dependabot-python 0.180.4 → 0.182.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/helpers/requirements.txt +3 -3
- data/lib/dependabot/python/file_parser.rb +0 -6
- data/lib/dependabot/python/requirement.rb +12 -2
- metadata +34 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: effbbbdf6db8fd998c99f4433bde4d4aeeda867016d16a20763d79d0f6064e15
|
|
4
|
+
data.tar.gz: f70c47a7188e266d3a22211c37f868ad8b406c1a688a7f957bab875ee095d8dc
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 97f4fb405979b036d7ca138dff691c4b4e1f2ec9390da16671a3815ab992f535b65d8ebb9c02e91060d4711f556a29b62d31e1c95c88f2d299228eb2d289e924
|
|
7
|
+
data.tar.gz: 2818b1838da861d9781759a61e9e03041ec7c315a427e2591849fbbfd6c9aacd972609bd7b5a35ef33a94f015fb006edd0b7981b5d55c2553a6641d1ad97d3f0
|
data/helpers/requirements.txt
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
pip
|
|
2
|
-
pip-tools
|
|
1
|
+
pip>=21.3.1 # Allow earlier versions to retain python 3.6 support
|
|
2
|
+
pip-tools>=6.4.0 # Allow earlier versions to retain python 3.6 support
|
|
3
3
|
flake8==4.0.1
|
|
4
4
|
hashin==0.17.0
|
|
5
|
-
pipenv==2022.
|
|
5
|
+
pipenv==2022.4.8
|
|
6
6
|
pipfile==0.0.2
|
|
7
7
|
poetry==1.1.13
|
|
8
8
|
wheel==0.37.1
|
|
@@ -72,12 +72,6 @@ module Dependabot
|
|
|
72
72
|
def requirement_dependencies
|
|
73
73
|
dependencies = DependencySet.new
|
|
74
74
|
parsed_requirement_files.each do |dep|
|
|
75
|
-
# This isn't ideal, but currently the FileUpdater won't update
|
|
76
|
-
# deps that appear in a requirements.txt and Pipenv / Poetry
|
|
77
|
-
# and *aren't* a straight lockfile for Pipenv / Poetry
|
|
78
|
-
next if included_in_pipenv_deps?(normalised_name(dep["name"]))
|
|
79
|
-
next if included_in_poetry_deps?(normalised_name(dep["name"]))
|
|
80
|
-
|
|
81
75
|
# If a requirement has a `<`, `<=` or '==' marker then updating it is
|
|
82
76
|
# probably blocked. Ignore it.
|
|
83
77
|
next if blocking_marker?(dep)
|
|
@@ -6,7 +6,7 @@ require "dependabot/python/version"
|
|
|
6
6
|
module Dependabot
|
|
7
7
|
module Python
|
|
8
8
|
class Requirement < Gem::Requirement
|
|
9
|
-
OR_SEPARATOR = /(?<=[a-zA-Z0-9*])\s*\|+/.freeze
|
|
9
|
+
OR_SEPARATOR = /(?<=[a-zA-Z0-9)*])\s*\|+/.freeze
|
|
10
10
|
|
|
11
11
|
# Add equality and arbitrary-equality matchers
|
|
12
12
|
OPS = OPS.merge(
|
|
@@ -20,11 +20,17 @@ module Dependabot
|
|
|
20
20
|
|
|
21
21
|
PATTERN_RAW = "\\s*(#{quoted})?\\s*(#{version_pattern})\\s*"
|
|
22
22
|
PATTERN = /\A#{PATTERN_RAW}\z/.freeze
|
|
23
|
+
PARENS_PATTERN = /\A\(([^)]+)\)\z/.freeze
|
|
23
24
|
|
|
24
25
|
def self.parse(obj)
|
|
25
26
|
return ["=", Python::Version.new(obj.to_s)] if obj.is_a?(Gem::Version)
|
|
26
27
|
|
|
27
|
-
|
|
28
|
+
line = obj.to_s
|
|
29
|
+
if (matches = PARENS_PATTERN.match(line))
|
|
30
|
+
line = matches[1]
|
|
31
|
+
end
|
|
32
|
+
|
|
33
|
+
unless (matches = PATTERN.match(line))
|
|
28
34
|
msg = "Illformed requirement [#{obj.inspect}]"
|
|
29
35
|
raise BadRequirementError, msg
|
|
30
36
|
end
|
|
@@ -41,6 +47,10 @@ module Dependabot
|
|
|
41
47
|
def self.requirements_array(requirement_string)
|
|
42
48
|
return [new(nil)] if requirement_string.nil?
|
|
43
49
|
|
|
50
|
+
if (matches = PARENS_PATTERN.match(requirement_string))
|
|
51
|
+
requirement_string = matches[1]
|
|
52
|
+
end
|
|
53
|
+
|
|
44
54
|
requirement_string.strip.split(OR_SEPARATOR).map do |req_string|
|
|
45
55
|
new(req_string.strip)
|
|
46
56
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-python
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.182.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-04-
|
|
11
|
+
date: 2022-04-20 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,28 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.182.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.182.0
|
|
27
|
+
- !ruby/object:Gem::Dependency
|
|
28
|
+
name: debase
|
|
29
|
+
requirement: !ruby/object:Gem::Requirement
|
|
30
|
+
requirements:
|
|
31
|
+
- - "~>"
|
|
32
|
+
- !ruby/object:Gem::Version
|
|
33
|
+
version: 0.2.4.1
|
|
34
|
+
type: :development
|
|
35
|
+
prerelease: false
|
|
36
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
37
|
+
requirements:
|
|
38
|
+
- - "~>"
|
|
39
|
+
- !ruby/object:Gem::Version
|
|
40
|
+
version: 0.2.4.1
|
|
27
41
|
- !ruby/object:Gem::Dependency
|
|
28
42
|
name: debug
|
|
29
43
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -100,14 +114,28 @@ dependencies:
|
|
|
100
114
|
requirements:
|
|
101
115
|
- - "~>"
|
|
102
116
|
- !ruby/object:Gem::Version
|
|
103
|
-
version: 1.
|
|
117
|
+
version: 1.27.0
|
|
118
|
+
type: :development
|
|
119
|
+
prerelease: false
|
|
120
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
121
|
+
requirements:
|
|
122
|
+
- - "~>"
|
|
123
|
+
- !ruby/object:Gem::Version
|
|
124
|
+
version: 1.27.0
|
|
125
|
+
- !ruby/object:Gem::Dependency
|
|
126
|
+
name: ruby-debug-ide
|
|
127
|
+
requirement: !ruby/object:Gem::Requirement
|
|
128
|
+
requirements:
|
|
129
|
+
- - "~>"
|
|
130
|
+
- !ruby/object:Gem::Version
|
|
131
|
+
version: 0.7.3
|
|
104
132
|
type: :development
|
|
105
133
|
prerelease: false
|
|
106
134
|
version_requirements: !ruby/object:Gem::Requirement
|
|
107
135
|
requirements:
|
|
108
136
|
- - "~>"
|
|
109
137
|
- !ruby/object:Gem::Version
|
|
110
|
-
version:
|
|
138
|
+
version: 0.7.3
|
|
111
139
|
- !ruby/object:Gem::Dependency
|
|
112
140
|
name: simplecov
|
|
113
141
|
requirement: !ruby/object:Gem::Requirement
|