dependabot-python 0.169.2 → 0.169.6

Sign up to get free protection for your applications and to get access to all the features.
Files changed (12) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/requirements.txt +1 -1
  3. data/lib/dependabot/python/authed_url_builder.rb +2 -1
  4. data/lib/dependabot/python/file_parser.rb +2 -1
  5. data/lib/dependabot/python/file_updater/pipfile_file_updater.rb +2 -1
  6. data/lib/dependabot/python/requirement.rb +4 -2
  7. data/lib/dependabot/python/update_checker/latest_version_finder.rb +2 -0
  8. data/lib/dependabot/python/update_checker/pip_compile_version_resolver.rb +2 -1
  9. data/lib/dependabot/python/update_checker/pipenv_version_resolver.rb +2 -1
  10. data/lib/dependabot/python/update_checker/poetry_version_resolver.rb +2 -1
  11. data/lib/dependabot/python/update_checker/requirements_updater.rb +4 -2
  12. metadata +7 -7
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: bfd8737248ad154aeb051b19899b6a05d506025cbeae673116b874e637f85560
4
- data.tar.gz: 1683f40edb3de1dcf7cdd854971e1f05020cb73f3799eeecf276dc32d1c9b994
3
+ metadata.gz: 7be0818620b032a291ee939d1d83321e2f086dbf836aaf343f621842538e85d0
4
+ data.tar.gz: e668d6506ef21fda725e03bf9039f129fe958ed5030a6eadaa369e711f82bf96
5
5
  SHA512:
6
- metadata.gz: 87abd413085c83d5bff486a5fe31554b60c488057e0215a04858a4e2c4babb9736ff815e14c69e2323b844e21a2042b82488d6972b71fc04634544e139adc730
7
- data.tar.gz: 47afc064124c3c05b7b2683687c26444a86724814b0f1e8121afbbdfea89916466fd02bf9a68ea83c1ce6a59077f482bf6f73544411e0fa07a5e7288cfadca7f
6
+ metadata.gz: dbfcce0ca3dc73b2fb9032fac32c9320a731e597d198799e6c0f28f59b0586880461e232411e4ac30fb522d7180c7f32229631d68d989f4f404542e63e4f856c
7
+ data.tar.gz: 865b2dc1e0bf8a6cae02979b7fe08e8047c71f451b50b45d6e50e6ac1557324d9d04bc7ae36f96248062e8759e4f887bfb5ac9145090bb860cfc474f3d2d5b68
data/helpers/requirements.txt CHANGED
@@ -8,4 +8,4 @@ poetry==1.1.12
8
8
  wheel==0.37.0
9
9
 
10
10
  # Some dependencies will only install if Cython is present
11
- Cython==0.29.24
11
+ Cython==0.29.25
data/lib/dependabot/python/authed_url_builder.rb CHANGED
@@ -13,7 +13,8 @@ module Dependabot
13
13
  elsif Base64.decode64(token).ascii_only? &&
14
14
  Base64.decode64(token).include?(":")
15
15
  Base64.decode64(token)
16
- else token
16
+ else
17
+ token
17
18
  end
18
19
 
19
20
  if basic_auth_details.include?(":")
data/lib/dependabot/python/file_parser.rb CHANGED
@@ -106,7 +106,8 @@ module Dependabot
106
106
 
107
107
  def group_from_filename(filename)
108
108
  if filename.include?("dev") then ["dev-dependencies"]
109
- else ["dependencies"]
109
+ else
110
+ ["dependencies"]
110
111
  end
111
112
  end
112
113
 
data/lib/dependabot/python/file_updater/pipfile_file_updater.rb CHANGED
@@ -327,7 +327,8 @@ module Dependabot
327
327
  elsif user_specified_python_requirement
328
328
  parts = user_specified_python_requirement.split(".")
329
329
  parts.fill("*", (parts.length)..2).join(".")
330
- else PythonVersions::PRE_INSTALLED_PYTHON_VERSIONS.first
330
+ else
331
+ PythonVersions::PRE_INSTALLED_PYTHON_VERSIONS.first
331
332
  end
332
333
 
333
334
  # Ideally, the requirement is satisfied by a Python version we support
data/lib/dependabot/python/requirement.rb CHANGED
@@ -82,7 +82,8 @@ module Dependabot
82
82
  if req_string.match?(/~[^>]/) then convert_tilde_req(req_string)
83
83
  elsif req_string.start_with?("^") then convert_caret_req(req_string)
84
84
  elsif req_string.include?(".*") then convert_wildcard(req_string)
85
- else req_string
85
+ else
86
+ req_string
86
87
  end
87
88
  end
88
89
 
@@ -108,7 +109,8 @@ module Dependabot
108
109
  if i < first_non_zero_index then part
109
110
  elsif i == first_non_zero_index then (part.to_i + 1).to_s
110
111
  elsif i > first_non_zero_index && i == 2 then "0.a"
111
- else 0
112
+ else
113
+ 0
112
114
  end
113
115
  end.join(".")
114
116
 
data/lib/dependabot/python/update_checker/latest_version_finder.rb CHANGED
@@ -162,6 +162,8 @@ module Dependabot
162
162
  raise if MAIN_PYPI_INDEXES.include?(index_url)
163
163
 
164
164
  raise PrivateSourceTimedOut, sanitized_url
165
+ rescue URI::InvalidURIError
166
+ raise DependencyFileNotResolvable, "Invalid URL: #{sanitized_url}"
165
167
  end
166
168
  end
167
169
 
data/lib/dependabot/python/update_checker/pip_compile_version_resolver.rb CHANGED
@@ -271,7 +271,8 @@ module Dependabot
271
271
  FileUtils.mkdir_p(Pathname.new(path).dirname)
272
272
  updated_content =
273
273
  if update_requirement then update_req_file(file, updated_req)
274
- else file.content
274
+ else
275
+ file.content
275
276
  end
276
277
  File.write(path, updated_content)
277
278
  end
data/lib/dependabot/python/update_checker/pipenv_version_resolver.rb CHANGED
@@ -405,7 +405,8 @@ module Dependabot
405
405
  elsif user_specified_python_requirement
406
406
  parts = user_specified_python_requirement.split(".")
407
407
  parts.fill("*", (parts.length)..2).join(".")
408
- else PythonVersions::PRE_INSTALLED_PYTHON_VERSIONS.first
408
+ else
409
+ PythonVersions::PRE_INSTALLED_PYTHON_VERSIONS.first
409
410
  end
410
411
 
411
412
  # Ideally, the requirement is satisfied by a Python version we support
data/lib/dependabot/python/update_checker/poetry_version_resolver.rb CHANGED
@@ -90,7 +90,8 @@ module Dependabot
90
90
 
91
91
  updated_lockfile =
92
92
  if File.exist?("poetry.lock") then File.read("poetry.lock")
93
- else File.read("pyproject.lock")
93
+ else
94
+ File.read("pyproject.lock")
94
95
  end
95
96
  updated_lockfile = TomlRB.parse(updated_lockfile)
96
97
 
data/lib/dependabot/python/update_checker/requirements_updater.rb CHANGED
@@ -311,7 +311,8 @@ module Dependabot
311
311
  version.segments.count - 2
312
312
  elsif req_string.strip.start_with?("~")
313
313
  req_string.split(".").count == 1 ? 0 : 1
314
- else raise "Don't know how to convert #{req_string} to range"
314
+ else
315
+ raise "Don't know how to convert #{req_string} to range"
315
316
  end
316
317
  end
317
318
 
@@ -335,7 +336,8 @@ module Dependabot
335
336
  version_to_be_permitted.segments[index]
336
337
  elsif index == index_to_update
337
338
  version_to_be_permitted.segments[index] + 1
338
- else 0
339
+ else
340
+ 0
339
341
  end
340
342
  end
341
343
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-python
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.169.2
4
+ version: 0.169.6
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2021-11-30 00:00:00.000000000 Z
11
+ date: 2021-12-13 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.169.2
19
+ version: 0.169.6
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.169.2
26
+ version: 0.169.6
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: byebug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -100,14 +100,14 @@ dependencies:
100
100
  requirements:
101
101
  - - "~>"
102
102
  - !ruby/object:Gem::Version
103
- version: 1.18.0
103
+ version: 1.23.0
104
104
  type: :development
105
105
  prerelease: false
106
106
  version_requirements: !ruby/object:Gem::Requirement
107
107
  requirements:
108
108
  - - "~>"
109
109
  - !ruby/object:Gem::Version
110
- version: 1.18.0
110
+ version: 1.23.0
111
111
  - !ruby/object:Gem::Dependency
112
112
  name: simplecov
113
113
  requirement: !ruby/object:Gem::Requirement
@@ -243,7 +243,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
243
243
  - !ruby/object:Gem::Version
244
244
  version: 2.5.0
245
245
  requirements: []
246
- rubygems_version: 3.2.22
246
+ rubygems_version: 3.2.32
247
247
  signing_key:
248
248
  specification_version: 4
249
249
  summary: Python support for dependabot