RubyGems - dependabot-nuget - Versions diffs - 0.311.0 → 0.312.0 - Mend

dependabot-nuget 0.311.0 → 0.312.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (26) hide show

data/helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/TestHttpServer.cs CHANGED Viewed

@@ -10,13 +10,13 @@ namespace NuGetUpdater.Core.Test
 {
     public class TestHttpServer : IDisposable
     {
-        private readonly Func<string, string, (int, byte[])> _requestHandler;
+        private readonly Func<string, string, (int, byte[]?)> _requestHandler;
         private readonly HttpListener _listener;
         private bool _runServer = true;
         public string BaseUrl { get; }
-        private TestHttpServer(string baseurl, Func<string, string, (int, byte[])> requestHandler)
+        private TestHttpServer(string baseurl, Func<string, string, (int, byte[]?)> requestHandler)
         {
             BaseUrl = baseurl;
             _requestHandler = requestHandler;
@@ -45,7 +45,11 @@ namespace NuGetUpdater.Core.Test
                 var context = await _listener.GetContextAsync();
                 var (statusCode, response) = _requestHandler(context.Request.HttpMethod, context.Request.Url!.AbsoluteUri);
                 context.Response.StatusCode = statusCode;
-                await context.Response.OutputStream.WriteAsync(response);
+                if (response is not null)
+                {
+                    await context.Response.OutputStream.WriteAsync(response);
+                }
                 context.Response.Close();
             }
         }
@@ -57,7 +61,7 @@ namespace NuGetUpdater.Core.Test
             return CreateTestServer((method, url) => requestHandler(url));
         }
-        public static TestHttpServer CreateTestServer(Func<string, string, (int, byte[])> requestHandler)
+        public static TestHttpServer CreateTestServer(Func<string, string, (int, byte[]?)> requestHandler)
         {
             // static lock to ensure the port is not recycled after `FindFreePort()` and before we can start the real server
             lock (PortGate)
@@ -77,7 +81,7 @@ namespace NuGetUpdater.Core.Test
         public static TestHttpServer CreateTestStringServer(Func<string, string, (int, string)> requestHandler)
         {
-            Func<string, string, (int, byte[])> bytesRequestHandler = (method, url) =>
+            Func<string, string, (int, byte[]?)> bytesRequestHandler = (method, url) =>
             {
                 var (statusCode, response) = requestHandler(method, url);
                 return (statusCode, Encoding.UTF8.GetBytes(response));

data/helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Update/PackageReferenceUpdaterTests.cs CHANGED Viewed

@@ -55,7 +55,7 @@ public class PackageReferenceUpdaterTests
         // assert
         await buildFile.SaveAsync();
-        var actualContents = await File.ReadAllTextAsync(fullProjectPath);
+        var actualContents = await File.ReadAllTextAsync(fullProjectPath, TestContext.Current.CancellationToken);
         var expectedContents = """
             <Project Sdk="Microsoft.NET.Sdk">
               <PropertyGroup>
@@ -71,6 +71,104 @@ public class PackageReferenceUpdaterTests
         Assert.Equal(expectedContents, actualContents);
     }
+    [Fact]
+    public async Task DirectBuildFileChangesAreMaintainedWhenPinningTransitiveDependency_DirectoryPackagesPropsIsDiscovered()
+    {
+        // arrange
+        using var tempDir = await TemporaryDirectory.CreateWithContentsAsync(
+        [
+            ("project.csproj", """
+                 <Project Sdk="Microsoft.NET.Sdk">
+                   <PropertyGroup>
+                     <TargetFramework>net9.0</TargetFramework>
+                   </PropertyGroup>
+                   <ItemGroup>
+                     <PackageReference Include="Completely.Different.Package" />
+                     <PackageReference Include="Some.Package" />
+                   </ItemGroup>
+                 </Project>
+                 """),
+            ("Directory.Packages.props", """
+                <Project>
+                  <PropertyGroup>
+                    <ManagePackageVersionsCentrally>true</ManagePackageVersionsCentrally>
+                  </PropertyGroup>
+                  <ItemGroup>
+                    <PackageVersion Include="Completely.Different.Package" Version="1.0.0" />
+                    <PackageVersion Include="Some.Package" Version="1.0.0" />
+                  </ItemGroup>
+                </Project>
+                """)
+        ]);
+        var packages = new[]
+        {
+             MockNuGetPackage.CreateSimplePackage("Completely.Different.Package", "1.0.0", "net9.0"),
+             MockNuGetPackage.CreateSimplePackage("Completely.Different.Package", "2.0.0", "net9.0"),
+             MockNuGetPackage.CreateSimplePackage("Some.Package", "1.0.0", "net9.0", [(null, [("Transitive.Package", "1.0.0")])]),
+             MockNuGetPackage.CreateSimplePackage("Transitive.Package", "1.0.0", "net9.0"),
+             MockNuGetPackage.CreateSimplePackage("Transitive.Package", "2.0.0", "net9.0"),
+         };
+        await UpdateWorkerTestBase.MockNuGetPackagesInDirectory(packages, tempDir.DirectoryPath);
+        var fullProjectPath = Path.Combine(tempDir.DirectoryPath, "project.csproj");
+        var fullDirectoryPackagesPath = Path.Combine(tempDir.DirectoryPath, "Directory.Packages.props");
+        var buildFiles = new[]
+        {
+            ProjectBuildFile.Open(tempDir.DirectoryPath, fullProjectPath),
+            ProjectBuildFile.Open(tempDir.DirectoryPath, fullDirectoryPackagesPath)
+        }.ToImmutableArray();
+        var experimentsManager = new ExperimentsManager();
+        // act
+        // pin transitive dependency
+        var updatedFiles = await PackageReferenceUpdater.UpdateTransitiveDependencyAsync(
+            tempDir.DirectoryPath,
+            fullProjectPath,
+            "Transitive.Package",
+            "2.0.0",
+            buildFiles,
+            experimentsManager,
+            new TestLogger());
+        // subsequent update should not overwrite previous change
+        PackageReferenceUpdater.TryUpdateDependencyVersion(buildFiles, "Completely.Different.Package", "1.0.0", "2.0.0", new TestLogger());
+        // assert
+        foreach (var bf in buildFiles)
+        {
+            await bf.SaveAsync();
+        }
+        var actualProjectContents = await File.ReadAllTextAsync(fullProjectPath, TestContext.Current.CancellationToken);
+        var expectedProjectContents = """
+             <Project Sdk="Microsoft.NET.Sdk">
+               <PropertyGroup>
+                 <TargetFramework>net9.0</TargetFramework>
+               </PropertyGroup>
+               <ItemGroup>
+                 <PackageReference Include="Completely.Different.Package" />
+                 <PackageReference Include="Some.Package" />
+                 <PackageReference Include="Transitive.Package" />
+               </ItemGroup>
+             </Project>
+             """;
+        Assert.Equal(expectedProjectContents.Replace("\r", ""), actualProjectContents.Replace("\r", ""));
+        var actualDirectoryPackagesContents = await File.ReadAllTextAsync(fullDirectoryPackagesPath, TestContext.Current.CancellationToken);
+        var expectedDirectoryPackagesContents = """
+            <Project>
+              <PropertyGroup>
+                <ManagePackageVersionsCentrally>true</ManagePackageVersionsCentrally>
+              </PropertyGroup>
+              <ItemGroup>
+                <PackageVersion Include="Completely.Different.Package" Version="2.0.0" />
+                <PackageVersion Include="Some.Package" Version="1.0.0" />
+                <PackageVersion Include="Transitive.Package" Version="2.0.0" />
+              </ItemGroup>
+            </Project>
+            """;
+        Assert.Equal(expectedDirectoryPackagesContents.Replace("\r", ""), actualDirectoryPackagesContents.Replace("\r", ""));
+    }
     [Theory]
     [MemberData(nameof(ComputeUpdateOperationsTestData))]
     public async Task ComputeUpdateOperations

data/helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Utilities/MSBuildHelperTests.cs CHANGED Viewed

@@ -1852,6 +1852,14 @@ public class MSBuildHelperTests : TestBase
             // expectedError
             new UpdateNotPossible(["Some.Package.1.2.3"]),
         ];
+        yield return
+        [
+            // output
+            "Failed to fetch results from V2 feed at 'http://nuget.example.com/FindPackagesById()?id='Some.Package'&semVerLevel=2.0.0' with following message : Response status code does not indicate success: 404.",
+            // expectedError
+            new DependencyNotFound("Some.Package"),
+        ];
     }
     public static IEnumerable<object[]> GetTopLevelPackageDependencyInfosTestData()

metadata CHANGED Viewed

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-nuget
 version: !ruby/object:Gem::Version
-  version: 0.311.0
+  version: 0.312.0
 platform: ruby
 authors:
 - Dependabot
 bindir: bin
 cert_chain: []
-date: 2025-05-01 00:00:00.000000000 Z
+date: 2025-05-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -15,14 +15,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.311.0
+        version: 0.312.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.311.0
+        version: 0.312.0
 - !ruby/object:Gem::Dependency
   name: rubyzip
   requirement: !ruby/object:Gem::Requirement
@@ -49,14 +49,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.2
+        version: '1.9'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.2
+        version: '1.9'
 - !ruby/object:Gem::Dependency
   name: gpgme
   requirement: !ruby/object:Gem::Requirement
@@ -77,14 +77,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '13'
+        version: '13.2'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '13'
+        version: '13.2'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
@@ -119,98 +119,98 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.2
+        version: '1.9'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.9.2
+        version: '1.9'
 - !ruby/object:Gem::Dependency
   name: rubocop
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.67.0
+        version: '1.67'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.67.0
+        version: '1.67'
 - !ruby/object:Gem::Dependency
   name: rubocop-performance
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.22.1
+        version: '1.22'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.22.1
+        version: '1.22'
 - !ruby/object:Gem::Dependency
   name: rubocop-rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.29.1
+        version: '2.29'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.29.1
+        version: '2.29'
 - !ruby/object:Gem::Dependency
   name: rubocop-sorbet
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.7
+        version: '0.8'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.7
+        version: '0.8'
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.22.0
+        version: '0.22'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.22.0
+        version: '0.22'
 - !ruby/object:Gem::Dependency
   name: turbo_tests
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.2.0
+        version: '2.2'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.2.0
+        version: '2.2'
 - !ruby/object:Gem::Dependency
   name: vcr
   requirement: !ruby/object:Gem::Requirement
@@ -347,6 +347,7 @@ files:
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/MockNuGetPackage.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/NuGetUpdater.Core.Test.csproj
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/EndToEndTests.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/HttpApiHandlerTests.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/MessageReportTests.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/MiscellaneousTests.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core.Test/Run/PullRequestMessageTests.cs
@@ -405,6 +406,7 @@ files:
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Analyze/VersionFinder.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Analyze/VersionResult.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/BadRequirementException.cs
+- helpers/lib/NuGetUpdater/NuGetUpdater.Core/BadResponseException.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Clone/CloneWorker.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Clone/IGitCommandHandler.cs
 - helpers/lib/NuGetUpdater/NuGetUpdater.Core/Clone/ShellGitCommandHandler.cs
@@ -555,7 +557,7 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
-  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.311.0
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.312.0
 rdoc_options: []
 require_paths:
 - lib