dependabot-python 0.253.0 → 0.254.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/helpers/requirements.txt +1 -1
  3. data/lib/dependabot/python/file_parser/python_requirement_parser.rb +6 -1
  4. data/lib/dependabot/python/file_updater/setup_file_sanitizer.rb +7 -1
  5. metadata +15 -15
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: c1e05506cf84267bd43a63e0db63d939c458872d75519148d1b7186bc1297949
4
- data.tar.gz: a8df3880bd956cd02fc30cc458ebe967ab764e4a37583d654a79bbafbce31513
3
+ metadata.gz: 2869e6ef71c246b74839b4aca81a8da7b73fc2c084ba23ff5e821b5ecf034623
4
+ data.tar.gz: 65d05bbd1070533eff3f282ac77ecce0434dd413353daebd3b8b0843108a558a
5
5
  SHA512:
6
- metadata.gz: a47450613132feac9d741e58d3ffbdc9f0cbb28903772f23cd460c6f8b1b16f5467ad160ef5ff55d0bdb4051ef4abca56c20e7dee6a832bd388394a7d201d427
7
- data.tar.gz: f1792da350a5ca7d8495ff525a7b8833bab4b3eead8262d061b26ad5535806b53899c06f71ddc0e00b4ba83cb0c2902c721bc955839ffe807b4dab73b9e42a1d
6
+ metadata.gz: ddf90e47a35110fb17b01eb709fedb6b312eee1cb783c6446968afb1ddd31e1f012950f78e431bc2e14597ef18bd6b872d3fc64a4a7febc84f39b771cda7de79
7
+ data.tar.gz: a4aecd81b8d93dec6348db58f8af080d9d5fed2c3ec633e46888ef5f15e9fe8fee4786d16983cae9f5aa6002eea61fb5fad7b1c5462f606f8eab8d9d5f8c01b9
data/helpers/requirements.txt CHANGED
@@ -2,7 +2,7 @@ pip==24.0
2
2
  pip-tools==7.4.1
3
3
  flake8==7.0.0
4
4
  hashin==1.0.1
5
- pipenv==2023.11.17
5
+ pipenv==2023.12.1
6
6
  plette==0.4.4
7
7
  poetry==1.8.2
8
8
  # TODO: Replace 3p package `toml` with 3.11's new stdlib `tomllib` once we drop support for Python 3.10.
data/lib/dependabot/python/file_parser/python_requirement_parser.rb CHANGED
@@ -83,7 +83,12 @@ module Dependabot
83
83
  def python_version_file_version
84
84
  return unless python_version_file
85
85
 
86
- file_version = python_version_file.content.strip
86
+ # read the content, split into lines and remove any lines with '#'
87
+ content_lines = python_version_file.content.each_line.map do |line|
88
+ line.sub(/#.*$/, " ").strip
89
+ end.reject(&:empty?)
90
+
91
+ file_version = content_lines.first
87
92
  return if file_version&.empty?
88
93
  return unless pyenv_versions.include?("#{file_version}\n")
89
94
 
data/lib/dependabot/python/file_updater/setup_file_sanitizer.rb CHANGED
@@ -21,7 +21,7 @@ module Dependabot
21
21
  # in the lockfile.
22
22
  content =
23
23
  "from setuptools import setup\n\n" \
24
- "setup(name=\"sanitized-package\",version=\"0.0.1\"," \
24
+ "setup(name=\"#{package_name}\",version=\"0.0.1\"," \
25
25
  "install_requires=#{install_requires_array.to_json}," \
26
26
  "extras_require=#{extras_require_hash.to_json}"
27
27
 
@@ -85,6 +85,12 @@ module Dependabot
85
85
  ].compact
86
86
  ).dependency_set
87
87
  end
88
+
89
+ def package_name
90
+ content = setup_file.content
91
+ match = content.match(/name\s*=\s*['"](?<package_name>[^'"]+)['"]/)
92
+ match ? match[:package_name] : "default_package_name"
93
+ end
88
94
  end
89
95
  end
90
96
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-python
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.253.0
4
+ version: 0.254.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-04-18 00:00:00.000000000 Z
11
+ date: 2024-04-24 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: dependabot-common
@@ -16,28 +16,28 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 0.253.0
19
+ version: 0.254.0
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 0.253.0
26
+ version: 0.254.0
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: debug
29
29
  requirement: !ruby/object:Gem::Requirement
30
30
  requirements:
31
31
  - - "~>"
32
32
  - !ruby/object:Gem::Version
33
- version: 1.8.0
33
+ version: 1.9.2
34
34
  type: :development
35
35
  prerelease: false
36
36
  version_requirements: !ruby/object:Gem::Requirement
37
37
  requirements:
38
38
  - - "~>"
39
39
  - !ruby/object:Gem::Version
40
- version: 1.8.0
40
+ version: 1.9.2
41
41
  - !ruby/object:Gem::Dependency
42
42
  name: gpgme
43
43
  requirement: !ruby/object:Gem::Requirement
@@ -114,56 +114,56 @@ dependencies:
114
114
  requirements:
115
115
  - - "~>"
116
116
  - !ruby/object:Gem::Version
117
- version: 1.58.0
117
+ version: 1.63.2
118
118
  type: :development
119
119
  prerelease: false
120
120
  version_requirements: !ruby/object:Gem::Requirement
121
121
  requirements:
122
122
  - - "~>"
123
123
  - !ruby/object:Gem::Version
124
- version: 1.58.0
124
+ version: 1.63.2
125
125
  - !ruby/object:Gem::Dependency
126
126
  name: rubocop-performance
127
127
  requirement: !ruby/object:Gem::Requirement
128
128
  requirements:
129
129
  - - "~>"
130
130
  - !ruby/object:Gem::Version
131
- version: 1.19.0
131
+ version: 1.21.0
132
132
  type: :development
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - "~>"
137
137
  - !ruby/object:Gem::Version
138
- version: 1.19.0
138
+ version: 1.21.0
139
139
  - !ruby/object:Gem::Dependency
140
140
  name: rubocop-rspec
141
141
  requirement: !ruby/object:Gem::Requirement
142
142
  requirements:
143
143
  - - "~>"
144
144
  - !ruby/object:Gem::Version
145
- version: 2.27.1
145
+ version: 2.29.1
146
146
  type: :development
147
147
  prerelease: false
148
148
  version_requirements: !ruby/object:Gem::Requirement
149
149
  requirements:
150
150
  - - "~>"
151
151
  - !ruby/object:Gem::Version
152
- version: 2.27.1
152
+ version: 2.29.1
153
153
  - !ruby/object:Gem::Dependency
154
154
  name: rubocop-sorbet
155
155
  requirement: !ruby/object:Gem::Requirement
156
156
  requirements:
157
157
  - - "~>"
158
158
  - !ruby/object:Gem::Version
159
- version: 0.7.3
159
+ version: 0.8.1
160
160
  type: :development
161
161
  prerelease: false
162
162
  version_requirements: !ruby/object:Gem::Requirement
163
163
  requirements:
164
164
  - - "~>"
165
165
  - !ruby/object:Gem::Version
166
- version: 0.7.3
166
+ version: 0.8.1
167
167
  - !ruby/object:Gem::Dependency
168
168
  name: turbo_tests
169
169
  requirement: !ruby/object:Gem::Requirement
@@ -274,7 +274,7 @@ licenses:
274
274
  - Nonstandard
275
275
  metadata:
276
276
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
277
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.253.0
277
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.254.0
278
278
  post_install_message:
279
279
  rdoc_options: []
280
280
  require_paths: