dependabot-python 0.282.0 → 0.283.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/python/update_checker.rb +2 -2
- data/lib/dependabot/python/version.rb +32 -0
- metadata +5 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: '084b589a08a272ee1ce8ca0b572895106bc8992c6f0bdf77b3c70389502d02df'
|
|
4
|
+
data.tar.gz: 4d2c345da9675751e47e927b3a83096d4332d5e7d5be07aee9c49f2d31f3f990
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: fcecd2709d32210a923e28c5bae7abdab5f5d4a4ba1752f465da146f617dc6cad1455ad39582e56fd77758bc8aaed20a13385a3ae370183a7d474516d7387ea9
|
|
7
|
+
data.tar.gz: '09c0d6cbab05bca21eea29e3b0ef0cbc593f7278b1d35cd380e043f238a44dd77608f5a1bd79a30101768664dfe8acbfb6a4400ef2b0e669cfc3a7c616507f57'
|
|
@@ -234,8 +234,8 @@ module Dependabot
|
|
|
234
234
|
.reject { |req_string| req_string.start_with?("<") }
|
|
235
235
|
.select { |req_string| req_string.match?(VERSION_REGEX) }
|
|
236
236
|
.map { |req_string| req_string.match(VERSION_REGEX) }
|
|
237
|
-
.select { |version|
|
|
238
|
-
.max_by { |version|
|
|
237
|
+
.select { |version| Python::Version.correct?(version) }
|
|
238
|
+
.max_by { |version| Python::Version.new(version) }
|
|
239
239
|
|
|
240
240
|
">=#{version_for_requirement || 0}"
|
|
241
241
|
end
|
|
@@ -214,6 +214,38 @@ module Dependabot
|
|
|
214
214
|
"dev0"
|
|
215
215
|
end
|
|
216
216
|
|
|
217
|
+
sig { override.returns(T::Array[String]) }
|
|
218
|
+
def ignored_patch_versions
|
|
219
|
+
parts = release_segment # e.g [1,2,3] if version is 1.2.3-alpha3
|
|
220
|
+
version_parts = parts.fill(0, parts.length...2)
|
|
221
|
+
upper_parts = version_parts.first(1) + [version_parts[1].to_i + 1] + [lowest_prerelease_suffix]
|
|
222
|
+
lower_bound = "> #{self}"
|
|
223
|
+
upper_bound = "< #{upper_parts.join('.')}"
|
|
224
|
+
|
|
225
|
+
["#{lower_bound}, #{upper_bound}"]
|
|
226
|
+
end
|
|
227
|
+
|
|
228
|
+
sig { override.returns(T::Array[String]) }
|
|
229
|
+
def ignored_minor_versions
|
|
230
|
+
parts = release_segment # e.g [1,2,3] if version is 1.2.3-alpha3
|
|
231
|
+
version_parts = parts.fill(0, parts.length...2)
|
|
232
|
+
lower_parts = version_parts.first(1) + [version_parts[1].to_i + 1] + [lowest_prerelease_suffix]
|
|
233
|
+
upper_parts = version_parts.first(0) + [version_parts[0].to_i + 1] + [lowest_prerelease_suffix]
|
|
234
|
+
lower_bound = ">= #{lower_parts.join('.')}"
|
|
235
|
+
upper_bound = "< #{upper_parts.join('.')}"
|
|
236
|
+
|
|
237
|
+
["#{lower_bound}, #{upper_bound}"]
|
|
238
|
+
end
|
|
239
|
+
|
|
240
|
+
sig { override.returns(T::Array[String]) }
|
|
241
|
+
def ignored_major_versions
|
|
242
|
+
version_parts = release_segment # e.g [1,2,3] if version is 1.2.3-alpha3
|
|
243
|
+
lower_parts = [version_parts[0].to_i + 1] + [lowest_prerelease_suffix] # earliest next major version prerelease
|
|
244
|
+
lower_bound = ">= #{lower_parts.join('.')}"
|
|
245
|
+
|
|
246
|
+
[lower_bound]
|
|
247
|
+
end
|
|
248
|
+
|
|
217
249
|
private
|
|
218
250
|
|
|
219
251
|
sig { params(other: Dependabot::Python::Version).returns(Integer) }
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-python
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.283.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-10-
|
|
11
|
+
date: 2024-10-31 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.283.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.283.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -288,7 +288,7 @@ licenses:
|
|
|
288
288
|
- MIT
|
|
289
289
|
metadata:
|
|
290
290
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
291
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
291
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.283.0
|
|
292
292
|
post_install_message:
|
|
293
293
|
rdoc_options: []
|
|
294
294
|
require_paths:
|