dependabot-terraform 0.254.0 → 0.255.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/dependabot/terraform/file_fetcher.rb +31 -12
- data/lib/dependabot/terraform/file_filter.rb +24 -0
- data/lib/dependabot/terraform/file_selector.rb +30 -17
- metadata +21 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b86ff97e37a0fd8c3156a5bed89492c56564d444a8fea552b93498a34089ffed
|
|
4
|
+
data.tar.gz: e841cdee87c46bfeabd69cb7ca3bd707122ce22ed021f04289cb22bc434065ac
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: a2010ee735c7e9674f5fd3445ecefd81d640b93caa3638377582f66180ad24237437809778ee09f4b066cbae6145ec5d4a9d9f02649bb1c690298563fa474521
|
|
7
|
+
data.tar.gz: 78c86fe178f4662a637faa9e6fb37b9b6755211c74e6fcf4f5eb7a6f7ac7ee6314bd67afe31fcca194b96ee424dbffc8cc60ad857b5f2dc01c0aaa6522347a5d
|
|
@@ -1,7 +1,8 @@
|
|
|
1
|
-
# typed:
|
|
1
|
+
# typed: strict
|
|
2
2
|
# frozen_string_literal: true
|
|
3
3
|
|
|
4
4
|
require "sorbet-runtime"
|
|
5
|
+
|
|
5
6
|
require "dependabot/file_fetchers"
|
|
6
7
|
require "dependabot/file_fetchers/base"
|
|
7
8
|
require "dependabot/terraform/file_selector"
|
|
@@ -12,15 +13,17 @@ module Dependabot
|
|
|
12
13
|
extend T::Sig
|
|
13
14
|
extend T::Helpers
|
|
14
15
|
|
|
15
|
-
include
|
|
16
|
+
include FileFilter
|
|
16
17
|
|
|
17
18
|
# https://www.terraform.io/docs/language/modules/sources.html#local-paths
|
|
18
19
|
LOCAL_PATH_SOURCE = %r{source\s*=\s*['"](?<path>..?\/[^'"]+)}
|
|
19
20
|
|
|
21
|
+
sig { override.params(filenames: T::Array[String]).returns(T::Boolean) }
|
|
20
22
|
def self.required_files_in?(filenames)
|
|
21
23
|
filenames.any? { |f| f.end_with?(".tf", ".hcl") }
|
|
22
24
|
end
|
|
23
25
|
|
|
26
|
+
sig { override.returns(String) }
|
|
24
27
|
def self.required_files_message
|
|
25
28
|
"Repo must contain a Terraform configuration file."
|
|
26
29
|
end
|
|
@@ -37,22 +40,35 @@ module Dependabot
|
|
|
37
40
|
|
|
38
41
|
private
|
|
39
42
|
|
|
43
|
+
sig { returns(T::Array[Dependabot::DependencyFile]) }
|
|
40
44
|
def terraform_files
|
|
41
|
-
@terraform_files ||=
|
|
45
|
+
@terraform_files ||= T.let(
|
|
42
46
|
repo_contents(raise_errors: false)
|
|
43
47
|
.select { |f| f.type == "file" && f.name.end_with?(".tf") }
|
|
44
|
-
.map { |f| fetch_file_from_host(f.name) }
|
|
48
|
+
.map { |f| fetch_file_from_host(f.name) },
|
|
49
|
+
T.nilable(T::Array[Dependabot::DependencyFile])
|
|
50
|
+
)
|
|
45
51
|
end
|
|
46
52
|
|
|
53
|
+
sig { returns(T::Array[Dependabot::DependencyFile]) }
|
|
47
54
|
def terragrunt_files
|
|
48
|
-
@terragrunt_files ||=
|
|
55
|
+
@terragrunt_files ||= T.let(
|
|
49
56
|
repo_contents(raise_errors: false)
|
|
50
57
|
.select { |f| f.type == "file" && terragrunt_file?(f.name) }
|
|
51
|
-
.map { |f| fetch_file_from_host(f.name) }
|
|
58
|
+
.map { |f| fetch_file_from_host(f.name) },
|
|
59
|
+
T.nilable(T::Array[Dependabot::DependencyFile])
|
|
60
|
+
)
|
|
52
61
|
end
|
|
53
62
|
|
|
63
|
+
sig do
|
|
64
|
+
params(
|
|
65
|
+
files: T::Array[Dependabot::DependencyFile],
|
|
66
|
+
dir: String
|
|
67
|
+
)
|
|
68
|
+
.returns(T::Array[Dependabot::DependencyFile])
|
|
69
|
+
end
|
|
54
70
|
def local_path_module_files(files, dir: ".")
|
|
55
|
-
terraform_files = []
|
|
71
|
+
terraform_files = T.let([], T::Array[Dependabot::DependencyFile])
|
|
56
72
|
|
|
57
73
|
files.each do |file|
|
|
58
74
|
terraform_file_local_module_details(file).each do |path|
|
|
@@ -71,19 +87,22 @@ module Dependabot
|
|
|
71
87
|
terraform_files.tap { |fs| fs.each { |f| f.support_file = true } }
|
|
72
88
|
end
|
|
73
89
|
|
|
90
|
+
sig { params(file: Dependabot::DependencyFile).returns(T::Array[String]) }
|
|
74
91
|
def terraform_file_local_module_details(file)
|
|
75
92
|
return [] unless file.name.end_with?(".tf")
|
|
76
|
-
return [] unless file.content
|
|
93
|
+
return [] unless file.content&.match?(LOCAL_PATH_SOURCE)
|
|
77
94
|
|
|
78
|
-
file.content.scan(LOCAL_PATH_SOURCE).flatten.map do |path|
|
|
95
|
+
T.must(file.content).scan(LOCAL_PATH_SOURCE).flatten.map do |path|
|
|
79
96
|
Pathname.new(path).cleanpath.to_path
|
|
80
97
|
end
|
|
81
98
|
end
|
|
82
99
|
|
|
100
|
+
sig { returns(T.nilable(Dependabot::DependencyFile)) }
|
|
83
101
|
def lockfile
|
|
84
|
-
|
|
85
|
-
|
|
86
|
-
|
|
102
|
+
@lockfile ||= T.let(
|
|
103
|
+
fetch_file_if_present(".terraform.lock.hcl"),
|
|
104
|
+
T.nilable(Dependabot::DependencyFile)
|
|
105
|
+
)
|
|
87
106
|
end
|
|
88
107
|
end
|
|
89
108
|
end
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
# typed: strong
|
|
2
|
+
# frozen_string_literal: true
|
|
3
|
+
|
|
4
|
+
require "sorbet-runtime"
|
|
5
|
+
|
|
6
|
+
module Dependabot
|
|
7
|
+
module Terraform
|
|
8
|
+
module FileFilter
|
|
9
|
+
extend T::Sig
|
|
10
|
+
|
|
11
|
+
private
|
|
12
|
+
|
|
13
|
+
sig { params(file_name: String).returns(T::Boolean) }
|
|
14
|
+
def terragrunt_file?(file_name)
|
|
15
|
+
!lockfile?(file_name) && file_name.end_with?(".hcl")
|
|
16
|
+
end
|
|
17
|
+
|
|
18
|
+
sig { params(filename: String).returns(T::Boolean) }
|
|
19
|
+
def lockfile?(filename)
|
|
20
|
+
filename == ".terraform.lock.hcl"
|
|
21
|
+
end
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
end
|
|
@@ -1,26 +1,39 @@
|
|
|
1
|
-
# typed:
|
|
1
|
+
# typed: strong
|
|
2
2
|
# frozen_string_literal: true
|
|
3
3
|
|
|
4
|
-
|
|
5
|
-
private
|
|
4
|
+
require "sorbet-runtime"
|
|
6
5
|
|
|
7
|
-
|
|
8
|
-
dependency_files.select { |f| f.name.end_with?(".tf") }
|
|
9
|
-
end
|
|
6
|
+
require "dependabot/terraform/file_filter"
|
|
10
7
|
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
8
|
+
module Dependabot
|
|
9
|
+
module Terraform
|
|
10
|
+
module FileSelector
|
|
11
|
+
extend T::Sig
|
|
12
|
+
extend T::Helpers
|
|
14
13
|
|
|
15
|
-
|
|
16
|
-
!lockfile?(file_name) && file_name.end_with?(".hcl")
|
|
17
|
-
end
|
|
14
|
+
abstract!
