dependabot-python 0.337.0 → 0.340.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/python/pipenv_runner.rb +31 -2
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 79d60778c416fb3b2a3f8c369fdd63016f86730b7620c3e6a8c36590d6e86566
|
|
4
|
+
data.tar.gz: 8c7c87d20e80210b46bfa84ba8e6442bdf08b5e3c38ebd97b3d1e633b058a53d
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 5f013320bdd49337f97ef075716a4af263e7cc8feb4bedaa49cc9a2d26a1260ebc78b72658d3ecbe6f0e4ee18fea3b6a70c99d1160f5cc603945f75b77461955
|
|
7
|
+
data.tar.gz: 7c74f2fd6f4393034039e252ae1c22af6ae0bbec1dabeff2aa36b2ae31025913866146cab82d3a43116cc058edf6eee8a19885f9ee5ffc92673b0958320cb96c
|
|
@@ -28,10 +28,15 @@ module Dependabot
|
|
|
28
28
|
sig { params(constraint: T.nilable(String)).returns(String) }
|
|
29
29
|
def run_upgrade(constraint)
|
|
30
30
|
constraint = "" if constraint == "*"
|
|
31
|
-
|
|
31
|
+
|
|
32
|
+
# Build the full package specification with extras
|
|
33
|
+
extras_spec = extras_specification
|
|
34
|
+
package_spec = "#{dependency_name}#{extras_spec}#{constraint}"
|
|
35
|
+
|
|
36
|
+
command = "pyenv exec pipenv upgrade --verbose #{package_spec}"
|
|
32
37
|
command << " --dev" if lockfile_section == "develop"
|
|
33
38
|
|
|
34
|
-
run(command, fingerprint: "pyenv exec pipenv upgrade --verbose <dependency_name><constraint>")
|
|
39
|
+
run(command, fingerprint: "pyenv exec pipenv upgrade --verbose <dependency_name><extras><constraint>")
|
|
35
40
|
end
|
|
36
41
|
|
|
37
42
|
sig { params(constraint: T.nilable(String)).returns(T.nilable(String)) }
|
|
@@ -64,6 +69,30 @@ module Dependabot
|
|
|
64
69
|
sig { returns(LanguageVersionManager) }
|
|
65
70
|
attr_reader :language_version_manager
|
|
66
71
|
|
|
72
|
+
sig { returns(String) }
|
|
73
|
+
def extras_specification
|
|
74
|
+
extras = dependency_extras
|
|
75
|
+
return "" if extras.nil? || extras.empty?
|
|
76
|
+
|
|
77
|
+
"[#{extras.join(',')}]"
|
|
78
|
+
end
|
|
79
|
+
|
|
80
|
+
sig { returns(T.nilable(T::Array[String])) }
|
|
81
|
+
def dependency_extras
|
|
82
|
+
return nil unless lockfile
|
|
83
|
+
|
|
84
|
+
lockfile_content = T.must(lockfile).content
|
|
85
|
+
return nil unless lockfile_content
|
|
86
|
+
|
|
87
|
+
parsed_lockfile = JSON.parse(lockfile_content)
|
|
88
|
+
section = lockfile_section
|
|
89
|
+
dependency_data = parsed_lockfile.dig(section, dependency_name)
|
|
90
|
+
|
|
91
|
+
return nil unless dependency_data
|
|
92
|
+
|
|
93
|
+
dependency_data["extras"]
|
|
94
|
+
end
|
|
95
|
+
|
|
67
96
|
sig { params(updated_lockfile: T::Hash[String, T.untyped]).returns(T.nilable(String)) }
|
|
68
97
|
def fetch_version_from_parsed_lockfile(updated_lockfile)
|
|
69
98
|
deps = updated_lockfile[lockfile_section] || {}
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-python
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.340.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -15,14 +15,14 @@ dependencies:
|
|
|
15
15
|
requirements:
|
|
16
16
|
- - '='
|
|
17
17
|
- !ruby/object:Gem::Version
|
|
18
|
-
version: 0.
|
|
18
|
+
version: 0.340.0
|
|
19
19
|
type: :runtime
|
|
20
20
|
prerelease: false
|
|
21
21
|
version_requirements: !ruby/object:Gem::Requirement
|
|
22
22
|
requirements:
|
|
23
23
|
- - '='
|
|
24
24
|
- !ruby/object:Gem::Version
|
|
25
|
-
version: 0.
|
|
25
|
+
version: 0.340.0
|
|
26
26
|
- !ruby/object:Gem::Dependency
|
|
27
27
|
name: debug
|
|
28
28
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -290,7 +290,7 @@ licenses:
|
|
|
290
290
|
- MIT
|
|
291
291
|
metadata:
|
|
292
292
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
293
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
293
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.340.0
|
|
294
294
|
rdoc_options: []
|
|
295
295
|
require_paths:
|
|
296
296
|
- lib
|