dependabot-python 0.242.1 → 0.244.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (11) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/requirements.txt +1 -1
  3. data/lib/dependabot/python/authed_url_builder.rb +1 -1
  4. data/lib/dependabot/python/file_parser.rb +1 -1
  5. data/lib/dependabot/python/file_updater/pip_compile_file_updater.rb +1 -1
  6. data/lib/dependabot/python/file_updater/pipfile_preparer.rb +1 -1
  7. data/lib/dependabot/python/update_checker/index_finder.rb +2 -2
  8. data/lib/dependabot/python/update_checker/pip_compile_version_resolver.rb +1 -1
  9. data/lib/dependabot/python/version.rb +3 -3
  10. data/lib/dependabot/python.rb +0 -3
  11. metadata +5 -5
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 8551cce2e7b034f2bba4bd85bfafac3eb74c4df231d42d38a39a66fe35b2089a
4
- data.tar.gz: cba70ca678784f5d1350e0942a05e493356622e6129c40a9124c0d8c79ffef27
3
+ metadata.gz: 572ad61344effec5a3f97e56259e5eab9853f3570dca599fc497d8ed61ab6436
4
+ data.tar.gz: 5a854800d2ee8cf0b7566ebfa85918897e2cc645ac657a7b10f5e248dd2f759c
5
5
  SHA512:
6
- metadata.gz: 11c07014feb92bc8ed1a81c730063340e537c0753773534f69e60e8184e63bcc4b44ae3ce87cfa2b597453b7345011166f9b59286a70a73d98fcc8f13645529b
7
- data.tar.gz: fb55db47f58e73849ea4497646cf801a5a693cd860ad3ff99eddfd701bb7da63e3af30cb2de4096a7962964522c6c2439007e1ca253a373c862829d3534b373c
6
+ metadata.gz: 36f5c4038e345852234630038fc5269dc813676c930b02a2bfa77dcfac46b64b75b557b2e70ace086287ac4b03c00581e17c9de4d0122333cfeeff6f1d54a5f6
7
+ data.tar.gz: 1f282359beb86c09d86129b6f71488d46a3c005a075adb760bc173fc07772cf9c5a85aa88ff5d92bbb5971795810ad9c73c774d0af99712f0869f0cde52108bf
data/helpers/requirements.txt CHANGED
@@ -2,7 +2,7 @@ pip==23.3.2
2
2
  pip-tools==7.3.0
3
3
  flake8==7.0.0
4
4
  hashin==0.17.0
5
- pipenv@git+https://github.com/pypa/pipenv@main
5
+ pipenv==2023.11.17
6
6
  pipfile==0.0.2
7
7
  poetry==1.7.1
8
8
 
data/lib/dependabot/python/authed_url_builder.rb CHANGED
@@ -6,7 +6,7 @@ module Dependabot
6
6
  class AuthedUrlBuilder
7
7
  def self.authed_url(credential:)
8
8
  token = credential.fetch("token", nil)
9
- url = credential.fetch("index-url")
9
+ url = credential.fetch("index-url", nil)
10
10
  return url unless token
11
11
 
12
12
  basic_auth_details =
data/lib/dependabot/python/file_parser.rb CHANGED
@@ -91,7 +91,7 @@ module Dependabot
91
91
  }]
92
92
  end
93
93
 
94
- # PyYAML < 6.0 will cause `pip-compile` to fail due to incompatiblity with Cython 3. Workaround it.
94
+ # PyYAML < 6.0 will cause `pip-compile` to fail due to incompatibility with Cython 3. Workaround it.
95
95
  SharedHelpers.run_shell_command("pyenv exec pip install cython<3.0") if old_pyyaml?(name, version)
96
96
 
97
97
  dependencies <<
data/lib/dependabot/python/file_updater/pip_compile_file_updater.rb CHANGED
@@ -463,7 +463,7 @@ module Dependabot
463
463
  .map do |cred|
464
464
  authed_url = AuthedUrlBuilder.authed_url(credential: cred)
465
465
 
466
- if cred["replaces-base"]
466
+ if cred.replaces_base?
467
467
  "--index-url=#{authed_url}"
468
468
  else
469
469
  "--extra-index-url=#{authed_url}"
data/lib/dependabot/python/file_updater/pipfile_preparer.rb CHANGED
@@ -52,7 +52,7 @@ module Dependabot
52
52
  base_url = source["url"].sub(/\${.*}@/, "")
53
53
 
54
54
  source_cred = credentials
55
- .select { |cred| cred["type"] == "python_index" }
55
+ .select { |cred| cred["type"] == "python_index" && cred["index-url"] }
56
56
  .find { |c| c["index-url"].sub(/\${.*}@/, "") == base_url }
57
57
 
58
58
  return nil if source_cred.nil?
data/lib/dependabot/python/update_checker/index_finder.rb CHANGED
@@ -146,13 +146,13 @@ module Dependabot
146
146
  index_url_creds = credentials
147
147
  .select { |cred| cred["type"] == "python_index" }
148
148
 
149
- if (main_cred = index_url_creds.find { |cred| cred["replaces-base"] })
149
+ if (main_cred = index_url_creds.find(&:replaces_base?))
150
150
  urls[:main] = AuthedUrlBuilder.authed_url(credential: main_cred)
151
151
  end
152
152
 
153
153
  urls[:extra] =
154
154
  index_url_creds
155
- .reject { |cred| cred["replaces-base"] }
155
+ .reject(&:replaces_base?)
156
156
  .map { |cred| AuthedUrlBuilder.authed_url(credential: cred) }
157
157
 
158
158
  urls
data/lib/dependabot/python/update_checker/pip_compile_version_resolver.rb CHANGED
@@ -257,7 +257,7 @@ module Dependabot
257
257
  .map do |cred|
258
258
  authed_url = AuthedUrlBuilder.authed_url(credential: cred)
259
259
 
260
- if cred["replaces-base"]
260
+ if cred.replaces_base?
261
261
  "--index-url=#{authed_url}"
262
262
  else
263
263
  "--extra-index-url=#{authed_url}"
data/lib/dependabot/python/version.rb CHANGED
@@ -1,4 +1,4 @@
1
- # typed: false
1
+ # typed: true
2
2
  # frozen_string_literal: true
3
3
 
4
4
  require "dependabot/version"
@@ -59,7 +59,7 @@ module Dependabot
59
59
  return epoch_comparison unless epoch_comparison.zero?
60
60
 
61
61
  version_comparison = super(other)
62
- return version_comparison unless version_comparison.zero?
62
+ return version_comparison unless version_comparison&.zero?
63
63
 
64
64
  post_version_comparison = post_version_comparison(other)
65
65
  return post_version_comparison unless post_version_comparison.zero?
@@ -96,7 +96,7 @@ module Dependabot
96
96
 
97
97
  local_comparison = Gem::Version.new(lhs) <=> Gem::Version.new(rhs)
98
98
 
99
- return local_comparison unless local_comparison.zero?
99
+ return local_comparison unless local_comparison&.zero?
100
100
 
101
101
  lhsegments.count <=> rhsegments.count
102
102
  end
data/lib/dependabot/python.rb CHANGED
@@ -33,6 +33,3 @@ Dependabot::Dependency.register_name_normaliser(
33
33
  "pip",
34
34
  ->(name) { Dependabot::Python::NameNormaliser.normalise(name) }
35
35
  )
36
-
37
- require "dependabot/utils"
38
- Dependabot::Utils.register_always_clone("pip")
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-python
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.242.1
4
+ version: 0.244.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-01-23 00:00:00.000000000 Z
11
+ date: 2024-02-15 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.242.1
19
+ version: 0.244.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.242.1
26
+ version: 0.244.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -274,7 +274,7 @@ licenses:
274
274
  - Nonstandard
275
275
  metadata:
276
276
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
277
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.242.1
277
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.244.0
278
278
  post_install_message:
279
279
  rdoc_options: []
280
280
  require_paths: