dependabot-maven 0.382.0 → 0.383.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/maven/requirement.rb +2 -2
  3. data/lib/dependabot/maven/update_checker/requirements_updater.rb +5 -4
  4. data/lib/dependabot/maven/update_checker.rb +6 -8
  5. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 9949b8b19d460ff8b07e5d322fd98c5f5ba0df32c357edf4ba549b0590939b29
4
- data.tar.gz: 2c7445b4d2522a3a33d10b8c4329d9deb4b883c0f71c8fd8f6fe1f8b61f073b2
3
+ metadata.gz: 1d87ba52c3c36739ae677c82b6725a6ef6e6aefca50b43730449cf8741e60e87
4
+ data.tar.gz: 4ab56c57b08369874bc1364d518a262c35da600807cec05c18431341d3899536
5
5
  SHA512:
6
- metadata.gz: 56ca26ba8eeb0f759985db8185a72814e38f931fc39d591289af09b7b319c60078dd8d26a8a4fa373c4b7f843c7bb749604d908612ec49bbbbdbbc7638909384
7
- data.tar.gz: 277835bdc875c4a745a31c6dff74ce0d2dc720b4c9eb445c8f2890e3182089a7b25c7df197ac40a5edd7a27268ad4c46789148f5d746ef8bd45d987c07669d25
6
+ metadata.gz: f1898c3fd47ea0b6cfd1e3c6188c2ebba0ede0ec58e9a398ce2d4011ae5354b3c4ed9b2ac96b31916f2100f9020e01cc542d49477cde7cd93534161e9ab50440
7
+ data.tar.gz: acb273492ed6eb8ca9e9fcc96fac2a6fcbc0da6e5a9718e00c8e4537d7130a8b90abe16573172dc561ef580272a08dc42dee296ec5f47e72b633769037f1fe81
data/lib/dependabot/maven/requirement.rb CHANGED
@@ -29,7 +29,7 @@ module Dependabot
29
29
  RUBY_STYLE_PATTERN
30
30
  end
31
31
 
32
- sig { params(obj: T.any(String, Gem::Version)).returns(T::Array[T.any(String, T.untyped)]) }
32
+ sig { params(obj: T.any(String, Gem::Version)).returns(T::Array[T.any(String, Gem::Version)]) }
33
33
  def self.parse(obj)
34
34
  return ["=", Maven::Version.new(obj.to_s)] if obj.is_a?(Gem::Version)
35
35
 
@@ -50,7 +50,7 @@ module Dependabot
50
50
  end
51
51
  end
52
52
 
53
- sig { params(version: T.untyped).returns(T::Boolean) }
53
+ sig { params(version: Object).returns(T::Boolean) }
54
54
  def satisfied_by?(version)
55
55
  version = Maven::Version.new(version.to_s)
56
56
  super
data/lib/dependabot/maven/update_checker/requirements_updater.rb CHANGED
@@ -6,6 +6,7 @@
6
6
  # https://maven.apache.org/pom.html#Dependencies #
7
7
  #######################################################
8
8
 
9
+ require "dependabot/dependency_requirement"
9
10
  require "dependabot/requirements_updater/base"
10
11
  require "dependabot/maven/update_checker"
11
12
  require "dependabot/maven/version"
@@ -25,7 +26,7 @@ module Dependabot
25
26
 
26
27
  sig do
27
28
  params(
28
- requirements: T::Array[T::Hash[Symbol, T.untyped]],
29
+ requirements: T::Array[Dependabot::DependencyRequirement],
29
30
  latest_version: T.nilable(T.any(Version, String)),
30
31
  source_url: T.nilable(String),
31
32
  properties_to_update: T::Array[String]
@@ -45,7 +46,7 @@ module Dependabot
45
46
  @latest_version = T.let(version_class.new(latest_version), Version)
46
47
  end
47
48
 
48
- sig { override.returns(T::Array[T::Hash[Symbol, T.untyped]]) }
49
+ sig { override.returns(T::Array[Dependabot::DependencyRequirement]) }
49
50
  def updated_requirements
50
51
  return requirements unless latest_version
51
52
 
@@ -62,13 +63,13 @@ module Dependabot
62
63
  new_req = update_requirement(req[:requirement])
63
64
  next req if new_req == req[:requirement]
64
65
 
65
- req.merge(requirement: new_req, source: updated_source)
66
+ Dependabot::DependencyRequirement.create(req.merge(requirement: new_req, source: updated_source))
66
67
  end
67
68
  end
68
69
 
69
70
  private
70
71
 
71
- sig { returns(T::Array[T::Hash[Symbol, T.untyped]]) }
72
+ sig { returns(T::Array[Dependabot::DependencyRequirement]) }
72
73
  attr_reader :requirements
73
74
 
74
75
  sig { returns(T.nilable(Version)) }
data/lib/dependabot/maven/update_checker.rb CHANGED
@@ -96,14 +96,12 @@ module Dependabot
96
96
  declarations_using_a_property
97
97
  .map { |req| req.dig(:metadata, :property_name) }
98
98
 
99
- wrap_requirements(
100
- RequirementsUpdater.new(
101
- requirements: dependency.requirements,
102
- latest_version: preferred_resolvable_version&.to_s,
103
- source_url: preferred_version_details&.fetch(:source_url),
104
- properties_to_update: property_names
105
- ).updated_requirements
106
- )
99
+ RequirementsUpdater.new(
100
+ requirements: dependency.requirements,
101
+ latest_version: preferred_resolvable_version&.to_s,
102
+ source_url: preferred_version_details&.fetch(:source_url),
103
+ properties_to_update: property_names
104
+ ).updated_requirements
107
105
  end
108
106
 
109
107
  sig { override.returns(T::Boolean) }
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-maven
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.382.0
4
+ version: 0.383.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
@@ -15,14 +15,14 @@ dependencies:
15
15
  requirements:
16
16
  - - '='
17
17
  - !ruby/object:Gem::Version
18
- version: 0.382.0
18
+ version: 0.383.0
19
19
  type: :runtime
20
20
  prerelease: false
21
21
  version_requirements: !ruby/object:Gem::Requirement
22
22
  requirements:
23
23
  - - '='
24
24
  - !ruby/object:Gem::Version
25
- version: 0.382.0
25
+ version: 0.383.0
26
26
  - !ruby/object:Gem::Dependency
27
27
  name: rexml
28
28
  requirement: !ruby/object:Gem::Requirement
@@ -291,7 +291,7 @@ licenses:
291
291
  - MIT
292
292
  metadata:
293
293
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
294
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.382.0
294
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.383.0
295
295
  rdoc_options: []
296
296
  require_paths:
297
297
  - lib