dependabot-npm_and_yarn 0.113.22 → 0.113.23
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/package.json +1 -1
- data/helpers/yarn.lock +31 -19
- data/lib/dependabot/npm_and_yarn/file_fetcher.rb +6 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 3ae82a54d8dbf0e14a189695ae59ef88d871647531b35fcfad3ac5d7724bdbf1
|
|
4
|
+
data.tar.gz: b66f3fa6769b03f6d20f093c93ccfabe2542331d096482e19068fcbc98f5a6ee
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 91f6aa1b96c7b974f9d5fd57a2d36bf6a947361678e7064c2911f46314376a69f206b3183a89a96bb25d73acbf3fc7aba604d61cad55953a7fdc8bdb6135eee6
|
|
7
|
+
data.tar.gz: 294eb040c617d44e0167983a2e36c98554cc39fb0e2b7550453f25dd63a229ae6e1b51976f5a75c7f4f636f446d58ced99dc18c69b382b41b6230f922ad5ceef
|
data/helpers/package.json
CHANGED
data/helpers/yarn.lock
CHANGED
|
@@ -1682,10 +1682,10 @@ eslint-visitor-keys@^1.1.0:
|
|
|
1682
1682
|
resolved "https://registry.yarnpkg.com/eslint-visitor-keys/-/eslint-visitor-keys-1.1.0.tgz#e2a82cea84ff246ad6fb57f9bde5b46621459ec2"
|
|
1683
1683
|
integrity sha512-8y9YjtM1JBJU/A9Kc+SbaOV4y29sSWckBwMHa+FGtVj5gN/sbnKDf6xJUl+8g7FAij9LVaP8C24DUiH/f/2Z9A==
|
|
1684
1684
|
|
|
1685
|
-
eslint@^6.
|
|
1686
|
-
version "6.
|
|
1687
|
-
resolved "https://registry.yarnpkg.com/eslint/-/eslint-6.
|
|
1688
|
-
integrity sha512-
|
|
1685
|
+
eslint@^6.7.1:
|
|
1686
|
+
version "6.7.1"
|
|
1687
|
+
resolved "https://registry.yarnpkg.com/eslint/-/eslint-6.7.1.tgz#269ccccec3ef60ab32358a44d147ac209154b919"
|
|
1688
|
+
integrity sha512-UWzBS79pNcsDSxgxbdjkmzn/B6BhsXMfUaOHnNwyE8nD+Q6pyT96ow2MccVayUTV4yMid4qLhMiQaywctRkBLA==
|
|
1689
1689
|
dependencies:
|
|
1690
1690
|
"@babel/code-frame" "^7.0.0"
|
|
1691
1691
|
ajv "^6.10.0"
|
|
@@ -1702,7 +1702,7 @@ eslint@^6.6.0:
|
|
|
1702
1702
|
file-entry-cache "^5.0.1"
|
|
1703
1703
|
functional-red-black-tree "^1.0.1"
|
|
1704
1704
|
glob-parent "^5.0.0"
|
|
1705
|
-
globals "^
|
|
1705
|
+
globals "^12.1.0"
|
|
1706
1706
|
ignore "^4.0.6"
|
|
1707
1707
|
import-fresh "^3.0.0"
|
|
1708
1708
|
imurmurhash "^0.1.4"
|
|
@@ -1715,7 +1715,7 @@ eslint@^6.6.0:
|
|
|
1715
1715
|
minimatch "^3.0.4"
|
|
1716
1716
|
mkdirp "^0.5.1"
|
|
1717
1717
|
natural-compare "^1.4.0"
|
|
1718
|
-
optionator "^0.8.
|
|
1718
|
+
optionator "^0.8.3"
|
|
1719
1719
|
progress "^2.0.0"
|
|
1720
1720
|
regexpp "^2.0.1"
|
|
1721
1721
|
semver "^6.1.2"
|
|
@@ -1918,7 +1918,7 @@ fast-json-stable-stringify@^2.0.0:
|
|
|
1918
1918
|
resolved "https://registry.yarnpkg.com/fast-json-stable-stringify/-/fast-json-stable-stringify-2.0.0.tgz#d5142c0caee6b1189f87d3a76111064f86c8bbf2"
|
|
1919
1919
|
integrity sha1-1RQsDK7msRifh9OnYREGT4bIu/I=
|
|
1920
1920
|
|
|
1921
|
-
fast-levenshtein@~2.0.
|
|
1921
|
+
fast-levenshtein@~2.0.6:
|
|
1922
1922
|
version "2.0.6"
|
|
1923
1923
|
resolved "https://registry.yarnpkg.com/fast-levenshtein/-/fast-levenshtein-2.0.6.tgz#3d8a5c66883a16a30ca8643e851f19baa7797917"
|
|
1924
1924
|
integrity sha1-PYpcZog6FqMMqGQ+hR8Zuqd5eRc=
|
|
@@ -2245,11 +2245,18 @@ global-dirs@^0.1.0:
|
|
|
2245
2245
|
dependencies:
|
|
2246
2246
|
ini "^1.3.4"
|
|
2247
2247
|
|
|
2248
|
-
globals@^11.1.0
|
|
2248
|
+
globals@^11.1.0:
|
|
2249
2249
|
version "11.12.0"
|
|
2250
2250
|
resolved "https://registry.yarnpkg.com/globals/-/globals-11.12.0.tgz#ab8795338868a0babd8525758018c2a7eb95c42e"
|
|
2251
2251
|
integrity sha512-WOBp/EEGUiIsJSp7wcv/y6MO+lV9UoncWqxuFfm8eBwzWNgyfBd6Gz+IeKQ9jCmyhoH99g15M3T+QaVHFjizVA==
|
|
2252
2252
|
|
|
2253
|
+
globals@^12.1.0:
|
|
2254
|
+
version "12.3.0"
|
|
2255
|
+
resolved "https://registry.yarnpkg.com/globals/-/globals-12.3.0.tgz#1e564ee5c4dded2ab098b0f88f24702a3c56be13"
|
|
2256
|
+
integrity sha512-wAfjdLgFsPZsklLJvOBUBmzYE8/CwhEqSBEMRXA3qxIiNtyqvjYurAtIfDh6chlEPUfmTY3MnZh5Hfh4q0UlIw==
|
|
2257
|
+
dependencies:
|
|
2258
|
+
type-fest "^0.8.1"
|
|
2259
|
+
|
|
2253
2260
|
got@^6.7.1:
|
|
2254
2261
|
version "6.7.1"
|
|
2255
2262
|
resolved "https://registry.yarnpkg.com/got/-/got-6.7.1.tgz#240cd05785a9a18e561dc1b44b41c763ef1e8db0"
|
|
@@ -4577,17 +4584,17 @@ optimist@^0.6.1:
|
|
|
4577
4584
|
minimist "~0.0.1"
|
|
4578
4585
|
wordwrap "~0.0.2"
|
|
4579
4586
|
|
|
4580
|
-
optionator@^0.8.1, optionator@^0.8.
|
|
4581
|
-
version "0.8.
|
|
4582
|
-
resolved "https://registry.yarnpkg.com/optionator/-/optionator-0.8.
|
|
4583
|
-
integrity
|
|
4587
|
+
optionator@^0.8.1, optionator@^0.8.3:
|
|
4588
|
+
version "0.8.3"
|
|
4589
|
+
resolved "https://registry.yarnpkg.com/optionator/-/optionator-0.8.3.tgz#84fa1d036fe9d3c7e21d99884b601167ec8fb495"
|
|
4590
|
+
integrity sha512-+IW9pACdk3XWmmTXG8m3upGUJst5XRGzxMRjXzAuJ1XnIFNvfhjjIuYkDvysnPQ7qzqVzLt78BCruntqRhWQbA==
|
|
4584
4591
|
dependencies:
|
|
4585
4592
|
deep-is "~0.1.3"
|
|
4586
|
-
fast-levenshtein "~2.0.
|
|
4593
|
+
fast-levenshtein "~2.0.6"
|
|
4587
4594
|
levn "~0.3.0"
|
|
4588
4595
|
prelude-ls "~1.1.2"
|
|
4589
4596
|
type-check "~0.3.2"
|
|
4590
|
-
|
|
4597
|
+
word-wrap "~1.2.3"
|
|
4591
4598
|
|
|
4592
4599
|
os-homedir@^1.0.0:
|
|
4593
4600
|
version "1.0.2"
|
|
@@ -6145,6 +6152,11 @@ type-fest@^0.5.2:
|
|
|
6145
6152
|
resolved "https://registry.yarnpkg.com/type-fest/-/type-fest-0.5.2.tgz#d6ef42a0356c6cd45f49485c3b6281fc148e48a2"
|
|
6146
6153
|
integrity sha512-DWkS49EQKVX//Tbupb9TFa19c7+MK1XmzkrZUR8TAktmE/DizXoaoJV6TZ/tSIPXipqNiRI6CyAe7x69Jb6RSw==
|
|
6147
6154
|
|
|
6155
|
+
type-fest@^0.8.1:
|
|
6156
|
+
version "0.8.1"
|
|
6157
|
+
resolved "https://registry.yarnpkg.com/type-fest/-/type-fest-0.8.1.tgz#09e249ebde851d3b1e48d27c105444667f17b83d"
|
|
6158
|
+
integrity sha512-4dbzIzqvjtgiM5rw1k5rEHtBANKmdudhGyBEajN01fEyhaAIhsoKNy6y7+IN93IfpFtwY9iqi7kD+xwKhQsNJA==
|
|
6159
|
+
|
|
6148
6160
|
typedarray@^0.0.6:
|
|
6149
6161
|
version "0.0.6"
|
|
6150
6162
|
resolved "https://registry.yarnpkg.com/typedarray/-/typedarray-0.0.6.tgz#867ac74e3864187b1d3d47d996a78ec5c8830777"
|
|
@@ -6398,16 +6410,16 @@ widest-line@^2.0.0:
|
|
|
6398
6410
|
dependencies:
|
|
6399
6411
|
string-width "^2.1.1"
|
|
6400
6412
|
|
|
6413
|
+
word-wrap@~1.2.3:
|
|
6414
|
+
version "1.2.3"
|
|
6415
|
+
resolved "https://registry.yarnpkg.com/word-wrap/-/word-wrap-1.2.3.tgz#610636f6b1f703891bd34771ccb17fb93b47079c"
|
|
6416
|
+
integrity sha512-Hz/mrNwitNRh/HUAtM/VT/5VH+ygD6DV7mYKZAtHOrbs8U7lvPS6xf7EJKMF0uW1KJCl0H701g3ZGus+muE5vQ==
|
|
6417
|
+
|
|
6401
6418
|
wordwrap@~0.0.2:
|
|
6402
6419
|
version "0.0.3"
|
|
6403
6420
|
resolved "https://registry.yarnpkg.com/wordwrap/-/wordwrap-0.0.3.tgz#a3d5da6cd5c0bc0008d37234bbaf1bed63059107"
|
|
6404
6421
|
integrity sha1-o9XabNXAvAAI03I0u68b7WMFkQc=
|
|
6405
6422
|
|
|
6406
|
-
wordwrap@~1.0.0:
|
|
6407
|
-
version "1.0.0"
|
|
6408
|
-
resolved "https://registry.yarnpkg.com/wordwrap/-/wordwrap-1.0.0.tgz#27584810891456a4171c8d0226441ade90cbcaeb"
|
|
6409
|
-
integrity sha1-J1hIEIkUVqQXHI0CJkQa3pDLyus=
|
|
6410
|
-
|
|
6411
6423
|
worker-farm@^1.6.0, worker-farm@^1.7.0:
|
|
6412
6424
|
version "1.7.0"
|
|
6413
6425
|
resolved "https://registry.yarnpkg.com/worker-farm/-/worker-farm-1.7.0.tgz#26a94c5391bbca926152002f69b84a4bf772e5a8"
|
|
@@ -125,7 +125,12 @@ module Dependabot
|
|
|
125
125
|
|
|
126
126
|
path_dependency_details(fetched_files).each do |name, path|
|
|
127
127
|
path = path.gsub(PATH_DEPENDENCY_CLEAN_REGEX, "")
|
|
128
|
-
filename =
|
|
128
|
+
filename = path
|
|
129
|
+
# NPM/Yarn support loading path dependencies from tarballs:
|
|
130
|
+
# https://docs.npmjs.com/cli/pack.html
|
|
131
|
+
unless filename.end_with?(".tgz")
|
|
132
|
+
filename = File.join(filename, "package.json")
|
|
133
|
+
end
|
|
129
134
|
cleaned_name = Pathname.new(filename).cleanpath.to_path
|
|
130
135
|
next if fetched_files.map(&:name).include?(cleaned_name)
|
|
131
136
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-npm_and_yarn
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.113.
|
|
4
|
+
version: 0.113.23
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2019-11-
|
|
11
|
+
date: 2019-11-25 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.113.
|
|
19
|
+
version: 0.113.23
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.113.
|
|
26
|
+
version: 0.113.23
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|