dependabot-terraform 0.201.1 → 0.202.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/terraform/file_updater.rb +7 -2
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 26b19ffac95f26f2b6ee442ee6834f230e7dbff21fed95ec4a6bf1e1325287f8
|
|
4
|
+
data.tar.gz: 74e6123bcc5b36109c3d2bfe5e01f88642b27646165aacf62f4467b3efbdd646
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 0dcddcc788b3f47c708b52dca03536bb5440d06e012190f50de10bb5ab4de5ade9aab48a1128d33f215ba170d5ab25a0e8a2b8c8db6642b0737d973d39f8c9c5
|
|
7
|
+
data.tar.gz: 3bfb2106a740dceca4afa760dd4ea68118128981de7649a18c8c1be3f4136becb65fdc83c7de618d352cc69369a47934285068a47426da7f7c4e6a0abc9bf660
|
|
@@ -103,6 +103,11 @@ module Dependabot
|
|
|
103
103
|
select { |h| h&.match?(/^h1:/) }
|
|
104
104
|
end
|
|
105
105
|
|
|
106
|
+
def remove_provider_h1_hashes(content, declaration_regex)
|
|
107
|
+
content.match(declaration_regex).to_s.
|
|
108
|
+
sub(hashes_object_regex, "")
|
|
109
|
+
end
|
|
110
|
+
|
|
106
111
|
def lockfile_details(new_req)
|
|
107
112
|
content = lock_file.content.dup
|
|
108
113
|
provider_source = new_req[:source][:registry_hostname] + "/" + new_req[:source][:module_identifier]
|
|
@@ -131,7 +136,7 @@ module Dependabot
|
|
|
131
136
|
)
|
|
132
137
|
|
|
133
138
|
base_dir = dependency_files.first.directory
|
|
134
|
-
lockfile_hash_removed = content
|
|
139
|
+
lockfile_hash_removed = remove_provider_h1_hashes(content, declaration_regex)
|
|
135
140
|
|
|
136
141
|
# This runs in the same directory as the actual lockfile update so
|
|
137
142
|
# the platform must be determined before the updated manifest files
|
|
@@ -265,7 +270,7 @@ module Dependabot
|
|
|
265
270
|
end
|
|
266
271
|
|
|
267
272
|
def hashes_object_regex
|
|
268
|
-
/hashes\s*=\s
|
|
273
|
+
/hashes\s*=\s*[^\]]*\]/m
|
|
269
274
|
end
|
|
270
275
|
|
|
271
276
|
def hashes_string_regex
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-terraform
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.202.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-07-
|
|
11
|
+
date: 2022-07-26 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.202.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.202.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debase
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|