dependabot-nuget 0.130.3 → 0.132.0
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: d4ac3e069d9269664fd64aea1c2ccde35bc0f7295b0057c985cc4d8f5a34e446
|
4
|
+
data.tar.gz: c5fa6e207d88c2f509a84141973f23d0a48d8365a80794e2bce268de5e464e11
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 1b8fd43b81b71eca293e3e6c2803b945ee7bcee41dac0b114d6ef27f987fa9fe7641989ef765cd43e3f068a4f3c7b0f7a29f756727bd18c9f587d10462c0e555
|
7
|
+
data.tar.gz: 578eae323498f4c306b6a54e6920f196b2840e91bac7b1b240b72c6881c6b0ae5d643c8a3126a115330fd52aa32efcb4b30b3549e4e8834e2f55dadbb12adc7d
|
@@ -26,11 +26,16 @@ module Dependabot
|
|
26
26
|
def project_reference_paths
|
27
27
|
doc = Nokogiri::XML(project_file.content)
|
28
28
|
doc.remove_namespaces!
|
29
|
-
doc.xpath("/Project/ItemGroup/ProjectReference").map do |node|
|
30
|
-
|
29
|
+
nodes = doc.xpath("/Project/ItemGroup/ProjectReference").map do |node|
|
30
|
+
attribute = node.attribute("Include")
|
31
|
+
next unless attribute
|
32
|
+
|
33
|
+
path = attribute.value.strip.tr("\\", "/")
|
31
34
|
path = File.join(current_dir, path) unless current_dir.nil?
|
32
35
|
Pathname.new(path).cleanpath.to_path
|
33
36
|
end
|
37
|
+
|
38
|
+
nodes.compact
|
34
39
|
end
|
35
40
|
|
36
41
|
private
|
@@ -49,13 +49,18 @@ module Dependabot
|
|
49
49
|
return convert_dotnet_range_to_ruby_range(req_string) if req_string&.start_with?("(", "[")
|
50
50
|
|
51
51
|
return req_string.split(",").map(&:strip) if req_string.include?(",")
|
52
|
+
|
52
53
|
return req_string unless req_string.include?("*")
|
53
54
|
|
54
55
|
convert_wildcard_req(req_string)
|
55
56
|
end
|
56
57
|
|
57
58
|
def convert_dotnet_range_to_ruby_range(req_string)
|
58
|
-
lower_b, upper_b = req_string.split(",").map(&:strip)
|
59
|
+
lower_b, upper_b = req_string.split(",").map(&:strip).map do |bound|
|
60
|
+
next convert_range_wildcard_req(bound) if bound.include?("*")
|
61
|
+
|
62
|
+
bound
|
63
|
+
end
|
59
64
|
|
60
65
|
lower_b =
|
61
66
|
if ["(", "["].include?(lower_b) then nil
|
@@ -72,6 +77,14 @@ module Dependabot
|
|
72
77
|
[lower_b, upper_b].compact
|
73
78
|
end
|
74
79
|
|
80
|
+
def convert_range_wildcard_req(req_string)
|
81
|
+
range_end = req_string[-1]
|
82
|
+
defined_part = req_string.split("*").first
|
83
|
+
version = defined_part + "0"
|
84
|
+
version += range_end if [")", "]"].include?(range_end)
|
85
|
+
version
|
86
|
+
end
|
87
|
+
|
75
88
|
def convert_wildcard_req(req_string)
|
76
89
|
return ">= 0" if req_string.start_with?("*")
|
77
90
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-nuget
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.132.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-
|
11
|
+
date: 2021-02-08 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,14 +16,14 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.132.0
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.
|
26
|
+
version: 0.132.0
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: byebug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
@@ -100,14 +100,14 @@ dependencies:
|
|
100
100
|
requirements:
|
101
101
|
- - "~>"
|
102
102
|
- !ruby/object:Gem::Version
|
103
|
-
version: 1.
|
103
|
+
version: 1.9.0
|
104
104
|
type: :development
|
105
105
|
prerelease: false
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
107
107
|
requirements:
|
108
108
|
- - "~>"
|
109
109
|
- !ruby/object:Gem::Version
|
110
|
-
version: 1.
|
110
|
+
version: 1.9.0
|
111
111
|
- !ruby/object:Gem::Dependency
|
112
112
|
name: simplecov
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|
@@ -128,14 +128,14 @@ dependencies:
|
|
128
128
|
requirements:
|
129
129
|
- - "~>"
|
130
130
|
- !ruby/object:Gem::Version
|
131
|
-
version: 0.
|
131
|
+
version: 0.9.1
|
132
132
|
type: :development
|
133
133
|
prerelease: false
|
134
134
|
version_requirements: !ruby/object:Gem::Requirement
|
135
135
|
requirements:
|
136
136
|
- - "~>"
|
137
137
|
- !ruby/object:Gem::Version
|
138
|
-
version: 0.
|
138
|
+
version: 0.9.1
|
139
139
|
- !ruby/object:Gem::Dependency
|
140
140
|
name: vcr
|
141
141
|
requirement: !ruby/object:Gem::Requirement
|
@@ -211,7 +211,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
211
211
|
- !ruby/object:Gem::Version
|
212
212
|
version: 2.5.0
|
213
213
|
requirements: []
|
214
|
-
rubygems_version: 3.
|
214
|
+
rubygems_version: 3.2.3
|
215
215
|
signing_key:
|
216
216
|
specification_version: 4
|
217
217
|
summary: ".NET (NuGet) support for dependabot"
|