dependabot-swift 0.222.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 4aef4a94ae75bf75d90152d46b40c74149b9b6724392bcd7aed6ab75843dc359
+  data.tar.gz: b1423ec2d83751d7f0fca41a5e24b0d7c952015ca355042ab5a585f02b321895
+SHA512:
+  metadata.gz: 2451f0816f18243f61732cd2cb751953ba5b7cb8e55727901c33a81ae9f574282ee58f098df107b7b550e1dfa98b37475b50e1e0e323ae0b3dc9c7a5ec04002c
+  data.tar.gz: 7a8dc186c3490327e53c721c01a2424c34a18350bc00d92367866e667980e851379ac2a9f3efb74d892f8bcdb238260fc67843054805c69d62de3228c75f0b0b

data/lib/dependabot/swift/file_fetcher.rb

@@ -0,0 +1,50 @@
+# frozen_string_literal: true
+
+require "dependabot/file_fetchers"
+require "dependabot/file_fetchers/base"
+
+module Dependabot
+  module Swift
+    class FileFetcher < Dependabot::FileFetchers::Base
+      def self.required_files_in?(filenames)
+        filenames.include?("Package.swift")
+      end
+
+      def self.required_files_message
+        "Repo must contain a Package.swift configuration file."
+      end
+
+      private
+
+      def fetch_files
+        check_required_files_present
+
+        fetched_files = []
+        fetched_files << package_manifest
+        fetched_files << package_resolved if package_resolved
+        fetched_files
+      end
+
+      def package_manifest
+        @package_manifest ||= fetch_file_from_host("Package.swift")
+      end
+
+      def package_resolved
+        return @package_resolved if defined?(@package_resolved)
+
+        @package_resolved = fetch_file_if_present("Package.resolved")
+      end
+
+      def check_required_files_present
+        return if package_manifest
+
+        path = Pathname.new(File.join(directory, "Package.swift")).
+               cleanpath.to_path
+        raise Dependabot::DependencyFileNotFound, path
+      end
+    end
+  end
+end
+
+Dependabot::FileFetchers.
+  register("swift", Dependabot::Swift::FileFetcher)

data/lib/dependabot/swift/file_parser/dependency_parser.rb

@@ -0,0 +1,72 @@
+# frozen_string_literal: true
+
+require "dependabot/file_parsers/base"
+require "dependabot/shared_helpers"
+require "dependabot/dependency"
+require "json"
+
+module Dependabot
+  module Swift
+    class FileParser < Dependabot::FileParsers::Base
+      class DependencyParser
+        def initialize(dependency_files:, repo_contents_path:, credentials:)
+          @dependency_files = dependency_files
+          @repo_contents_path = repo_contents_path
+          @credentials = credentials
+        end
+
+        def parse
+          SharedHelpers.in_a_temporary_repo_directory(dependency_files.first.directory, repo_contents_path) do
+            write_temporary_dependency_files
+
+            SharedHelpers.with_git_configured(credentials: credentials) do
+              subdependencies(formatted_deps)
+            end
+          end
+        end
+
+        private
+
+        def write_temporary_dependency_files
+          dependency_files.each do |file|
+            File.write(file.name, file.content)
+          end
+        end
+
+        def formatted_deps
+          deps = SharedHelpers.run_shell_command(
+            "swift package show-dependencies --format json",
+            stderr_to_stdout: false
+          )
+
+          JSON.parse(deps)
+        end
+
+        def subdependencies(data, level: 0)
+          data["dependencies"].flat_map { |root| all_dependencies(root, level: level) }
+        end
+
+        def all_dependencies(data, level: 0)
+          name = data["identity"]
+          url = data["url"]
+          version = data["version"]
+
+          source = { type: "git", url: url, ref: version, branch: nil }
+          args = { name: name, version: version, package_manager: "swift", requirements: [] }
+
+          if level.zero?
+            args[:requirements] << { requirement: nil, groups: ["dependencies"], file: nil, source: source }
+          else
+            args[:subdependency_metadata] = [{ source: source }]
+          end
+
+          dep = Dependency.new(**args) if data["version"] != "unspecified"
+
+          [dep, *subdependencies(data, level: level + 1)].compact
+        end
+
+        attr_reader :dependency_files, :repo_contents_path, :credentials
+      end
+    end
+  end
+end

data/lib/dependabot/swift/file_parser/manifest_parser.rb

@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+require "dependabot/file_parsers/base"
+require "dependabot/swift/native_requirement"
+
+module Dependabot
+  module Swift
+    class FileParser < Dependabot::FileParsers::Base
+      class ManifestParser
+        DEPENDENCY = /(?<declaration>\.package\(\s*(?:name: "[^"]+",\s*)?url: "(?<url>[^"]+)",\s*(?<requirement>.*)\))/
+
+        def initialize(manifest, source:)
+          @manifest = manifest
+          @source = source
+        end
+
+        def requirements
+          found = manifest.content.scan(DEPENDENCY).find do |_declaration, url, requirement|
+            # TODO: Support pinning to specific revisions
+            next if requirement.start_with?("branch:", ".branch(", "revision:", ".revision(")
+
+            url == source[:url]
+          end
+
+          return [] unless found
+
+          declaration = found.first
+          requirement = NativeRequirement.new(found.last)
+
+          [
+            {
+              requirement: requirement.to_s,
+              groups: ["dependencies"],
+              file: manifest.name,
+              source: source,
+              metadata: { declaration_string: declaration, requirement_string: requirement.declaration }
+            }
+          ]
+        end
+
+        private
+
+        attr_reader :manifest, :source
+      end
+    end
+  end
+end

data/lib/dependabot/swift/file_parser.rb

@@ -0,0 +1,60 @@
+# frozen_string_literal: true
+
+require "dependabot/dependency"
+require "dependabot/file_parsers"
+require "dependabot/file_parsers/base"
+require "dependabot/swift/file_parser/dependency_parser"
+require "dependabot/swift/file_parser/manifest_parser"
+
+module Dependabot
+  module Swift
+    class FileParser < Dependabot::FileParsers::Base
+      require "dependabot/file_parsers/base/dependency_set"
+
+      def parse
+        dependency_set = DependencySet.new
+
+        dependency_parser.parse.map do |dep|
+          if dep.top_level?
+            source = dep.requirements.first[:source]
+
+            requirements = ManifestParser.new(package_manifest_file, source: source).requirements
+
+            dependency_set << Dependency.new(
+              name: dep.name,
+              version: dep.version,
+              package_manager: dep.package_manager,
+              requirements: requirements
+            )
+          else
+            dependency_set << dep
+          end
+        end
+
+        dependency_set.dependencies
+      end
+
+      private
+
+      def dependency_parser
+        DependencyParser.new(
+          dependency_files: dependency_files,
+          repo_contents_path: repo_contents_path,
+          credentials: credentials
+        )
+      end
+
+      def check_required_files
+        raise "No Package.swift!" unless package_manifest_file
+      end
+
+      def package_manifest_file
+        # TODO: Select version-specific manifest
+        @package_manifest_file ||= get_original_file("Package.swift")
+      end
+    end
+  end
+end
+
+Dependabot::FileParsers.
+  register("swift", Dependabot::Swift::FileParser)

data/lib/dependabot/swift/file_updater/lockfile_updater.rb

@@ -0,0 +1,38 @@
+# frozen_string_literal: true
+
+require "dependabot/file_updaters/base"
+require "dependabot/shared_helpers"
+
+module Dependabot
+  module Swift
+    class FileUpdater < Dependabot::FileUpdaters::Base
+      class LockfileUpdater
+        def initialize(dependencies:, manifest:, repo_contents_path:, credentials:)
+          @dependencies = dependencies
+          @manifest = manifest
+          @repo_contents_path = repo_contents_path
+          @credentials = credentials
+        end
+
+        def updated_lockfile_content
+          SharedHelpers.in_a_temporary_repo_directory(manifest.directory, repo_contents_path) do
+            File.write(manifest.name, manifest.content)
+
+            SharedHelpers.with_git_configured(credentials: credentials) do
+              SharedHelpers.run_shell_command(
+                "swift package update #{dependencies.map(&:name).join(' ')}",
+                fingerprint: "swift package update <dependency_name>"
+              )
+
+              File.read("Package.resolved")
+            end
+          end
+        end
+
+        private
+
+        attr_reader :dependencies, :manifest, :repo_contents_path, :credentials
+      end
+    end
+  end
+end

