RubyGems - dependabot-nuget - Versions diffs - 0.130.3 → 0.131.0 - Mend

dependabot-nuget 0.130.3 → 0.131.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +4 -4
data/lib/dependabot/nuget/file_fetcher/import_paths_finder.rb +7 -2
data/lib/dependabot/nuget/requirement.rb +14 -1
metadata +9 -9

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 62f44b3b3a4131485a58de3a48348f478dd3817177018981f501589d12cc6cb7
-  data.tar.gz: 8492ba02c25d9753f0a6b92008b103b2040146c206f5ea93287a892a03f25497
+  metadata.gz: 76aab76b6e669120e50bfd8a30bc6ce8a4ddc7db5a5282985492fa4acbf023b3
+  data.tar.gz: f3483a41cfc05b271098e452b867059511fb9a135c6b2ceb6a1fc5d77c41c12b
 SHA512:
-  metadata.gz: ea0eecef6e75fe0c80252df9e967380b2c3d45e798d16e8e27bb1a08e6bda3987f6cc59d4d4c681b0ff0f93acbd90a67c99ebac45e45247c7965c614350782ed
-  data.tar.gz: db0251d54b33ae32a8e8e4b93a06fd8f28f567f3d7e239513453636330b021fd22d26238fcb7dda1d660e51611f6cafeec882bea5adfa155ad296a6fb8136152
+  metadata.gz: 2bd06507e08c07a2e9ce6ce01ef3c1cd543b75a235d78a125ec036b5390bf422ee9772c60ad5db31a73f6b857983aa56011f226b81cdcb259bc40a0906135947
+  data.tar.gz: 838dfb48b03d9e4b7c22afd380d3079a056ad51316027f81118f9e85d3a5b8bdafc9478a0261c58261554a1ef6850ea98cf1ba7de750627dcacaf2dad4edad48

data/lib/dependabot/nuget/file_fetcher/import_paths_finder.rb CHANGED Viewed

@@ -26,11 +26,16 @@ module Dependabot
         def project_reference_paths
           doc = Nokogiri::XML(project_file.content)
           doc.remove_namespaces!
-          doc.xpath("/Project/ItemGroup/ProjectReference").map do |node|
-            path = node.attribute("Include").value.strip.tr("\\", "/")
+          nodes = doc.xpath("/Project/ItemGroup/ProjectReference").map do |node|
+            attribute = node.attribute("Include")
+            next unless attribute
+            path = attribute.value.strip.tr("\\", "/")
             path = File.join(current_dir, path) unless current_dir.nil?
             Pathname.new(path).cleanpath.to_path
           end
+          nodes.compact
         end
         private

data/lib/dependabot/nuget/requirement.rb CHANGED Viewed

@@ -49,13 +49,18 @@ module Dependabot
         return convert_dotnet_range_to_ruby_range(req_string) if req_string&.start_with?("(", "[")
         return req_string.split(",").map(&:strip) if req_string.include?(",")
         return req_string unless req_string.include?("*")
         convert_wildcard_req(req_string)
       end
       def convert_dotnet_range_to_ruby_range(req_string)
-        lower_b, upper_b = req_string.split(",").map(&:strip)
+        lower_b, upper_b = req_string.split(",").map(&:strip).map do |bound|
+          next convert_range_wildcard_req(bound) if bound.include?("*")
+          bound
+        end
         lower_b =
           if ["(", "["].include?(lower_b) then nil
@@ -72,6 +77,14 @@ module Dependabot
         [lower_b, upper_b].compact
       end
+      def convert_range_wildcard_req(req_string)
+        range_end = req_string[-1]
+        defined_part = req_string.split("*").first
+        version = defined_part + "0"
+        version += range_end if [")", "]"].include?(range_end)
+        version
+      end
       def convert_wildcard_req(req_string)
         return ">= 0" if req_string.start_with?("*")

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-nuget
 version: !ruby/object:Gem::Version
-  version: 0.130.3
+  version: 0.131.0
 platform: ruby
 authors:
 - Dependabot
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-01-26 00:00:00.000000000 Z
+date: 2021-02-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.130.3
+        version: 0.131.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.130.3
+        version: 0.131.0
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement
@@ -100,14 +100,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.8.0
+        version: 1.9.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.8.0
+        version: 1.9.0
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -128,14 +128,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.0
+        version: 0.9.1
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.0
+        version: 0.9.1
 - !ruby/object:Gem::Dependency
   name: vcr
   requirement: !ruby/object:Gem::Requirement
@@ -211,7 +211,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: 2.5.0
 requirements: []
-rubygems_version: 3.1.4
+rubygems_version: 3.2.3
 signing_key:
 specification_version: 4
 summary: ".NET (NuGet) support for dependabot"