dependabot-npm_and_yarn 0.95.38 → 0.95.39
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 2290921443159d73086ecbdba38e96c95c5974e920898bdb3db6eb954ee0749d
|
4
|
+
data.tar.gz: 1b6c37363bc74eb6fc897fc8d8383215a417e0f74360e51cbcccb0443c44cbbc
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: a6c304fab965e69f111505f9319a2392d6f9db0086b240e3804aa6f845dec72e60844483116e4ec3c2c4d61890f1dd6285aeb37414a40d5b7acc453669adb23c
|
7
|
+
data.tar.gz: c74472ed4161591d84c959d1a9b18902b06844e812ae603a0a345e2107ed9721bc254ff056a0f30ec93a7ce9c3afbca33f66796c38dcf07962df2ffa4feb3ede
|
@@ -465,11 +465,15 @@ module Dependabot
|
|
465
465
|
# Switch from details back for git dependencies (they will have
|
466
466
|
# changed because we locked them)
|
467
467
|
git_dependencies_to_lock.each do |_, details|
|
468
|
-
next unless details[:from]
|
469
|
-
|
470
|
-
|
471
|
-
|
472
|
-
|
468
|
+
next unless details[:version] && details[:from]
|
469
|
+
|
470
|
+
# When locking git dependencies in package.json we set the version
|
471
|
+
# to be the git commit from the lockfile "version" field which
|
472
|
+
# updates the lockfile "from" field to the new git commit when we
|
473
|
+
# run npm install
|
474
|
+
locked_from = %("from": "#{details[:version]}")
|
475
|
+
original_from = %("from": "#{details[:from]}")
|
476
|
+
updated_content = updated_content.gsub(locked_from, original_from)
|
473
477
|
end
|
474
478
|
|
475
479
|
# Switch back the protocol of tarball resolutions if they've changed
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-npm_and_yarn
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.95.
|
4
|
+
version: 0.95.39
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.95.
|
19
|
+
version: 0.95.39
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.95.
|
26
|
+
version: 0.95.39
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|