dependabot-npm_and_yarn 0.155.1 → 0.156.4
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: bb9bbe4ccb8fba3e15699052badb789278aaa805a994700bae0c4bc61a7f4014
|
4
|
+
data.tar.gz: 7a3a8d3c819b904958860dfcf49496b640041641c5917f91bec2091f7fe6d5d9
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: d0aa887e6431b3b9f0fe506dff4f36005145a1b44bf19e43b774bb8619510ed6d2dd4274bf8f176696d503eb058ab476d47debe9fdabe4ba66ba82784f39bc1e
|
7
|
+
data.tar.gz: f3544d0a093cd11738b8115fdb708713205a59df2bafcf8edb1db71d9f0e43b1525d3b8d9ea6217fd71df4cdc31d50854d490050d6b596b928933dca5c8688da
|
data/helpers/package-lock.json
CHANGED
@@ -7,7 +7,7 @@
|
|
7
7
|
"name": "@dependabot/helper",
|
8
8
|
"dependencies": {
|
9
9
|
"@dependabot/yarn-lib": "^1.21.1",
|
10
|
-
"@npmcli/arborist": "^2.6.
|
10
|
+
"@npmcli/arborist": "^2.6.4",
|
11
11
|
"detect-indent": "^6.1.0",
|
12
12
|
"npm": "6.14.13",
|
13
13
|
"semver": "^7.3.4"
|
@@ -19,7 +19,7 @@
|
|
19
19
|
"eslint": "^7.29.0",
|
20
20
|
"eslint-config-prettier": "^8.3.0",
|
21
21
|
"jest": "^27.0.5",
|
22
|
-
"prettier": "^2.3.
|
22
|
+
"prettier": "^2.3.2",
|
23
23
|
"rimraf": "^3.0.2"
|
24
24
|
}
|
25
25
|
},
|
@@ -1518,9 +1518,9 @@
|
|
1518
1518
|
}
|
1519
1519
|
},
|
1520
1520
|
"node_modules/@npmcli/arborist": {
|
1521
|
-
"version": "2.6.
|
1522
|
-
"resolved": "https://registry.npmjs.org/@npmcli/arborist/-/arborist-2.6.
|
1523
|
-
"integrity": "sha512-
|
1521
|
+
"version": "2.6.4",
|
1522
|
+
"resolved": "https://registry.npmjs.org/@npmcli/arborist/-/arborist-2.6.4.tgz",
|
1523
|
+
"integrity": "sha512-A/pDQ/VZpdxaqsQS5XOWrhrPuC+ER7HLq+4ZkEmnO2yo/USFCWEsiUPYKhfY+sWXK3pgKjN7B7CEFmAnSoAt3g==",
|
1524
1524
|
"dependencies": {
|
1525
1525
|
"@npmcli/installed-package-contents": "^1.0.7",
|
1526
1526
|
"@npmcli/map-workspaces": "^1.0.2",
|
@@ -1528,6 +1528,7 @@
|
|
1528
1528
|
"@npmcli/move-file": "^1.1.0",
|
1529
1529
|
"@npmcli/name-from-folder": "^1.0.1",
|
1530
1530
|
"@npmcli/node-gyp": "^1.0.1",
|
1531
|
+
"@npmcli/package-json": "^1.0.1",
|
1531
1532
|
"@npmcli/run-script": "^1.8.2",
|
1532
1533
|
"bin-links": "^2.2.1",
|
1533
1534
|
"cacache": "^15.0.3",
|
@@ -1715,6 +1716,14 @@
|
|
1715
1716
|
"resolved": "https://registry.npmjs.org/@npmcli/node-gyp/-/node-gyp-1.0.2.tgz",
|
1716
1717
|
"integrity": "sha512-yrJUe6reVMpktcvagumoqD9r08fH1iRo01gn1u0zoCApa9lnZGEigVKUd2hzsCId4gdtkZZIVscLhNxMECKgRg=="
|
1717
1718
|
},
|
1719
|
+
"node_modules/@npmcli/package-json": {
|
1720
|
+
"version": "1.0.1",
|
1721
|
+
"resolved": "https://registry.npmjs.org/@npmcli/package-json/-/package-json-1.0.1.tgz",
|
1722
|
+
"integrity": "sha512-y6jnu76E9C23osz8gEMBayZmaZ69vFOIk8vR1FJL/wbEJ54+9aVG9rLTjQKSXfgYZEr50nw1txBBFfBZZe+bYg==",
|
1723
|
+
"dependencies": {
|
1724
|
+
"json-parse-even-better-errors": "^2.3.1"
|
1725
|
+
}
|
1726
|
+
},
|
1718
1727
|
"node_modules/@npmcli/promise-spawn": {
|
1719
1728
|
"version": "1.3.2",
|
1720
1729
|
"resolved": "https://registry.npmjs.org/@npmcli/promise-spawn/-/promise-spawn-1.3.2.tgz",
|
@@ -12607,9 +12616,9 @@
|
|
12607
12616
|
}
|
12608
12617
|
},
|
12609
12618
|
"node_modules/prettier": {
|
12610
|
-
"version": "2.3.
|
12611
|
-
"resolved": "https://registry.npmjs.org/prettier/-/prettier-2.3.
|
12612
|
-
"integrity": "sha512-
|
12619
|
+
"version": "2.3.2",
|
12620
|
+
"resolved": "https://registry.npmjs.org/prettier/-/prettier-2.3.2.tgz",
|
12621
|
+
"integrity": "sha512-lnJzDfJ66zkMy58OL5/NY5zp70S7Nz6KqcKkXYzn2tMVrNxvbqaBpg7H3qHaLxCJ5lNMsGuM8+ohS7cZrthdLQ==",
|
12613
12622
|
"dev": true,
|
12614
12623
|
"bin": {
|
12615
12624
|
"prettier": "bin-prettier.js"
|
@@ -15587,9 +15596,9 @@
|
|
15587
15596
|
}
|
15588
15597
|
},
|
15589
15598
|
"@npmcli/arborist": {
|
15590
|
-
"version": "2.6.
|
15591
|
-
"resolved": "https://registry.npmjs.org/@npmcli/arborist/-/arborist-2.6.
|
15592
|
-
"integrity": "sha512-
|
15599
|
+
"version": "2.6.4",
|
15600
|
+
"resolved": "https://registry.npmjs.org/@npmcli/arborist/-/arborist-2.6.4.tgz",
|
15601
|
+
"integrity": "sha512-A/pDQ/VZpdxaqsQS5XOWrhrPuC+ER7HLq+4ZkEmnO2yo/USFCWEsiUPYKhfY+sWXK3pgKjN7B7CEFmAnSoAt3g==",
|
15593
15602
|
"requires": {
|
15594
15603
|
"@npmcli/installed-package-contents": "^1.0.7",
|
15595
15604
|
"@npmcli/map-workspaces": "^1.0.2",
|
@@ -15597,6 +15606,7 @@
|
|
15597
15606
|
"@npmcli/move-file": "^1.1.0",
|
15598
15607
|
"@npmcli/name-from-folder": "^1.0.1",
|
15599
15608
|
"@npmcli/node-gyp": "^1.0.1",
|
15609
|
+
"@npmcli/package-json": "^1.0.1",
|
15600
15610
|
"@npmcli/run-script": "^1.8.2",
|
15601
15611
|
"bin-links": "^2.2.1",
|
15602
15612
|
"cacache": "^15.0.3",
|
@@ -15751,6 +15761,14 @@
|
|
15751
15761
|
"resolved": "https://registry.npmjs.org/@npmcli/node-gyp/-/node-gyp-1.0.2.tgz",
|
15752
15762
|
"integrity": "sha512-yrJUe6reVMpktcvagumoqD9r08fH1iRo01gn1u0zoCApa9lnZGEigVKUd2hzsCId4gdtkZZIVscLhNxMECKgRg=="
|
15753
15763
|
},
|
15764
|
+
"@npmcli/package-json": {
|
15765
|
+
"version": "1.0.1",
|
15766
|
+
"resolved": "https://registry.npmjs.org/@npmcli/package-json/-/package-json-1.0.1.tgz",
|
15767
|
+
"integrity": "sha512-y6jnu76E9C23osz8gEMBayZmaZ69vFOIk8vR1FJL/wbEJ54+9aVG9rLTjQKSXfgYZEr50nw1txBBFfBZZe+bYg==",
|
15768
|
+
"requires": {
|
15769
|
+
"json-parse-even-better-errors": "^2.3.1"
|
15770
|
+
}
|
15771
|
+
},
|
15754
15772
|
"@npmcli/promise-spawn": {
|
15755
15773
|
"version": "1.3.2",
|
15756
15774
|
"resolved": "https://registry.npmjs.org/@npmcli/promise-spawn/-/promise-spawn-1.3.2.tgz",
|
@@ -23842,9 +23860,9 @@
|
|
23842
23860
|
"integrity": "sha1-gV7R9uvGWSb4ZbMQwHE7yzMVzks="
|
23843
23861
|
},
|
23844
23862
|
"prettier": {
|
23845
|
-
"version": "2.3.
|
23846
|
-
"resolved": "https://registry.npmjs.org/prettier/-/prettier-2.3.
|
23847
|
-
"integrity": "sha512-
|
23863
|
+
"version": "2.3.2",
|
23864
|
+
"resolved": "https://registry.npmjs.org/prettier/-/prettier-2.3.2.tgz",
|
23865
|
+
"integrity": "sha512-lnJzDfJ66zkMy58OL5/NY5zp70S7Nz6KqcKkXYzn2tMVrNxvbqaBpg7H3qHaLxCJ5lNMsGuM8+ohS7cZrthdLQ==",
|
23848
23866
|
"dev": true
|
23849
23867
|
},
|
23850
23868
|
"pretty-format": {
|
data/helpers/package.json
CHANGED
@@ -10,7 +10,7 @@
|
|
10
10
|
},
|
11
11
|
"dependencies": {
|
12
12
|
"@dependabot/yarn-lib": "^1.21.1",
|
13
|
-
"@npmcli/arborist": "^2.6.
|
13
|
+
"@npmcli/arborist": "^2.6.4",
|
14
14
|
"detect-indent": "^6.1.0",
|
15
15
|
"npm": "6.14.13",
|
16
16
|
"semver": "^7.3.4"
|
@@ -19,7 +19,7 @@
|
|
19
19
|
"eslint": "^7.29.0",
|
20
20
|
"eslint-config-prettier": "^8.3.0",
|
21
21
|
"jest": "^27.0.5",
|
22
|
-
"prettier": "^2.3.
|
22
|
+
"prettier": "^2.3.2",
|
23
23
|
"rimraf": "^3.0.2"
|
24
24
|
}
|
25
25
|
}
|
@@ -281,12 +281,14 @@ module Dependabot
|
|
281
281
|
Excon::Error::Timeout,
|
282
282
|
Excon::Error::Socket,
|
283
283
|
RegistryError => e
|
284
|
-
|
285
|
-
|
286
|
-
|
287
|
-
|
288
|
-
|
289
|
-
|
284
|
+
if git_dependency?
|
285
|
+
nil
|
286
|
+
else
|
287
|
+
retry_count ||= 0
|
288
|
+
retry_count += 1
|
289
|
+
raise_npm_details_error(e) if retry_count > 2
|
290
|
+
sleep(rand(3.0..10.0)) && retry
|
291
|
+
end
|
290
292
|
end
|
291
293
|
end
|
292
294
|
|
@@ -163,9 +163,11 @@ module Dependabot
|
|
163
163
|
# latest version. This often happens if you don't have lockfiles and
|
164
164
|
# have requirements update strategy set to bump_versions, where an
|
165
165
|
# update might go from ^1.1.1 to ^1.1.2 (both resolve to 1.1.2).
|
166
|
-
|
167
|
-
|
168
|
-
|
166
|
+
if updated_version.to_s == latest_previous_version
|
167
|
+
nil
|
168
|
+
else
|
169
|
+
latest_previous_version
|
170
|
+
end
|
169
171
|
end
|
170
172
|
end
|
171
173
|
# rubocop:enable Metrics/PerceivedComplexity
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-npm_and_yarn
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.156.4
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-06-
|
11
|
+
date: 2021-06-30 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.156.4
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.
|
26
|
+
version: 0.156.4
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -100,14 +100,14 @@ dependencies:
|
|
100
100
|
requirements:
|
101
101
|
- - "~>"
|
102
102
|
- !ruby/object:Gem::Version
|
103
|
-
version: 1.
|
103
|
+
version: 1.18.0
|
104
104
|
type: :development
|
105
105
|
prerelease: false
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
107
107
|
requirements:
|
108
108
|
- - "~>"
|
109
109
|
- !ruby/object:Gem::Version
|
110
|
-
version: 1.
|
110
|
+
version: 1.18.0
|
111
111
|
- !ruby/object:Gem::Dependency
|
112
112
|
name: simplecov
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|