dependabot-terraform 0.238.0 → 0.240.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/helpers/build +1 -1
- data/lib/dependabot/terraform/file_fetcher.rb +5 -11
- data/lib/dependabot/terraform/file_parser.rb +5 -5
- data/lib/dependabot/terraform/file_selector.rb +4 -4
- data/lib/dependabot/terraform/file_updater.rb +4 -4
- data/lib/dependabot/terraform/requirement.rb +6 -2
- data/lib/dependabot/terraform/version.rb +14 -1
- metadata +21 -7
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 23e8926ad019332c9648f29fd753e3057ea9d0b4ea8d568e70b70bd66cdbf5b0
|
|
4
|
+
data.tar.gz: 9395c2d2e3778fcb5c900e3da780907e3c4b0878838bf923a77dc38793136ce6
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 9478606ea3538902c29f10a47406c302135707759844359943d07907f54df49ecbee46f09e764391b27dc8bf2df64673cdb5fa8aaa4e648f3334d7f460cee580
|
|
7
|
+
data.tar.gz: b8552c5f61f02c67a0bd9b7a25a15330089d75060d6fd1639da00910b5fee6ebebaa330725a5a4500e26810224cc8b8820cd034ff75e44e01a1ad21147af1a9b
|
data/helpers/build
CHANGED
|
@@ -31,14 +31,8 @@ module Dependabot
|
|
|
31
31
|
fetched_files += terraform_files
|
|
32
32
|
fetched_files += terragrunt_files
|
|
33
33
|
fetched_files += local_path_module_files(terraform_files)
|
|
34
|
-
fetched_files += [
|
|
35
|
-
|
|
36
|
-
return fetched_files if fetched_files.any?
|
|
37
|
-
|
|
38
|
-
raise(
|
|
39
|
-
Dependabot::DependencyFileNotFound,
|
|
40
|
-
File.join(directory, "<anything>.tf")
|
|
41
|
-
)
|
|
34
|
+
fetched_files += [lockfile] if lockfile
|
|
35
|
+
fetched_files
|
|
42
36
|
end
|
|
43
37
|
|
|
44
38
|
private
|
|
@@ -86,10 +80,10 @@ module Dependabot
|
|
|
86
80
|
end
|
|
87
81
|
end
|
|
88
82
|
|
|
89
|
-
def
|
|
90
|
-
return @
|
|
83
|
+
def lockfile
|
|
84
|
+
return @lockfile if defined?(@lockfile)
|
|
91
85
|
|
|
92
|
-
@
|
|
86
|
+
@lockfile = fetch_file_if_present(".terraform.lock.hcl")
|
|
93
87
|
end
|
|
94
88
|
end
|
|
95
89
|
end
|
|
@@ -359,17 +359,17 @@ module Dependabot
|
|
|
359
359
|
def determine_version_for(hostname, namespace, name, constraint)
|
|
360
360
|
return constraint if constraint&.match?(/\A\d/)
|
|
361
361
|
|
|
362
|
-
|
|
362
|
+
lockfile_content
|
|
363
363
|
.dig("provider", "#{hostname}/#{namespace}/#{name}", 0, "version")
|
|
364
364
|
end
|
|
365
365
|
|
|
366
|
-
def
|
|
367
|
-
@
|
|
366
|
+
def lockfile_content
|
|
367
|
+
@lockfile_content ||=
|
|
368
368
|
begin
|
|
369
|
-
|
|
369
|
+
lockfile = dependency_files.find do |file|
|
|
370
370
|
file.name == ".terraform.lock.hcl"
|
|
371
371
|
end
|
|
372
|
-
|
|
372
|
+
lockfile ? parsed_file(lockfile) : {}
|
|
373
373
|
end
|
|
374
374
|
end
|
|
375
375
|
end
|
|
@@ -13,14 +13,14 @@ module FileSelector
|
|
|
13
13
|
end
|
|
14
14
|
|
|
15
15
|
def terragrunt_file?(file_name)
|
|
16
|
-
!
|
|
16
|
+
!lockfile?(file_name) && file_name.end_with?(".hcl")
|
|
17
17
|
end
|
|
18
18
|
|
|
19
|
-
def
|
|
19
|
+
def lockfile?(filename)
|
|
20
20
|
filename == ".terraform.lock.hcl"
|
|
21
21
|
end
|
|
22
22
|
|
|
23
|
-
def
|
|
24
|
-
dependency_files.find { |f|
|
|
23
|
+
def lockfile
|
|
24
|
+
dependency_files.find { |f| lockfile?(f.name) }
|
|
25
25
|
end
|
|
26
26
|
end
|
|
@@ -36,8 +36,8 @@ module Dependabot
|
|
|
36
36
|
end
|
|
37
37
|
updated_lockfile_content = update_lockfile_declaration(updated_files)
|
|
38
38
|
|
|
39
|
-
if updated_lockfile_content &&
|
|
40
|
-
updated_files << updated_file(file:
|
|
39
|
+
if updated_lockfile_content && lockfile.content != updated_lockfile_content
|
|
40
|
+
updated_files << updated_file(file: lockfile, content: updated_lockfile_content)
|
|
41
41
|
end
|
|
42
42
|
|
|
43
43
|
updated_files.compact!
|
|
@@ -138,7 +138,7 @@ module Dependabot
|
|
|
138
138
|
end
|
|
139
139
|
|
|
140
140
|
def lockfile_details(new_req)
|
|
141
|
-
content =
|
|
141
|
+
content = lockfile.content.dup
|
|
142
142
|
provider_source = new_req[:source][:registry_hostname] + "/" + new_req[:source][:module_identifier]
|
|
143
143
|
declaration_regex = lockfile_declaration_regex(provider_source)
|
|
144
144
|
|
|
@@ -217,7 +217,7 @@ module Dependabot
|
|
|
217
217
|
end
|
|
218
218
|
|
|
219
219
|
def update_lockfile_declaration(updated_manifest_files) # rubocop:disable Metrics/AbcSize, Metrics/PerceivedComplexity
|
|
220
|
-
return if
|
|
220
|
+
return if lockfile.nil?
|
|
221
221
|
|
|
222
222
|
new_req = dependency.requirements.first
|
|
223
223
|
# NOTE: Only providers are inlcuded in the lockfile, modules are not
|
|
@@ -1,13 +1,16 @@
|
|
|
1
1
|
# typed: true
|
|
2
2
|
# frozen_string_literal: true
|
|
3
3
|
|
|
4
|
+
require "sorbet-runtime"
|
|
5
|
+
|
|
6
|
+
require "dependabot/requirement"
|
|
4
7
|
require "dependabot/utils"
|
|
5
8
|
require "dependabot/terraform/version"
|
|
6
9
|
|
|
7
10
|
# Just ensures that Terraform requirements use Terraform versions
|
|
8
11
|
module Dependabot
|
|
9
12
|
module Terraform
|
|
10
|
-
class Requirement <
|
|
13
|
+
class Requirement < Dependabot::Requirement
|
|
11
14
|
# Override regex PATTERN from Gem::Requirement to add support for the
|
|
12
15
|
# optional 'v' prefix to release tag names, which Terraform supports.
|
|
13
16
|
# https://www.terraform.io/docs/registry/modules/publish.html#requirements
|
|
@@ -25,12 +28,13 @@ module Dependabot
|
|
|
25
28
|
|
|
26
29
|
return DefaultRequirement if matches[1] == ">=" && matches[2] == "0"
|
|
27
30
|
|
|
28
|
-
[matches[1] || "=", Terraform::Version.new(matches[2])]
|
|
31
|
+
[matches[1] || "=", Terraform::Version.new(T.must(matches[2]))]
|
|
29
32
|
end
|
|
30
33
|
|
|
31
34
|
# For consistency with other languages, we define a requirements array.
|
|
32
35
|
# Terraform doesn't have an `OR` separator for requirements, so it
|
|
33
36
|
# always contains a single element.
|
|
37
|
+
sig { override.params(requirement_string: T.nilable(String)).returns(T::Array[Requirement]) }
|
|
34
38
|
def self.requirements_array(requirement_string)
|
|
35
39
|
[new(requirement_string)]
|
|
36
40
|
end
|
|
@@ -14,7 +14,20 @@ module Dependabot
|
|
|
14
14
|
class Version < Dependabot::Version
|
|
15
15
|
extend T::Sig
|
|
16
16
|
|
|
17
|
-
sig
|
|
17
|
+
sig do
|
|
18
|
+
override
|
|
19
|
+
.overridable
|
|
20
|
+
.params(
|
|
21
|
+
version: T.any(
|
|
22
|
+
String,
|
|
23
|
+
Integer,
|
|
24
|
+
Float,
|
|
25
|
+
Gem::Version,
|
|
26
|
+
NilClass
|
|
27
|
+
)
|
|
28
|
+
)
|
|
29
|
+
.void
|
|
30
|
+
end
|
|
18
31
|
def initialize(version)
|
|
19
32
|
@version_string = T.let(version.to_s, String)
|
|
20
33
|
super
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-terraform
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.240.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2024-01-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.240.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.240.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -114,14 +114,14 @@ dependencies:
|
|
|
114
114
|
requirements:
|
|
115
115
|
- - "~>"
|
|
116
116
|
- !ruby/object:Gem::Version
|
|
117
|
-
version: 1.
|
|
117
|
+
version: 1.58.0
|
|
118
118
|
type: :development
|
|
119
119
|
prerelease: false
|
|
120
120
|
version_requirements: !ruby/object:Gem::Requirement
|
|
121
121
|
requirements:
|
|
122
122
|
- - "~>"
|
|
123
123
|
- !ruby/object:Gem::Version
|
|
124
|
-
version: 1.
|
|
124
|
+
version: 1.58.0
|
|
125
125
|
- !ruby/object:Gem::Dependency
|
|
126
126
|
name: rubocop-performance
|
|
127
127
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -206,6 +206,20 @@ dependencies:
|
|
|
206
206
|
- - "~>"
|
|
207
207
|
- !ruby/object:Gem::Version
|
|
208
208
|
version: '3.18'
|
|
209
|
+
- !ruby/object:Gem::Dependency
|
|
210
|
+
name: webrick
|
|
211
|
+
requirement: !ruby/object:Gem::Requirement
|
|
212
|
+
requirements:
|
|
213
|
+
- - ">="
|
|
214
|
+
- !ruby/object:Gem::Version
|
|
215
|
+
version: '1.7'
|
|
216
|
+
type: :development
|
|
217
|
+
prerelease: false
|
|
218
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
219
|
+
requirements:
|
|
220
|
+
- - ">="
|
|
221
|
+
- !ruby/object:Gem::Version
|
|
222
|
+
version: '1.7'
|
|
209
223
|
description: Dependabot-Terraform provides support for bumping Terraform modules via
|
|
210
224
|
Dependabot. If you want support for multiple package managers, you probably want
|
|
211
225
|
the meta-gem dependabot-omnibus.
|
|
@@ -231,7 +245,7 @@ licenses:
|
|
|
231
245
|
- Nonstandard
|
|
232
246
|
metadata:
|
|
233
247
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
234
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
248
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.240.0
|
|
235
249
|
post_install_message:
|
|
236
250
|
rdoc_options: []
|
|
237
251
|
require_paths:
|