dependabot-python 0.230.0 → 0.231.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9ae3b5a483a1e9cb052729d34b14cc053e4a75d2f6a1a5f6abf5c4b25ddd33d8
-  data.tar.gz: fe4a64c0706b8cf7d41ccfa984899d2593ca6e56888728d71b16476aa3535dfd
+  metadata.gz: e7e856d45cf46b8379f86d8ed43d53c622eaa9444c8e9cd24d0563d56509c3c7
+  data.tar.gz: 65a0173503758395b1ce82d88e7dd09d02decde06a223e47cfeb95d7a5aee68f
 SHA512:
-  metadata.gz: 62ef62141edc0821021d9a4cbcde7c33bff4480f52eddf4419a1324b6e4d69cdd5b051e72c45162ca325d0e519b294eaa21c1187b82b5cd1f4b537b1510fc760
-  data.tar.gz: d22f06823bb9a46d0a6fcc9d173924d096c9f2bf99b6639a03f15be8fcaf4139d0cf1e0d8621074cf9e9a97b2f9ec96d92434904348cb1c715aa6a074017fdca
+  metadata.gz: 48ce906627997bbb5f87355879fdd887bb6f4b3af533177d8c991aa3956c1ae09e4d4ac67ed09c595dfcace80fc682617379208dd87212a4d819d852199f3424
+  data.tar.gz: 33de2574168426711d09f0045e387674a91522672af3459f7da0eb7ccd7715987621ed4db755f105eb0df63cb78535929d726af8a32dcd16c2bf4b7d00984e84

data/lib/dependabot/python/authed_url_builder.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

data/lib/dependabot/python/file_fetcher.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -84,8 +85,8 @@ module Dependabot
 
       def uniq_files(fetched_files)
         uniq_files = fetched_files.reject(&:support_file?).uniq
-        uniq_files += fetched_files.
-                      reject { |f| uniq_files.map(&:name).include?(f.name) }
+        uniq_files += fetched_files
+                      .reject { |f| uniq_files.map(&:name).include?(f.name) }
       end
 
       def pipenv_files
@@ -112,8 +113,8 @@ module Dependabot
                   pipfile ||
                   pyproject
 
-        path = Pathname.new(File.join(directory, "requirements.txt")).
-               cleanpath.to_path
+        path = Pathname.new(File.join(directory, "requirements.txt"))
+                       .cleanpath.to_path
         raise Dependabot::DependencyFileNotFound, path
       end
 
@@ -146,8 +147,8 @@ module Dependabot
         # Check the top-level for a .python-version file, too
         reverse_path = Pathname.new(directory[0]).relative_path_from(directory)
         @python_version_file ||=
-          fetch_support_file(File.join(reverse_path, ".python-version"))&.
-          tap { |f| f.name = ".python-version" }
+          fetch_support_file(File.join(reverse_path, ".python-version"))
+          &.tap { |f| f.name = ".python-version" }
       end
 
       def pipfile
@@ -210,17 +211,17 @@ module Dependabot
 
         @req_txt_and_in_files = []
 
-        repo_contents.
-          select { |f| f.type == "file" }.
-          select { |f| f.name.end_with?(".txt", ".in") }.
-          reject { |f| f.size > 500_000 }.
-          map { |f| fetch_file_from_host(f.name) }.
-          select { |f| requirements_file?(f) }.
-          each { |f| @req_txt_and_in_files << f }
+        repo_contents
+          .select { |f| f.type == "file" }
+          .select { |f| f.name.end_with?(".txt", ".in") }
+          .reject { |f| f.size > 500_000 }
+          .map { |f| fetch_file_from_host(f.name) }
+          .select { |f| requirements_file?(f) }
+          .each { |f| @req_txt_and_in_files << f }
 
-        repo_contents.
-          select { |f| f.type == "dir" }.
-          each { |f| @req_txt_and_in_files += req_files_for_dir(f) }
+        repo_contents
+          .select { |f| f.type == "dir" }
+          .each { |f| @req_txt_and_in_files += req_files_for_dir(f) }
 
         @req_txt_and_in_files
       end
@@ -230,12 +231,12 @@ module Dependabot
         relative_reqs_dir =
           requirements_dir.path.gsub(%r{^/?#{Regexp.escape(dir)}/?}, "")
 
