dependabot-hex 0.288.0 → 0.290.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: de947b54edb7aab3b13922863aa3818d3766d554f70e86c265294348f78f2352
-  data.tar.gz: 0a713b7df6145d0866b2738c75beb00498bdd58a306ee7cccd6ec127b0b6154d
+  metadata.gz: 2cd59b11d59aea71eed67b694d5dfa8b898c94401bb3a89b32a39e754cc4020f
+  data.tar.gz: ff9124cf8fa64d54c9f12a3f4b7a1246365978a4c570f90a037acc69243d3a40
 SHA512:
-  metadata.gz: a2b03dd1df00e2fc044b36b1cb1b0d3e6260a3c5afac12e6141df4c21a8c636b5ebf409510b802b5c57465384250f594ee18fa16f8a429ffed52f267d63e1bb8
-  data.tar.gz: 3a2dc776371f64ce8f1e3ed305ec409741863ff444c0dc959523fb1f617329f22f0139ef47b2e585931a382de0caa1ed1f9c73f2b82162c454af983f118025ba
+  metadata.gz: fbb8aaf473f7fe4c5d919dae5dc31bb0a1c99975a182027e8f3d9fb55ceab87ffc5a284514dbb35a37648842ec13b32b7e8ec0ec618a5a5af3fad2f7d962ab07
+  data.tar.gz: 7ce62f94e8ca0dd30471a8172095eb951bf0a775675c9f959d60b923fb6fdb94b41551a4bb5044faccc830fc61ec0d6876acb96be77d93f364897f92bc4457dd

data/lib/dependabot/hex/file_parser.rb

@@ -7,12 +7,16 @@ require "dependabot/file_parsers"
 require "dependabot/file_parsers/base"
 require "dependabot/hex/file_updater/mixfile_sanitizer"
 require "dependabot/hex/native_helpers"
+require "dependabot/hex/language"
+require "dependabot/hex/package_manager"
+require "dependabot/hex/requirement"
 require "dependabot/shared_helpers"
 require "dependabot/errors"
 
 # For docs, see https://hexdocs.pm/mix/Mix.Tasks.Deps.html
 module Dependabot
   module Hex
+    extend T::Sig
     class FileParser < Dependabot::FileParsers::Base
       extend T::Sig
       require "dependabot/file_parsers/base/dependency_set"
@@ -44,6 +48,17 @@ module Dependabot
         dependency_set.dependencies.sort_by(&:name)
       end
 
+      sig { returns(Ecosystem) }
+      def ecosystem
+        @ecosystem ||= T.let(begin
+          Ecosystem.new(
+            name: ECOSYSTEM,
+            package_manager: package_manager,
+            language: language
+          )
+        end, T.nilable(Dependabot::Ecosystem))
+      end
+
       private
 
       sig { returns(T::Array[T.any(T::Hash[String, String], T::Hash[String, T.untyped])]) }
@@ -137,6 +152,43 @@ module Dependabot
       def lockfile
         @lockfile ||= T.let(get_original_file("mix.lock"), T.nilable(Dependabot::DependencyFile))
       end
+
+      sig { returns(Ecosystem::VersionManager) }
+      def package_manager
+        @package_manager ||= T.let(
+          PackageManager.new(hex_version),
+          T.nilable(Dependabot::Hex::PackageManager)
+        )
+      end
+
+      sig { returns(T.nilable(Ecosystem::VersionManager)) }
+      def language
+        @language ||= T.let(
+          Language.new(elixir_version),
+          T.nilable(Dependabot::Hex::Language)
+        )
+      end
+
+      sig { returns(String) }
+      def hex_version
+        T.must(T.must(hex_info).fetch(:hex_version))
+      end
+
+      sig { returns(String) }
+      def elixir_version
+        T.must(T.must(hex_info).fetch(:elixir_version))
+      end
+
+      sig { returns(T.nilable(T::Hash[Symbol, T.nilable(String)])) }
+      def hex_info
+        @hex_info ||= T.let(begin
+          version = SharedHelpers.run_shell_command("mix hex.info")
+          {
+            hex_version: version.match(/Hex: \s*(\d+\.\d+(.\d+)*)/)&.captures&.first,
+            elixir_version: version.match(/Elixir: \s*(\d+\.\d+(.\d+)*)/)&.captures&.first
+          }
+        end, T.nilable(T::Hash[Symbol, T.nilable(String)]))
+      end
     end
   end
 end

data/lib/dependabot/hex/language.rb

@@ -0,0 +1,21 @@
+# typed: strong
+# frozen_string_literal: true
+
+require "sorbet-runtime"
+require "dependabot/ecosystem"
+require "dependabot/hex/version"
+
+module Dependabot
+  module Hex
+    LANGUAGE = "elixir"
+
+    class Language < Dependabot::Ecosystem::VersionManager
+      extend T::Sig
+
+      sig { params(raw_version: String).void }
+      def initialize(raw_version)
+        super(LANGUAGE, Version.new(raw_version))
+      end
+    end
+  end
+end

data/lib/dependabot/hex/package_manager.rb

@@ -0,0 +1,41 @@
+# typed: strong
+# frozen_string_literal: true
+
+require "sorbet-runtime"
+require "dependabot/ecosystem"
+require "dependabot/hex/version"
+
+module Dependabot
+  module Hex
+    ECOSYSTEM = "hex"
+    PACKAGE_MANAGER = "hex"
+    SUPPORTED_HEX_VERSIONS = T.let([].freeze, T::Array[Dependabot::Version])
+
+    # When a version is going to be unsupported, it will be added here
+    DEPRECATED_HEX_VERSIONS = T.let([].freeze, T::Array[Dependabot::Version])
+
+    class PackageManager < Dependabot::Ecosystem::VersionManager
+      extend T::Sig
+
+      sig { params(raw_version: String).void }
+      def initialize(raw_version)
+        super(
+          PACKAGE_MANAGER,
+          Version.new(raw_version),
+          DEPRECATED_HEX_VERSIONS,
+          SUPPORTED_HEX_VERSIONS
+        )
+      end
+
+      sig { returns(T::Boolean) }
+      def deprecated?
+        false
+      end
+
+      sig { returns(T::Boolean) }
+      def unsupported?
+        false
+      end
+    end
+  end
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-hex
 version: !ruby/object:Gem::Version
-  version: 0.288.0
+  version: 0.290.0
 platform: ruby
 authors:
 - Dependabot
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-11-21 00:00:00.000000000 Z
+date: 2024-12-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.288.0
+        version: 0.290.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.288.0
+        version: 0.290.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -259,8 +259,10 @@ files:
 - lib/dependabot/hex/file_updater/mixfile_requirement_updater.rb
 - lib/dependabot/hex/file_updater/mixfile_sanitizer.rb
 - lib/dependabot/hex/file_updater/mixfile_updater.rb
+- lib/dependabot/hex/language.rb
 - lib/dependabot/hex/metadata_finder.rb
 - lib/dependabot/hex/native_helpers.rb
+- lib/dependabot/hex/package_manager.rb
 - lib/dependabot/hex/requirement.rb
 - lib/dependabot/hex/update_checker.rb
 - lib/dependabot/hex/update_checker/file_preparer.rb
@@ -272,8 +274,8 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.288.0
-post_install_message: 
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.290.0
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -289,7 +291,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: 3.1.0
 requirements: []
 rubygems_version: 3.5.9
-signing_key: 
+signing_key:
 specification_version: 4
 summary: Provides Dependabot support for Elixir (hex)
 test_files: []