RubyGems - dependabot-pub - Versions diffs - 0.191.1 → 0.192.0 - Mend

dependabot-pub 0.191.1 → 0.192.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml +4 -4
data/lib/dependabot/pub/helpers.rb +111 -9
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b41188fa76ba1f3c08afd075a141e737bec9318ce4344119c03ea005473179dc
-  data.tar.gz: b4ee8431fc1db2867a891b2e8343526e4d1156ccf909cb102f0666af90db474d
+  metadata.gz: f15dc7a1209e1297ec70c3d83305d985dc388a4aba078e7c5a384bab68058503
+  data.tar.gz: 0a1f1919d76cbd00ee898f6782754fa1df920be90ab580bacdf26e6626a9429b
 SHA512:
-  metadata.gz: 4c8031f46987426c5ffca1596b2a86fe81b9e63a57aff47be70f5bfc5f6d8de86f03b2f46adabf5e092585198dfb5ed2ce283f12b7517daea57cf21da2f15bb2
-  data.tar.gz: be8791734cebf430808b0ca73486af8c0c7ec29bda8b8a439c0192a08d01f4605f2e3363be4ec62d45b2fc2167e40d0fd26b8559cd1152da2384f6aab091a009
+  metadata.gz: 4a2b713c6d4677285406fb343a8712174f118763d9dc1826cbb6a07cb8d0bff7198e32d42010b60c1d2422d6105c3d89eb5b1afaa761b7711d4e1397dfaea02f
+  data.tar.gz: 79b4e6a383504a13cfe88c0ae3cc5f9c001957588edc3b1bf48ad11c34ba867ddd458bc4e26a0ab5744488c316ffce09fd0d6bcd31fc34bb2fde42f86b38ea27

data/lib/dependabot/pub/helpers.rb CHANGED Viewed

@@ -11,6 +11,21 @@ require "dependabot/pub/requirement"
 module Dependabot
   module Pub
     module Helpers
+      def self.pub_helpers_path
+        File.join(ENV["DEPENDABOT_NATIVE_HELPERS_PATH"], "pub")
+      end
+      def self.run_infer_sdk_versions(url: nil)
+        stdout, _, status = Open3.capture3(
+          {},
+          File.join(pub_helpers_path, "infer_sdk_versions"),
+          *("--flutter-releases-url=#{url}" if url)
+        )
+        return nil unless status.success?
+        JSON.parse(stdout)
+      end
       private
       def dependency_services_list
@@ -42,6 +57,94 @@ module Dependabot
         end
       end
+      # Clones the flutter repo into /tmp/flutter if needed
+      def ensure_flutter_repo
+        return if File.directory?("/tmp/flutter/.git")
+        # Make a flutter checkout
+        _, stderr, status = Open3.capture3(
+          {},
+          "git",
+          "clone",
+          "--no-checkout",
+          "https://github.com/flutter/flutter",
+          chdir: "/tmp/"
+        )
+        raise Dependabot::DependabotError, "Cloning Flutter failed: #{stderr}" unless status.success?
+      end
+      # Will ensure that /tmp/flutter contains the flutter repo checked out at `ref`.
+      def check_out_flutter_ref(ref)
+        ensure_flutter_repo
+        # Ensure we have the right version (by tag)
+        _, stderr, status = Open3.capture3(
+          {},
+          "git",
+          "fetch",
+          "origin",
+          ref,
+          chdir: "/tmp/flutter"
+        )
+        raise Dependabot::DependabotError, "Fetching Flutter version #{ref} failed: #{stderr}" unless status.success?
+        # Check out the right version in git.
+        _, stderr, status = Open3.capture3(
+          {},
+          "git",
+          "checkout",
+          ref,
+          chdir: "/tmp/flutter"
+        )
+        return if status.success?
+        raise Dependabot::DependabotError, "Checking out flutter #{ref} failed: #{stderr}"
+      end
+      ## Detects the right flutter release to use for the pubspec.yaml.
+      ## Then checks it out if it is not already.
+      ## Returns the sdk versions
+      def ensure_right_flutter_release
+        @ensure_right_flutter_release ||= begin
+          versions = Helpers.run_infer_sdk_versions url: options[:flutter_releases_url]
+          flutter_ref = if versions
+                          "refs/tags/#{versions['flutter']}"
+                        else
+                          # Choose the 'stable' version if the tool failed to infer a version.
+                          "stable"
+                        end
+          check_out_flutter_ref flutter_ref
+          # Run `flutter --version` to make Flutter download engine artifacts and create flutter/version.
+          _, stderr, status = Open3.capture3(
+            {},
+            "/tmp/flutter/bin/flutter",
+            "doctor",
+            chdir: "/tmp/flutter/"
+          )
+          raise Dependabot::DependabotError, "Running 'flutter doctor' failed: #{stderr}" unless status.success?
+          # Run `flutter --version --machine` to get the current flutter version.
+          stdout, stderr, status = Open3.capture3(
+            {},
+            "/tmp/flutter/bin/flutter",
+            "--version",
+            "--machine",
+            chdir: "/tmp/flutter/"
+          )
+          unless status.success?
+            raise Dependabot::DependabotError,
+                  "Running 'flutter --version --machine' failed: #{stderr}"
+          end
+          parsed = JSON.parse(stdout)
+          {
+            "flutter" => parsed["frameworkVersion"],
+            "dart" => parsed["dartSdkVersion"]
+          }
+        end
+      end
       def run_dependency_services(command, stdin_data: nil)
         SharedHelpers.in_a_temporary_directory do
           dependency_files.each do |f|
@@ -49,26 +152,25 @@ module Dependabot
             FileUtils.mkdir_p File.dirname(in_path_name)
             File.write(in_path_name, f.content)
           end
+          sdk_versions = ensure_right_flutter_release
           SharedHelpers.with_git_configured(credentials: credentials) do
             env = {
               "CI" => "true",
               "PUB_ENVIRONMENT" => "dependabot",
-              "FLUTTER_ROOT" => "/opt/dart/flutter",
-              "PUB_HOSTED_URL" => options[:pub_hosted_url]
+              "FLUTTER_ROOT" => "/tmp/flutter",
+              "PUB_HOSTED_URL" => options[:pub_hosted_url],
+              # This variable will make the solver run assuming that Dart SDK version.
+              # TODO(sigurdm): Would be nice to have a better handle for fixing the dart sdk version.
+              "_PUB_TEST_SDK_VERSION" => sdk_versions["dart"]
             }
             Dir.chdir File.join(Dir.pwd, dependency_files.first.directory) do
               stdout, stderr, status = Open3.capture3(
                 env.compact,
-                "dart",
-                "--no-analytics",
-                "pub",
-                "global",
-                "run",
-                "pub:dependency_services",
+                File.join(Helpers.pub_helpers_path, "dependency_services"),
                 command,
                 stdin_data: stdin_data
               )
-              raise Dependabot::DependabotError, "dart pub failed: #{stderr}" unless status.success?
+              raise Dependabot::DependabotError, "dependency_services failed: #{stderr}" unless status.success?
               return stdout unless block_given?
               yield

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-pub
 version: !ruby/object:Gem::Version
-  version: 0.191.1
+  version: 0.192.0
 platform: ruby
 authors:
 - Dependabot
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.191.1
+        version: 0.192.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.191.1
+        version: 0.192.0
 - !ruby/object:Gem::Dependency
   name: debase
   requirement: !ruby/object:Gem::Requirement