dependabot-uv 0.305.0 → 0.306.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/helpers/requirements.txt +1 -1
- data/lib/dependabot/uv/file_updater/pyproject_preparer.rb +8 -10
- metadata +5 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: f2ea490392f8ab11b2c8ed9697e051c2ddd16b6810138a696aaa2dd4b173d1a8
|
|
4
|
+
data.tar.gz: 5f4a5d11257479883d003a342b31d602aa351ddfacd85827790d26e6037dab7b
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 024febe2bc6d12b9313c5c15102aa95da46e039ee22aaa40c54d16341091fe79e923bd531bf417424d30cee08ddb3b7dd11e82a0bbb45e442db1895293f48deb
|
|
7
|
+
data.tar.gz: bbb5c095c0a6fff4e55c930fa6941bdcfeb1f6c104a4997cf3c8af9c97b941a653f370fed67656dd97fd98ea90d0730eceeee1c18e01006f27df6446e1716a92
|
data/helpers/requirements.txt
CHANGED
|
@@ -121,22 +121,20 @@ module Dependabot
|
|
|
121
121
|
end
|
|
122
122
|
|
|
123
123
|
def freeze_dependency(dep_string, deps_to_update_names, locked_deps)
|
|
124
|
-
|
|
125
|
-
|
|
124
|
+
dep_match = dep_string.match(/^([^\[\]=<>!]+)(?:\[([^\]]+)\])?/)
|
|
125
|
+
return dep_string unless dep_match
|
|
126
|
+
|
|
127
|
+
dep_name = dep_match[1].strip
|
|
128
|
+
dep_extra = dep_match[2]
|
|
129
|
+
|
|
130
|
+
normalized_name = Uv::FileParser.normalize_dependency_name(dep_name)
|
|
126
131
|
|
|
127
132
|
return dep_string if deps_to_update_names.include?(normalized_name)
|
|
128
133
|
|
|
129
134
|
version = locked_version_for_dep(locked_deps, normalized_name)
|
|
130
135
|
return dep_string unless version
|
|
131
136
|
|
|
132
|
-
|
|
133
|
-
dep_string.include?("<") || dep_string.include?("~")
|
|
134
|
-
# Replace version constraint with exact version
|
|
135
|
-
dep_string.sub(/[=>~<\[].*$/, "==#{version}")
|
|
136
|
-
else
|
|
137
|
-
# Simple dependency, just append version
|
|
138
|
-
"#{dep_string}==#{version}"
|
|
139
|
-
end
|
|
137
|
+
dep_extra ? "#{dep_name}[#{dep_extra}]==#{version}" : "#{dep_name}==#{version}"
|
|
140
138
|
end
|
|
141
139
|
end
|
|
142
140
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dependabot-uv
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.306.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Dependabot
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2025-04-
|
|
11
|
+
date: 2025-04-10 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: dependabot-common
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - '='
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: 0.
|
|
19
|
+
version: 0.306.0
|
|
20
20
|
type: :runtime
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - '='
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: 0.
|
|
26
|
+
version: 0.306.0
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: debug
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -285,7 +285,7 @@ licenses:
|
|
|
285
285
|
- MIT
|
|
286
286
|
metadata:
|
|
287
287
|
bug_tracker_uri: https://github.com/dependabot/dependabot-core/issues
|
|
288
|
-
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.
|
|
288
|
+
changelog_uri: https://github.com/dependabot/dependabot-core/releases/tag/v0.306.0
|
|
289
289
|
post_install_message:
|
|
290
290
|
rdoc_options: []
|
|
291
291
|
require_paths:
|