependabot
36
36
 
37
37
  sig { override.returns(T::Array[DependencyFile]) }
38
38
  def fetch_files
39
- files = all_buildfiles_in_build(".")
40
- check_required_files_present(files)
41
- files
39
+ all_buildfiles_in_build(".")
42
40
  end
43
41
 
44
42
  private
@@ -123,14 +121,6 @@ module Dependabot
123
121
  end
124
122
  # rubocop:enable Metrics/PerceivedComplexity
125
123
 
126
- def check_required_files_present(files)
127
- return if files.any?
128
-
129
- path = clean_join(directory, "build.gradle")
130
- path += "(.kts)?"
131
- raise Dependabot::DependencyFileNotFound, path
132
- end
133
-
134
124
  def file_exists_in_submodule?(path)
135
125
  fetch_file_from_host(path, fetch_submodules: true)
136
126
  true
data/lib/dependabot/gradle/metadata_finder.rb CHANGED
@@ -47,7 +47,7 @@ module Dependabot
47
47
  @repo_has_subdir_for_dep[tmp_source] =
48
48
  fetcher.send(:repo_contents, raise_errors: false)
49
49
  .select { |f| f.type == "dir" }
50
- .any? { |f| artifact.end_with?(f.name) }
50
+ .any? { |f| artifact&.end_with?(f.name) }
51
51
  rescue Dependabot::BranchNotFound
52
52
  tmp_source.branch = nil
53
53
  retry
@@ -101,7 +101,7 @@ module Dependabot
101
101
 
102
102
  github_urls.find do |url|
103
103
  repo = T.must(Source.from_url(url)).repo
104
- repo.end_with?(dependency.name.split(":").last)
104
+ repo.end_with?(T.must(dependency.name.split(":").last))
105
105
  end
106
106
  end
107
107
 
@@ -145,7 +145,7 @@ module Dependabot
145
145
 
146
146
  def maven_repo_url
147
147
  source = dependency.requirements
148
- .find { |r| r&.fetch(:source) }&.fetch(:source)
148
+ .find { |r| r.fetch(:source) }&.fetch(:source)
149
149
 
150
150
  source&.fetch(:url, nil) ||
151
151
  source&.fetch("url") ||
@@ -162,7 +162,7 @@ module Dependabot
162
162
  dependency.name.split(":")
163
163
  end
164
164
 
165
- "#{maven_repo_url}/#{group_id.tr('.', '/')}/#{artifact_id}"
165
+ "#{maven_repo_url}/#{group_id&.tr('.', '/')}/#{artifact_id}"
166
166
  end
167
167
 
168
168
  def plugin?
data/lib/dependabot/gradle/requirement.rb CHANGED
@@ -27,7 +27,7 @@ module Dependabot
27
27
 
28
28
  return DefaultRequirement if matches[1] == ">=" && matches[2] == "0"
29
29
 
30
- [matches[1] || "=", Gradle::Version.new(matches[2])]
30
+ [matches[1] || "=", Gradle::Version.new(T.must(matches[2]))]
31
31
  end
32
32
 
33
33
  sig { override.params(requirement_string: T.nilable(String)).returns(T::Array[Requirement]) }
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-gradle
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.239.0
4
+ version: 0.241.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-12-28 00:00:00.000000000 Z
11
+ date: 2024-01-18 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,28 +16,28 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.239.0
19
+ version: 0.241.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.239.0
26
+ version: 0.241.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: dependabot-maven
29
29
  requirement: !ruby/object:Gem::Requirement
30
30
  requirements:
31
31
  - - '='
32
32
  - !ruby/object:Gem::Version
33
- version: 0.239.0
33
+ version: 0.241.0
34
34
  type: :runtime
35
35
  prerelease: false
36
36
  version_requirements: !ruby/object:Gem::Requirement
37
37
  requirements:
38
38
  - - '='
39
39
  - !ruby/object:Gem::Version
40
- version: 0.239.0
40
+ version: 0.241.0
41
41
  - !ruby/object:Gem::Dependency
42
42
  name: debug
43
43
  requirement: !ruby/object:Gem::Requirement
@@ -220,6 +220,20 @@ dependencies:
220
220
  - - "~>"
221
221
  - !ruby/object:Gem::Version
222
222
  version: '3.18'
223
+ - !ruby/object:Gem::Dependency
224
+ name: webrick
225
+ requirement: !ruby/object:Gem::Requirement
226
+ requirements:
227
+ - - ">="
228
+ - !ruby/object:Gem::Version
229
+ version: '1.7'
230
+ type: :development
231
+ prerelease: false
232
+ version_requirements: !ruby/object:Gem::Requirement
233
+ requirements:
234
+ - - ">="
235
+ - !ruby/object:Gem::Version
236
+ version: '1.7'
223
237
  description: Dependabot-Gradle provides support for bumping Gradle packages via Dependabot.
224
238
  If you want support for multiple package managers, you probably want the meta-gem
225
239
  dependabot-omnibus.
@@ -249,7 +263,7 @@ licenses:
249
263
  - Nonstandard
250
264
  metadata:
251
265
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
252
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.239.0
266
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.241.0
253
267
  post_install_message:
254
268
  rdoc_options: []
255
269
  require_paths: