dependabot-terraform 0.382.0 → 0.383.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/dependabot/terraform/requirements_updater.rb +14 -10
  3. data/lib/dependabot/terraform/update_checker.rb +5 -7
  4. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 04631f405bcc7089f4a0e56caed5a02f75f61522bbba6568dba3d74dac6b75ea
4
- data.tar.gz: deeb2fc96eaf74d3e384afa265ee7a71b25613e7c00d6e018dd7f5933ea21c59
3
+ metadata.gz: 821a870b44c7716208503cbd6542fa40a25c1d6641d3105c44e635e2b2908553
4
+ data.tar.gz: f8c88524fdabd49c84d1a3c16eae2c050b5fef3059407585cb33599141a78649
5
5
  SHA512:
6
- metadata.gz: e3defa7560cf54691e62f63ddc0551aef5f0b7c9f7401d6aa7328e6b272ee0789d8c2f467675ce3c14613bf7d9ffc7171b51f6a867ac5d81a3ffccc167defa32
7
- data.tar.gz: b5085463bd0aa635adce0886c07cc0c364be0a33107a2fbdbf71bc3aba2b981a3787fdc4c10dcad312057b1c84e5d00df515dab1de18973d1b2d568d4b5785ca
6
+ metadata.gz: 6f27a93b9ac6294a5274a46040ddd285d43760464c5a6ec5b46738aa9f253141d688cfe5985b488ccd45b9afeb0587c78e9f92e99cc96ae925241f43a9c095ca
7
+ data.tar.gz: 42467a0cf19ae7361ad92b4c0a8dcf475bbfa0ae888b826d74729bd7eb837d1d12f720bc8f6d132809d91f279fb962b23b003293695779d3405e05a326c08912
data/lib/dependabot/terraform/requirements_updater.rb CHANGED
@@ -8,6 +8,7 @@
8
8
 
9
9
  require "sorbet-runtime"
10
10
 
11
+ require "dependabot/dependency_requirement"
11
12
  require "dependabot/terraform/version"
12
13
  require "dependabot/terraform/requirement"
13
14
 
@@ -50,18 +51,21 @@ module Dependabot
50
51
  class RequirementsUpdater
51
52
  extend T::Sig
52
53
 
53
- # @param requirements [Hash{Symbol => String, Array, Hash}]
54
+ # @param requirements [Array<Dependabot::DependencyRequirement>]
54
55
  # @param latest_version [Dependabot::Terraform::Version]
55
56
  # @param tag_for_latest_version [String, NilClass]
56
57
  sig do
57
58
  params(
58
- requirements: T::Array[T::Hash[Symbol, T.untyped]],
59
+ requirements: T::Array[Dependabot::DependencyRequirement],
59
60
  latest_version: T.nilable(Dependabot::Version::VersionParameter),
60
61
  tag_for_latest_version: T.nilable(String)
61
62
  ).void
62
63
  end
63
64
  def initialize(requirements:, latest_version:, tag_for_latest_version:)
64
- @requirements = requirements
65
+ @requirements = T.let(
66
+ requirements.map { |req| Dependabot::DependencyRequirement.create(req) },
67
+ T::Array[Dependabot::DependencyRequirement]
68
+ )
65
69
  @tag_for_latest_version = tag_for_latest_version
66
70
 
67
71
  return unless latest_version
@@ -70,12 +74,12 @@ module Dependabot
70
74
  @latest_version = T.let(version_class.new(latest_version), Dependabot::Terraform::Version)
71
75
  end
72
76
 
73
- # @return requirements [Hash{Symbol => String, Array, Hash}]
77
+ # @return requirements [Array<Dependabot::DependencyRequirement>]
74
78
  # * requirement [String, NilClass] the updated version constraint
75
79
  # * groups [Array] no-op for terraform
76
80
  # * file [String] the file that specified this dependency
77
81
  # * source [Hash{Symbol => String}] The updated git or registry source details
78
- sig { returns(T::Array[T::Hash[Symbol, T.untyped]]) }
82
+ sig { returns(T::Array[Dependabot::DependencyRequirement]) }
79
83
  def updated_requirements
80
84
  # NOTE: Order is important here. The FileUpdater needs the updated
81
85
  # requirement at index `i` to correspond to the previous requirement
@@ -91,7 +95,7 @@ module Dependabot
91
95
 
92
96
  private
93
97
 
94
- sig { returns(T::Array[T::Hash[Symbol, T.untyped]]) }
98
+ sig { returns(T::Array[Dependabot::DependencyRequirement]) }
95
99
  attr_reader :requirements
96
100
 
97
101
  sig { returns(Dependabot::Terraform::Version) }
@@ -100,15 +104,15 @@ module Dependabot
100
104
  sig { returns(T.nilable(String)) }
101
105
  attr_reader :tag_for_latest_version
102
106
 
103
- sig { params(req: T::Hash[Symbol, T.untyped]).returns(T::Hash[Symbol, T.untyped]) }
107
+ sig { params(req: Dependabot::DependencyRequirement).returns(Dependabot::DependencyRequirement) }
104
108
  def update_git_requirement(req)
105
109
  return req unless req.dig(:source, :ref)
106
110
  return req unless tag_for_latest_version
107
111
 
108
- req.merge(source: req[:source].merge(ref: tag_for_latest_version))
112
+ Dependabot::DependencyRequirement.create(req.merge(source: req[:source].merge(ref: tag_for_latest_version)))
109
113
  end
110
114
 
111
- sig { params(req: T::Hash[Symbol, T.untyped]).returns(T::Hash[Symbol, T.untyped]) }
115
+ sig { params(req: Dependabot::DependencyRequirement).returns(Dependabot::DependencyRequirement) }
112
116
  def update_registry_requirement(req)
113
117
  return req if req.fetch(:requirement).nil?
114
118
 
@@ -124,7 +128,7 @@ module Dependabot
124
128
  update_range(string_req).join(", ")
125
129
  end
126
130
 
127
- req.merge(requirement: new_req)
131
+ Dependabot::DependencyRequirement.create(req.merge(requirement: new_req))
128
132
  end
129
133
 
130
134
  # Updates the version in a "~>" constraint to allow the given version
data/lib/dependabot/terraform/update_checker.rb CHANGED
@@ -47,13 +47,11 @@ module Dependabot
47
47
 
48
48
  sig { override.returns(T::Array[Dependabot::DependencyRequirement]) }
49
49
  def updated_requirements
50
- wrap_requirements(
51
- RequirementsUpdater.new(
52
- requirements: dependency.requirements,
53
- latest_version: latest_version&.to_s,
54
- tag_for_latest_version: tag_for_latest_version
55
- ).updated_requirements
56
- )
50
+ RequirementsUpdater.new(
51
+ requirements: dependency.requirements,
52
+ latest_version: latest_version&.to_s,
53
+ tag_for_latest_version: tag_for_latest_version
54
+ ).updated_requirements
57
55
  end
58
56
 
59
57
  sig { returns(T::Boolean) }
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: dependabot-terraform
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.382.0
4
+ version: 0.383.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Dependabot
@@ -15,14 +15,14 @@ dependencies:
15
15
  requirements:
16
16
  - - '='
17
17
  - !ruby/object:Gem::Version
18
- version: 0.382.0
18
+ version: 0.383.0
19
19
  type: :runtime
20
20
  prerelease: false
21
21
  version_requirements: !ruby/object:Gem::Requirement
22
22
  requirements:
23
23
  - - '='
24
24
  - !ruby/object:Gem::Version
25
- version: 0.382.0
25
+ version: 0.383.0
26
26
  - !ruby/object:Gem::Dependency
27
27
  name: debug
28
28
  requirement: !ruby/object:Gem::Requirement
@@ -263,7 +263,7 @@ licenses:
263
263
  - MIT
264
264
  metadata:
265
265
  bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
266
- changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.382.0
266
+ changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.383.0
267
267
  rdoc_options: []
268
268
  require_paths:
269
269
  - lib