RubyGems - dependabot-nuget - Versions diffs - 0.276.0 → 0.278.0 - Mend

dependabot-nuget 0.276.0 → 0.278.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (34) hide show

data/helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/TestApiHandler.cs ADDED Viewed

@@ -0,0 +1,35 @@
+using NuGetUpdater.Core.Run;
+using NuGetUpdater.Core.Run.ApiModel;
+namespace NuGetUpdater.Core.Test;
+internal class TestApiHandler : IApiHandler
+{
+    private readonly List<(Type, object)> _receivedMessages = new();
+    public IEnumerable<(Type Type, object Object)> ReceivedMessages => _receivedMessages;
+    public Task UpdateDependencyList(UpdatedDependencyList updatedDependencyList)
+    {
+        _receivedMessages.Add((typeof(UpdatedDependencyList), updatedDependencyList));
+        return Task.CompletedTask;
+    }
+    public Task IncrementMetric(IncrementMetric incrementMetric)
+    {
+        _receivedMessages.Add((typeof(IncrementMetric), incrementMetric));
+        return Task.CompletedTask;
+    }
+    public Task CreatePullRequest(CreatePullRequest createPullRequest)
+    {
+        _receivedMessages.Add((typeof(CreatePullRequest), createPullRequest));
+        return Task.CompletedTask;
+    }
+    public Task MarkAsProcessed(MarkAsProcessed markAsProcessed)
+    {
+        _receivedMessages.Add((typeof(MarkAsProcessed), markAsProcessed));
+        return Task.CompletedTask;
+    }
+}

data/helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/UpdatedDependencyListTests.cs ADDED Viewed

@@ -0,0 +1,69 @@
+using System.Text.Json;
+using NuGetUpdater.Core.Discover;
+using NuGetUpdater.Core.Run;
+using NuGetUpdater.Core.Run.ApiModel;
+using Xunit;
+namespace NuGetUpdater.Core.Test.Run;
+public class UpdatedDependencyListTests
+{
+    [Fact]
+    public void GetUpdatedDependencyListFromDiscovery()
+    {
+        var discovery = new WorkspaceDiscoveryResult()
+        {
+            Path = "src",
+            IsSuccess = true,
+            Projects = [
+                new()
+                {
+                    FilePath = "project.csproj",
+                    Dependencies = [
+                        new("Microsoft.Extensions.DependencyModel", "6.0.0", DependencyType.PackageReference, TargetFrameworks: ["net6.0"]),
+                        new("System.Text.Json", "6.0.0", DependencyType.Unknown, TargetFrameworks: ["net6.0"], IsTransitive: true),
+                    ],
+                    IsSuccess = true,
+                    Properties = [],
+                    TargetFrameworks = ["net8.0"],
+                    ReferencedProjectPaths = [],
+                }
+            ]
+        };
+        var updatedDependencyList = RunWorker.GetUpdatedDependencyListFromDiscovery(discovery);
+        var expectedDependencyList = new UpdatedDependencyList()
+        {
+            Dependencies =
+            [
+                new ReportedDependency()
+                {
+                    Name = "Microsoft.Extensions.DependencyModel",
+                    Version = "6.0.0",
+                    Requirements =
+                    [
+                        new ReportedRequirement()
+                        {
+                            Requirement = "6.0.0",
+                            File = "/src/project.csproj",
+                            Groups = ["dependencies"],
+                        }
+                    ]
+                },
+                new ReportedDependency()
+                {
+                    Name = "System.Text.Json",
+                    Version = "6.0.0",
+                    Requirements = [],
+                }
+            ],
+            DependencyFiles = ["/src/project.csproj"],
+        };
+        // doing JSON comparison makes this easier; we don't have to define custom record equality and we get an easy diff
+        var actualJson = JsonSerializer.Serialize(updatedDependencyList);
+        var expectedJson = JsonSerializer.Serialize(expectedDependencyList);
+        Assert.Equal(expectedJson, actualJson);
+    }
+}

data/helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Utilities/PathHelperTests.cs ADDED Viewed

