RubyGems - dependabot-python - Versions diffs - 0.110.1 → 0.110.2 - Mend

dependabot-python 0.110.1 → 0.110.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml +4 -4
data/lib/dependabot/python/update_checker/latest_version_finder.rb +9 -9
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6f74aca362db29898ff19b3aaf657c152f6559261f8dff6fcb81d365a1bb97f1
-  data.tar.gz: 32f5cea98627f6b78fd31f69b7ed39b714b952ba05f6d41af8ad47876a223d5d
+  metadata.gz: 9db7c02e8f8d561352ab5c4284f67c80fa61f8037502343a3ffc61c087f02f39
+  data.tar.gz: b3732c30ab057f3889c838c5692867f63c21f3fdd34e0cacb5b4fdb8e228dcee
 SHA512:
-  metadata.gz: 0e6ce4a48bcb1e271fbb5d97efc359ae56725b4680d4fe50ad121a78dea7752d2d4e1fe638861e3d425a81f3f9c489f5935684d54923b33f1e42a0ba7f0e9882
-  data.tar.gz: 14ca787fff1c3bce63368bc70682c16f66dd5d757ab88ab2f19c507ccb801b68127add77bf64e75bb7ee34a4754933045faee5448aad739bb968aeddea1efe10
+  metadata.gz: ef6084afd1fb2d917a16b7a57d3a8aed8d9e0edd0a4d75053db2a4940f5313f1b99e543f06e18af8ef9b42425f7683263512ac229531005bc752cb4451610b61
+  data.tar.gz: 2172c4efe4b167006adb7882b73ec3171f171a2535792956285846b8a42f1c4d1ef75ee767afce48bc9a9610cda0c0f4444bd6377d1d18e1e76100689abb338e

data/lib/dependabot/python/update_checker/latest_version_finder.rb CHANGED Viewed

@@ -2,6 +2,7 @@
 require "cgi"
 require "excon"
+require "nokogiri"
 require "dependabot/python/update_checker"
 require "dependabot/shared_helpers"
@@ -13,9 +14,6 @@ module Dependabot
       class LatestVersionFinder
         require_relative "index_finder"
-        PYTHON_REQUIREMENT_REGEX =
-          /data-requires-python\s*=\s*["'](?<requirement>[^"']+)["']/m.freeze
         def initialize(dependency:, dependency_files:, credentials:,
                        ignored_versions:, security_advisories:)
           @dependency          = dependency
@@ -153,8 +151,9 @@ module Dependabot
         end
         def version_details_from_link(link)
-          filename = link.match(%r{<a\s.*?>(.*?)</a>}m).captures.first
-          return unless filename.match?(name_regex)
+          doc = Nokogiri::XML(link)
+          filename = doc.at_css("a")&.content
+          return unless filename&.match?(name_regex)
           version = get_version_from_filename(filename)
           return unless version_class.correct?(version)
@@ -173,10 +172,11 @@ module Dependabot
         end
         def build_python_requirement_from_link(link)
-          req_string = link.
-                       match(PYTHON_REQUIREMENT_REGEX)&.
-                       named_captures&.
-                       fetch("requirement")
+          req_string = Nokogiri::XML(link).
+                       at_css("a")&.
+                       attribute("data-requires-python")&.
+                       content
           return unless req_string
           requirement_class.new(CGI.unescapeHTML(req_string))

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: dependabot-python
 version: !ruby/object:Gem::Version
-  version: 0.110.1
+  version: 0.110.2
 platform: ruby
 authors:
 - Dependabot
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.110.1
+        version: 0.110.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.110.1
+        version: 0.110.2
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement