RubyGems - dependabot-npm_and_yarn - Versions diffs - 0.233.0 → 0.235.0 - Mend

dependabot-npm_and_yarn 0.233.0 → 0.235.0

Files changed (11) hide show

data/helpers/package.json CHANGED Viewed

@@ -21,9 +21,9 @@
     "patch-package": "^8.0.0"
   },
   "devDependencies": {
-    "eslint": "^8.49.0",
+    "eslint": "^8.51.0",
     "eslint-config-prettier": "^9.0.0",
-    "jest": "^29.6.4",
+    "jest": "^29.7.0",
     "prettier": "^3.0.3"
   }
 }

data/lib/dependabot/npm_and_yarn/file_fetcher.rb CHANGED Viewed

@@ -247,7 +247,7 @@ module Dependabot
         # Loop through parent directories looking for an yarnrc
         (1..directory.split("/").count).each do |i|
           @yarnrc = fetch_file_from_host(("../" * i) + ".yarnrc")
-                   &.tap { |f| f.support_file = true }
+                    &.tap { |f| f.support_file = true }
           break if @yarnrc
         rescue Dependabot::DependencyFileNotFound
           # Ignore errors (.yarnrc may not be present)

@@ -197,8 +197,8 @@ module Dependabot
           yarnrc_global_registry =
             yarnrc_file.content
                        .lines.find { |line| line.match?(/^\s*registry\s/) }
-            &.match(NpmAndYarn::UpdateChecker::RegistryFinder::YARN_GLOBAL_REGISTRY_REGEX)
-            &.named_captures&.fetch("registry")
+                       &.match(NpmAndYarn::UpdateChecker::RegistryFinder::YARN_GLOBAL_REGISTRY_REGEX)
+                       &.named_captures&.fetch("registry")
           return "registry = #{yarnrc_global_registry}\n" if yarnrc_global_registry
@@ -209,8 +209,8 @@ module Dependabot
           yarnrc_global_registry =
             yarnrc_file.content
                        .lines.find { |line| line.match?(/^\s*registry\s/) }
-            &.match(/^\s*registry\s+"(?<registry>[^"]+)"/)
-            &.named_captures&.fetch("registry")
+                       &.match(/^\s*registry\s+"(?<registry>[^"]+)"/)
+                       &.named_captures&.fetch("registry")
           return "registry \"#{yarnrc_global_registry}\"\n" if yarnrc_global_registry

@@ -511,9 +511,9 @@ module Dependabot
           yarnrc_global_registry =
             yarnrc_file.content
                        .lines.find { |line| line.match?(regex) }
-            &.match(regex)
-            &.named_captures
-            &.fetch("registry")
+                       &.match(regex)
+                       &.named_captures
+                       &.fetch("registry")
           return false unless yarnrc_global_registry

@@ -105,9 +105,9 @@ module Dependabot
           yarnrc_global_registry =
             yarnrc_file.content
                        .lines.find { |line| line.match?(regex) }
-            &.match(regex)
-            &.named_captures
-            &.fetch("registry")
+                       &.match(regex)
+                       &.named_captures
+                       &.fetch("registry")
           return false unless yarnrc_global_registry

@@ -146,7 +146,7 @@ module Dependabot
           # it exists, use it.
           dist_tag_req = dependency.requirements
                                    .find { |r| dist_tags.include?(r[:requirement]) }
-                         &.fetch(:requirement)
+                                   &.fetch(:requirement)
           if dist_tag_req
             tag_vers =

@@ -204,7 +204,7 @@ module Dependabot
         # resulting in a bunch of package duplication which is pretty confusing.
         def bundled_dependency?
           dependency.subdependency_metadata
-            &.any? { |h| h.fetch(:npm_bundled, false) } ||
+                    &.any? { |h| h.fetch(:npm_bundled, false) } ||
             false
         end
       end

@@ -356,7 +356,7 @@ module Dependabot
         semver_req =
           dependency.requirements
                     .find { |req| req.dig(:source, :type) == "git" }
-          &.fetch(:requirement)
+                    &.fetch(:requirement)
         # If there was a semver requirement provided or the dependency was
         # pinned to a version, look for the latest tag

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-npm_and_yarn
 version: !ruby/object:Gem::Version
-  version: 0.233.0
+  version: 0.235.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-10-06 00:00:00.000000000 Z
+date: 2023-10-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.233.0
+        version: 0.235.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.233.0
+        version: 0.235.0
 - !ruby/object:Gem::Dependency
   name: debug
   requirement: !ruby/object:Gem::Requirement
@@ -295,7 +295,7 @@ licenses:
 - Nonstandard
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.233.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.235.0
 post_install_message:
 rdoc_options: []
 require_paths: