dependabot-python 0.180.4 → 0.182.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/requirements.txt +3 -3
- data/lib/dependabot/python/file_parser.rb +0 -6
- data/lib/dependabot/python/requirement.rb +12 -2
- metadata +34 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: effbbbdf6db8fd998c99f4433bde4d4aeeda867016d16a20763d79d0f6064e15
|
|
4
|
+
data.tar.gz: f70c47a7188e266d3a22211c37f868ad8b406c1a688a7f957bab875ee095d8dc
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 97f4fb405979b036d7ca138dff691c4b4e1f2ec9390da16671a3815ab992f535b65d8ebb9c02e91060d4711f556a29b62d31e1c95c88f2d299228eb2d289e924
|
|
7
|
+
data.tar.gz: 2818b1838da861d9781759a61e9e03041ec7c315a427e2591849fbbfd6c9aacd972609bd7b5a35ef33a94f015fb006edd0b7981b5d55c2553a6641d1ad97d3f0
|
data/helpers/requirements.txt
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
pip
|
|
2
|
-
pip-tools
|
|
1
|
+
pip>=21.3.1 # Allow earlier versions to retain python 3.6 support
|
|
2
|
+
pip-tools>=6.4.0 # Allow earlier versions to retain python 3.6 support
|
|
3
3
|
flake8==4.0.1
|
|
4
4
|
hashin==0.17.0
|
|
5
|
-
pipenv==2022.
|
|
5
|
+
pipenv==2022.4.8
|
|
6
6
|
pipfile==0.0.2
|
|
7
7
|
poetry==1.1.13
|
|
8
8
|
wheel==0.37.1
|
|
@@ -72,12 +72,6 @@ module Dependabot
|
|
|
72
72
|
def requirement_dependencies
|
|
73
73
|
dependencies = DependencySet.new
|
|
74
74
|
parsed_requirement_files.each do |dep|
|
|
75
|
-
# This isn't ideal, but currently the FileUpdater won't update
|
|
76
|
-
# deps that appear in a requirements.txt and Pipenv / Poetry
|
|
77
|
-
# and *aren't* a straight lockfile for Pipenv / Poetry
|
|
78
|
-
next if included_in_pipenv_deps?(normalised_name(dep["name"]))
|
|
79
|
-
next if included_in_poetry_deps?(normalised_name(dep["name"]))
|
|
80
|
-
|
|
81
75
|
# If a requirement has a `<`, `<=` or '==' marker then updating it is
|
|
82
76
|
# probably blocked. Ignore it.
|
|
83
77
|
next if blocking_marker?(dep)
|
|
@@ -6,7 +6,7 @@ require "dependabot/python/version"
|
|
|
6
6
|
module Dependabot
|
|
7
7
|
module Python
|
|
8
8
|
class Requirement < Gem::Requirement
|
|
9
|
-
OR_SEPARATOR = /(?<=[a-zA-Z0-9*])\s*\|+/.freeze
|
|
9
|
+
OR_SEPARATOR = /(?<=[a-zA-Z0-9)*])\s*\|+/.freeze
|
|
10
10
|
|
|
11
11
|
# Add equality and arbitrary-equality matchers
|
|
12
12
|
OPS = OPS.merge(
|
|
@@ -20,11 +20,17 @@ module Dependabot
|
|
|
20
20
|
|
|
21
21
|
PATTERN_RAW = "\\s*(#{quoted})?\\s*(#{version_pattern})\\s*"
|
|
22
22
|
PATTERN = /\A#{PATTERN_RAW}\z/.freeze
|
|
23
|
+
PARENS_PATTERN = /\A\(([^)]+)\)\z/.freeze
|
|
23
24
|
|
|
24
25
|
def self.parse(obj)
|
|
25
26
|
return ["=", Python::Version.new(obj.to_s)] if obj.is_a?(Gem::Version)
|
|
26
27
|
|
|
27
|
-
|
|
28
|
+
line = obj.to_s
|
|
29
|
+
if (matches = PARENS_PATTERN.match(line))
|
|
30
|
+
line = matches[1]
|
|
31
|
+
end
|
|
32
|
+
|
|
33
|
+
unless (matches = PATTERN.match(line))
|
|
28
34
|
msg = "Illformed requirement [#{obj.inspect}]"
|
|
29
35
|
raise BadRequirementError, msg
|
|
30
36
|
end
|
|
@@ -41,6 +47,10 @@ module Dependabot
|
|
|
41
47
|
def self.requirements_array(requirement_string)
|
|
42
48
|
return [new(nil)] if requirement_string.nil?
|
|
43
49
|
|
|
50
|
+
if (matches = PARENS_PATTERN.match(requirement_string))
|
|
51
|
+
requirement_string = matches[1]
|
|
52
|
+
end
|
|
53
|
+
|
|
44
54
|
requirement_string.strip.split(OR_SEPARATOR).map do |req_string|
|
|
45
55
|
new(req_string.strip)
|
|
46
56
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-python
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.182.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-04-
|
|
11
|
+
date: 2022-04-20 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,28 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.182.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.182.0
|
|
27
|
+
- !ruby/object:Gem::Dependency
|
|
28
|
+
name: debase
|
|
29
|
+
requirement: !ruby/object:Gem::Requirement
|
|
30
|
+
requirements:
|
|
31
|
+
- - "~>"
|
|
32
|
+
- !ruby/object:Gem::Version
|
|
33
|
+
version: 0.2.4.1
|
|
34
|
+
type: :development
|
|
35
|
+
prerelease: false
|
|
36
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
37
|
+
requirements:
|
|
38
|
+
- - "~>"
|
|
39
|
+
- !ruby/object:Gem::Version
|
|
40
|
+
version: 0.2.4.1
|
|
27
41
|
- !ruby/object:Gem::Dependency
|
|
28
42
|
name: debug
|
|
29
43
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -100,14 +114,28 @@ dependencies:
|
|
|
100
114
|
requirements:
|
|
101
115
|
- - "~>"
|
|
102
116
|
- !ruby/object:Gem::Version
|
|
103
|
-
version: 1.
|
|
117
|
+
version: 1.27.0
|
|
118
|
+
type: :development
|
|
119
|
+
prerelease: false
|
|
120
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
121
|
+
requirements:
|
|
122
|
+
- - "~>"
|
|
123
|
+
- !ruby/object:Gem::Version
|
|
124
|
+
version: 1.27.0
|
|
125
|
+
- !ruby/object:Gem::Dependency
|
|
126
|
+
name: ruby-debug-ide
|
|
127
|
+
requirement: !ruby/object:Gem::Requirement
|
|
128
|
+
requirements:
|
|
129
|
+
- - "~>"
|
|
130
|
+
- !ruby/object:Gem::Version
|
|
131
|
+
version: 0.7.3
|
|
104
132
|
type: :development
|
|
105
133
|
prerelease: false
|
|
106
134
|
version_requirements: !ruby/object:Gem::Requirement
|
|
107
135
|
requirements:
|
|
108
136
|
- - "~>"
|
|
109
137
|
- !ruby/object:Gem::Version
|
|
110
|
-
version:
|
|
138
|
+
version: 0.7.3
|
|
111
139
|
- !ruby/object:Gem::Dependency
|
|
112
140
|
name: simplecov
|
|
113
141
|
requirement: !ruby/object:Gem::Requirement
|