|
|
18
15
|
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
16
|
+
sig { abstract.returns(T::Array[Dependabot::DependencyFile]) }
|
|
17
|
+
def dependency_files; end
|
|
18
|
+
|
|
19
|
+
private
|
|
20
|
+
|
|
21
|
+
include FileFilter
|
|
22
|
+
|
|
23
|
+
sig { returns(T::Array[Dependabot::DependencyFile]) }
|
|
24
|
+
def terraform_files
|
|
25
|
+
dependency_files.select { |f| f.name.end_with?(".tf") }
|
|
26
|
+
end
|
|
27
|
+
|
|
28
|
+
sig { returns(T::Array[Dependabot::DependencyFile]) }
|
|
29
|
+
def terragrunt_files
|
|
30
|
+
dependency_files.select { |f| terragrunt_file?(f.name) }
|
|
31
|
+
end
|
|
22
32
|
|
|
23
|
-
|
|
24
|
-
|
|
33
|
+
sig { returns(T.nilable(Dependabot::DependencyFile)) }
|
|
34
|
+
def lockfile
|
|
35
|
+
dependency_files.find { |f| lockfile?(f.name) }
|
|
36
|
+
end
|
|
37
|
+
end
|
|
25
38
|
end
|
|
26
39
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-terraform
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.255.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-
|
|
11
|
+
date: 2024-05-03 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.255.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.255.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -164,6 +164,20 @@ dependencies:
|
|
|
164
164
|
- - "~>"
|
|
165
165
|
- !ruby/object:Gem::Version
|
|
166
166
|
version: 0.8.1
|
|
167
|
+
- !ruby/object:Gem::Dependency
|
|
168
|
+
name: simplecov
|
|
169
|
+
requirement: !ruby/object:Gem::Requirement
|
|
170
|
+
requirements:
|
|
171
|
+
- - "~>"
|
|
172
|
+
- !ruby/object:Gem::Version
|
|
173
|
+
version: 0.22.0
|
|
174
|
+
type: :development
|
|
175
|
+
prerelease: false
|
|
176
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
177
|
+
requirements:
|
|
178
|
+
- - "~>"
|
|
179
|
+
- !ruby/object:Gem::Version
|
|
180
|
+
version: 0.22.0
|
|
167
181
|
- !ruby/object:Gem::Dependency
|
|
168
182
|
name: turbo_tests
|
|
169
183
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -231,6 +245,7 @@ files:
|
|
|
231
245
|
- helpers/build
|
|
232
246
|
- lib/dependabot/terraform.rb
|
|
233
247
|
- lib/dependabot/terraform/file_fetcher.rb
|
|
248
|
+
- lib/dependabot/terraform/file_filter.rb
|
|
234
249
|
- lib/dependabot/terraform/file_parser.rb
|
|
235
250
|
- lib/dependabot/terraform/file_selector.rb
|
|
236
251
|
- lib/dependabot/terraform/file_updater.rb
|
|
@@ -245,7 +260,7 @@ licenses:
|
|
|
245
260
|
- Nonstandard
|
|
246
261
|
metadata:
|
|
247
262
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
248
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
263
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.255.0
|
|
249
264
|
post_install_message:
|
|
250
265
|
rdoc_options: []
|
|
251
266
|
require_paths:
|
|
@@ -261,7 +276,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
261
276
|
- !ruby/object:Gem::Version
|
|
262
277
|
version: 3.1.0
|
|
263
278
|
requirements: []
|
|
264
|
-
rubygems_version: 3.
|
|
279
|
+
rubygems_version: 3.5.9
|
|
265
280
|
signing_key:
|
|
266
281
|
specification_version: 4
|
|
267
282
|
summary: Provides Dependabot support for Terraform
|