RubyGems - dependabot-python - Versions diffs - 0.113.5 → 0.113.6 - Mend

dependabot-python 0.113.5 → 0.113.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +4 -4
data/lib/dependabot/python/file_fetcher.rb +6 -1
data/lib/dependabot/python/file_parser.rb +8 -1
metadata +5 -5

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 598505b8d28ff5ac5d4cd32d6a74d514ffebc0b0095fc6cbe182185c5fab21ed
-  data.tar.gz: d47b72c8c345a8d926973d8a78c40761dbb8fc646d0aa3adae360ae555f780ea
+  metadata.gz: 13d1812fe995ffa9363746fda891591229a28e970fe13e09d46e4b0f348cd8c9
+  data.tar.gz: ea471121eeef0b8faad3316e794e817fa86fa1dfff9ae54a452c87148701c1ba
 SHA512:
-  metadata.gz: 3f0613f49e5c127fb7d7f2b2f76454281c68bec075796cd618d2ea2099552b90652443aa507255fb1bd423b6e55121dfd85470130f0313e9be6995f41110fdf2
-  data.tar.gz: 4b4db90249a57a6e5478c7db213c070a6c3b7168557fe51182d8477da5a4dd393f8e8aff1492d0624d8bb0fdbaa7b6ec5b3f67d81eedb3235a6d6095d2f31357
+  metadata.gz: ece27c13514891e81827435f7e948a3f40df6824e7fe3718cf6783b632e6848cd81472c585420505a0c0b6dc8bb0d715a1db75a6098abea957cf07f74cad7c2b
+  data.tar.gz: ce4a710b1a809bb939e5e7277a9c311a19a217e89fe702e04ee70028444e2d1c198d9409ab00f303a6bc8fad0f9cc221dd2254a999c1b10c3d22c803613edf08

data/lib/dependabot/python/file_fetcher.rb CHANGED Viewed

@@ -364,7 +364,12 @@ module Dependabot
           map(&:strip).
           reject { |p| p.include?("://") || p.include?("git@") }
-        uneditable_reqs + editable_reqs
+        current_dir = File.dirname(req_file.name)
+        (uneditable_reqs + editable_reqs).map do |path|
+          path = File.join(current_dir, path) unless current_dir == "."
+          Pathname.new(path).cleanpath.to_path
+        end
       end
       def pipfile_path_setup_file_paths

data/lib/dependabot/python/file_parser.rb CHANGED Viewed

@@ -181,10 +181,17 @@ module Dependabot
           each do |file|
             path = file.name
             FileUtils.mkdir_p(Pathname.new(path).dirname)
-            File.write(path, file.content)
+            File.write(path, remove_imports(file.content))
           end
       end
+      def remove_imports(content)
+        content.lines.
+          reject { |l| l.match?(/^['"]?(?<path>\..*?)(?=\[|#|'|"|$)/) }.
+          reject { |l| l.match?(/^(?:-e)\s+['"]?(?<path>.*?)(?=\[|#|'|"|$)/) }.
+          join
+      end
       def normalised_name(name)
         NameNormaliser.normalise(name)
       end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-python
 version: !ruby/object:Gem::Version
-  version: 0.113.5
+  version: 0.113.6
 platform: ruby
 authors:
 - Dependabot
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.113.5
+        version: 0.113.6
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.113.5
+        version: 0.113.6
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement
@@ -58,14 +58,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '12'
+        version: '13'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '12'
+        version: '13'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement