dependabot-maven 0.286.0 → 0.287.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/maven/file_parser.rb +29 -0
- data/lib/dependabot/maven/language.rb +25 -0
- data/lib/dependabot/maven/package_manager.rb +50 -0
- metadata +7 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: a0e6fa8231d36f384768b15d9c4012bf4f95047211a9d33a73a0e9b2d661499f
|
|
4
|
+
data.tar.gz: 6ae6efb0e4d8a9cb29cb0ff94fb36b1562044e10e03e88b79325cb8d9c0668c9
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 0f86992809fad18f3f652b9519904d654d346ae822a336d964d91897e5c77c4f2a137e4e3c8900fb88072a28c81b402e9eb43dbf43cb4f6735129bff14912c8b
|
|
7
|
+
data.tar.gz: 15e187b98b3b55d8514719b97dd904863e0fc9f872a43c5dc508c70286e3eab05a73399e3817d2158b0ccd197194a6764511b5ea6fcf0ec58518cea37b26fad2
|
|
@@ -8,6 +8,8 @@ require "dependabot/dependency"
|
|
|
8
8
|
require "dependabot/file_parsers"
|
|
9
9
|
require "dependabot/file_parsers/base"
|
|
10
10
|
require "dependabot/maven/version"
|
|
11
|
+
require "dependabot/maven/language"
|
|
12
|
+
require "dependabot/maven/package_manager"
|
|
11
13
|
require "dependabot/errors"
|
|
12
14
|
|
|
13
15
|
# The best Maven documentation is at:
|
|
@@ -44,8 +46,35 @@ module Dependabot
|
|
|
44
46
|
dependency_set.dependencies
|
|
45
47
|
end
|
|
46
48
|
|
|
49
|
+
sig { returns(Ecosystem) }
|
|
50
|
+
def ecosystem
|
|
51
|
+
@ecosystem ||= T.let(
|
|
52
|
+
Ecosystem.new(
|
|
53
|
+
name: ECOSYSTEM,
|
|
54
|
+
package_manager: package_manager,
|
|
55
|
+
language: language
|
|
56
|
+
),
|
|
57
|
+
T.nilable(Ecosystem)
|
|
58
|
+
)
|
|
59
|
+
end
|
|
60
|
+
|
|
47
61
|
private
|
|
48
62
|
|
|
63
|
+
sig { returns(Ecosystem::VersionManager) }
|
|
64
|
+
def package_manager
|
|
65
|
+
@package_manager ||= T.let(
|
|
66
|
+
PackageManager.new("NOT-AVAILABLE"),
|
|
67
|
+
T.nilable(Dependabot::Maven::PackageManager)
|
|
68
|
+
)
|
|
69
|
+
end
|
|
70
|
+
|
|
71
|
+
sig { returns(T.nilable(Ecosystem::VersionManager)) }
|
|
72
|
+
def language
|
|
73
|
+
@language ||= T.let(begin
|
|
74
|
+
Language.new("NOT-AVAILABLE")
|
|
75
|
+
end, T.nilable(Dependabot::Maven::Language))
|
|
76
|
+
end
|
|
77
|
+
|
|
49
78
|
sig { params(pom: Dependabot::DependencyFile).returns(DependencySet) }
|
|
50
79
|
def pomfile_dependencies(pom)
|
|
51
80
|
dependency_set = DependencySet.new
|
|
@@ -0,0 +1,25 @@
|
|
|
1
|
+
# typed: strong
|
|
2
|
+
# frozen_string_literal: true
|
|
3
|
+
|
|
4
|
+
require "sorbet-runtime"
|
|
5
|
+
require "dependabot/ecosystem"
|
|
6
|
+
require "dependabot/maven/version"
|
|
7
|
+
require "dependabot/maven/requirement"
|
|
8
|
+
|
|
9
|
+
module Dependabot
|
|
10
|
+
module Maven
|
|
11
|
+
LANGUAGE = "java"
|
|
12
|
+
|
|
13
|
+
class Language < Dependabot::Ecosystem::VersionManager
|
|
14
|
+
extend T::Sig
|
|
15
|
+
|
|
16
|
+
sig { params(raw_version: String).void }
|
|
17
|
+
def initialize(raw_version)
|
|
18
|
+
super(
|
|
19
|
+
LANGUAGE,
|
|
20
|
+
Version.new(raw_version)