-        repo_contents(dir: relative_reqs_dir).
-          select { |f| f.type == "file" }.
-          select { |f| f.name.end_with?(".txt", ".in") }.
-          reject { |f| f.size > 500_000 }.
-          map { |f| fetch_file_from_host("#{relative_reqs_dir}/#{f.name}") }.
-          select { |f| requirements_file?(f) }
+        repo_contents(dir: relative_reqs_dir)
+          .select { |f| f.type == "file" }
+          .select { |f| f.name.end_with?(".txt", ".in") }
+          .reject { |f| f.size > 500_000 }
+          .map { |f| fetch_file_from_host("#{relative_reqs_dir}/#{f.name}") }
+          .select { |f| requirements_file?(f) }
       end
 
       def child_requirement_txt_files
@@ -356,8 +357,8 @@ module Dependabot
 
         begin
           [
-            fetch_file_from_host(cfg_path, fetch_submodules: true).
-              tap { |f| f.support_file = true }
+            fetch_file_from_host(cfg_path, fetch_submodules: true)
+              .tap { |f| f.support_file = true }
           ]
         rescue Dependabot::DependencyFileNotFound
           # Ignore lack of a setup.cfg
@@ -384,31 +385,31 @@ module Dependabot
       end
 
       def requirement_txt_path_setup_file_paths
-        (requirements_txt_files + child_requirement_txt_files).
-          map { |req_file| parse_path_setup_paths(req_file) }.
-          flatten.uniq
+        (requirements_txt_files + child_requirement_txt_files)
+          .map { |req_file| parse_path_setup_paths(req_file) }
+          .flatten.uniq
       end
 
       def requirement_in_path_setup_file_paths
-        requirements_in_files.
-          map { |req_file| parse_path_setup_paths(req_file) }.
-          flatten.uniq
+        requirements_in_files
+          .map { |req_file| parse_path_setup_paths(req_file) }
+          .flatten.uniq
       end
 
       def parse_path_setup_paths(req_file)
         uneditable_reqs =
-          req_file.content.
-          scan(/^['"]?(?:file:)?(?<path>\..*?)(?=\[|#|'|"|$)/).
-          flatten.
-          map(&:strip).
-          reject { |p| p.include?("://") }
+          req_file.content
+                  .scan(/^['"]?(?:file:)?(?<path>\..*?)(?=\[|#|'|"|$)/)
+                  .flatten
+                  .map(&:strip)
+                  .reject { |p| p.include?("://") }
 
         editable_reqs =
-          req_file.content.
-          scan(/^(?:-e)\s+['"]?(?:file:)?(?<path>.*?)(?=\[|#|'|"|$)/).
-          flatten.
-          map(&:strip).
-          reject { |p| p.include?("://") || p.include?("git@") }
+          req_file.content
+                  .scan(/^(?:-e)\s+['"]?(?:file:)?(?<path>.*?)(?=\[|#|'|"|$)/)
+                  .flatten
+                  .map(&:strip)
+                  .reject { |p| p.include?("://") || p.include?("git@") }
 
         uneditable_reqs + editable_reqs
       end

data/lib/dependabot/python/file_parser/pipfile_files_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -110,8 +111,8 @@ module Dependabot
           req = version_from_hash_or_string(requirement)
 
           if pipfile_lock
-            details = parsed_pipfile_lock.
-                      dig(group, normalised_name(dep_name))
+            details = parsed_pipfile_lock
+                      .dig(group, normalised_name(dep_name))
 
             version = version_from_hash_or_string(details)
             version&.gsub(/^===?/, "")

data/lib/dependabot/python/file_parser/pyproject_files_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -205,9 +206,9 @@ module Dependabot
         def version_from_lockfile(dep_name)
           return unless parsed_lockfile
 
-          parsed_lockfile.fetch("package", []).
-            find { |p| normalise(p.fetch("name")) == normalise(dep_name) }&.
-            fetch("version", nil)
+          parsed_lockfile.fetch("package", [])
+                         .find { |p| normalise(p.fetch("name")) == normalise(dep_name) }
+            &.fetch("version", nil)
         end
 
         def check_requirements(req)

data/lib/dependabot/python/file_parser/python_requirement_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -31,11 +32,11 @@ module Dependabot
         # (e.g., Django 2.x implies Python 3)
         def imputed_requirements
           requirement_files.flat_map do |file|
-            file.content.lines.
-              select { |l| l.include?(";") && l.include?("python") }.
-              filter_map { |l| l.match(/python_version(?<req>.*?["'].*?['"])/) }.
-              map { |re| re.named_captures.fetch("req").gsub(/['"]/, "") }.
-              select { |r| valid_requirement?(r) }
+            file.content.lines
+                .select { |l| l.include?(";") && l.include?("python") }
+                .filter_map { |l| l.match(/python_version(?<req>.*?["'].*?['"])/) }
+                .map { |re| re.named_captures.fetch("req").gsub(/['"]/, "") }
+                .select { |r| valid_requirement?(r) }
           end
         end
 
@@ -76,8 +77,8 @@ module Dependabot
         def runtime_file_python_version
           return unless runtime_file
 
-          file_version = runtime_file.content.
-                         match(/(?<=python-).*/)&.to_s&.strip
+          file_version = runtime_file.content
+                                     .match(/(?<=python-).*/)&.to_s&.strip
           return if file_version&.empty?
           return unless pyenv_versions.include?("#{file_version}\n")
 
@@ -87,9 +88,9 @@ module Dependabot
         def setup_file_requirement
           return unless setup_file
 
-          req = setup_file.content.
-                match(/python_requires\s*=\s*['"](?<req>[^'"]+)['"]/)&.
-                named_captures&.fetch("req")&.strip
+          req = setup_file.content
+                          .match(/python_requires\s*=\s*['"](?<req>[^'"]+)['"]/)
+                &.named_captures&.fetch("req")&.strip
 
           requirement_class.new(req)
           req

data/lib/dependabot/python/file_parser/setup_file_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency"
@@ -108,9 +109,9 @@ module Dependabot
         end
 
         def write_temporary_dependency_files
-          dependency_files.
-            reject { |f| f.name == ".python-version" }.
-            each do |file|
+          dependency_files
+            .reject { |f| f.name == ".python-version" }
+            .each do |file|
               path = file.name
               FileUtils.mkdir_p(Pathname.new(path).dirname)
               File.write(path, file.content)

data/lib/dependabot/python/file_parser.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency"
@@ -54,16 +55,16 @@ module Dependabot
 
       def pipenv_dependencies
         @pipenv_dependencies ||=
-          PipfileFilesParser.
-          new(dependency_files: dependency_files).
-          dependency_set
+          PipfileFilesParser
+          .new(dependency_files: dependency_files)
+          .dependency_set
       end
 
       def pyproject_file_dependencies
         @pyproject_file_dependencies ||=
-          PyprojectFilesParser.
-          new(dependency_files: dependency_files).
-          dependency_set
+          PyprojectFilesParser
+          .new(dependency_files: dependency_files)
+          .dependency_set
       end
 
       def requirement_dependencies
@@ -112,9 +113,9 @@ module Dependabot
 
       def setup_file_dependencies
         @setup_file_dependencies ||=
-          SetupFileParser.
-          new(dependency_files: dependency_files).
-          dependency_set
+          SetupFileParser
+          .new(dependency_files: dependency_files)
+          .dependency_set
       end
 
       def lockfile_for_pip_compile_file?(filename)
@@ -159,9 +160,9 @@ module Dependabot
       end
 
       def write_temporary_dependency_files
-        dependency_files.
-          reject { |f| f.name == ".python-version" }.
-          each do |file|
+        dependency_files
+          .reject { |f| f.name == ".python-version" }
+          .each do |file|
             path = file.name
             FileUtils.mkdir_p(Pathname.new(path).dirname)
             File.write(path, remove_imports(file))
@@ -171,10 +172,10 @@ module Dependabot
       def remove_imports(file)
         return file.content if file.path.end_with?(".tar.gz", ".whl", ".zip")
 
