dependabot-maven 0.279.0 → 0.281.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 49f86ee20329548a1b6c5db7ce51674bb5679cbf364c793251703cd26af75beb
-  data.tar.gz: 64adcf33d3ef2cd9bc79902cbe03a8a6944598b2a9201f544277a9ee006ff942
+  metadata.gz: 4a44d4272c31da7ad1e781ed686c35dd031cb24b1643c3d6c71fd6ba7e18ac93
+  data.tar.gz: fd49944b79de242686a9fcdd941fb44cb32adc9eb67ce7c4933780f916dae344
 SHA512:
-  metadata.gz: '098eb0589c26a03b7a237b25273314fc502a3fd8196c6d1b4a8dfbb0300f3fc1da47e27bd942720244d2d6b744bc05590f795a3b911a78330214b3e5cca89bae'
-  data.tar.gz: e6f21a7a1835d927900f2c64f5e615c1c7576d75979d1e5b18eb45948b0eec4141508066ce107e89150633de2afb9f2dac5d16bfcad87f060ae641e41ce98823
+  metadata.gz: 681caa5965266aad2fd805953ab1d3e9042ca2f451c88affca3db5d817a28da54855b5d20bb44736677e70eb44097081e3861bcda327397da2d9533a86da1de0
+  data.tar.gz: 148c789d2a6bf72c93c4c0179828e37c07a99003b71962e92240fb5e36395d06936bec7325051b0d3388c1bbe08a8dd89c5d24fd5ea4271aa11978edd8d68bfe

data/lib/dependabot/maven/update_checker/requirements_updater.rb

@@ -1,4 +1,4 @@
-# typed: true
+# typed: strict
 # frozen_string_literal: true
 
 #######################################################
@@ -6,6 +6,7 @@
 # https://maven.apache.org/pom.html#Dependencies      #
 #######################################################
 
+require "dependabot/requirements_updater/base"
 require "dependabot/maven/update_checker"
 require "dependabot/maven/version"
 require "dependabot/maven/requirement"
@@ -14,6 +15,22 @@ module Dependabot
   module Maven
     class UpdateChecker
       class RequirementsUpdater
+        extend T::Sig
+        extend T::Generic
+
+        Version = type_member { { fixed: Dependabot::Maven::Version } }
+        Requirement = type_member { { fixed: Dependabot::Maven::Requirement } }
+
+        include Dependabot::RequirementsUpdater::Base
+
+        sig do
+          params(
+            requirements: T::Array[T::Hash[Symbol, T.untyped]],
+            latest_version: T.nilable(T.any(Version, String)),
+            source_url: String,
+            properties_to_update: T::Array[String]
+          ).void
+        end
         def initialize(requirements:, latest_version:, source_url:,
                        properties_to_update:)
           @requirements = requirements
@@ -21,9 +38,10 @@ module Dependabot
           @properties_to_update = properties_to_update
           return unless latest_version
 
-          @latest_version = version_class.new(latest_version)
+          @latest_version = T.let(version_class.new(latest_version), Version)
         end
 
+        sig { override.returns(T::Array[T::Hash[Symbol, T.untyped]]) }
         def updated_requirements
           return requirements unless latest_version
 
@@ -44,30 +62,42 @@ module Dependabot
 
         private
 
+        sig { returns(T::Array[T::Hash[Symbol, T.untyped]]) }
         attr_reader :requirements
+
+        sig { returns(T.nilable(Version)) }
         attr_reader :latest_version
+
+        sig { returns(String) }
         attr_reader :source_url
+
+        sig { returns(T::Array[String]) }
         attr_reader :properties_to_update
 
+        sig { params(req_string: String).returns(String) }
         def update_requirement(req_string)
           # Since range requirements are excluded this must be exact
           update_exact_requirement(req_string)
         end
 
+        sig { params(req_string: String).returns(String) }
         def update_exact_requirement(req_string)
           old_version = requirement_class.new(req_string)
                                          .requirements.first.last
           req_string.gsub(old_version.to_s, latest_version.to_s)
         end
 
+        sig { override.returns(T::Class[Version]) }
         def version_class
           Maven::Version
         end
 
+        sig { override.returns(T::Class[Requirement]) }
         def requirement_class
           Maven::Requirement
         end
 
+        sig { returns(T::Hash[Symbol, String]) }
         def updated_source
           { type: "maven_repo", url: source_url }
         end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-maven
 version: !ruby/object:Gem::Version
-  version: 0.279.0
+  version: 0.281.0
 platform: ruby
 authors:
 - Dependabot
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-10-03 00:00:00.000000000 Z
+date: 2024-10-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.279.0
+        version: 0.281.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.279.0
+        version: 0.281.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -156,14 +156,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.1
+        version: 0.8.5
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.1
+        version: 0.8.5
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -266,7 +266,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.279.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.281.0
 post_install_message: 
 rdoc_options: []
 require_paths: