dependabot-maven 0.236.0 → 0.237.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/dependabot/maven/file_fetcher.rb +7 -2
- data/lib/dependabot/maven/metadata_finder.rb +1 -1
- metadata +21 -7
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 7edac94e52e42ac0557bf77616a30a33dc20bd0d2d14817a74acdbc4082c155f
|
4
|
+
data.tar.gz: ada3140145eaab44180812c4fd0f8255d8350a8e3341eb1d5b93be9c7d1238c5
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 38ec5482781048d76cf0e2e5565f1667fee52ba8a88821290a6f773cf785974bf6b1e2f43e59de89263616f1847e4af0a9af157f60139adbb189707862325306
|
7
|
+
data.tar.gz: 3cdb003135571004f1e14a198d4cf15af379cee0d6fe253ebca47cffa56748735a68ebeb6913fb2596eec37fa83e71cc98a0941d2483d2b99b99113256b5e2d0
|
@@ -2,12 +2,16 @@
|
|
2
2
|
# frozen_string_literal: true
|
3
3
|
|
4
4
|
require "nokogiri"
|
5
|
+
require "sorbet-runtime"
|
5
6
|
require "dependabot/file_fetchers"
|
6
7
|
require "dependabot/file_fetchers/base"
|
7
8
|
|
8
9
|
module Dependabot
|
9
10
|
module Maven
|
10
11
|
class FileFetcher < Dependabot::FileFetchers::Base
|
12
|
+
extend T::Sig
|
13
|
+
extend T::Helpers
|
14
|
+
|
11
15
|
MODULE_SELECTOR = "project > modules > module, " \
|
12
16
|
"profile > modules > module"
|
13
17
|
|
@@ -19,8 +23,7 @@ module Dependabot
|
|
19
23
|
"Repo must contain a pom.xml."
|
20
24
|
end
|
21
25
|
|
22
|
-
|
23
|
-
|
26
|
+
sig { override.returns(T::Array[DependencyFile]) }
|
24
27
|
def fetch_files
|
25
28
|
fetched_files = []
|
26
29
|
fetched_files << pom
|
@@ -30,6 +33,8 @@ module Dependabot
|
|
30
33
|
fetched_files.uniq
|
31
34
|
end
|
32
35
|
|
36
|
+
private
|
37
|
+
|
33
38
|
def pom
|
34
39
|
@pom ||= fetch_file_from_host("pom.xml")
|
35
40
|
end
|
@@ -36,7 +36,7 @@ module Dependabot
|
|
36
36
|
return @repo_has_subdir_for_dep[tmp_source] if @repo_has_subdir_for_dep.key?(tmp_source)
|
37
37
|
|
38
38
|
fetcher =
|
39
|
-
|
39
|
+
Dependabot::Maven::FileFetcher.new(source: tmp_source, credentials: credentials)
|
40
40
|
|
41
41
|
@repo_has_subdir_for_dep[tmp_source] =
|
42
42
|
fetcher.send(:repo_contents, raise_errors: false)
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-maven
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.237.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-11-21 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.237.0
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.
|
26
|
+
version: 0.237.0
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: debug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -94,20 +94,34 @@ dependencies:
|
|
94
94
|
- - "~>"
|
95
95
|
- !ruby/object:Gem::Version
|
96
96
|
version: '1.3'
|
97
|
+
- !ruby/object:Gem::Dependency
|
98
|
+
name: rspec-sorbet
|
99
|
+
requirement: !ruby/object:Gem::Requirement
|
100
|
+
requirements:
|
101
|
+
- - "~>"
|
102
|
+
- !ruby/object:Gem::Version
|
103
|
+
version: 1.9.2
|
104
|
+
type: :development
|
105
|
+
prerelease: false
|
106
|
+
version_requirements: !ruby/object:Gem::Requirement
|
107
|
+
requirements:
|
108
|
+
- - "~>"
|
109
|
+
- !ruby/object:Gem::Version
|
110
|
+
version: 1.9.2
|
97
111
|
- !ruby/object:Gem::Dependency
|
98
112
|
name: rubocop
|
99
113
|
requirement: !ruby/object:Gem::Requirement
|
100
114
|
requirements:
|
101
115
|
- - "~>"
|
102
116
|
- !ruby/object:Gem::Version
|
103
|
-
version: 1.
|
117
|
+
version: 1.57.2
|
104
118
|
type: :development
|
105
119
|
prerelease: false
|
106
120
|
version_requirements: !ruby/object:Gem::Requirement
|
107
121
|
requirements:
|
108
122
|
- - "~>"
|
109
123
|
- !ruby/object:Gem::Version
|
110
|
-
version: 1.
|
124
|
+
version: 1.57.2
|
111
125
|
- !ruby/object:Gem::Dependency
|
112
126
|
name: rubocop-performance
|
113
127
|
requirement: !ruby/object:Gem::Requirement
|
@@ -222,7 +236,7 @@ licenses:
|
|
222
236
|
- Nonstandard
|
223
237
|
metadata:
|
224
238
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
225
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
239
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.237.0
|
226
240
|
post_install_message:
|
227
241
|
rdoc_options: []
|
228
242
|
require_paths:
|