-        file.content.lines.
-          reject { |l| l.match?(/^['"]?(?<path>\..*?)(?=\[|#|'|"|$)/) }.
-          reject { |l| l.match?(/^(?:-e)\s+['"]?(?<path>.*?)(?=\[|#|'|"|$)/) }.
-          join
+        file.content.lines
+            .reject { |l| l.match?(/^['"]?(?<path>\..*?)(?=\[|#|'|"|$)/) }
+            .reject { |l| l.match?(/^(?:-e)\s+['"]?(?<path>.*?)(?=\[|#|'|"|$)/) }
+            .join
       end
 
       def normalised_name(name, extras = [])

data/lib/dependabot/python/file_updater/pip_compile_file_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "open3"
@@ -122,15 +123,15 @@ module Dependabot
 
         def update_uncompiled_files(updated_files)
           updated_filenames = updated_files.map(&:name)
-          old_reqs = dependency.previous_requirements.
-                     reject { |r| updated_filenames.include?(r[:file]) }
-          new_reqs = dependency.requirements.
-                     reject { |r| updated_filenames.include?(r[:file]) }
+          old_reqs = dependency.previous_requirements
+                               .reject { |r| updated_filenames.include?(r[:file]) }
+          new_reqs = dependency.requirements
+                               .reject { |r| updated_filenames.include?(r[:file]) }
 
           return [] if new_reqs.none?
 
-          files = dependency_files.
-                  reject { |file| updated_filenames.include?(file.name) }
+          files = dependency_files
+                  .reject { |file| updated_filenames.include?(file.name) }
 
           args = dependency.to_h
           args = args.keys.to_h { |k| [k.to_sym, args[k]] }
@@ -227,9 +228,9 @@ module Dependabot
           return @sanitized_setup_file_content[file.name] if @sanitized_setup_file_content[file.name]
 
           @sanitized_setup_file_content[file.name] =
-            SetupFileSanitizer.
-            new(setup_file: file, setup_cfg: setup_cfg(file)).
-            sanitized_content
+            SetupFileSanitizer
+            .new(setup_file: file, setup_cfg: setup_cfg(file))
+            .sanitized_content
         end
 
         def setup_cfg(file)
@@ -241,8 +242,8 @@ module Dependabot
         def freeze_dependency_requirement(file)
           return file.content unless file.name.end_with?(".in")
 
-          old_req = dependency.previous_requirements.
-                    find { |r| r[:file] == file.name }
+          old_req = dependency.previous_requirements
+                              .find { |r| r[:file] == file.name }
 
           return file.content unless old_req
           return file.content if old_req == "==#{dependency.version}"
@@ -258,10 +259,10 @@ module Dependabot
         def update_dependency_requirement(file)
           return file.content unless file.name.end_with?(".in")
 
-          old_req = dependency.previous_requirements.
-                    find { |r| r[:file] == file.name }
-          new_req = dependency.requirements.
-                    find { |r| r[:file] == file.name }
+          old_req = dependency.previous_requirements
+                              .find { |r| r[:file] == file.name }
+          new_req = dependency.requirements
+                              .find { |r| r[:file] == file.name }
           return file.content unless old_req&.fetch(:requirement)
           return file.content if old_req == new_req
 
@@ -299,9 +300,9 @@ module Dependabot
             next update_count += 1 if updated_content.include?(original_line)
 
             line_to_update =
-              updated_content.lines.
-              select { |l| l.start_with?("-e") }.
-              at(update_count)
+              updated_content.lines
+                             .select { |l| l.start_with?("-e") }
+                             .at(update_count)
             raise "Mismatch in editable requirements!" unless line_to_update
 
             content = content.gsub(line_to_update, original_line)
@@ -339,8 +340,8 @@ module Dependabot
               ).sort.join(hash_separator(mtch.to_s))
             )
 
-            updated_content_with_hashes = updated_content_with_hashes.
-                                          gsub(mtch.to_s, updated_string)
+            updated_content_with_hashes = updated_content_with_hashes
+                                          .gsub(mtch.to_s, updated_string)
           end
           updated_content_with_hashes
         end
@@ -387,15 +388,15 @@ module Dependabot
           return unless requirement_string.match?(hash_regex)
 
           current_separator =
-            requirement_string.
-            match(/#{hash_regex}((?<separator>\s*\\?\s*?)#{hash_regex})*/).
-            named_captures.fetch("separator")
+            requirement_string
+            .match(/#{hash_regex}((?<separator>\s*\\?\s*?)#{hash_regex})*/)
+            .named_captures.fetch("separator")
 
           default_separator =
-            requirement_string.
-            match(RequirementParser::HASH).
-            pre_match.match(/(?<separator>\s*\\?\s*?)\z/).
-            named_captures.fetch("separator")
+            requirement_string
+            .match(RequirementParser::HASH)
+            .pre_match.match(/(?<separator>\s*\\?\s*?)\z/)
+            .named_captures.fetch("separator")
 
           current_separator || default_separator
         end
@@ -446,9 +447,9 @@ module Dependabot
         end
 
         def pip_compile_index_options
-          credentials.
-            select { |cred| cred["type"] == "python_index" }.
-            map do |cred|
+          credentials
+            .select { |cred| cred["type"] == "python_index" }
+            .map do |cred|
               authed_url = AuthedUrlBuilder.authed_url(credential: cred)
 
               if cred["replaces-base"]
@@ -465,9 +466,9 @@ module Dependabot
 
         def filenames_to_compile
           files_from_reqs =
-            dependency.requirements.
-            map { |r| r[:file] }.
-            select { |fn| fn.end_with?(".in") }
+            dependency.requirements
+                      .map { |r| r[:file] }
+                      .select { |fn| fn.end_with?(".in") }
 
           files_from_compiled_files =
             pip_compile_files.map(&:name).select do |fn|
@@ -482,12 +483,12 @@ module Dependabot
 
         def compiled_file_for_filename(filename)
           compiled_file =
-            compiled_files.
-            find { |f| f.content.match?(output_file_regex(filename)) }
+            compiled_files
+            .find { |f| f.content.match?(output_file_regex(filename)) }
 
           compiled_file ||=
-            compiled_files.
-            find { |f| f.name == filename.gsub(/\.in$/, ".txt") }
+            compiled_files
+            .find { |f| f.name == filename.gsub(/\.in$/, ".txt") }
 
           compiled_file
         end
@@ -517,8 +518,8 @@ module Dependabot
 
           while (remaining_filenames = filenames - ordered_filenames).any?
             ordered_filenames +=
-              remaining_filenames.
-              reject do |fn|
+              remaining_filenames
+              .reject do |fn|
                 unupdated_reqs = requirement_map[fn] - ordered_filenames
                 unupdated_reqs.intersect?(filenames)
               end

data/lib/dependabot/python/file_updater/pipfile_file_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -136,15 +137,15 @@ module Dependabot
         end
 
         def freeze_other_dependencies(pipfile_content)
-          PipfilePreparer.
-            new(pipfile_content: pipfile_content, lockfile: lockfile).
-            freeze_top_level_dependencies_except(dependencies)
+          PipfilePreparer
+            .new(pipfile_content: pipfile_content, lockfile: lockfile)
+            .freeze_top_level_dependencies_except(dependencies)
         end
 
         def update_python_requirement(pipfile_content)
-          PipfilePreparer.
-            new(pipfile_content: pipfile_content).
-            update_python_requirement(language_version_manager.python_major_minor)
+          PipfilePreparer
+            .new(pipfile_content: pipfile_content)
+            .update_python_requirement(language_version_manager.python_major_minor)
         end
 
         # rubocop:disable Metrics/PerceivedComplexity
@@ -174,19 +175,19 @@ module Dependabot
         def subdep_type?(type)
           return false if dependency.top_level?
 
-          lockfile_type = Python::FileParser::DEPENDENCY_GROUP_KEYS.
-                          find { |i| i.fetch(:pipfile) == type }.
-                          fetch(:lockfile)
+          lockfile_type = Python::FileParser::DEPENDENCY_GROUP_KEYS
+                          .find { |i| i.fetch(:pipfile) == type }
+                          .fetch(:lockfile)
 
-          JSON.parse(lockfile.content).
-            fetch(lockfile_type, {}).
-            keys.any? { |k| normalise(k) == dependency.name }
+          JSON.parse(lockfile.content)
+              .fetch(lockfile_type, {})
+              .keys.any? { |k| normalise(k) == dependency.name }
         end
 
         def add_private_sources(pipfile_content)
-          PipfilePreparer.
-            new(pipfile_content: pipfile_content).
-            replace_sources(credentials)
+          PipfilePreparer
+            .new(pipfile_content: pipfile_content)
+            .replace_sources(credentials)
         end
 
         def updated_generated_files
@@ -227,9 +228,9 @@ module Dependabot
           new_lockfile_json["_meta"]["requires"] = original_reqs
           new_lockfile_json["_meta"]["sources"] = original_source
 
-          JSON.pretty_generate(new_lockfile_json, indent: "    ").
-            gsub(/\{\n\s*\}/, "{}").
-            gsub(/\}\z/, "}\n")
+          JSON.pretty_generate(new_lockfile_json, indent: "    ")
+              .gsub(/\{\n\s*\}/, "{}")
+              .gsub(/\}\z/, "}\n")
         end
 
         def generate_updated_requirements_files
@@ -311,9 +312,9 @@ module Dependabot
           return @sanitized_setup_file_content[file.name] if @sanitized_setup_file_content[file.name]
 
           @sanitized_setup_file_content[file.name] =
-            SetupFileSanitizer.
-            new(setup_file: file, setup_cfg: setup_cfg(file)).
-            sanitized_content
+            SetupFileSanitizer
+            .new(setup_file: file, setup_cfg: setup_cfg(file))
+            .sanitized_content
         end
 
         def setup_cfg(file)

data/lib/dependabot/python/file_updater/pipfile_manifest_updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/python/file_updater"
@@ -12,9 +13,9 @@ module Dependabot
         end
 
         def updated_manifest_content
-          dependencies.
-            select { |dep| requirement_changed?(dep) }.
-            reduce(manifest.content.dup) do |content, dep|
+          dependencies
+            .select { |dep| requirement_changed?(dep) }
+            .reduce(manifest.content.dup) do |content, dep|
               updated_content = content
 
               updated_content = update_requirements(
@@ -37,9 +38,9 @@ module Dependabot
 
           # The UpdateChecker ensures the order of requirements is preserved
           # when updating, so we can zip them together in new/old pairs.
-          reqs = dependency.requirements.
-                 zip(dependency.previous_requirements).
-                 reject { |new_req, old_req| new_req == old_req }
+          reqs = dependency.requirements
+                           .zip(dependency.previous_requirements)
+                           .reject { |new_req, old_req| new_req == old_req }
 
           # Loop through each changed requirement
           reqs.each do |new_req, old_req|
@@ -59,8 +60,8 @@ module Dependabot
         end
 
         def update_manifest_req(content:, dep:, old_req:, new_req:)
-          simple_declaration = content.scan(declaration_regex(dep)).
-                               find { |m| m.include?(old_req) }
+          simple_declaration = content.scan(declaration_regex(dep))
+                                      .find { |m| m.include?(old_req) }
 
           if simple_declaration
             simple_declaration_regex =
@@ -70,8 +71,8 @@ module Dependabot
             end
           elsif content.match?(table_declaration_version_regex(dep))
             content.gsub(table_declaration_version_regex(dep)) do |part|
-              line = content.match(table_declaration_version_regex(dep)).
-                     named_captures.fetch("version_declaration")
+              line = content.match(table_declaration_version_regex(dep))
+                            .named_captures.fetch("version_declaration")
               new_line = line.gsub(old_req, new_req)
               part.gsub(line, new_line)
             end

data/lib/dependabot/python/file_updater/pipfile_preparer.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "toml-rb"
@@ -116,9 +117,9 @@ module Dependabot
           if source["url"].include?("${")
             base_url = source["url"].sub(/\${.*}@/, "")
 
-            source_cred = credentials.
-                          select { |cred| cred["type"] == "python_index" }.
-                          find { |c| c["index-url"].sub(/\${.*}@/, "") == base_url }
+            source_cred = credentials
+                          .select { |cred| cred["type"] == "python_index" }
+                          .find { |c| c["index-url"].sub(/\${.*}@/, "") == base_url }
 
             return nil if source_cred.nil?