|
|
21
|
+
)
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
end
|
|
25
|
+
end
|
|
@@ -0,0 +1,50 @@
|
|
|
1
|
+
# typed: strong
|
|
2
|
+
# frozen_string_literal: true
|
|
3
|
+
|
|
4
|
+
require "sorbet-runtime"
|
|
5
|
+
require "dependabot/ecosystem"
|
|
6
|
+
require "dependabot/maven/version"
|
|
7
|
+
require "dependabot/maven/requirement"
|
|
8
|
+
|
|
9
|
+
module Dependabot
|
|
10
|
+
module Maven
|
|
11
|
+
ECOSYSTEM = "maven"
|
|
12
|
+
PACKAGE_MANAGER = "maven"
|
|
13
|
+
|
|
14
|
+
# Supported versions specified here: https://maven.apache.org/docs/history.html
|
|
15
|
+
SUPPORTED_MAVEN_VERSIONS = T.let([Version.new("3")].freeze, T::Array[Dependabot::Version])
|
|
16
|
+
|
|
17
|
+
# When a version is going to be unsupported, it will be added here
|
|
18
|
+
DEPRECATED_MAVEN_VERSIONS = T.let([].freeze, T::Array[Dependabot::Version])
|
|
19
|
+
|
|
20
|
+
class PackageManager < Dependabot::Ecosystem::VersionManager
|
|
21
|
+
extend T::Sig
|
|
22
|
+
|
|
23
|
+
sig do
|
|
24
|
+
params(
|
|
25
|
+
raw_version: String,
|
|
26
|
+
requirement: T.nilable(Requirement)
|
|
27
|
+
).void
|
|
28
|
+
end
|
|
29
|
+
def initialize(raw_version, requirement = nil)
|
|
30
|
+
super(
|
|
31
|
+
PACKAGE_MANAGER,
|
|
32
|
+
Version.new(raw_version),
|
|
33
|
+
DEPRECATED_MAVEN_VERSIONS,
|
|
34
|
+
SUPPORTED_MAVEN_VERSIONS,
|
|
35
|
+
requirement,
|
|
36
|
+
)
|
|
37
|
+
end
|
|
38
|
+
|
|
39
|
+
sig { returns(T::Boolean) }
|
|
40
|
+
def deprecated?
|
|
41
|
+
false
|
|
42
|
+
end
|
|
43
|
+
|
|
44
|
+
sig { returns(T::Boolean) }
|
|
45
|
+
def unsupported?
|
|
46
|
+
false
|
|
47
|
+
end
|
|
48
|
+
end
|
|
49
|
+
end
|
|
50
|
+
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-maven
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.287.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-11-
|
|
11
|
+
date: 2024-11-19 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.287.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.287.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -251,7 +251,9 @@ files:
|
|
|
251
251
|
- lib/dependabot/maven/file_updater.rb
|
|
252
252
|
- lib/dependabot/maven/file_updater/declaration_finder.rb
|
|
253
253
|
- lib/dependabot/maven/file_updater/property_value_updater.rb
|
|
254
|
+
- lib/dependabot/maven/language.rb
|
|
254
255
|
- lib/dependabot/maven/metadata_finder.rb
|
|
256
|
+
- lib/dependabot/maven/package_manager.rb
|
|
255
257
|
- lib/dependabot/maven/requirement.rb
|
|
256
258
|
- lib/dependabot/maven/token_bucket.rb
|
|
257
259
|
- lib/dependabot/maven/update_checker.rb
|
|
@@ -266,7 +268,7 @@ licenses:
|
|
|
266
268
|
- MIT
|
|
267
269
|
metadata:
|
|
268
270
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
269
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
271
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.287.0
|
|
270
272
|
post_install_message:
|
|
271
273
|
rdoc_options: []
|
|
272
274
|
require_paths:
|