@@ -0,0 +1,22 @@
+using Xunit;
+namespace NuGetUpdater.Core.Test.Utilities;
+public class PathHelperTests
+{
+    [Theory]
+    [InlineData("a/b/c", "a/b/c")]
+    [InlineData("a/b/../c", "a/c")]
+    [InlineData("a/..//c", "c")]
+    [InlineData("/a/b/c", "/a/b/c")]
+    [InlineData("/a/b/../c", "/a/c")]
+    [InlineData("/a/..//c", "/c")]
+    [InlineData("a/b/./c", "a/b/c")]
+    [InlineData("a/../../b", "b")]
+    [InlineData("../../../a/b", "a/b")]
+    public void VerifyNormalizeUnixPathParts(string input, string expected)
+    {
+        var actual = input.NormalizeUnixPathParts();
+        Assert.Equal(expected, actual);
+    }
+}

data/lib/dependabot/nuget/file_fetcher.rb CHANGED Viewed

@@ -52,6 +52,7 @@ module Dependabot
         @nuget_config_files = T.let(nil, T.nilable(T::Array[Dependabot::DependencyFile]))
         @packages_config_files = T.let(nil, T.nilable(T::Array[Dependabot::DependencyFile]))
         @assembly_binding_redirect_config_files = T.let(nil, T.nilable(T::Array[Dependabot::DependencyFile]))
+        @packages_lock_files = T.let(nil, T.nilable(T::Array[Dependabot::DependencyFile]))
       end
       sig { override.returns(T::Array[DependencyFile]) }
@@ -63,6 +64,7 @@ module Dependabot
           *packages_config_files,
           *assembly_binding_redirect_config_files,
           *nuget_config_files,
+          *packages_lock_files,
           global_json,
           dotnet_tools_json,
           packages_props
@@ -266,6 +268,21 @@ module Dependabot
         @nuget_config_files
       end
+      sig { returns(T::Array[Dependabot::DependencyFile]) }
+      def packages_lock_files
+        return @packages_lock_files if @packages_lock_files
+        candidate_paths =
+          [*project_files.map { |f| File.dirname(f.name) }, "."].uniq
+        @packages_lock_files =
+          candidate_paths.filter_map do |dir|
+            file = repo_contents(dir: dir)
+                   .find { |f| f.name.casecmp("packages.lock.json").zero? }
+            fetch_file_from_host(File.join(dir, file.name)) if file
+          end
+      end
       sig do
         params(
           project_file: Dependabot::DependencyFile,

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-nuget
 version: !ruby/object:Gem::Version
-  version: 0.276.0
+  version: 0.278.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-09-19 00:00:00.000000000 Z
+date: 2024-09-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.276.0
+        version: 0.278.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.276.0
+        version: 0.278.0
 - !ruby/object:Gem::Dependency
   name: rubyzip
   requirement: !ruby/object:Gem::Requirement
@@ -293,11 +293,13 @@ files:
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli.Test/EntryPointTests.Analyze.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli.Test/EntryPointTests.Discover.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli.Test/EntryPointTests.FrameworkCheck.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Cli.Test/EntryPointTests.Run.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli.Test/EntryPointTests.Update.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli.Test/NuGetUpdater.Cli.Test.csproj
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli/Commands/AnalyzeCommand.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli/Commands/DiscoverCommand.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli/Commands/FrameworkCheckCommand.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Cli/Commands/RunCommand.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli/Commands/UpdateCommand.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli/NuGetUpdater.Cli.csproj
 - helpers/lib/NuGetUpdater/NuGetUpdater.Cli/Program.cs
@@ -325,6 +327,10 @@ files:
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/FrameworkChecker/SupportedFrameworkFacts.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/MockNuGetPackage.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/NuGetUpdater.Core.Test.csproj
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/RunWorkerTests.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/SerializationTests.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/TestApiHandler.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/UpdatedDependencyListTests.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/TemporaryDirectory.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/TemporaryEnvironment.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/TestBase.cs
@@ -342,6 +348,7 @@ files:
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Utilities/DiffUtil.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Utilities/JsonHelperTests.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Utilities/MSBuildHelperTests.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Utilities/PathHelperTests.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Utilities/SdkPackageUpdaterHelperTests.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Analyze/AnalysisResult.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Analyze/AnalyzeWorker.cs
@@ -388,11 +395,28 @@ files:
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/NativeResult.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/NuGetUpdater.Core.csproj
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Property.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/AllowedUpdate.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/CreatePullRequest.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/DependencyFile.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/IncrementMetric.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/Job.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/JobFile.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/JobSource.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/MarkAsProcessed.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/ReportedDependency.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/ReportedRequirement.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/RequirementSource.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/ApiModel/UpdatedDependencyList.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/HttpApiHandler.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/IApiHandler.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/RunResult.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Run/RunWorker.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/BindingRedirectManager.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/BindingRedirectResolver.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/ConfigurationFile.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/DotNetToolsJsonUpdater.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/GlobalJsonUpdater.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/LockFileUpdater.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/PackagesConfigUpdater.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/SdkPackageUpdater.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Updater/UpdateOperationResult.cs
@@ -463,7 +487,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.276.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.278.0
 post_install_message:
 rdoc_options: []
 require_paths: