dependabot-npm_and_yarn 0.130.2 → 0.131.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (12) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/.eslintrc +1 -4
  3. data/helpers/build +1 -0
  4. data/helpers/jest.config.js +5 -0
  5. data/helpers/lib/{npm6 → npm}/conflicting-dependency-parser.js +0 -0
  6. data/helpers/lib/npm/index.js +6 -0
  7. data/helpers/lib/npm6/index.js +0 -3
  8. data/helpers/package.json +2 -2
  9. data/helpers/test/npm6/conflicting-dependency-parser.test.js +1 -1
  10. data/helpers/yarn.lock +13 -27
  11. data/lib/dependabot/npm_and_yarn/update_checker/conflicting_dependency_resolver.rb +1 -5
  12. metadata +11 -9
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b3d823f7e4e5bafb3f61f1ed2406f86d4f26010d45b5b784bb5dbea68229f745
4
- data.tar.gz: 0755ef0d27ce46c0db8ece89cef67040ab752cc6124a0bb160fd272246452c0a
3
+ metadata.gz: addf0efee26c161673e7ca07c5fd9f766500ac9b86394b7c933be31646c14a8d
4
+ data.tar.gz: 63a33bc8f9b3aa79e878b22dc09dd7b20922a007553e717c1174e4c94872600f
5
5
  SHA512:
6
- metadata.gz: 22a0710360eaa51c93e5fe48a9a3b05dad583a3aaba6a24b9951d32b976633442a18f14371095d70ea3a244019b2ff6b69a15b3082fb2897d56cae806c469204
7
- data.tar.gz: bdf155212fe791026ccb5222820e06c27b17a7f64c796272da02937294d6f53eb7e102d3f8999981028ba58614870456fa32f59de0f4d70f81ff03fe614253cc
6
+ metadata.gz: 3caedf87d48199f5a049e0ea45ae6c0b6b4a8e2b7d69533cf1b727107b4816f5a5f1226e8fea7af6fc728f403b911c0dd3dfb6aa6972d3fbe6ee14e8746186fe
7
+ data.tar.gz: af66dfc0cebcbbc0a55c0e8f7bf1bc8040de04a2f0ae74d0fea260c8c679b27f93e4ba67d70e7a8d7f2c66fa6792f002a6b88c9f0d672331eafd63014bfc9f5d
data/helpers/.eslintrc CHANGED
@@ -1,10 +1,7 @@
1
1
  {
2
- "plugins": [
2
+ "extends": [
3
3
  "prettier"
4
4
  ],
5
- "rules": {
6
- "prettier/prettier": "error"
7
- },
8
5
  "env": {
9
6
  "node": true
10
7
  },
data/helpers/build CHANGED
@@ -14,6 +14,7 @@ cp -r \
14
14
  "$helpers_dir/test" \
15
15
  "$helpers_dir/run.js" \
16
16
  "$helpers_dir/.eslintrc" \
17
+ "$helpers_dir/jest.config.js" \
17
18
  "$helpers_dir/package.json" \
18
19
  "$helpers_dir/yarn.lock" \
19
20
  "$install_dir"
data/helpers/jest.config.js ADDED
@@ -0,0 +1,5 @@
1
+ module.exports = {
2
+ verbose: true,
3
+ rootDir: "test",
4
+ testEnvironment: "node",
5
+ };
data/helpers/lib/npm/index.js ADDED
@@ -0,0 +1,6 @@
1
+ const conflictingDependencyParser = require("./conflicting-dependency-parser");
2
+
3
+ module.exports = {
4
+ findConflictingDependencies:
5
+ conflictingDependencyParser.findConflictingDependencies,
6
+ };
data/helpers/lib/npm6/index.js CHANGED
@@ -1,12 +1,9 @@
1
1
  const updater = require("./updater");
2
2
  const peerDependencyChecker = require("./peer-dependency-checker");
3
3
  const subdependencyUpdater = require("./subdependency-updater");
4
- const conflictingDependencyParser = require("./conflicting-dependency-parser");
5
4
 
6
5
  module.exports = {
7
6
  update: updater.updateDependencyFiles,
8
7
  updateSubdependency: subdependencyUpdater.updateDependencyFile,
9
8
  checkPeerDependencies: peerDependencyChecker.checkPeerDependencies,
10
- findConflictingDependencies:
11
- conflictingDependencyParser.findConflictingDependencies,
12
9
  };
data/helpers/package.json CHANGED
@@ -10,7 +10,7 @@
10
10
  },
11
11
  "dependencies": {
12
12
  "@dependabot/yarn-lib": "^1.21.1",
13
- "@npmcli/arborist": "^2.0.5",
13
+ "@npmcli/arborist": "^2.2.0",
14
14
  "detect-indent": "^6.0.0",
15
15
  "npm6": "npm:npm@6.14.11",
16
16
  "npm7": "npm:npm@7.4.0",
@@ -18,7 +18,7 @@
18
18
  },
19
19
  "devDependencies": {
20
20
  "eslint": "^7.18.0",
21
- "eslint-plugin-prettier": "^3.3.1",
21
+ "eslint-config-prettier": "^7.2.0",
22
22
  "jest": "^26.6.3",
23
23
  "prettier": "^2.2.1",
24
24
  "rimraf": "^3.0.2"
data/helpers/test/npm6/conflicting-dependency-parser.test.js CHANGED
@@ -4,7 +4,7 @@ const fs = require("fs");
4
4
  const rimraf = require("rimraf");
5
5
  const {
6
6
  findConflictingDependencies,
7
- } = require("../../lib/npm6/conflicting-dependency-parser");
7
+ } = require("../../lib/npm/conflicting-dependency-parser");
8
8
  const helpers = require("./helpers");
9
9
 
10
10
  describe("findConflictingDependencies", () => {
data/helpers/yarn.lock CHANGED
@@ -543,10 +543,10 @@
543
543
  "@types/yargs" "^15.0.0"
544
544
  chalk "^4.0.0"
545
545
 
546
- "@npmcli/arborist@^2.0.0", "@npmcli/arborist@^2.0.3", "@npmcli/arborist@^2.0.5":
547
- version "2.0.5"
548
- resolved "https://registry.yarnpkg.com/@npmcli/arborist/-/arborist-2.0.5.tgz#d4c4e0d3050084ac741af124410d9831f2b3da86"
549
- integrity sha512-hUXn8XRChDG2Af4NpfPQpMiVbb0/IfhONdX1f1bcxjPXXKV54DMshU25tItcnKIeT5iKF1fqebQg8F3xHb5pCw==
546
+ "@npmcli/arborist@^2.0.0", "@npmcli/arborist@^2.0.3", "@npmcli/arborist@^2.2.0":
547
+ version "2.2.0"
548
+ resolved "https://registry.yarnpkg.com/@npmcli/arborist/-/arborist-2.2.0.tgz#4cd64abd0d6993382631c4064a8bef2c6c680232"
549
+ integrity sha512-bnQccUyKUz6Id7GgMnQiTA4E4U6LK5FolkWtVahk29JXiJYXWrRDItnjvcBbzjGAG9mAEK3LxsO3oWDvGVjw0A==
550
550
  dependencies:
551
551
  "@npmcli/installed-package-contents" "^1.0.5"
552
552
  "@npmcli/map-workspaces" "^1.0.1"
@@ -565,7 +565,7 @@
565
565
  npm-package-arg "^8.1.0"
566
566
  npm-pick-manifest "^6.1.0"
567
567
  npm-registry-fetch "^9.0.0"
568
- pacote "^11.2.1"
568
+ pacote "^11.2.5"
569
569
  parse-conflict-json "^1.1.1"
570
570
  promise-all-reject-late "^1.0.0"
571
571
  promise-call-limit "^1.0.1"
@@ -2263,12 +2263,10 @@ escodegen@^1.14.1:
2263
2263
  optionalDependencies:
2264
2264
  source-map "~0.6.1"
2265
2265
 
2266
- eslint-plugin-prettier@^3.3.1:
2267
- version "3.3.1"
2268
- resolved "https://registry.yarnpkg.com/eslint-plugin-prettier/-/eslint-plugin-prettier-3.3.1.tgz#7079cfa2497078905011e6f82e8dd8453d1371b7"
2269
- integrity sha512-Rq3jkcFY8RYeQLgk2cCwuc0P7SEFwDravPhsJZOQ5N4YI4DSg50NyqJ/9gdZHzQlHf8MvafSesbNJCcP/FF6pQ==
2270
- dependencies:
2271
- prettier-linter-helpers "^1.0.0"
2266
+ eslint-config-prettier@^7.2.0:
2267
+ version "7.2.0"
2268
+ resolved "https://registry.yarnpkg.com/eslint-config-prettier/-/eslint-config-prettier-7.2.0.tgz#f4a4bd2832e810e8cc7c1411ec85b3e85c0c53f9"
2269
+ integrity sha512-rV4Qu0C3nfJKPOAhFujFxB7RMP+URFyQqqOZW9DMRD7ZDTFyjaIlETU3xzHELt++4ugC0+Jm084HQYkkJe+Ivg==
2272
2270
 
2273
2271
  eslint-scope@^5.1.1:
2274
2272
  version "5.1.1"
@@ -2536,11 +2534,6 @@ fast-deep-equal@^3.1.1:
2536
2534
  resolved "https://registry.npmjs.org/fast-deep-equal/-/fast-deep-equal-3.1.3.tgz#3a7d56b559d6cbc3eb512325244e619a65c6c525"
2537
2535
  integrity sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q==
2538
2536
 
2539
- fast-diff@^1.1.2:
2540
- version "1.2.0"
2541
- resolved "https://registry.npmjs.org/fast-diff/-/fast-diff-1.2.0.tgz#73ee11982d86caaf7959828d519cfe927fac5f03"
2542
- integrity sha512-xJuoT5+L99XlZ8twedaRf6Ax2TgQVxvgZOYoPKqZufmJib0tL2tegPBOZb1pVNgIhlqDlA0eO0c3wBvQcmzx4w==
2543
-
2544
2537
  fast-json-stable-stringify@^2.0.0:
2545
2538
  version "2.1.0"
2546
2539
  resolved "https://registry.npmjs.org/fast-json-stable-stringify/-/fast-json-stable-stringify-2.1.0.tgz#874bf69c6f404c2b5d99c481341399fd55892633"
@@ -5851,10 +5844,10 @@ package-json@^4.0.0:
5851
5844
  registry-url "^3.0.3"
5852
5845
  semver "^5.1.0"
5853
5846
 
5854
- pacote@^11.1.11, pacote@^11.1.14, pacote@^11.1.4, pacote@^11.2.1:
5855
- version "11.2.1"
5856
- resolved "https://registry.yarnpkg.com/pacote/-/pacote-11.2.1.tgz#1b80e1ef24ca2a5000cb1a469a308072623f33dd"
5857
- integrity sha512-r5GzxJdmyLdWxP98xYcXinyyj1MIO3wwgJeJpaIIql7rnMBkcLx5k3WKCPpknZU11ybOiXCrIjWuZt3le0Es9A==
5847
+ pacote@^11.1.11, pacote@^11.1.14, pacote@^11.1.4, pacote@^11.2.5:
5848
+ version "11.2.5"
5849
+ resolved "https://registry.yarnpkg.com/pacote/-/pacote-11.2.5.tgz#7a1ecc7ac78237b54dcbc99f42ae6cc215d6e64e"
5850
+ integrity sha512-KgVY3Rh3xJnhnRCirmsXW8kIdbslrFTnYeTtdzyvObPgj/Tc5VqdmazxsvdXGdIgRB/Km92mBKfuWcGGqgu7UQ==
5858
5851
  dependencies:
5859
5852
  "@npmcli/git" "^2.0.1"
5860
5853
  "@npmcli/installed-package-contents" "^1.0.5"
@@ -6106,13 +6099,6 @@ preserve@^0.2.0:
6106
6099
  resolved "https://registry.npmjs.org/preserve/-/preserve-0.2.0.tgz#815ed1f6ebc65926f865b310c0713bcb3315ce4b"
6107
6100
  integrity sha1-gV7R9uvGWSb4ZbMQwHE7yzMVzks=
6108
6101
 
6109
- prettier-linter-helpers@^1.0.0:
6110
- version "1.0.0"
6111
- resolved "https://registry.npmjs.org/prettier-linter-helpers/-/prettier-linter-helpers-1.0.0.tgz#d23d41fe1375646de2d0104d3454a3008802cf7b"
6112
- integrity sha512-GbK2cP9nraSSUF9N2XwUwqfzlAFlMNYYl+ShE/V+H8a9uNl/oUqB1w2EL54Jh0OlyRSd8RfWYJ3coVS4TROP2w==
6113
- dependencies:
6114
- fast-diff "^1.1.2"
6115
-
6116
6102
  prettier@^2.2.1:
6117
6103
  version "2.2.1"
6118
6104
  resolved "https://registry.yarnpkg.com/prettier/-/prettier-2.2.1.tgz#795a1a78dd52f073da0cd42b21f9c91381923ff5"
data/lib/dependabot/npm_and_yarn/update_checker/conflicting_dependency_resolver.rb CHANGED
@@ -45,13 +45,9 @@ module Dependabot
45
45
  # parser doesn't deal with at the moment.
46
46
  if dependency_files_builder.package_locks.any? ||
47
47
  dependency_files_builder.shrinkwraps.any?
48
- package_lock = dependency_files_builder.package_locks.find { |f| f.name == "package-lock.json" }
49
- npm_version = Dependabot::NpmAndYarn::Helpers.npm_version(package_lock&.content)
50
- Dependabot.logger.info(npm_version)
51
-
52
48
  SharedHelpers.run_helper_subprocess(
53
49
  command: NativeHelpers.helper_path,
54
- function: "npm6:findConflictingDependencies",
50
+ function: "npm:findConflictingDependencies",
55
51
  args: [Dir.pwd, dependency.name, target_version.to_s]
56
52
  )
57
53
  else
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-npm_and_yarn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.130.2
4
+ version: 0.131.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-01-19 00:00:00.000000000 Z
11
+ date: 2021-02-08 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.130.2
19
+ version: 0.131.3
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.130.2
26
+ version: 0.131.3
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -100,14 +100,14 @@ dependencies:
100
100
  requirements:
101
101
  - - "~>"
102
102
  - !ruby/object:Gem::Version
103
- version: 1.8.0
103
+ version: 1.9.0
104
104
  type: :development
105
105
  prerelease: false
106
106
  version_requirements: !ruby/object:Gem::Requirement
107
107
  requirements:
108
108
  - - "~>"
109
109
  - !ruby/object:Gem::Version
110
- version: 1.8.0
110
+ version: 1.9.0
111
111
  - !ruby/object:Gem::Dependency
112
112
  name: simplecov
113
113
  requirement: !ruby/object:Gem::Requirement
@@ -128,14 +128,14 @@ dependencies:
128
128
  requirements:
129
129
  - - "~>"
130
130
  - !ruby/object:Gem::Version
131
- version: 0.8.0
131
+ version: 0.9.1
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
- version: 0.8.0
138
+ version: 0.9.1
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: vcr
141
141
  requirement: !ruby/object:Gem::Requirement
@@ -174,7 +174,9 @@ files:
174
174
  - helpers/.eslintrc
175
175
  - helpers/README.md
176
176
  - helpers/build
177
- - helpers/lib/npm6/conflicting-dependency-parser.js
177
+ - helpers/jest.config.js
178
+ - helpers/lib/npm/conflicting-dependency-parser.js
179
+ - helpers/lib/npm/index.js
178
180
  - helpers/lib/npm6/helpers.js
179
181
  - helpers/lib/npm6/index.js
180
182
  - helpers/lib/npm6/peer-dependency-checker.js