dependabot-npm_and_yarn 0.112.2 → 0.112.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/npm_and_yarn/file_updater/npm_lockfile_updater.rb +1 -1
  3. data/lib/dependabot/npm_and_yarn/file_updater/package_json_preparer.rb +1 -1
  4. data/lib/dependabot/npm_and_yarn/file_updater/yarn_lockfile_updater.rb +1 -1
  5. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: cfe466320edd21f09e62c8ad652e02e04960bab58bb496544876bca123bd2c5f
4
- data.tar.gz: 2370a81e51ced6d55193970cf0dead08f5cc8712d68fc3c7abf68c565ed88922
3
+ metadata.gz: d9e491e063f1931c600351217233cbebab381310b4f67a656ffb98066e715d65
4
+ data.tar.gz: 7aa0d8ce2889ef4ac2e5146a250ba8e0b92ce352911f882a7bf2aab0dd2126c3
5
5
  SHA512:
6
- metadata.gz: 69546b17c5fa97a5ea5a2290540ed9b39d736f7f17f019949d3a37092042f50a1e6d2a939086f9e70e74feba2b584fac24f05c327ed26af356fcdaf37dfb661f
7
- data.tar.gz: c05f2f2915b6e45b41465a6359ccce5f0cdfe41d78054c4cf19fdbb615f03292a129e9d70c5eb5ead135d6cc7f365857ee73251d2e586ef83e3b6ebb187869d3
6
+ metadata.gz: e2ccd6ed91917fc9cf1b2a2c5d31e9dc4a6ba631773712775a47cfb5d350b4ad317be2c0966ccb375387db0cbffef9031c9155e9cdbe5cdb597cd1120f8b8feb
7
+ data.tar.gz: 29a793318150a188960be72be45c7c96228f10524c6ab32c48199f769209c47c992f3d57bc572e0636b7c84912b0f921778bf4e35d5737dc82f13b9cec22aa18
data/lib/dependabot/npm_and_yarn/file_updater/npm_lockfile_updater.rb CHANGED
@@ -565,7 +565,7 @@ module Dependabot
565
565
 
566
566
  def sanitized_package_json_content(content)
567
567
  content.
568
- gsub(/\{\{.*?\}\}/, "something"). # {{ name }} syntax not allowed
568
+ gsub(/\{\{[^\}]*?\}\}/, "something"). # {{ nm }} syntax not allowed
569
569
  gsub(/(?<!\\)\\ /, " "). # escaped whitespace not allowed
570
570
  gsub(%r{^\s*//.*}, " ") # comments are not allowed
571
571
  end
data/lib/dependabot/npm_and_yarn/file_updater/package_json_preparer.rb CHANGED
@@ -52,7 +52,7 @@ module Dependabot
52
52
 
53
53
  def remove_invalid_characters(content)
54
54
  content.
55
- gsub(/\{\{.*?\}\}/, "something"). # {{ name }} syntax not allowed
55
+ gsub(/\{\{[^\}]*?\}\}/, "something"). # {{ nm }} syntax not allowed
56
56
  gsub(/(?<!\\)\\ /, " "). # escaped whitespace not allowed
57
57
  gsub(%r{^\s*//.*}, " ") # comments are not allowed
58
58
  end
data/lib/dependabot/npm_and_yarn/file_updater/yarn_lockfile_updater.rb CHANGED
@@ -510,7 +510,7 @@ module Dependabot
510
510
  def sanitized_package_json_content(content)
511
511
  updated_content =
512
512
  content.
513
- gsub(/\{\{.*?\}\}/, "something"). # {{ name }} syntax not allowed
513
+ gsub(/\{\{[^\}]*?\}\}/, "something"). # {{ nm }} syntax not allowed
514
514
  gsub(/(?<!\\)\\ /, " "). # escaped whitespace not allowed
515
515
  gsub(%r{^\s*//.*}, " ") # comments are not allowed
516
516
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-npm_and_yarn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.112.2
4
+ version: 0.112.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2019-08-14 00:00:00.000000000 Z
11
+ date: 2019-08-15 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.112.2
19
+ version: 0.112.3
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.112.2
26
+ version: 0.112.3
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement