rubocop-sorbet 0.8.5 → 0.8.6

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9dfcaff074a9af626b94a6909e3d6c3ea99749bced60c513d123cc00d4af2f26
-  data.tar.gz: 961d6723c8fa9e67dd25febab735a58ea4a7023c46132b008f3a8c4f996a18c6
+  metadata.gz: 5eabd8cb864c16962c3d9f7ca1cb64bd9a811424bc480df6f976f28c2741eb97
+  data.tar.gz: c25050b4162e19a06c525e7e008a79ed8ffd1217c24e57cd03e4af88f4194abf
 SHA512:
-  metadata.gz: 927874817f3166896f9cbb5267f95fa18570ce29c01432ff076a9949b71986bc13ccdbb849bf943b4b908bc5b682448d381c5b7e579af3f1f963662ef93bf606
-  data.tar.gz: 2ad69a1852bea8490f7c3b0cb157482dc0176abeae0f8834f8e8afcc7b582db822a3fa86df331d3315743628f40a9352af45a320de12bb4e990c216babc041a1
+  metadata.gz: 2cbc0786d76687e380eb8252a580bbfa06fb893d0b283ca7a04516f85f77ccec4ec39d5d6eaecdda31fc1cc5ffa0a2d9b3b6f3357dd1a9a4bd83aa1f0265d617
+  data.tar.gz: a22169eca15cf38a85cbf234c73cf26aed164460af125ed15978feab77cc7fdf2555b5f71037ba4a5c938e3861d0bee6d8141bfe5ee30a37bcf3fa71bcc37fd7

data/.github/dependabot.yml

@@ -5,6 +5,11 @@ updates:
     schedule:
       interval: "weekly"
     open-pull-requests-limit: 100
+    groups:
+      minor-and-patch:
+        update-types:
+          - "minor"
+          - "patch"
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:

data/.github/workflows/dependabot_automerge.yml

@@ -0,0 +1,65 @@
+name: Dependabot auto-merge
+on: pull_request_target
+
+permissions:
+  pull-requests: write
+  contents: write
+
+jobs:
+  dependabot:
+    runs-on: ubuntu-latest
+    if: ${{ github.event.pull_request.user.login == 'dependabot[bot]' }}
+    steps:
+      - name: Dependabot metadata
+        id: metadata
+        uses: dependabot/fetch-metadata@v2
+        with:
+          github-token: "${{ secrets.GITHUB_TOKEN }}"
+      - name: Enable auto-merge for Dependabot PRs
+        if: ${{ steps.metadata.outputs.update-type != 'version-update:semver-major' }}
+        uses: actions/github-script@v7
+        with:
+          github-token: "${{ secrets.GITHUB_TOKEN }}"
+          script: |
+            const getPullRequestIdQuery = `query GetPullRequestId($owner: String!, $repo: String!, $pullRequestNumber: Int!) {
+              repository(owner: $owner, name: $repo) {
+                pullRequest(number: $pullRequestNumber) {
+                  id
+                }
+              }
+            }`
+            const repoInfo = {
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              pullRequestNumber: context.issue.number,
+            }
+            const response = await github.graphql(getPullRequestIdQuery, repoInfo)
+
+            await github.rest.pulls.createReview({
+              pull_number: context.issue.number,
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              event: 'APPROVE',
+            })
+
+            const enableAutoMergeQuery = `mutation ($pullRequestId: ID!, $mergeMethod: PullRequestMergeMethod!) {
+              enablePullRequestAutoMerge(input: {
+                pullRequestId: $pullRequestId,
+                mergeMethod: $mergeMethod
+              }) {
+                pullRequest {
+                  autoMergeRequest {
+                    enabledAt
+                    enabledBy {
+                      login
+                    }
+                  }
+                }
+              }
+            }`
+            const data = {
+              pullRequestId: response.repository.pullRequest.id,
+              mergeMethod: 'MERGE',
+            }
+
+            await github.graphql(enableAutoMergeQuery, data)

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    rubocop-sorbet (0.8.5)
+    rubocop-sorbet (0.8.6)
       rubocop (>= 1)
 
 GEM
@@ -18,13 +18,13 @@ GEM
       reline (>= 0.4.2)
     json (2.7.2)
     language_server-protocol (3.17.0.3)
-    parallel (1.25.1)
-    parser (3.3.4.0)
+    parallel (1.26.3)
+    parser (3.3.5.0)
       ast (~> 2.4.1)
       racc
     psych (5.1.2)
       stringio
-    racc (1.8.0)
+    racc (1.8.1)
     rainbow (3.1.1)
     rake (13.2.1)
     rdoc (6.6.3.1)
@@ -32,8 +32,6 @@ GEM
     regexp_parser (2.9.2)
     reline (0.5.1)
       io-console (~> 0.5)
-    rexml (3.3.1)
-      strscan
     rspec (3.13.0)
       rspec-core (~> 3.13.0)
       rspec-expectations (~> 3.13.0)
@@ -47,26 +45,24 @@ GEM
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.13.0)
     rspec-support (3.13.1)
-    rubocop (1.65.0)
+    rubocop (1.66.1)
       json (~> 2.3)
       language_server-protocol (>= 3.17.0)
       parallel (~> 1.10)
       parser (>= 3.3.0.2)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 2.4, < 3.0)
-      rexml (>= 3.2.5, < 4.0)
-      rubocop-ast (>= 1.31.1, < 2.0)
+      rubocop-ast (>= 1.32.2, < 2.0)
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 2.4.0, < 3.0)
-    rubocop-ast (1.31.3)
+    rubocop-ast (1.32.3)
       parser (>= 3.3.1.0)
     rubocop-shopify (2.15.1)
       rubocop (~> 1.51)
     ruby-progressbar (1.13.0)
     stringio (3.1.0)
-    strscan (3.1.0)
     unicode-display_width (2.5.0)
-    yard (0.9.36)
+    yard (0.9.37)
 
 PLATFORMS
   ruby

data/config/default.yml

@@ -1,3 +1,11 @@
+Sorbet/Refinement:
+  Description: >- 
+                  Checks for the use of Ruby Refinements library. Refinements add
+                  complexity and incur a performance penalty that can be significant
+                  for large code bases. They are also not supported by Sorbet.
+  Enabled: pending
+  VersionAdded: '<<next>>'
+
 inherit_mode:
   merge:
   - Exclude

data/lib/rubocop/cop/sorbet/constants_from_strings.rb

@@ -46,6 +46,7 @@ module RuboCop
         def on_send(node)
           add_offense(node.selector, message: format(MSG, method_name: node.method_name))
         end
+        alias_method :on_csend, :on_send
       end
     end
   end

data/lib/rubocop/cop/sorbet/mixin/target_sorbet_version.rb

@@ -44,7 +44,7 @@ module RuboCop
         def read_sorbet_static_version_from_bundler_lock_file
           require "bundler"
           ::Bundler.locked_gems.specs.find { |spec| spec.name == "sorbet-static" }&.version
-        rescue LoadError, Bundler::GemfileNotFound
+        rescue LoadError, ::Bundler::GemfileNotFound
           nil
         end
       end

data/lib/rubocop/cop/sorbet/rbi/forbid_rbi_outside_of_allowed_paths.rb

@@ -27,16 +27,10 @@ module RuboCop
           paths = allowed_paths
 
           if paths.nil?
-            add_offense(
-              source_range(processed_source.buffer, 1, 0),
-              message: "AllowedPaths expects an array",
-            )
+            add_global_offense("AllowedPaths expects an array")
             return
           elsif paths.empty?
-            add_offense(
-              source_range(processed_source.buffer, 1, 0),
-              message: "AllowedPaths cannot be empty",
-            )
+            add_global_offense("AllowedPaths cannot be empty")
             return
           end
 
@@ -44,9 +38,8 @@ module RuboCop
           # We need to remove the exec path directory prefix before matching with the filename regular expressions.
           rel_path = processed_source.file_path.sub("#{Dir.pwd}/", "")
 
-          add_offense(
-            source_range(processed_source.buffer, 1, 0),
-            message: "RBI file path should match one of: #{paths.join(", ")}",
+          add_global_offense(
+            "RBI file path should match one of: #{paths.join(", ")}",
           ) if paths.none? { |pattern| File.fnmatch(pattern, rel_path) }
         end
 

data/lib/rubocop/cop/sorbet/refinement.rb

@@ -0,0 +1,52 @@
+# frozen_string_literal: true
+
+module RuboCop
+  module Cop
+    module Sorbet
+      # Checks for the use of Ruby Refinements library. Refinements add
+      # complexity and incur a performance penalty that can be significant
+      # for large code bases. Good examples are cases of unrelated
+      # methods that happen to have the same name as these module methods.
+      #
+      # @example
+      #   # bad
+      #   module Foo
+      #     refine(Date) do
+      #     end
+      #   end
+      #
+      #   # bad
+      #   module Foo
+      #     using(Date) do
+      #     end
+      #   end
+      #
+      #   # good
+      #   module Foo
+      #     bar.refine(Date)
+      #   end
+      #
+      #   # good
+      #   module Foo
+      #     bar.using(Date)
+      #   end
+
+      class Refinement < Base
+        MSG = "Do not use Ruby Refinements library as it is not supported by Sorbet."
+        RESTRICT_ON_SEND = [:refine, :using].freeze
+
+        def on_send(node)
+          return unless node.receiver.nil?
+          return unless node.first_argument&.const_type?
+
+          if node.method?(:refine)
+            return unless node.block_node
+            return unless node.parent.parent.module_type?
+          end
+
+          add_offense(node)
+        end
+      end
+    end
+  end
+end

data/lib/rubocop/cop/sorbet_cops.rb

@@ -16,6 +16,7 @@ require_relative "sorbet/forbid_t_struct"
 require_relative "sorbet/forbid_t_unsafe"
 require_relative "sorbet/forbid_t_untyped"
 require_relative "sorbet/redundant_extend_t_sig"
+require_relative "sorbet/refinement"
 require_relative "sorbet/type_alias_name"
 require_relative "sorbet/obsolete_strict_memoization"
 require_relative "sorbet/buggy_obsolete_strict_memoization"

data/lib/rubocop/sorbet/inject.rb

@@ -11,6 +11,14 @@ module RuboCop
         def defaults!
           path = CONFIG_DEFAULT.to_s
           hash = ConfigLoader.send(:load_yaml_configuration, path)
+          if Gem::Version.new(RuboCop::Version::STRING) >= Gem::Version.new("1.66")
+            # We use markdown for cop documentation. Unconditionally setting
+            # the base url will produce incorrect urls on older RuboCop versions,
+            # so we do that for fully supported version only here.
+            hash["Sorbet"] ||= {}
+            hash["Sorbet"]["DocumentationBaseURL"] = "https://github.com/Shopify/rubocop-sorbet/blob/main/manual"
+            hash["Sorbet"]["DocumentationExtension"] = ".md"
+          end
           config = Config.new(hash, path).tap(&:make_excludes_absolute)
           puts "configuration from #{path}" if ConfigLoader.debug?
           config = ConfigLoader.merge_with_default(config, path)

data/lib/rubocop/sorbet/version.rb

@@ -2,6 +2,6 @@
 
 module RuboCop
   module Sorbet
-    VERSION = "0.8.5"
+    VERSION = "0.8.6"
   end
 end

data/manual/cops.md

@@ -33,6 +33,7 @@ In the following section you find all available cops:
 * [Sorbet/MultipleTEnumValues](cops_sorbet.md#sorbetmultipletenumvalues)
 * [Sorbet/ObsoleteStrictMemoization](cops_sorbet.md#sorbetobsoletestrictmemoization)
 * [Sorbet/RedundantExtendTSig](cops_sorbet.md#sorbetredundantextendtsig)
+* [Sorbet/Refinement](cops_sorbet.md#sorbetrefinement)
 * [Sorbet/SignatureBuildOrder](cops_sorbet.md#sorbetsignaturebuildorder)
 * [Sorbet/SingleLineRbiClassModuleDefinitions](cops_sorbet.md#sorbetsinglelinerbiclassmoduledefinitions)
 * [Sorbet/StrictSigil](cops_sorbet.md#sorbetstrictsigil)

data/manual/cops_sorbet.md

@@ -759,6 +759,43 @@ class Example
 end
 ```
 
+## Sorbet/Refinement
+
+Enabled by default | Safe | Supports autocorrection | VersionAdded | VersionChanged
+--- | --- | --- | --- | ---
+Enabled | Yes | No | <<next>> | -
+
+Checks for the use of Ruby Refinements library. Refinements add
+complexity and incur a performance penalty that can be significant
+for large code bases. Good examples are cases of unrelated
+methods that happen to have the same name as these module methods.
+
+### Examples
+
+```ruby
+# bad
+module Foo
+  refine(Date) do
+  end
+end
+
+# bad
+module Foo
+  using(Date) do
+  end
+end
+
+# good
+module Foo
+  bar.refine(Date)
+end
+
+# good
+module Foo
+  bar.using(Date)
+end
+```
+
 ## Sorbet/SignatureBuildOrder
 
 Enabled by default | Safe | Supports autocorrection | VersionAdded | VersionChanged

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rubocop-sorbet
 version: !ruby/object:Gem::Version
-  version: 0.8.5
+  version: 0.8.6
 platform: ruby
 authors:
 - Ufuk Kayserilioglu
@@ -11,7 +11,7 @@ authors:
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2024-07-25 00:00:00.000000000 Z
+date: 2024-10-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rubocop
@@ -39,6 +39,7 @@ files:
 - ".github/release.yml"
 - ".github/workflows/ci.yml"
 - ".github/workflows/cla.yml"
+- ".github/workflows/dependabot_automerge.yml"
 - ".github/workflows/stale.yml"
 - ".gitignore"
 - ".rspec"
@@ -84,6 +85,7 @@ files:
 - lib/rubocop/cop/sorbet/rbi_versioning/gem_version_annotation_helper.rb
 - lib/rubocop/cop/sorbet/rbi_versioning/valid_gem_version_annotations.rb
 - lib/rubocop/cop/sorbet/redundant_extend_t_sig.rb
+- lib/rubocop/cop/sorbet/refinement.rb
 - lib/rubocop/cop/sorbet/sigils/enforce_sigil_order.rb
 - lib/rubocop/cop/sorbet/sigils/enforce_single_sigil.rb
 - lib/rubocop/cop/sorbet/sigils/false_sigil.rb
@@ -135,7 +137,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.16
+rubygems_version: 3.5.21
 signing_key:
 specification_version: 4
 summary: Automatic Sorbet code style checking tool.