dependabot-python 0.220.0 → 0.222.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/build +5 -5
- data/lib/dependabot/python/file_fetcher.rb +6 -6
- data/lib/dependabot/python/python_versions.rb +6 -6
- data/lib/dependabot/python/requirement.rb +1 -1
- metadata +7 -35
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 94ac8b544cbd3814a49a046bf297339cad035f499a68ec20272e188049076bd8
|
4
|
+
data.tar.gz: 6611499dbe9732bf87a54e6c56fd266bc2dbdeac1b4aa1d0857d4cbabeb76be8
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: f082dd036fd500b27712735ec90a2ea58d64b57eb56830e9b6988eea2ed58e2e1653e7401725d3c36bf8f95ce88e49eae568b4f9ce145985fc328e8497e42b55
|
7
|
+
data.tar.gz: 9b797df5c5bdfbcff06adfd0cd590f2eef10bcb4e135acdf89f6ff4490b5dd9c9ae738ebc8d2896f1f1c078026bbd947dad3baa0b3a763e302b0ee44f3706053
|
data/helpers/build
CHANGED
@@ -18,8 +18,8 @@ cp -r \
|
|
18
18
|
"$install_dir"
|
19
19
|
|
20
20
|
cd "$install_dir"
|
21
|
-
PYENV_VERSION=3.11.
|
22
|
-
PYENV_VERSION=3.10.
|
23
|
-
PYENV_VERSION=3.9.
|
24
|
-
PYENV_VERSION=3.8.
|
25
|
-
PYENV_VERSION=3.7.
|
21
|
+
PYENV_VERSION=3.11.4 pyenv exec pip --disable-pip-version-check install --use-pep517 -r "requirements.txt"
|
22
|
+
PYENV_VERSION=3.10.12 pyenv exec pip --disable-pip-version-check install --use-pep517 -r "requirements.txt"
|
23
|
+
PYENV_VERSION=3.9.17 pyenv exec pip --disable-pip-version-check install --use-pep517 -r "requirements.txt"
|
24
|
+
PYENV_VERSION=3.8.17 pyenv exec pip --disable-pip-version-check install --use-pep517 -r "requirements.txt"
|
25
|
+
PYENV_VERSION=3.7.17 pyenv exec pip --disable-pip-version-check install --use-pep517 -r "requirements.txt"
|
@@ -13,7 +13,7 @@ module Dependabot
|
|
13
13
|
class FileFetcher < Dependabot::FileFetchers::Base
|
14
14
|
CHILD_REQUIREMENT_REGEX = /^-r\s?(?<path>.*\.(?:txt|in))/
|
15
15
|
CONSTRAINT_REGEX = /^-c\s?(?<path>.*\.(?:txt|in))/
|
16
|
-
DEPENDENCY_TYPES = %w(packages dev-packages)
|
16
|
+
DEPENDENCY_TYPES = %w(packages dev-packages).freeze
|
17
17
|
|
18
18
|
def self.required_files_in?(filenames)
|
19
19
|
return true if filenames.any? { |name| name.end_with?(".txt", ".in") }
|
@@ -52,7 +52,7 @@ module Dependabot
|
|
52
52
|
fetched_files << setup_cfg_file if setup_cfg_file
|
53
53
|
fetched_files += path_setup_files
|
54
54
|
fetched_files << pip_conf if pip_conf
|
55
|
-
fetched_files <<
|
55
|
+
fetched_files << python_version_file if python_version_file
|
56
56
|
|
57
57
|
check_required_files_present
|
58
58
|
uniq_files(fetched_files)
|
@@ -106,16 +106,16 @@ module Dependabot
|
|
106
106
|
tap { |f| f.support_file = true }
|
107
107
|
end
|
108
108
|
|
109
|
-
def
|
110
|
-
@
|
109
|
+
def python_version_file
|
110
|
+
@python_version_file ||= fetch_file_if_present(".python-version")&.
|
111
111
|
tap { |f| f.support_file = true }
|
112
112
|
|
113
|
-
return @
|
113
|
+
return @python_version_file if @python_version_file
|
114
114
|
return if [".", "/"].include?(directory)
|
115
115
|
|
116
116
|
# Check the top-level for a .python-version file, too
|
117
117
|
reverse_path = Pathname.new(directory[0]).relative_path_from(directory)
|
118
|
-
@
|
118
|
+
@python_version_file ||=
|
119
119
|
fetch_file_if_present(File.join(reverse_path, ".python-version"))&.
|
120
120
|
tap { |f| f.support_file = true }&.
|
121
121
|
tap { |f| f.name = ".python-version" }
|
@@ -4,7 +4,7 @@ module Dependabot
|
|
4
4
|
module Python
|
5
5
|
module PythonVersions
|
6
6
|
PRE_INSTALLED_PYTHON_VERSIONS = %w(
|
7
|
-
3.11.
|
7
|
+
3.11.4
|
8
8
|
).freeze
|
9
9
|
|
10
10
|
# Due to an OpenSSL issue we can only install the following versions in
|
@@ -13,11 +13,11 @@ module Dependabot
|
|
13
13
|
#
|
14
14
|
# WARNING: 3.9.3 is purposefully omitted as it was recalled: https://www.python.org/downloads/release/python-393/
|
15
15
|
SUPPORTED_VERSIONS = %w(
|
16
|
-
3.11.3 3.11.2 3.11.1 3.11.0
|
17
|
-
3.10.11 3.10.10 3.10.9 3.10.8 3.10.7 3.10.6 3.10.5 3.10.4 3.10.3 3.10.2 3.10.1 3.10.0
|
18
|
-
3.9.16 3.9.15 3.9.14 3.9.13 3.9.12 3.9.11 3.9.10 3.9.9 3.9.8 3.9.7 3.9.6 3.9.5 3.9.4 3.9.2 3.9.1 3.9.0
|
19
|
-
3.8.
|
20
|
-
3.7.
|
16
|
+
3.11.4 3.11.3 3.11.2 3.11.1 3.11.0
|
17
|
+
3.10.12 3.10.11 3.10.10 3.10.9 3.10.8 3.10.7 3.10.6 3.10.5 3.10.4 3.10.3 3.10.2 3.10.1 3.10.0
|
18
|
+
3.9.17 3.9.16 3.9.15 3.9.14 3.9.13 3.9.12 3.9.11 3.9.10 3.9.9 3.9.8 3.9.7 3.9.6 3.9.5 3.9.4 3.9.2 3.9.1 3.9.0
|
19
|
+
3.8.17 3.8.15 3.8.14 3.8.13 3.8.12 3.8.11 3.8.10 3.8.9 3.8.8 3.8.7 3.8.6 3.8.5 3.8.4 3.8.3 3.8.2 3.8.1 3.8.0
|
20
|
+
3.7.17 3.7.15 3.7.14 3.7.13 3.7.12 3.7.11 3.7.10 3.7.9 3.7.8 3.7.7 3.7.6 3.7.5 3.7.4 3.7.3 3.7.2 3.7.1 3.7.0
|
21
21
|
3.6.15 3.6.14 3.6.13 3.6.12 3.6.11 3.6.10 3.6.9 3.6.8 3.6.7 3.6.6 3.6.5 3.6.4 3.6.3 3.6.2 3.6.1 3.6.0
|
22
22
|
3.5.10 3.5.8 3.5.7 3.5.6 3.5.5 3.5.4 3.5.3
|
23
23
|
).freeze
|
@@ -18,7 +18,7 @@ module Dependabot
|
|
18
18
|
map { |k| Regexp.quote(k) }.join("|")
|
19
19
|
version_pattern = Python::Version::VERSION_PATTERN
|
20
20
|
|
21
|
-
PATTERN_RAW = "\\s*(#{quoted})?\\s*(#{version_pattern})\\s*"
|
21
|
+
PATTERN_RAW = "\\s*(#{quoted})?\\s*(#{version_pattern})\\s*".freeze
|
22
22
|
PATTERN = /\A#{PATTERN_RAW}\z/
|
23
23
|
PARENS_PATTERN = /\A\(([^)]+)\)\z/
|
24
24
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: dependabot-python
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.222.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Dependabot
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-07-25 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: dependabot-common
|
@@ -16,28 +16,28 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 0.
|
19
|
+
version: 0.222.0
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 0.
|
26
|
+
version: 0.222.0
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: debug
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
30
30
|
requirements:
|
31
31
|
- - "~>"
|
32
32
|
- !ruby/object:Gem::Version
|
33
|
-
version: 1.
|
33
|
+
version: 1.8.0
|
34
34
|
type: :development
|
35
35
|
prerelease: false
|
36
36
|
version_requirements: !ruby/object:Gem::Requirement
|
37
37
|
requirements:
|
38
38
|
- - "~>"
|
39
39
|
- !ruby/object:Gem::Version
|
40
|
-
version: 1.
|
40
|
+
version: 1.8.0
|
41
41
|
- !ruby/object:Gem::Dependency
|
42
42
|
name: gpgme
|
43
43
|
requirement: !ruby/object:Gem::Requirement
|
@@ -136,34 +136,6 @@ dependencies:
|
|
136
136
|
- - "~>"
|
137
137
|
- !ruby/object:Gem::Version
|
138
138
|
version: 1.17.1
|
139
|
-
- !ruby/object:Gem::Dependency
|
140
|
-
name: simplecov
|
141
|
-
requirement: !ruby/object:Gem::Requirement
|
142
|
-
requirements:
|
143
|
-
- - "~>"
|
144
|
-
- !ruby/object:Gem::Version
|
145
|
-
version: 0.22.0
|
146
|
-
type: :development
|
147
|
-
prerelease: false
|
148
|
-
version_requirements: !ruby/object:Gem::Requirement
|
149
|
-
requirements:
|
150
|
-
- - "~>"
|
151
|
-
- !ruby/object:Gem::Version
|
152
|
-
version: 0.22.0
|
153
|
-
- !ruby/object:Gem::Dependency
|
154
|
-
name: simplecov-console
|
155
|
-
requirement: !ruby/object:Gem::Requirement
|
156
|
-
requirements:
|
157
|
-
- - "~>"
|
158
|
-
- !ruby/object:Gem::Version
|
159
|
-
version: 0.9.1
|
160
|
-
type: :development
|
161
|
-
prerelease: false
|
162
|
-
version_requirements: !ruby/object:Gem::Requirement
|
163
|
-
requirements:
|
164
|
-
- - "~>"
|
165
|
-
- !ruby/object:Gem::Version
|
166
|
-
version: 0.9.1
|
167
139
|
- !ruby/object:Gem::Dependency
|
168
140
|
name: stackprof
|
169
141
|
requirement: !ruby/object:Gem::Requirement
|
@@ -260,7 +232,7 @@ licenses:
|
|
260
232
|
- Nonstandard
|
261
233
|
metadata:
|
262
234
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
263
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
235
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.222.0
|
264
236
|
post_install_message:
|
265
237
|
rdoc_options: []
|
266
238
|
require_paths:
|