dependabot-python 0.362.0 → 0.364.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/helpers/requirements.txt +1 -1
- data/lib/dependabot/python/file_parser/pipfile_files_parser.rb +2 -2
- data/lib/dependabot/python/file_updater/pip_compile_file_updater.rb +5 -1
- data/lib/dependabot/python/file_updater/requirement_replacer.rb +1 -1
- data/lib/dependabot/python/update_checker/requirements_updater.rb +3 -4
- metadata +6 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ad6e1e80553f3ffd620ea7d83d9e9d6dbe3d910b069df6e970b3b0176090f024
|
|
4
|
+
data.tar.gz: 4869abdc7a7905d29c03d5e3620f7b5f8f5a5321131f035d9aa070563db6cff2
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 896f820ec9168bee0abb669b46c5ad4368d741b6a15bc3b81d22cbaeea63416043c1a81801c9df5965177c8b4681b7f9dc860b90b36b870a1e8be3700725a670
|
|
7
|
+
data.tar.gz: c4a75fcb7e5ad87522d6817a1d3cc716d11b0766f164ce7917e196a879f743761eab3eb269bebd57d4473d51f3117f9e35e4d12ced3d55e31794ed7365eab290
|
data/helpers/requirements.txt
CHANGED
|
@@ -140,7 +140,7 @@ module Dependabot
|
|
|
140
140
|
end
|
|
141
141
|
|
|
142
142
|
sig do
|
|
143
|
-
params(obj: T.any(String,
|
|
143
|
+
params(obj: T.nilable(T.any(String, T::Array[String], T::Hash[String, T.untyped]))).returns(T.nilable(String))
|
|
144
144
|
end
|
|
145
145
|
def version_from_hash_or_string(obj)
|
|
146
146
|
case obj
|
|
@@ -149,7 +149,7 @@ module Dependabot
|
|
|
149
149
|
end
|
|
150
150
|
end
|
|
151
151
|
|
|
152
|
-
sig { params(req: T.any(String, T::Hash[String, T.untyped])).returns(T.any(T::Boolean,
|
|
152
|
+
sig { params(req: T.any(String, T::Hash[String, T.untyped])).returns(T.nilable(T.any(T::Boolean, String))) }
|
|
153
153
|
def specifies_version?(req)
|
|
154
154
|
return true if req.is_a?(String)
|
|
155
155
|
|
|
@@ -26,7 +26,11 @@ module Dependabot
|
|
|
26
26
|
|
|
27
27
|
UNSAFE_PACKAGES = T.let(%w(setuptools distribute pip).freeze, T::Array[String])
|
|
28
28
|
INCOMPATIBLE_VERSIONS_REGEX = T.let(
|
|
29
|
-
|
|
29
|
+
Regexp.new(
|
|
30
|
+
"(?:not supported between instances of 'InstallationCandidate'" \
|
|
31
|
+
"|There are incompatible versions in the resolved dependencies).*\\z",
|
|
32
|
+
Regexp::MULTILINE
|
|
33
|
+
),
|
|
30
34
|
Regexp
|
|
31
35
|
)
|
|
32
36
|
WARNINGS = T.let(/\s*# WARNING:.*\Z/m, Regexp)
|
|
@@ -317,11 +317,11 @@ module Dependabot
|
|
|
317
317
|
new_segments
|
|
318
318
|
.first(count)
|
|
319
319
|
.map.with_index { |s, i| i < precision ? s : "*" }
|
|
320
|
-
|
|
320
|
+
.join(".")
|
|
321
321
|
end
|
|
322
322
|
|
|
323
323
|
sig { params(requirement_strings: T::Array[String]).returns(String) }
|
|
324
|
-
def update_requirements_range(requirement_strings)
|
|
324
|
+
def update_requirements_range(requirement_strings)
|
|
325
325
|
ruby_requirements =
|
|
326
326
|
requirement_strings.map { |r| requirement_class.new(r) }
|
|
327
327
|
|
|
@@ -341,8 +341,7 @@ module Dependabot
|
|
|
341
341
|
end.compact
|
|
342
342
|
|
|
343
343
|
updated_requirement_strings
|
|
344
|
-
.sort_by { |r| requirement_class.new(r).requirements.first.last }
|
|
345
|
-
.map(&:to_s).join(",").delete(" ")
|
|
344
|
+
.sort_by { |r| requirement_class.new(r).requirements.first.last }.join(",").delete(" ")
|
|
346
345
|
end
|
|
347
346
|
|
|
348
347
|
# Updates the version in a constraint to be the given version
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-python
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.364.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
@@ -15,14 +15,14 @@ dependencies:
|
|
|
15
15
|
requirements:
|
|
16
16
|
- - '='
|
|
17
17
|
- !ruby/object:Gem::Version
|
|
18
|
-
version: 0.
|
|
18
|
+
version: 0.364.0
|
|
19
19
|
type: :runtime
|
|
20
20
|
prerelease: false
|
|
21
21
|
version_requirements: !ruby/object:Gem::Requirement
|
|
22
22
|
requirements:
|
|
23
23
|
- - '='
|
|
24
24
|
- !ruby/object:Gem::Version
|
|
25
|
-
version: 0.
|
|
25
|
+
version: 0.364.0
|
|
26
26
|
- !ruby/object:Gem::Dependency
|
|
27
27
|
name: debug
|
|
28
28
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -85,14 +85,14 @@ dependencies:
|
|
|
85
85
|
requirements:
|
|
86
86
|
- - "~>"
|
|
87
87
|
- !ruby/object:Gem::Version
|
|
88
|
-
version: '
|
|
88
|
+
version: '2.0'
|
|
89
89
|
type: :development
|
|
90
90
|
prerelease: false
|
|
91
91
|
version_requirements: !ruby/object:Gem::Requirement
|
|
92
92
|
requirements:
|
|
93
93
|
- - "~>"
|
|
94
94
|
- !ruby/object:Gem::Version
|
|
95
|
-
version: '
|
|
95
|
+
version: '2.0'
|
|
96
96
|
- !ruby/object:Gem::Dependency
|
|
97
97
|
name: rspec-sorbet
|
|
98
98
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -291,7 +291,7 @@ licenses:
|
|
|
291
291
|
- MIT
|
|
292
292
|
metadata:
|
|
293
293
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
294
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
294
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.364.0
|
|
295
295
|
rdoc_options: []
|
|
296
296
|
require_paths:
|
|
297
297
|
- lib
|