dependabot-python 0.342.2 → 0.343.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/python/language.rb +1 -0
  3. data/lib/dependabot/python/update_checker/poetry_version_resolver.rb +21 -2
  4. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 4ae0bebe61296e86521c27bb8304ee607c5755ce8d88bf3ab33a736d0758c317
4
- data.tar.gz: bf3670b60f32885a9483df12df0e2a6b67a02addc5aba6b3a866a5f311a06fc7
3
+ metadata.gz: ed116006ed210c905c065d4f156a167a4d04d48c4a07cd8b4e169f73f63f9cf0
4
+ data.tar.gz: 863edd17212898be028c2a3074e82b06f4fe0a2617db4ce0c19744e84af952ef
5
5
  SHA512:
6
- metadata.gz: 6d38c1411fef97bbe9984889764f1109911f49c13dbf98114490d6ce573cd70f1592683bfe12f1fd14755e8c0f692228bde718f9d8cc25561270fe422d31eded
7
- data.tar.gz: 38bd7e4f464a4fc2728c8eb1fcc20f56cf9b31ec8f27b633ee6bbb34b9048b3cd6e7ae98ab1d86e911961cb4cdcd600fd4587ca84507a4cfe36f5358da31b304
6
+ metadata.gz: 31406dda9f98e5d03e417006fcffd2a6fb60a5963e80a9e2f1665a03e2168ee3aa0545150b5439cda0f647e954a1cb675e12d8fae4bea399d5d98b69ad387db1
7
+ data.tar.gz: 2db7e183b64ad1c64e0b32b55478b37a46ae012a4b9a35cf4b0e849700492daffe4fb72a08e5c475a3c5262d2a3683da2d1292178c234343d351620bf1837b57
data/lib/dependabot/python/language.rb CHANGED
@@ -16,6 +16,7 @@ module Dependabot
16
16
  # ARG PY_3_13=3.13.2
17
17
  # When updating this list, also update uv/lib/dependabot/uv/language.rb
18
18
  PRE_INSTALLED_PYTHON_VERSIONS_RAW = %w(
19
+ 3.14.0
19
20
  3.13.5
20
21
  3.12.11
21
22
  3.11.13
data/lib/dependabot/python/update_checker/poetry_version_resolver.rb CHANGED
@@ -415,6 +415,12 @@ module Dependabot
415
415
  # package version mentioned in .toml not found in package index
416
416
  PACKAGE_NOT_FOUND = /Package (?<pkg>.*) ((?<req_ver>.*)) not found./
417
417
 
418
+ INCOMPATIBLE_ENRICH_CONSTRAINTS = /
419
+ Cannot\senrich\sdependency\swith\sincompatible\sconstraints:\s+
420
+ (?<dep>[^\s(]+)\s*\((?<ver_range_a>[^)]+)\)\s+and\s+
421
+ (?<dep_b>[^\s(]+)\s*\((?<ver_range_b>[^)]+)\)
422
+ /x
423
+
418
424
  # client access error codes while accessing package index
419
425
  CLIENT_ERROR_CODES = T.let(
420
426
  {
@@ -502,7 +508,6 @@ module Dependabot
502
508
  if (msg = error.message.match(PoetryVersionResolver::INCOMPATIBLE_CONSTRAINTS) ||
503
509
  error.message.match(INVALID_CONFIGURATION) || error.message.match(INVALID_VERSION) ||
504
510
  error.message.match(INVALID_LINK))
505
-
506
511
  raise DependencyFileNotResolvable, msg
507
512
  end
508
513
 
@@ -510,11 +515,12 @@ module Dependabot
510
515
  raise DependencyFileNotResolvable, msg
511
516
  end
512
517
 
518
+ handle_enrich_constraints(error)
519
+
513
520
  raise DependencyFileNotResolvable, error.message if error.message.match(PYTHON_RANGE_NOT_SATISFIED)
514
521
 
515
522
  if error.message.match(POETRY_VIRTUAL_ENV_CONFIG) || error.message.match(ERR_LOCAL_PROJECT_PATH)
516
523
  msg = "Error while resolving pyproject.toml file"
517
-
518
524
  raise DependencyFileNotResolvable, msg
519
525
  end
520
526
 
@@ -548,6 +554,19 @@ module Dependabot
548
554
  # rubocop:enable Metrics/AbcSize
549
555
  # rubocop:enable Metrics/PerceivedComplexity
550
556
  # rubocop:enable Metrics/CyclomaticComplexity
557
+
558
+ private
559
+
560
+ sig { params(error: Exception).void }
561
+ def handle_enrich_constraints(error)
562
+ if (msg = error.message.match(INCOMPATIBLE_ENRICH_CONSTRAINTS))
563
+ dep = msg[:dep]
564
+ ver_a = msg[:ver_range_a]
565
+ ver_b = msg[:ver_range_b]
566
+ raise DependencyFileNotResolvable,
567
+ "Incompatible version constraints for #{dep}: #{ver_a} vs #{ver_b}"
568
+ end
569
+ end
551
570
  end
552
571
  end
553
572
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-python
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.342.2
4
+ version: 0.343.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
@@ -15,14 +15,14 @@ dependencies:
15
15
  requirements:
16
16
  - - '='
17
17
  - !ruby/object:Gem::Version
18
- version: 0.342.2
18
+ version: 0.343.0
19
19
  type: :runtime
20
20
  prerelease: false
21
21
  version_requirements: !ruby/object:Gem::Requirement
22
22
  requirements:
23
23
  - - '='
24
24
  - !ruby/object:Gem::Version
25
- version: 0.342.2
25
+ version: 0.343.0
26
26
  - !ruby/object:Gem::Dependency
27
27
  name: debug
28
28
  requirement: !ruby/object:Gem::Requirement
@@ -290,7 +290,7 @@ licenses:
290
290
  - MIT
291
291
  metadata:
292
292
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
293
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.342.2
293
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.343.0
294
294
  rdoc_options: []
295
295
  require_paths:
296
296
  - lib