data/lib/dependabot/swift/file_updater/manifest_updater.rb

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+
+require "dependabot/file_updaters/base"
+require "dependabot/swift/file_updater/requirement_replacer"
+
+module Dependabot
+  module Swift
+    class FileUpdater < FileUpdaters::Base
+      class ManifestUpdater
+        def initialize(content, old_requirements:, new_requirements:)
+          @content = content
+          @old_requirements = old_requirements
+          @new_requirements = new_requirements
+        end
+
+        def updated_manifest_content
+          updated_content = content
+
+          old_requirements.zip(new_requirements).each do |old, new|
+            updated_content = RequirementReplacer.new(
+              content: updated_content,
+              declaration: old[:metadata][:declaration_string],
+              old_requirement: old[:metadata][:requirement_string],
+              new_requirement: new[:metadata][:requirement_string]
+            ).updated_content
+          end
+
+          updated_content
+        end
+
+        private
+
+        attr_reader :content, :old_requirements, :new_requirements
+      end
+    end
+  end
+end

data/lib/dependabot/swift/file_updater/requirement_replacer.rb

@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+require "dependabot/file_updaters/base"
+
+module Dependabot
+  module Swift
+    class FileUpdater < Dependabot::FileUpdaters::Base
+      class RequirementReplacer
+        def initialize(content:, declaration:, old_requirement:, new_requirement:)
+          @content         = content
+          @declaration     = declaration
+          @old_requirement = old_requirement
+          @new_requirement = new_requirement
+        end
+
+        def updated_content
+          content.gsub(declaration) do |match|
+            match.to_s.sub(old_requirement, new_requirement)
+          end
+        end
+
+        private
+
+        attr_reader :content, :declaration, :old_requirement, :new_requirement
+      end
+    end
+  end
+end

data/lib/dependabot/swift/file_updater.rb

@@ -0,0 +1,78 @@
+# frozen_string_literal: true
+
+require "dependabot/file_updaters"
+require "dependabot/file_updaters/base"
+require "dependabot/swift/file_updater/lockfile_updater"
+require "dependabot/swift/file_updater/manifest_updater"
+
+module Dependabot
+  module Swift
+    class FileUpdater < Dependabot::FileUpdaters::Base
+      def self.updated_files_regex
+        [
+          /Package(@swift-\d(\.\d){0,2})?\.swift/,
+          /^Package\.resolved$/
+        ]
+      end
+
+      def updated_dependency_files
+        updated_files = []
+
+        SharedHelpers.in_a_temporary_repo_directory(manifest.directory, repo_contents_path) do
+          updated_manifest = nil
+
+          if file_changed?(manifest)
+            updated_manifest = updated_file(file: manifest, content: updated_manifest_content)
+            updated_files << updated_manifest
+          end
+
+          updated_files << updated_file(file: lockfile, content: updated_lockfile_content(updated_manifest)) if lockfile
+        end
+
+        updated_files
+      end
+
+      private
+
+      def dependency
+        # For now we will be updating a single dependency.
+        # TODO: Revisit when/if implementing full unlocks
+        dependencies.first
+      end
+
+      def check_required_files
+        raise "A Package.swift file must be provided!" unless manifest
+      end
+
+      def updated_manifest_content
+        ManifestUpdater.new(
+          manifest.content,
+          old_requirements: dependency.previous_requirements,
+          new_requirements: dependency.requirements
+        ).updated_manifest_content
+      end
+
+      def updated_lockfile_content(updated_manifest)
+        LockfileUpdater.new(
+          dependencies: dependencies,
+          manifest: updated_manifest || manifest,
+          repo_contents_path: repo_contents_path,
+          credentials: credentials
+        ).updated_lockfile_content
+      end
+
+      def manifest
+        @manifest ||= get_original_file("Package.swift")
+      end
+
+      def lockfile
+        return @lockfile if defined?(@lockfile)
+
+        @lockfile = get_original_file("Package.resolved")
+      end
+    end
+  end
+end
+
+Dependabot::FileUpdaters.
+  register("swift", Dependabot::Swift::FileUpdater)

data/lib/dependabot/swift/metadata_finder.rb

@@ -0,0 +1,38 @@
+# frozen_string_literal: true
+
+require "dependabot/metadata_finders"
+require "dependabot/metadata_finders/base"
+
+module Dependabot
+  module Swift
+    class MetadataFinder < Dependabot::MetadataFinders::Base
+      private
+
+      def look_up_source
+        case new_source_type
+        when "git" then find_source_from_git_url
+        when "registry" then find_source_from_registry
+        else raise "Unexpected source type: #{new_source_type}"
+        end
+      end
+
+      def new_source_type
+        dependency.source_type
+      end
+
+      def find_source_from_git_url
+        info = dependency.source_details
+
+        url = info[:url] || info.fetch("url")
+        Source.from_url(url)
+      end
+
+      def find_source_from_registry
+        raise NotImplementedError
+      end
+    end
+  end
+end
+
+Dependabot::MetadataFinders.
+  register("swift", Dependabot::Swift::MetadataFinder)

data/lib/dependabot/swift/native_requirement.rb

@@ -0,0 +1,159 @@
+# frozen_string_literal: true
+
+require "dependabot/utils"
+require "dependabot/swift/requirement"
+
+module Dependabot
+  module Swift
+    class NativeRequirement
+      attr_reader :declaration
+
+      def self.map_requirements(requirements)
+        requirements.map do |requirement|
+          declaration = new(requirement[:metadata][:requirement_string])
+
+          new_declaration = yield(declaration)
+          new_requirement = new(new_declaration)
+
+          requirement.merge(
+            requirement: new_requirement.to_s,
+            metadata: { requirement_string: new_declaration }
+          )
+        end
+      end
+
+      def initialize(declaration)
+        @declaration = declaration
+
+        min, max = parse_declaration(declaration)
+
+        constraint = if min == max
+                       ["= #{min}"]
+                     elsif closed_range?
+                       [">= #{min}", "<= #{max}"]
+                     else
+                       [">= #{min}", "< #{max}"]
+                     end
+
+        @min = min
+        @max = max
+        @requirement = Requirement.new(constraint)
+      end
+
+      def to_s
+        requirement.to_s
+      end
+
+      def update_if_needed(version)
+        return declaration if requirement.satisfied_by?(version)
+
+        update(version)
+      end
+
+      def update(version)
+        if single_version_declaration?
+          declaration.sub(min, version.to_s)
+        elsif closed_range?
+          declaration.sub(max, version.to_s)
+        elsif range?
+          declaration.sub(max, bump_major(version.to_s))
+        end
+      end
+
+      private
+
+      def parse_declaration(declaration)
+        if up_to_next_major?
+          min = declaration.gsub(/\Afrom\s*:\s*"(\S+)"\s*\z/, '\1')
+          max = bump_major(min)
+        elsif up_to_next_major_deprecated?
+          min = declaration.gsub(/\A\.upToNextMajor\s*\(\s*from\s*:\s*"(\S+)"\s*\)\z/, '\1')
+          max = bump_major(min)
+        elsif up_to_next_minor_deprecated?
+          min = declaration.gsub(/\A\.upToNextMinor\s*\(\s*from\s*:\s*"(\S+)"\s*\)\z/, '\1')
+          max = bump_minor(min)
+        elsif closed_range?
+          min, max = parse_range("...")
+        elsif range?
+          min, max = parse_range("..<")
+        elsif exact_version?
+          min = declaration.gsub(/\Aexact\s*:\s*"(\S+)"\s*\z/, '\1')
+          max = min
+        elsif exact_version_deprecated?
+          min = declaration.gsub(/\A\.exact\s*\(\s*"(\S+)"\s*\)\z/, '\1')
+          max = min
+        else
+          raise "Unsupported constraint: #{declaration}"
+        end
+
+        [min, max]
+      end
+
+      def parse_range(separator)
+        declaration.split(separator).map { |str| unquote(str) }
+      end
+
+      def single_version_declaration?
+        up_to_next_major? || up_to_next_major_deprecated? || up_to_next_minor? ||
+          exact_version? || exact_version_deprecated?
+      end
+
+      def bump_major(str)
+        transform_version(str) do |s, i|
+          i.zero? ? s.to_i + 1 : 0
+        end
+      end
+
+      def bump_minor(str)
+        transform_version(str) do |s, i|
+          if i.zero?
+            s
+          else
+            (i == 1 ? s.to_i + 1 : 0)
+          end
+        end
+      end
+
+      def transform_version(str, &block)
+        str.split(".").map.with_index(&block).join(".")
+      end
+
+      def up_to_next_major?
+        declaration.start_with?("from")
+      end
+
+      def up_to_next_major_deprecated?
+        declaration.start_with?(".upToNextMajor")
+      end
+
+      def up_to_next_minor_deprecated?
+        declaration.start_with?(".upToNextMinor")
+      end
+
+      def exact_version?
+        declaration.start_with?("exact")
+      end
+
+      def exact_version_deprecated?
+        declaration.start_with?(".exact")
+      end
+
+      def closed_range?
+        declaration.include?("...")
+      end
+
+      def range?
+        declaration.include?("..<")
+      end
+
+      attr_reader :min, :max, :requirement
+
+      def unquote(declaration)
+        declaration[1..-2]
+      end
+    end
+  end
+end
+
+Dependabot::Utils.
+  register_requirement_class("swift", Dependabot::Swift::Requirement)

data/lib/dependabot/swift/requirement.rb

@@ -0,0 +1,29 @@
+# frozen_string_literal: true
+
+require "dependabot/utils"
+
+module Dependabot
+  module Swift
+    class Requirement < Gem::Requirement
+      # For consistency with other languages, we define a requirements array.
+      # Swift doesn't have an `OR` separator for requirements, so it
+      # always contains a single element.
+      def self.requirements_array(requirement_string)
+        [new(requirement_string)]
+      end
+
+      # Patches Gem::Requirement to make it accept requirement strings like
+      # "~> 4.2.5, >= 4.2.5.1" without first needing to split them.
+      def initialize(*requirements)
+        requirements = requirements.flatten.flat_map do |req_string|
+          req_string.split(",").map(&:strip)
+        end
+
+        super(requirements)
+      end
+    end
+  end
+end
+
+Dependabot::Utils.
+  register_requirement_class("swift", Dependabot::Swift::Requirement)

data/lib/dependabot/swift/update_checker/requirements_updater.rb

@@ -0,0 +1,31 @@
+# frozen_string_literal: true
+
+require "dependabot/update_checkers/base"
+require "dependabot/swift/native_requirement"
+require "dependabot/swift/version"
+
+module Dependabot
+  module Swift
+    class UpdateChecker < Dependabot::UpdateCheckers::Base
+      class RequirementsUpdater
+        def initialize(requirements:, target_version:)
+          @requirements = requirements
+
+          return unless target_version && Version.correct?(target_version)
+
+          @target_version = Version.new(target_version)
+        end
+
+        def updated_requirements
+          NativeRequirement.map_requirements(requirements) do |requirement|
+            requirement.update_if_needed(target_version)
+          end
+        end
+
+        private
+
+        attr_reader :requirements, :target_version
+      end
+    end
+  end
+end

data/lib/dependabot/swift/update_checker/version_resolver.rb

@@ -0,0 +1,54 @@
+# frozen_string_literal: true
+
+require "dependabot/update_checkers/base"
+require "dependabot/swift/file_parser/dependency_parser"
+require "dependabot/swift/file_updater/lockfile_updater"
+
+module Dependabot
+  module Swift
+    class UpdateChecker < Dependabot::UpdateCheckers::Base
+      class VersionResolver
+        def initialize(dependency:, manifest:, repo_contents_path:, credentials:)
+          @dependency         = dependency
+          @manifest           = manifest
+          @credentials        = credentials
+          @repo_contents_path = repo_contents_path
+        end
+
+        def latest_resolvable_version
+          @latest_resolvable_version ||= fetch_latest_resolvable_version
+        end
+
+        private
+
+        def fetch_latest_resolvable_version
+          updated_lockfile_content = FileUpdater::LockfileUpdater.new(
+            dependencies: [dependency],
+            manifest: manifest,
+            repo_contents_path: repo_contents_path,
+            credentials: credentials
+          ).updated_lockfile_content
+
+          lockfile = DependencyFile.new(
+            name: "Package.resolved",
+            content: updated_lockfile_content
+          )
+
+          dependency_parser(manifest, lockfile).parse.find do |parsed_dep|
+            parsed_dep.name == dependency.name
+          end.version
+        end
+
+        def dependency_parser(manifest, lockfile)
+          FileParser::DependencyParser.new(
+            dependency_files: [manifest, lockfile],
+            repo_contents_path: repo_contents_path,
+            credentials: credentials
+          )
+        end
+
+        attr_reader :dependency, :manifest, :repo_contents_path, :credentials
+      end
+    end
+  end
+end

data/lib/dependabot/swift/update_checker.rb

@@ -0,0 +1,107 @@
+# frozen_string_literal: true
+
+require "dependabot/update_checkers"
+require "dependabot/update_checkers/base"
+require "dependabot/git_commit_checker"
+require "dependabot/swift/native_requirement"
+require "dependabot/swift/file_updater/manifest_updater"
+
+module Dependabot
+  module Swift
+    class UpdateChecker < Dependabot::UpdateCheckers::Base
+      require_relative "update_checker/requirements_updater"
+      require_relative "update_checker/version_resolver"
+
+      def latest_version
+        @latest_version ||= fetch_latest_version
+      end
+
+      def latest_resolvable_version
+        @latest_resolvable_version ||= fetch_latest_resolvable_version
+      end
+
+      def latest_resolvable_version_with_no_unlock
+        raise NotImplementedError
+      end
+
+      def updated_requirements
+        RequirementsUpdater.new(
+          requirements: old_requirements,
+          target_version: preferred_resolvable_version
+        ).updated_requirements
+      end
+
+      private
+
+      def old_requirements
+        dependency.requirements
+      end
+
+      def fetch_latest_version
+        return unless git_commit_checker.pinned_ref_looks_like_version? && latest_version_tag
+
+        latest_version_tag.fetch(:version)
+      end
+
+      def fetch_latest_resolvable_version
+        Version.new(version_resolver.latest_resolvable_version)
+      end
+
+      def version_resolver
+        VersionResolver.new(
+          dependency: dependency,
+          manifest: prepared_manifest,
+          repo_contents_path: repo_contents_path,
+          credentials: credentials
+        )
+      end
+
+      def unlocked_requirements
+        NativeRequirement.map_requirements(old_requirements) do |_old_requirement|
+          "\"#{dependency.version}\"...\"#{latest_version}\""
+        end
+      end
+
+      def prepared_manifest
+        DependencyFile.new(
+          name: manifest.name,
+          content: FileUpdater::ManifestUpdater.new(
+            manifest.content,
+            old_requirements: old_requirements,
+            new_requirements: unlocked_requirements
+          ).updated_manifest_content
+        )
+      end
+
+      def manifest
+        dependency_files.find { |file| file.name == "Package.swift" }
+      end
+
+      def latest_version_resolvable_with_full_unlock?
+        # Full unlock checks aren't implemented for Swift (yet)
+        false
+      end
+
+      def updated_dependencies_after_full_unlock
+        raise NotImplementedError
+      end
+
+      def git_commit_checker
+        @git_commit_checker ||= Dependabot::GitCommitChecker.new(
+          dependency: dependency,
+          credentials: credentials,
+          ignored_versions: ignored_versions,
+          raise_on_ignored: raise_on_ignored,
+          consider_version_branches_pinned: true
+        )
+      end
+
+      def latest_version_tag
+        git_commit_checker.local_tag_for_latest_version
+      end
+    end
+  end
+end
+
+Dependabot::UpdateCheckers.
+  register("swift", Dependabot::Swift::UpdateChecker)

data/lib/dependabot/swift/version.rb

@@ -0,0 +1,11 @@
+# frozen_string_literal: true
+
+module Dependabot
+  module Swift
+    class Version < Dependabot::Version
+    end
+  end
+end
+
+Dependabot::Utils.
+  register_version_class("swift", Dependabot::Swift::Version)

data/lib/dependabot/swift.rb

@@ -0,0 +1,22 @@
+# frozen_string_literal: true
+
+# These all need to be required so the various classes can be registered in a
+# lookup table of package manager names to concrete classes.
+require "dependabot/swift/file_fetcher"
+require "dependabot/swift/file_parser"
+require "dependabot/swift/update_checker"
+require "dependabot/swift/file_updater"
+require "dependabot/swift/metadata_finder"
+require "dependabot/swift/requirement"
+require "dependabot/swift/version"
+
+require "dependabot/pull_request_creator/labeler"
+Dependabot::PullRequestCreator::Labeler.
+  register_label_details("swift", name: "swift_package_manager", colour: "F05138")
+
+require "dependabot/dependency"
+Dependabot::Dependency.
+  register_production_check("swift", ->(_) { true })
+
+require "dependabot/utils"
+Dependabot::Utils.register_always_clone("swift")

metadata

@@ -0,0 +1,230 @@
+--- !ruby/object:Gem::Specification
+name: dependabot-swift
+version: !ruby/object:Gem::Version
+  version: 0.222.0
+platform: ruby
+authors:
+- Dependabot
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2023-07-25 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: dependabot-common
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.222.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.222.0
+- !ruby/object:Gem::Dependency
+  name: debug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.8.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.8.0
+- !ruby/object:Gem::Dependency
+  name: gpgme
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: parallel_tests
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 4.2.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 4.2.0
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '13'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.12'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.12'
+- !ruby/object:Gem::Dependency
+  name: rspec-its
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.3'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.3'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.50.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.50.0
+- !ruby/object:Gem::Dependency
+  name: rubocop-performance
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.17.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.17.1
+- !ruby/object:Gem::Dependency
+  name: stackprof
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.2.16
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.2.16
+- !ruby/object:Gem::Dependency
+  name: vcr
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.1'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.1'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.18'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.18'
+description: Dependabot-Swift provides support for bumping Swift packages via Dependabot.
+  If you want support for multiple package managers, you probably want the meta-gem
+  dependabot-omnibus.
+email: opensource@github.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/dependabot/swift.rb
+- lib/dependabot/swift/file_fetcher.rb
+- lib/dependabot/swift/file_parser.rb
+- lib/dependabot/swift/file_parser/dependency_parser.rb
+- lib/dependabot/swift/file_parser/manifest_parser.rb
+- lib/dependabot/swift/file_updater.rb
+- lib/dependabot/swift/file_updater/lockfile_updater.rb
+- lib/dependabot/swift/file_updater/manifest_updater.rb
+- lib/dependabot/swift/file_updater/requirement_replacer.rb
+- lib/dependabot/swift/metadata_finder.rb
+- lib/dependabot/swift/native_requirement.rb
+- lib/dependabot/swift/requirement.rb
+- lib/dependabot/swift/update_checker.rb
+- lib/dependabot/swift/update_checker/requirements_updater.rb
+- lib/dependabot/swift/update_checker/version_resolver.rb
+- lib/dependabot/swift/version.rb
+homepage: https://github.com/dependabot/dependabot-core
+licenses:
+- Nonstandard
+metadata:
+  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
+  changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.222.0
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 3.1.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 3.1.0
+requirements: []
+rubygems_version: 3.3.26
+signing_key: 
+specification_version: 4
+summary: Provides Dependabot support for Swift
+test_files: []