dependabot-hex 0.382.0 → 0.383.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/hex/update_checker/requirements_updater.rb +14 -8
  3. data/lib/dependabot/hex/update_checker.rb +5 -7
  4. data/lib/dependabot/hex/version.rb +2 -2
  5. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: d30a6b85cb4d11034b0a994f70c459d50c4cce50619e046f2dda98667a62a87d
4
- data.tar.gz: 5397825e87152376bdaf3540a0f73359d0942f0f6e34b35704fbd70f87e8895c
3
+ metadata.gz: 2b20fcffb21d285f6a822c0fe9eac1f71475215bfea771a2a4249a86e11f8f78
4
+ data.tar.gz: e9f9031cdfac162522bdb9313b98f553cf733c0e01bb6a78dbeba4bd0992b0d6
5
5
  SHA512:
6
- metadata.gz: b04a93ab8a68ccf6d73462d3535a8f8b2fa15ea9be6afd7a929b27d6b8d763f68c18fdf7d8f0bad51b69f641eb351906215f1f924f948e5ad6328f455ffbb242
7
- data.tar.gz: 33876d9eb16e15500e452caaec75862977b8f9df3d541d92fccdec49c8f1427287b5b6b1497ff0efb4f288494ccff2f41b7bcb4c18e037d6a75a789923274c6f
6
+ metadata.gz: 1cda2121146c2a3f9a8496653d9ffb16e19053dfc41bf83af73753381ebf4a7cca02d5236801527ff92b887a3da63e0dc8262bda5771912dda80c93231e200c0
7
+ data.tar.gz: 2be433fa3a02061982c3dcf3177d7e6269edf1c5294cd2f1052cf204a9d9e112e017e4ba078ff2e15ed5f21ea2c54b3857eb097978c42cf6f4f0ebb171dda51e
data/lib/dependabot/hex/update_checker/requirements_updater.rb CHANGED
@@ -3,6 +3,7 @@
3
3
 
4
4
  require "sorbet-runtime"
5
5
 
6
+ require "dependabot/dependency_requirement"
6
7
  require "dependabot/hex/version"
7
8
  require "dependabot/hex/requirement"
8
9
  require "dependabot/hex/update_checker"
@@ -20,7 +21,7 @@ module Dependabot
20
21
 
21
22
  sig do
22
23
  params(
23
- requirements: T::Array[T::Hash[Symbol, T.untyped]],
24
+ requirements: T::Array[Dependabot::DependencyRequirement],
24
25
  latest_resolvable_version: T.nilable(String),
25
26
  updated_source: T.nilable(T::Hash[Symbol, T.nilable(String)])
26
27
  ).void
@@ -30,7 +31,10 @@ module Dependabot
30
31
  latest_resolvable_version:,
31
32
  updated_source:
32
33
  )
33
- @requirements = T.let(requirements, T::Array[T::Hash[Symbol, T.untyped]])
34
+ @requirements = T.let(
35
+ requirements.map { |req| Dependabot::DependencyRequirement.create(req) },
36
+ T::Array[Dependabot::DependencyRequirement]
37
+ )
34
38
  @updated_source = T.let(updated_source, T.nilable(T::Hash[Symbol, T.nilable(String)]))
35
39
  @latest_resolvable_version = T.let(nil, T.nilable(Dependabot::Version))
36
40
 
@@ -40,14 +44,14 @@ module Dependabot
40
44
  @latest_resolvable_version = Hex::Version.new(latest_resolvable_version)
41
45
  end
42
46
 
43
- sig { returns(T::Array[T::Hash[Symbol, T.untyped]]) }
47
+ sig { returns(T::Array[Dependabot::DependencyRequirement]) }
44
48
  def updated_requirements
45
49
  requirements.map { |req| updated_mixfile_requirement(req) }
46
50
  end
47
51
 
48
52
  private
49
53
 
50
- sig { returns(T::Array[T::Hash[Symbol, T.untyped]]) }
54
+ sig { returns(T::Array[Dependabot::DependencyRequirement]) }
51
55
  attr_reader :requirements
52
56
 
53
57
  sig { returns(T.nilable(Dependabot::Version)) }
@@ -58,7 +62,7 @@ module Dependabot
58
62
 
