dependabot-python 0.229.0 → 0.231.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 93a70a7f3c4e96285de023eb663ea0fa6d630296e4b1b3f44de8a3e85e26eeb5
-  data.tar.gz: 2c551d185578cbed65a03acbb16cad9ab1b363f7abf67c58d5d81d497620a9ac
+  metadata.gz: e7e856d45cf46b8379f86d8ed43d53c622eaa9444c8e9cd24d0563d56509c3c7
+  data.tar.gz: 65a0173503758395b1ce82d88e7dd09d02decde06a223e47cfeb95d7a5aee68f
 SHA512:
-  metadata.gz: 604d86a08450481b4001381d363cc4a64a54dd3cbbe56ae86b884638a6a9110b0195bf63a02b6c6f05284d4fda28aff94cbaaf5d969df2430b7559fdad0311bc
-  data.tar.gz: 30aff24275926344ddfe6ec48f4570b114a4fd485d431526898f5260581c3254da7558c179ce21376f8c060bc528f5a2ec826fcd8694c3b20ab4b98bc5c10d80
+  metadata.gz: 48ce906627997bbb5f87355879fdd887bb6f4b3af533177d8c991aa3956c1ae09e4d4ac67ed09c595dfcace80fc682617379208dd87212a4d819d852199f3424
+  data.tar.gz: 33de2574168426711d09f0045e387674a91522672af3459f7da0eb7ccd7715987621ed4db755f105eb0df63cb78535929d726af8a32dcd16c2bf4b7d00984e84

data/helpers/build

@@ -18,4 +18,18 @@ cp -r \
   "$install_dir"
 
 cd "$install_dir"
-PYENV_VERSION=$1 pyenv exec pip --disable-pip-version-check install --use-pep517 -r "requirements.txt"
+PYENV_VERSION=$1 pyenv exec pip3 --disable-pip-version-check install --use-pep517 -r "requirements.txt"
+
+# Remove the extra objects added during the previous install. Based on
+# https://github.com/docker-library/python/blob/master/Dockerfile-linux.template
+# And the image docker.io/library/python
+find "${PYENV_ROOT:-/usr/local/.pyenv}/versions" -depth \
+    \( \
+    \( -type d -a \( -name test -o -name tests -o -name idle_test \) \) \
+    -o \( -type f -a \( -name '*.pyc' -o -name '*.pyo' -o -name 'libpython*.a' \) \) \
+    \) -exec rm -rf '{}' +
+
+find -L "${PYENV_ROOT:-/usr/local/.pyenv}/versions" -type f  \
+    -name '*.so' \
+    -exec strip --preserve-dates {} +
+

data/helpers/requirements.txt

@@ -7,4 +7,4 @@ pipfile==0.0.2
 poetry==1.6.1
 
 # Some dependencies will only install if Cython is present
-Cython==3.0.0
+Cython==3.0.2

data/lib/dependabot/python/authed_url_builder.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/python/file_fetcher.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -84,8 +85,8 @@ module Dependabot
 
       def uniq_files(fetched_files)
         uniq_files = fetched_files.reject(&:support_file?).uniq
-        uniq_files += fetched_files.
-                      reject { |f| uniq_files.map(&:name).include?(f.name) }
+        uniq_files += fetched_files
+                      .reject { |f| uniq_files.map(&:name).include?(f.name) }
       end
 
       def pipenv_files
@@ -112,8 +113,8 @@ module Dependabot
                   pipfile ||
                   pyproject
 
-        path = Pathname.new(File.join(directory, "requirements.txt")).
-               cleanpath.to_path
+        path = Pathname.new(File.join(directory, "requirements.txt"))
+                       .cleanpath.to_path
         raise Dependabot::DependencyFileNotFound, path
       end
 
@@ -146,8 +147,8 @@ module Dependabot
         # Check the top-level for a .python-version file, too
         reverse_path = Pathname.new(directory[0]).relative_path_from(directory)
         @python_version_file ||=
-          fetch_support_file(File.join(reverse_path, ".python-version"))&.
-          tap { |f| f.name = ".python-version" }
+          fetch_support_file(File.join(reverse_path, ".python-version"))
+          &.tap { |f| f.name = ".python-version" }
       end
 
       def pipfile
@@ -210,17 +211,17 @@ module Dependabot
 
         @req_txt_and_in_files = []
 
-        repo_contents.
-          select { |f| f.type == "file" }.
-          select { |f| f.name.end_with?(".txt", ".in") }.
-          reject { |f| f.size > 500_000 }.
-          map { |f| fetch_file_from_host(f.name) }.
-          select { |f| requirements_file?(f) }.
-          each { |f| @req_txt_and_in_files << f }
+        repo_contents
+          .select { |f| f.type == "file" }
+          .select { |f| f.name.end_with?(".txt", ".in") }
+          .reject { |f| f.size > 500_000 }
+          .map { |f| fetch_file_from_host(f.name) }
+          .select { |f| requirements_file?(f) }
+          .each { |f| @req_txt_and_in_files << f }
 
-        repo_contents.
-          select { |f| f.type == "dir" }.
-          each { |f| @req_txt_and_in_files += req_files_for_dir(f) }
+        repo_contents
+          .select { |f| f.type == "dir" }
+          .each { |f| @req_txt_and_in_files += req_files_for_dir(f) }
 
         @req_txt_and_in_files
       end
@@ -230,12 +231,12 @@ module Dependabot
         relative_reqs_dir =
           requirements_dir.path.gsub(%r{^/?#{Regexp.escape(dir)}/?}, "")
 
-        repo_contents(dir: relative_reqs_dir).
-          select { |f| f.type == "file" }.
-          select { |f| f.name.end_with?(".txt", ".in") }.
-          reject { |f| f.size > 500_000 }.
-          map { |f| fetch_file_from_host("#{relative_reqs_dir}/#{f.name}") }.
-          select { |f| requirements_file?(f) }
+        repo_contents(dir: relative_reqs_dir)
+          .select { |f| f.type == "file" }
+          .select { |f| f.name.end_with?(".txt", ".in") }
+          .reject { |f| f.size > 500_000 }
+          .map { |f| fetch_file_from_host("#{relative_reqs_dir}/#{f.name}") }
+          .select { |f| requirements_file?(f) }
       end
 
       def child_requirement_txt_files
@@ -356,8 +357,8 @@ module Dependabot
 
         begin
           [
-            fetch_file_from_host(cfg_path, fetch_submodules: true).
-              tap { |f| f.support_file = true }
+            fetch_file_from_host(cfg_path, fetch_submodules: true)
+              .tap { |f| f.support_file = true }
           ]
         rescue Dependabot::DependencyFileNotFound
           # Ignore lack of a setup.cfg
@@ -384,31 +385,31 @@ module Dependabot
       end
 
       def requirement_txt_path_setup_file_paths
-        (requirements_txt_files + child_requirement_txt_files).
-          map { |req_file| parse_path_setup_paths(req_file) }.
-          flatten.uniq
+        (requirements_txt_files + child_requirement_txt_files)
+          .map { |req_file| parse_path_setup_paths(req_file) }
+          .flatten.uniq
       end
 
       def requirement_in_path_setup_file_paths
-        requirements_in_files.
-          map { |req_file| parse_path_setup_paths(req_file) }.
-          flatten.uniq
+        requirements_in_files
+          .map { |req_file| parse_path_setup_paths(req_file) }
+          .flatten.uniq
       end
 
       def parse_path_setup_paths(req_file)
         uneditable_reqs =
-          req_file.content.
-          scan(/^['"]?(?:file:)?(?<path>\..*?)(?=\[|#|'|"|$)/).
-          flatten.
-          map(&:strip).
-          reject { |p| p.include?("://") }
+          req_file.content
+                  .scan(/^['"]?(?:file:)?(?<path>\..*?)(?=\[|#|'|"|$)/)
+                  .flatten
+                  .map(&:strip)
+                  .reject { |p| p.include?("://") }
 
         editable_reqs =
-          req_file.content.
-          scan(/^(?:-e)\s+['"]?(?:file:)?(?<path>.*?)(?=\[|#|'|"|$)/).
-          flatten.
-          map(&:strip).
-          reject { |p| p.include?("://") || p.include?("git@") }
+          req_file.content
+                  .scan(/^(?:-e)\s+['"]?(?:file:)?(?<path>.*?)(?=\[|#|'|"|$)/)
+                  .flatten
+                  .map(&:strip)
+                  .reject { |p| p.include?("://") || p.include?("git@") }
 
         uneditable_reqs + editable_reqs
       end

data/lib/dependabot/python/file_parser/pipfile_files_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -110,8 +111,8 @@ module Dependabot
           req = version_from_hash_or_string(requirement)
 
           if pipfile_lock
-            details = parsed_pipfile_lock.
-                      dig(group, normalised_name(dep_name))
+            details = parsed_pipfile_lock
+                      .dig(group, normalised_name(dep_name))
 
             version = version_from_hash_or_string(details)
             version&.gsub(/^===?/, "")

data/lib/dependabot/python/file_parser/pyproject_files_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -205,9 +206,9 @@ module Dependabot
         def version_from_lockfile(dep_name)
           return unless parsed_lockfile
 
-          parsed_lockfile.fetch("package", []).
-            find { |p| normalise(p.fetch("name")) == normalise(dep_name) }&.
-            fetch("version", nil)
+          parsed_lockfile.fetch("package", [])
+                         .find { |p| normalise(p.fetch("name")) == normalise(dep_name) }
+            &.fetch("version", nil)
         end
 
         def check_requirements(req)
@@ -247,7 +248,7 @@ module Dependabot
             write_temporary_pyproject
 
             SharedHelpers.run_helper_subprocess(
-              command: "pyenv exec python #{NativeHelpers.python_helper_path}",
+              command: "pyenv exec python3 #{NativeHelpers.python_helper_path}",
               function: "parse_pep621_dependencies",
               args: [pyproject.name]
             )

data/lib/dependabot/python/file_parser/python_requirement_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -31,11 +32,11 @@ module Dependabot
         # (e.g., Django 2.x implies Python 3)
         def imputed_requirements
           requirement_files.flat_map do |file|
-            file.content.lines.
-              select { |l| l.include?(";") && l.include?("python") }.
-              filter_map { |l| l.match(/python_version(?<req>.*?["'].*?['"])/) }.
-              map { |re| re.named_captures.fetch("req").gsub(/['"]/, "") }.
-              select { |r| valid_requirement?(r) }
+            file.content.lines
+                .select { |l| l.include?(";") && l.include?("python") }
+                .filter_map { |l| l.match(/python_version(?<req>.*?["'].*?['"])/) }
+                .map { |re| re.named_captures.fetch("req").gsub(/['"]/, "") }
+                .select { |r| valid_requirement?(r) }
           end
         end
 
@@ -76,8 +77,8 @@ module Dependabot
         def runtime_file_python_version
           return unless runtime_file
 
-          file_version = runtime_file.content.
-                         match(/(?<=python-).*/)&.to_s&.strip
+          file_version = runtime_file.content
+                                     .match(/(?<=python-).*/)&.to_s&.strip
           return if file_version&.empty?
           return unless pyenv_versions.include?("#{file_version}\n")
 
@@ -87,9 +88,9 @@ module Dependabot
         def setup_file_requirement
           return unless setup_file
 
-          req = setup_file.content.
-                match(/python_requires\s*=\s*['"](?<req>[^'"]+)['"]/)&.
-                named_captures&.fetch("req")&.strip
+          req = setup_file.content
+                          .match(/python_requires\s*=\s*['"](?<req>[^'"]+)['"]/)
+                &.named_captures&.fetch("req")&.strip
 
           requirement_class.new(req)
           req

data/lib/dependabot/python/file_parser/setup_file_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency"
@@ -60,7 +61,7 @@ module Dependabot
             write_temporary_dependency_files
 
             requirements = SharedHelpers.run_helper_subprocess(
-              command: "pyenv exec python #{NativeHelpers.python_helper_path}",
+              command: "pyenv exec python3 #{NativeHelpers.python_helper_path}",
               function: "parse_setup",
               args: [Dir.pwd]
             )
@@ -81,7 +82,7 @@ module Dependabot
             write_sanitized_setup_file
 
             requirements = SharedHelpers.run_helper_subprocess(
-              command: "pyenv exec python #{NativeHelpers.python_helper_path}",
+              command: "pyenv exec python3 #{NativeHelpers.python_helper_path}",
               function: "parse_setup",
               args: [Dir.pwd]
             )
@@ -108,9 +109,9 @@ module Dependabot
         end
 
         def write_temporary_dependency_files
-          dependency_files.
-            reject { |f| f.name == ".python-version" }.
-            each do |file|
+          dependency_files
+            .reject { |f| f.name == ".python-version" }
+            .each do |file|
               path = file.name
               FileUtils.mkdir_p(Pathname.new(path).dirname)
               File.write(path, file.content)

