dependabot-gradle 0.374.0 → 0.375.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/gradle/package/release_date_extractor.rb +18 -6
- metadata +6 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 32cf71eceb94cce61d93df445d82e2a7c850239262817e12bb32951c40bb6993
|
|
4
|
+
data.tar.gz: 8c284ae6607e962e164ec4b62f27f8c1e3e579c182f2c41b735ce6b8a3acd36a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 1b8f8766524956880f2d857f5e4766d5caf0faf38535e83a445bb22eb8a302f01858586fe78d056594a4be5562b85733bf538f11fc637682b891649ce22580bf
|
|
7
|
+
data.tar.gz: 41cc0d7e7791dffed1f27d7c280a0eff38d8eec076652da7dcce6a4d138e7d0ea8a98895250268b23dadf48fa3ff0cda7ed67d438b049b393073b420fbf2f9cb
|
|
@@ -88,11 +88,10 @@ module Dependabot
|
|
|
88
88
|
).void
|
|
89
89
|
end
|
|
90
90
|
def parse_maven_central_releases(repository_details, release_date_info, metadata_fetcher)
|
|
91
|
-
metadata_fetcher.call(repository_details).css("a[
|
|
92
|
-
|
|
93
|
-
next unless
|
|
91
|
+
metadata_fetcher.call(repository_details).css("a[href]").each do |link|
|
|
92
|
+
version = T.let(extract_version_from_link(link), T.nilable(String))
|
|
93
|
+
next unless version
|
|
94
94
|
|
|
95
|
-
version = title.gsub(%r{/$}, "")
|
|
96
95
|
next unless version_class.correct?(version)
|
|
97
96
|
next if release_date_info.key?(version)
|
|
98
97
|
|
|
@@ -136,11 +135,24 @@ module Dependabot
|
|
|
136
135
|
)
|
|
137
136
|
end
|
|
138
137
|
|
|
138
|
+
sig { params(link: Nokogiri::XML::Element).returns(T.nilable(String)) }
|
|
139
|
+
def extract_version_from_link(link)
|
|
140
|
+
href = link["href"]&.strip
|
|
141
|
+
return unless href&.end_with?("/")
|
|
142
|
+
|
|
143
|
+
identifier = link["title"] || link.text || href
|
|
144
|
+
|
|
145
|
+
identifier.to_s.strip.gsub(%r{/$}, "")
|
|
146
|
+
end
|
|
147
|
+
|
|
139
148
|
# Extracts release date from HTML link element's adjacent text.
|
|
140
149
|
sig { params(link: Nokogiri::XML::Element, version: String).returns(T.nilable(Time)) }
|
|
141
150
|
def extract_release_date_from_link(link, version)
|
|
142
|
-
raw_date_text = link.next
|
|
143
|
-
|
|
151
|
+
raw_date_text = link.next&.text.to_s
|
|
152
|
+
date_match = raw_date_text.match(/\b(?:\d{4}-\d{2}-\d{2}|\d{2}-[A-Za-z]{3}-\d{4}) \d{2}:\d{2}\b/)
|
|
153
|
+
return Time.parse(date_match[0]) if date_match
|
|
154
|
+
|
|
155
|
+
Time.parse(raw_date_text.strip)
|
|
144
156
|
rescue StandardError => e
|
|
145
157
|
Dependabot.logger.debug(
|
|
146
158
|
"Failed to parse release date for #{dependency_name} version #{version}: #{e.message}"
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-gradle
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.375.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -15,28 +15,28 @@ dependencies:
|
|
|
15
15
|
requirements:
|
|
16
16
|
- - '='
|
|
17
17
|
- !ruby/object:Gem::Version
|
|
18
|
-
version: 0.
|
|
18
|
+
version: 0.375.0
|
|
19
19
|
type: :runtime
|
|
20
20
|
prerelease: false
|
|
21
21
|
version_requirements: !ruby/object:Gem::Requirement
|
|
22
22
|
requirements:
|
|
23
23
|
- - '='
|
|
24
24
|
- !ruby/object:Gem::Version
|
|
25
|
-
version: 0.
|
|
25
|
+
version: 0.375.0
|
|
26
26
|
- !ruby/object:Gem::Dependency
|
|
27
27
|
name: dependabot-maven
|
|
28
28
|
requirement: !ruby/object:Gem::Requirement
|
|
29
29
|
requirements:
|
|
30
30
|
- - '='
|
|
31
31
|
- !ruby/object:Gem::Version
|
|
32
|
-
version: 0.
|
|
32
|
+
version: 0.375.0
|
|
33
33
|
type: :runtime
|
|
34
34
|
prerelease: false
|
|
35
35
|
version_requirements: !ruby/object:Gem::Requirement
|
|
36
36
|
requirements:
|
|
37
37
|
- - '='
|
|
38
38
|
- !ruby/object:Gem::Version
|
|
39
|
-
version: 0.
|
|
39
|
+
version: 0.375.0
|
|
40
40
|
- !ruby/object:Gem::Dependency
|
|
41
41
|
name: debug
|
|
42
42
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -285,7 +285,7 @@ licenses:
|
|
|
285
285
|
- MIT
|
|
286
286
|
metadata:
|
|
287
287
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
288
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
288
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.375.0
|
|
289
289
|
rdoc_options: []
|
|
290
290
|
require_paths:
|
|
291
291
|
- lib
|