dependabot-maven 0.98.71 → 0.98.72
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/maven/update_checker/version_finder.rb +10 -7
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4d6c85da9be298167bb7461331610f5dfb52c306d5391d477d87562b827a761c
|
|
4
|
+
data.tar.gz: c17258018b19f19d8c96b6f7d3c7ba858d191ca1adab5e8d947862790d7f5970
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: bc6bea42a9ea68173ef4036a82e0f9a06a1f1c7dbd26469f6a9daaacdf815bb5f660ffe5e7895f51355618b5c1ac158ecbb03658e17c7536277f718c14db1d40
|
|
7
|
+
data.tar.gz: c17a60ee8b400d54e4ac717243ff9ac986b44844ceb554a57b5b58b4983eb779485343c817e4bad39ab9380efa922521e349af80a5ac33531c95b4970650ed18
|
|
@@ -122,21 +122,16 @@ module Dependabot
|
|
|
122
122
|
check_response(response, repository_details.fetch("url"))
|
|
123
123
|
Nokogiri::XML(response.body)
|
|
124
124
|
rescue Excon::Error::Socket, Excon::Error::Timeout
|
|
125
|
-
|
|
126
|
-
Maven::FileParser::RepositoriesFinder::CENTRAL_REPO_URL
|
|
127
|
-
raise if repository_details.fetch("url") == central
|
|
125
|
+
raise if central_repo_urls.include?(repository_details["url"])
|
|
128
126
|
|
|
129
127
|
Nokogiri::XML("")
|
|
130
128
|
end
|
|
131
129
|
end
|
|
132
130
|
|
|
133
131
|
def check_response(response, repository_url)
|
|
134
|
-
central =
|
|
135
|
-
Maven::FileParser::RepositoriesFinder::CENTRAL_REPO_URL
|
|
136
|
-
|
|
137
132
|
return unless [401, 403].include?(response.status)
|
|
138
133
|
return if @forbidden_urls.include?(repository_url)
|
|
139
|
-
return if repository_url
|
|
134
|
+
return if central_repo_urls.include?(repository_url)
|
|
140
135
|
|
|
141
136
|
@forbidden_urls << repository_url
|
|
142
137
|
end
|
|
@@ -217,6 +212,14 @@ module Dependabot
|
|
|
217
212
|
def version_class
|
|
218
213
|
Maven::Version
|
|
219
214
|
end
|
|
215
|
+
|
|
216
|
+
def central_repo_urls
|
|
217
|
+
central_url_without_protocol =
|
|
218
|
+
Maven::FileParser::RepositoriesFinder::CENTRAL_REPO_URL.
|
|
219
|
+
gsub(%r{^.*://}, "")
|
|
220
|
+
|
|
221
|
+
%w(http:// https://).map { |p| p + central_url_without_protocol }
|
|
222
|
+
end
|
|
220
223
|
end
|
|
221
224
|
end
|
|
222
225
|
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-maven
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.98.
|
|
4
|
+
version: 0.98.72
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.98.
|
|
19
|
+
version: 0.98.72
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.98.
|
|
26
|
+
version: 0.98.72
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|