data/lib/dependabot/python/file_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency"
@@ -54,16 +55,16 @@ module Dependabot
 
       def pipenv_dependencies
         @pipenv_dependencies ||=
-          PipfileFilesParser.
-          new(dependency_files: dependency_files).
-          dependency_set
+          PipfileFilesParser
+          .new(dependency_files: dependency_files)
+          .dependency_set
       end
 
       def pyproject_file_dependencies
         @pyproject_file_dependencies ||=
-          PyprojectFilesParser.
-          new(dependency_files: dependency_files).
-          dependency_set
+          PyprojectFilesParser
+          .new(dependency_files: dependency_files)
+          .dependency_set
       end
 
       def requirement_dependencies
@@ -112,9 +113,9 @@ module Dependabot
 
       def setup_file_dependencies
         @setup_file_dependencies ||=
-          SetupFileParser.
-          new(dependency_files: dependency_files).
-          dependency_set
+          SetupFileParser
+          .new(dependency_files: dependency_files)
+          .dependency_set
       end
 
       def lockfile_for_pip_compile_file?(filename)
@@ -133,7 +134,7 @@ module Dependabot
           write_temporary_dependency_files
 
           requirements = SharedHelpers.run_helper_subprocess(
-            command: "pyenv exec python #{NativeHelpers.python_helper_path}",
+            command: "pyenv exec python3 #{NativeHelpers.python_helper_path}",
             function: "parse_requirements",
             args: [Dir.pwd]
           )
@@ -159,9 +160,9 @@ module Dependabot
       end
 
       def write_temporary_dependency_files
-        dependency_files.
-          reject { |f| f.name == ".python-version" }.
-          each do |file|
+        dependency_files
+          .reject { |f| f.name == ".python-version" }
+          .each do |file|
             path = file.name
             FileUtils.mkdir_p(Pathname.new(path).dirname)
             File.write(path, remove_imports(file))
@@ -171,10 +172,10 @@ module Dependabot
       def remove_imports(file)
         return file.content if file.path.end_with?(".tar.gz", ".whl", ".zip")
 
-        file.content.lines.
-          reject { |l| l.match?(/^['"]?(?<path>\..*?)(?=\[|#|'|"|$)/) }.
-          reject { |l| l.match?(/^(?:-e)\s+['"]?(?<path>.*?)(?=\[|#|'|"|$)/) }.
-          join
+        file.content.lines
+            .reject { |l| l.match?(/^['"]?(?<path>\..*?)(?=\[|#|'|"|$)/) }
+            .reject { |l| l.match?(/^(?:-e)\s+['"]?(?<path>.*?)(?=\[|#|'|"|$)/) }
+            .join
       end
 
       def normalised_name(name, extras = [])

data/lib/dependabot/python/file_updater/pip_compile_file_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "open3"
@@ -122,15 +123,15 @@ module Dependabot
 
         def update_uncompiled_files(updated_files)
           updated_filenames = updated_files.map(&:name)
-          old_reqs = dependency.previous_requirements.
-                     reject { |r| updated_filenames.include?(r[:file]) }
-          new_reqs = dependency.requirements.
-                     reject { |r| updated_filenames.include?(r[:file]) }
+          old_reqs = dependency.previous_requirements
+                               .reject { |r| updated_filenames.include?(r[:file]) }
+          new_reqs = dependency.requirements
+                               .reject { |r| updated_filenames.include?(r[:file]) }
 
           return [] if new_reqs.none?
 
-          files = dependency_files.
-                  reject { |file| updated_filenames.include?(file.name) }
+          files = dependency_files
+                  .reject { |file| updated_filenames.include?(file.name) }
 
           args = dependency.to_h
           args = args.keys.to_h { |k| [k.to_sym, args[k]] }
@@ -227,9 +228,9 @@ module Dependabot
           return @sanitized_setup_file_content[file.name] if @sanitized_setup_file_content[file.name]
 
           @sanitized_setup_file_content[file.name] =
-            SetupFileSanitizer.
-            new(setup_file: file, setup_cfg: setup_cfg(file)).
-            sanitized_content
+            SetupFileSanitizer
+            .new(setup_file: file, setup_cfg: setup_cfg(file))
+            .sanitized_content
         end
 
         def setup_cfg(file)
@@ -241,8 +242,8 @@ module Dependabot
         def freeze_dependency_requirement(file)
           return file.content unless file.name.end_with?(".in")
 
-          old_req = dependency.previous_requirements.
-                    find { |r| r[:file] == file.name }
+          old_req = dependency.previous_requirements
+                              .find { |r| r[:file] == file.name }
 
           return file.content unless old_req
           return file.content if old_req == "==#{dependency.version}"
@@ -258,10 +259,10 @@ module Dependabot
         def update_dependency_requirement(file)
           return file.content unless file.name.end_with?(".in")
 
-          old_req = dependency.previous_requirements.
-                    find { |r| r[:file] == file.name }
-          new_req = dependency.requirements.
-                    find { |r| r[:file] == file.name }
+          old_req = dependency.previous_requirements
+                              .find { |r| r[:file] == file.name }
+          new_req = dependency.requirements
+                              .find { |r| r[:file] == file.name }
           return file.content unless old_req&.fetch(:requirement)
           return file.content if old_req == new_req
 
@@ -299,9 +300,9 @@ module Dependabot
             next update_count += 1 if updated_content.include?(original_line)
 
             line_to_update =
-              updated_content.lines.
-              select { |l| l.start_with?("-e") }.
-              at(update_count)
+              updated_content.lines
+                             .select { |l| l.start_with?("-e") }
+                             .at(update_count)
             raise "Mismatch in editable requirements!" unless line_to_update
 
             content = content.gsub(line_to_update, original_line)
@@ -339,8 +340,8 @@ module Dependabot
               ).sort.join(hash_separator(mtch.to_s))
             )
 
-            updated_content_with_hashes = updated_content_with_hashes.
-                                          gsub(mtch.to_s, updated_string)
+            updated_content_with_hashes = updated_content_with_hashes
+                                          .gsub(mtch.to_s, updated_string)
           end
           updated_content_with_hashes
         end
@@ -376,7 +377,7 @@ module Dependabot
 
         def package_hashes_for(name:, version:, algorithm:)
           SharedHelpers.run_helper_subprocess(
-            command: "pyenv exec python #{NativeHelpers.python_helper_path}",
+            command: "pyenv exec python3 #{NativeHelpers.python_helper_path}",
             function: "get_dependency_hash",
             args: [name, version, algorithm]
           ).map { |h| "--hash=#{algorithm}:#{h['hash']}" }
@@ -387,15 +388,15 @@ module Dependabot
           return unless requirement_string.match?(hash_regex)
 
           current_separator =
-            requirement_string.
-            match(/#{hash_regex}((?<separator>\s*\\?\s*?)#{hash_regex})*/).
-            named_captures.fetch("separator")
+            requirement_string
+            .match(/#{hash_regex}((?<separator>\s*\\?\s*?)#{hash_regex})*/)
+            .named_captures.fetch("separator")
 
           default_separator =
-            requirement_string.
-            match(RequirementParser::HASH).
-            pre_match.match(/(?<separator>\s*\\?\s*?)\z/).
-            named_captures.fetch("separator")
+            requirement_string
+            .match(RequirementParser::HASH)
+            .pre_match.match(/(?<separator>\s*\\?\s*?)\z/)
+            .named_captures.fetch("separator")
 
           current_separator || default_separator
         end
@@ -446,9 +447,9 @@ module Dependabot
         end
 
         def pip_compile_index_options
-          credentials.
-            select { |cred| cred["type"] == "python_index" }.
-            map do |cred|
+          credentials
+            .select { |cred| cred["type"] == "python_index" }
+            .map do |cred|
               authed_url = AuthedUrlBuilder.authed_url(credential: cred)
 
               if cred["replaces-base"]
@@ -465,9 +466,9 @@ module Dependabot
 
         def filenames_to_compile
           files_from_reqs =
-            dependency.requirements.
-            map { |r| r[:file] }.
-            select { |fn| fn.end_with?(".in") }
+            dependency.requirements
+                      .map { |r| r[:file] }
+                      .select { |fn| fn.end_with?(".in") }
 
           files_from_compiled_files =
             pip_compile_files.map(&:name).select do |fn|
@@ -482,12 +483,12 @@ module Dependabot
 
         def compiled_file_for_filename(filename)
           compiled_file =
-            compiled_files.
-            find { |f| f.content.match?(output_file_regex(filename)) }
+            compiled_files
+            .find { |f| f.content.match?(output_file_regex(filename)) }
 
           compiled_file ||=
-            compiled_files.
-            find { |f| f.name == filename.gsub(/\.in$/, ".txt") }
+            compiled_files
+            .find { |f| f.name == filename.gsub(/\.in$/, ".txt") }
 
           compiled_file
         end
@@ -517,8 +518,8 @@ module Dependabot
 
           while (remaining_filenames = filenames - ordered_filenames).any?
             ordered_filenames +=
-              remaining_filenames.
-              reject do |fn|
+              remaining_filenames
+              .reject do |fn|
                 unupdated_reqs = requirement_map[fn] - ordered_filenames
                 unupdated_reqs.intersect?(filenames)
               end

data/lib/dependabot/python/file_updater/pipfile_file_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -136,15 +137,15 @@ module Dependabot
         end
 
         def freeze_other_dependencies(pipfile_content)
-          PipfilePreparer.
-            new(pipfile_content: pipfile_content, lockfile: lockfile).
-            freeze_top_level_dependencies_except(dependencies)
+          PipfilePreparer
+            .new(pipfile_content: pipfile_content, lockfile: lockfile)
+            .freeze_top_level_dependencies_except(dependencies)
         end
 
         def update_python_requirement(pipfile_content)
-          PipfilePreparer.
-            new(pipfile_content: pipfile_content).
-            update_python_requirement(language_version_manager.python_major_minor)
+          PipfilePreparer
+            .new(pipfile_content: pipfile_content)
+            .update_python_requirement(language_version_manager.python_major_minor)
         end
 
         # rubocop:disable Metrics/PerceivedComplexity
@@ -174,19 +175,19 @@ module Dependabot
         def subdep_type?(type)
           return false if dependency.top_level?
 
-          lockfile_type = Python::FileParser::DEPENDENCY_GROUP_KEYS.
-                          find { |i| i.fetch(:pipfile) == type }.
-                          fetch(:lockfile)
+          lockfile_type = Python::FileParser::DEPENDENCY_GROUP_KEYS
+                          .find { |i| i.fetch(:pipfile) == type }
+                          .fetch(:lockfile)
 
-          JSON.parse(lockfile.content).
-            fetch(lockfile_type, {}).
-            keys.any? { |k| normalise(k) == dependency.name }
+          JSON.parse(lockfile.content)
+              .fetch(lockfile_type, {})
+              .keys.any? { |k| normalise(k) == dependency.name }
         end
 
         def add_private_sources(pipfile_content)
-          PipfilePreparer.
-            new(pipfile_content: pipfile_content).
-            replace_sources(credentials)
+          PipfilePreparer
+            .new(pipfile_content: pipfile_content)
+            .replace_sources(credentials)
         end
 
         def updated_generated_files
@@ -227,9 +228,9 @@ module Dependabot
           new_lockfile_json["_meta"]["requires"] = original_reqs
           new_lockfile_json["_meta"]["sources"] = original_source
 
-          JSON.pretty_generate(new_lockfile_json, indent: "    ").
-            gsub(/\{\n\s*\}/, "{}").
-            gsub(/\}\z/, "}\n")
+          JSON.pretty_generate(new_lockfile_json, indent: "    ")
+              .gsub(/\{\n\s*\}/, "{}")
+              .gsub(/\}\z/, "}\n")
         end
 
         def generate_updated_requirements_files
@@ -311,9 +312,9 @@ module Dependabot
           return @sanitized_setup_file_content[file.name] if @sanitized_setup_file_content[file.name]
 
           @sanitized_setup_file_content[file.name] =
-            SetupFileSanitizer.
-            new(setup_file: file, setup_cfg: setup_cfg(file)).
-            sanitized_content
+            SetupFileSanitizer
+            .new(setup_file: file, setup_cfg: setup_cfg(file))
+            .sanitized_content
         end
 
         def setup_cfg(file)
@@ -326,7 +327,7 @@ module Dependabot
           SharedHelpers.in_a_temporary_directory do |dir|
             File.write(File.join(dir, "Pipfile"), pipfile_content)
             SharedHelpers.run_helper_subprocess(
-              command: "pyenv exec python #{NativeHelpers.python_helper_path}",
+              command: "pyenv exec python3 #{NativeHelpers.python_helper_path}",
               function: "get_pipfile_hash",
               args: [dir]
             )