dependabot-python 0.145.1 → 0.146.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b90290207375839ac3d47c8c2f41f2af0842b3ec2ce6c4af9498777e59696d39
|
|
4
|
+
data.tar.gz: e1f7316069d7fd6d9abef2e52ddf5fc3c2f30d9c594859cf5cf2b0330c2cff7f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 56a4a550392f962ae7051827633415fa58e5c9ce8a7585dbbc94b2bbfe6caa462395b80e9fe360deeeae7ba8375a25ef92cff5ce38bbeee202c73b43ac2539a1
|
|
7
|
+
data.tar.gz: 4833cdc56f5c7b6f3977702b30b56879edeb822feef9557400526f6be6c00d31554bbcf28e9219eb023219e2460e7979fa2e0262ced6f28a34c4470096ef9c08
|
data/helpers/lib/parser.py
CHANGED
|
@@ -15,6 +15,7 @@ from pip._internal.req.constructors import (
|
|
|
15
15
|
# https://github.com/pypa/pip/blob/0bb3ac87f5bb149bd75cceac000844128b574385/src/pip/_internal/req/req_file.py#L35
|
|
16
16
|
COMMENT_RE = re.compile(r'(^|\s+)#.*$')
|
|
17
17
|
|
|
18
|
+
|
|
18
19
|
def parse_requirements(directory):
|
|
19
20
|
# Parse the requirements.txt
|
|
20
21
|
requirement_packages = []
|
|
@@ -101,7 +101,9 @@ module Dependabot
|
|
|
101
101
|
def filter_ignored_versions(versions_array)
|
|
102
102
|
filtered = versions_array.
|
|
103
103
|
reject { |v| ignore_requirements.any? { |r| r.satisfied_by?(v) } }
|
|
104
|
-
|
|
104
|
+
if @raise_on_ignored && filter_lower_versions(filtered).empty? && filter_lower_versions(versions_array).any?
|
|
105
|
+
raise Dependabot::AllVersionsIgnored
|
|
106
|
+
end
|
|
105
107
|
|
|
106
108
|
filtered
|
|
107
109
|
end
|
|
@@ -169,7 +169,7 @@ module Dependabot
|
|
|
169
169
|
|
|
170
170
|
filenames_to_compile.each do |filename|
|
|
171
171
|
run_pip_compile_command(
|
|
172
|
-
"pyenv exec pip-compile --allow-unsafe #{filename}"
|
|
172
|
+
"pyenv exec pip-compile #{pip_compile_options(filename)} --allow-unsafe #{filename}"
|
|
173
173
|
)
|
|
174
174
|
end
|
|
175
175
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-python
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.146.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2021-05-
|
|
11
|
+
date: 2021-05-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.146.1
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.146.1
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: byebug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -100,14 +100,14 @@ dependencies:
|
|
|
100
100
|
requirements:
|
|
101
101
|
- - "~>"
|
|
102
102
|
- !ruby/object:Gem::Version
|
|
103
|
-
version: 1.
|
|
103
|
+
version: 1.14.0
|
|
104
104
|
type: :development
|
|
105
105
|
prerelease: false
|
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
|
107
107
|
requirements:
|
|
108
108
|
- - "~>"
|
|
109
109
|
- !ruby/object:Gem::Version
|
|
110
|
-
version: 1.
|
|
110
|
+
version: 1.14.0
|
|
111
111
|
- !ruby/object:Gem::Dependency
|
|
112
112
|
name: simplecov
|
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|