dependabot-python 0.145.1 → 0.146.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 43680a853d322f60b9f01e6973bddb7c922c90148976bc8b97af2fef248312d0
4
- data.tar.gz: 8b9210fcfc4bb2f21f9155b046ec6bf0a23ee7c4044bb365fce827acaf484d71
3
+ metadata.gz: b90290207375839ac3d47c8c2f41f2af0842b3ec2ce6c4af9498777e59696d39
4
+ data.tar.gz: e1f7316069d7fd6d9abef2e52ddf5fc3c2f30d9c594859cf5cf2b0330c2cff7f
5
5
  SHA512:
6
- metadata.gz: de7a6969433ec15d01d74f0d5cc53ee248989d217dbbea7e38ffe58536e6f0fc2983d59cd0a0cab9e383896aea7e5c43f902e49196b04d682cec254bfc6344ae
7
- data.tar.gz: 1cc31fd2b395897fbce5f16f4189afaa5d0df88077c8469d606f0ee4850b9c1009e8c74dfe1350d4189743c321d8bb202a73db1390de38846cc3ec89de8a31a0
6
+ metadata.gz: 56a4a550392f962ae7051827633415fa58e5c9ce8a7585dbbc94b2bbfe6caa462395b80e9fe360deeeae7ba8375a25ef92cff5ce38bbeee202c73b43ac2539a1
7
+ data.tar.gz: 4833cdc56f5c7b6f3977702b30b56879edeb822feef9557400526f6be6c00d31554bbcf28e9219eb023219e2460e7979fa2e0262ced6f28a34c4470096ef9c08
@@ -15,6 +15,7 @@ from pip._internal.req.constructors import (
15
15
  # https://github.com/pypa/pip/blob/0bb3ac87f5bb149bd75cceac000844128b574385/src/pip/_internal/req/req_file.py#L35
16
16
  COMMENT_RE = re.compile(r'(^|\s+)#.*$')
17
17
 
18
+
18
19
  def parse_requirements(directory):
19
20
  # Parse the requirements.txt
20
21
  requirement_packages = []
@@ -101,7 +101,9 @@ module Dependabot
101
101
  def filter_ignored_versions(versions_array)
102
102
  filtered = versions_array.
103
103
  reject { |v| ignore_requirements.any? { |r| r.satisfied_by?(v) } }
104
- raise Dependabot::AllVersionsIgnored if @raise_on_ignored && filtered.empty? && versions_array.any?
104
+ if @raise_on_ignored && filter_lower_versions(filtered).empty? && filter_lower_versions(versions_array).any?
105
+ raise Dependabot::AllVersionsIgnored
106
+ end
105
107
 
106
108
  filtered
107
109
  end
@@ -169,7 +169,7 @@ module Dependabot
169
169
 
170
170
  filenames_to_compile.each do |filename|
171
171
  run_pip_compile_command(
172
- "pyenv exec pip-compile --allow-unsafe #{filename}"
172
+ "pyenv exec pip-compile #{pip_compile_options(filename)} --allow-unsafe #{filename}"
173
173
  )
174
174
  end
175
175
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-python
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.145.1
4
+ version: 0.146.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-05-06 00:00:00.000000000 Z
11
+ date: 2021-05-12 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.145.1
19
+ version: 0.146.1
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.145.1
26
+ version: 0.146.1
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -100,14 +100,14 @@ dependencies:
100
100
  requirements:
101
101
  - - "~>"
102
102
  - !ruby/object:Gem::Version
103
- version: 1.13.0
103
+ version: 1.14.0
104
104
  type: :development
105
105
  prerelease: false
106
106
  version_requirements: !ruby/object:Gem::Requirement
107
107
  requirements:
108
108
  - - "~>"
109
109
  - !ruby/object:Gem::Version
110
- version: 1.13.0
110
+ version: 1.14.0
111
111
  - !ruby/object:Gem::Dependency
112
112
  name: simplecov
113
113
  requirement: !ruby/object:Gem::Requirement