dependabot-nuget 0.80.0

data/lib/dependabot/nuget/update_checker.rb

@@ -0,0 +1,128 @@
+# frozen_string_literal: true
+
+require "dependabot/nuget/file_parser"
+require "dependabot/update_checkers"
+require "dependabot/update_checkers/base"
+
+module Dependabot
+  module Nuget
+    class UpdateChecker < Dependabot::UpdateCheckers::Base
+      require_relative "update_checker/version_finder"
+      require_relative "update_checker/property_updater"
+      require_relative "update_checker/requirements_updater"
+
+      def latest_version
+        @latest_version = latest_version_details&.fetch(:version)
+      end
+
+      def latest_resolvable_version
+        # TODO: Check version resolution!
+        return nil if version_comes_from_multi_dependency_property?
+
+        latest_version
+      end
+
+      def latest_resolvable_version_with_no_unlock
+        # Irrelevant, since Nuget has a single dependency file
+        nil
+      end
+
+      def updated_requirements
+        RequirementsUpdater.new(
+          requirements: dependency.requirements,
+          latest_version: latest_version&.to_s,
+          source_details: latest_version_details&.
+                          slice(:nuspec_url, :repo_url, :source_url)
+        ).updated_requirements
+      end
+
+      def up_to_date?
+        # If any requirements have an uninterpolated property in them then
+        # that property couldn't be found, and we assume that the dependency
+        # is up-to-date
+        return true unless requirements_unlocked_or_can_be?
+
+        super
+      end
+
+      def requirements_unlocked_or_can_be?
+        # If any requirements have an uninterpolated property in them then
+        # that property couldn't be found, and the requirement therefore
+        # cannot be unlocked (since we can't update that property)
+        namespace = Nuget::FileParser::PropertyValueFinder
+        dependency.requirements.none? do |req|
+          req.fetch(:requirement)&.match?(namespace::PROPERTY_REGEX)
+        end
+      end
+
+      private
+
+      def latest_version_resolvable_with_full_unlock?
+        return false unless version_comes_from_multi_dependency_property?
+
+        property_updater.update_possible?
+      end
+
+      def updated_dependencies_after_full_unlock
+        property_updater.updated_dependencies
+      end
+
+      def latest_version_details
+        @latest_version_details ||= version_finder.latest_version_details
+      end
+
+      def version_finder
+        @version_finder ||=
+          VersionFinder.new(
+            dependency: dependency,
+            dependency_files: dependency_files,
+            credentials: credentials,
+            ignored_versions: ignored_versions
+          )
+      end
+
+      def property_updater
+        @property_updater ||=
+          PropertyUpdater.new(
+            dependency: dependency,
+            dependency_files: dependency_files,
+            target_version_details: latest_version_details,
+            credentials: credentials,
+            ignored_versions: ignored_versions
+          )
+      end
+
+      def version_comes_from_multi_dependency_property?
+        declarations_using_a_property.any? do |requirement|
+          property_name = requirement.fetch(:metadata).fetch(:property_name)
+
+          all_property_based_dependencies.any? do |dep|
+            next false if dep.name == dependency.name
+
+            dep.requirements.any? do |req|
+              req.dig(:metadata, :property_name) == property_name
+            end
+          end
+        end
+      end
+
+      def declarations_using_a_property
+        @declarations_using_a_property ||=
+          dependency.requirements.
+          select { |req| req.dig(:metadata, :property_name) }
+      end
+
+      def all_property_based_dependencies
+        @all_property_based_dependencies ||=
+          Nuget::FileParser.new(
+            dependency_files: dependency_files,
+            source: nil
+          ).parse.select do |dep|
+            dep.requirements.any? { |req| req.dig(:metadata, :property_name) }
+          end
+      end
+    end
+  end
+end
+
+Dependabot::UpdateCheckers.register("nuget", Dependabot::Nuget::UpdateChecker)

data/lib/dependabot/nuget/version.rb

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+require "dependabot/utils"
+
+# Dotnet pre-release versions use 1.0.1-rc1 syntax, which Gem::Version
+# converts into 1.0.1.pre.rc1. We override the `to_s` method to stop that
+# alteration.
+module Dependabot
+  module Nuget
+    class Version < Gem::Version
+      def initialize(version)
+        @version_string = version.to_s
+        super
+      end
+
+      def to_s
+        @version_string
+      end
+    end
+  end
+end
+
+Dependabot::Utils.register_version_class("nuget", Dependabot::Nuget::Version)

data/lib/dependabot/nuget.rb

@@ -0,0 +1,10 @@
+# frozen_string_literal: true
+
+# These all need to be required so the various classes can be registered in a
+# lookup table of package manager names to concrete classes.
+require "dependabot/nuget/file_fetcher"
+require "dependabot/nuget/file_parser"
+require "dependabot/nuget/update_checker"
+require "dependabot/nuget/file_updater"
+require "dependabot/nuget/requirement"
+require "dependabot/nuget/version"

metadata

@@ -0,0 +1,190 @@
+--- !ruby/object:Gem::Specification
+name: dependabot-nuget
+version: !ruby/object:Gem::Version
+  version: 0.80.0
+platform: ruby
+authors:
+- Dependabot
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2018-12-10 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: dependabot-core
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.80.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.80.0
+- !ruby/object:Gem::Dependency
+  name: byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.8'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.8'
+- !ruby/object:Gem::Dependency
+  name: rspec-its
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.2'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.2'
+- !ruby/object:Gem::Dependency
+  name: rspec_junit_formatter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.4'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.4'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.61'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.61'
+- !ruby/object:Gem::Dependency
+  name: vcr
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.4'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.4'
+description: Automated dependency management for Ruby, JavaScript, Python, PHP, Elixir,
+  Rust, Java, .NET, Elm and Go
+email: support@dependabot.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/dependabot/nuget.rb
+- lib/dependabot/nuget/file_fetcher.rb
+- lib/dependabot/nuget/file_fetcher/import_paths_finder.rb
+- lib/dependabot/nuget/file_fetcher/sln_project_paths_finder.rb
+- lib/dependabot/nuget/file_parser.rb
+- lib/dependabot/nuget/file_parser/packages_config_parser.rb
+- lib/dependabot/nuget/file_parser/project_file_parser.rb
+- lib/dependabot/nuget/file_parser/property_value_finder.rb
+- lib/dependabot/nuget/file_updater.rb
+- lib/dependabot/nuget/file_updater/packages_config_declaration_finder.rb
+- lib/dependabot/nuget/file_updater/project_file_declaration_finder.rb
+- lib/dependabot/nuget/file_updater/property_value_updater.rb
+- lib/dependabot/nuget/metadata_finder.rb
+- lib/dependabot/nuget/requirement.rb
+- lib/dependabot/nuget/update_checker.rb
+- lib/dependabot/nuget/update_checker/property_updater.rb
+- lib/dependabot/nuget/update_checker/repository_finder.rb
+- lib/dependabot/nuget/update_checker/requirements_updater.rb
+- lib/dependabot/nuget/update_checker/version_finder.rb
+- lib/dependabot/nuget/version.rb
+homepage: https://github.com/dependabot/dependabot-core
+licenses:
+- Nonstandard
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.5.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.5.0
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.7.7
+signing_key: 
+specification_version: 4
+summary: ".NET (NuGet) support for dependabot-core"
+test_files: []