59
63
  # rubocop:disable Metrics/PerceivedComplexity
60
64
  # rubocop:disable Metrics/AbcSize
61
- sig { params(req: T::Hash[Symbol, T.untyped]).returns(T::Hash[Symbol, T.untyped]) }
65
+ sig { params(req: Dependabot::DependencyRequirement).returns(Dependabot::DependencyRequirement) }
62
66
  def updated_mixfile_requirement(req)
63
67
  req = update_source(req)
64
68
  return req unless latest_resolvable_version && req[:requirement]
@@ -81,18 +85,20 @@ module Dependabot
81
85
 
82
86
  new_requirement = req[:requirement] + " or " + new_requirement if or_string_reqs.count > 1
83
87
 
84
- req.merge(requirement: new_requirement)
88
+ Dependabot::DependencyRequirement.create(req.merge(requirement: new_requirement))
85
89
  end
86
90
  # rubocop:enable Metrics/AbcSize
87
91
  # rubocop:enable Metrics/PerceivedComplexity
88
92
 
89
- sig { params(requirement_hash: T::Hash[Symbol, T.untyped]).returns(T::Hash[Symbol, T.untyped]) }
93
+ sig do
94
+ params(requirement_hash: Dependabot::DependencyRequirement).returns(Dependabot::DependencyRequirement)
95
+ end
90
96
  def update_source(requirement_hash)
91
97
  # Only git sources ever need to be updated. Anything else should be
92
98
  # left alone.
93
99
  return requirement_hash unless requirement_hash.dig(:source, :type) == "git"
94
100
 
95
- requirement_hash.merge(source: updated_source)
101
+ Dependabot::DependencyRequirement.create(requirement_hash.merge(source: updated_source))
96
102
  end
97
103
 
98
104
  sig { params(requirement_string: String).returns(T::Boolean) }
data/lib/dependabot/hex/update_checker.rb CHANGED
@@ -59,13 +59,11 @@ module Dependabot
59
59
 
60
60
  sig { override.returns(T::Array[Dependabot::DependencyRequirement]) }
61
61
  def updated_requirements
62
- wrap_requirements(
63
- RequirementsUpdater.new(
64
- requirements: dependency.requirements,
65
- updated_source: updated_source,
66
- latest_resolvable_version: latest_resolvable_version&.to_s
67
- ).updated_requirements
68
- )
62
+ RequirementsUpdater.new(
63
+ requirements: dependency.requirements,
64
+ updated_source: updated_source,
65
+ latest_resolvable_version: latest_resolvable_version&.to_s
66
+ ).updated_requirements
69
67
  end
70
68
 
71
69
  private
data/lib/dependabot/hex/version.rb CHANGED
@@ -1,4 +1,4 @@
1
- # typed: strict
1
+ # typed: strong
2
2
  # frozen_string_literal: true
3
3
 
4
4
  require "sorbet-runtime"
@@ -48,7 +48,7 @@ module Dependabot
48
48
  "#<#{self.class} #{@version_string}>"
49
49
  end
50
50
 
51
- sig { params(other: T.untyped).returns(T.nilable(Integer)) }
51
+ sig { params(other: Object).returns(T.nilable(Integer)) }
52
52
  def <=>(other)
53
53
  version_comparison = super
54
54
  return version_comparison unless version_comparison&.zero?
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-hex
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.382.0
4
+ version: 0.383.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
@@ -15,14 +15,14 @@ dependencies:
15
15
  requirements:
16
16
  - - '='
17
17
  - !ruby/object:Gem::Version
18
- version: 0.382.0
18
+ version: 0.383.0
19
19
  type: :runtime
20
20
  prerelease: false
21
21
  version_requirements: !ruby/object:Gem::Requirement
22
22
  requirements:
23
23
  - - '='
24
24
  - !ruby/object:Gem::Version
25
- version: 0.382.0
25
+ version: 0.383.0
26
26
  - !ruby/object:Gem::Dependency
27
27
  name: debug
28
28
  requirement: !ruby/object:Gem::Requirement
@@ -274,7 +274,7 @@ licenses:
274
274
  - MIT
275
275
  metadata:
276
276
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
277
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.382.0
277
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.383.0
278
278
  rdoc_options: []
279
279
  require_paths:
280
280
  - lib