@paklo/core 0.7.3 → 0.8.0

package/dist/azure/index.d.mts

@@ -1,4 +1,4 @@
-import { F as DependabotUpdatePullRequest, St as DependabotExistingGroupPR, a as DependabotCreatePullRequest, bt as DependabotDependency, kn as VariableFinderFn, rn as DependabotConfig, t as DependabotClosePullRequest, wt as DependabotExistingPR } from "../index-vaaBSJ7v.mjs";
+import { An as VariableFinderFn, Ct as DependabotExistingGroupPR, F as DependabotUpdatePullRequest, Tt as DependabotExistingPR, a as DependabotCreatePullRequest, in as DependabotConfig, t as DependabotClosePullRequest, xt as DependabotDependency } from "../index-bwD11mTZ.mjs";
 import "../index-BWftXTYB.mjs";
 import * as zod0 from "zod";
 import * as zod_v4_core0 from "zod/v4/core";

package/dist/azure/index.mjs

@@ -1,7 +1,7 @@
 import { r as isErrorTemporaryFailure, t as HttpRequestError } from "../http-D2wwAKQ-.mjs";
 import { n as logger } from "../logger-BqvUa-Ue.mjs";
-import { F as parseDependabotConfig, M as POSSIBLE_CONFIG_FILE_PATHS, c as DependabotExistingGroupPRSchema, l as DependabotExistingPRSchema } from "../job-DQiSYFHb.mjs";
-import "../dependabot-_TVZhG0L.mjs";
+import { F as parseDependabotConfig, M as POSSIBLE_CONFIG_FILE_PATHS, c as DependabotExistingGroupPRSchema, l as DependabotExistingPRSchema } from "../job-DanO84YW.mjs";
+import "../dependabot-E0nM5Xbb.mjs";
 import * as path from "node:path";
 import { existsSync } from "node:fs";
 import { readFile } from "node:fs/promises";

package/dist/dependabot/index.d.mts

@@ -1,3 +1,3 @@
-import { $ as mapPackageEcosystemToPackageManager, $t as DependabotAllowCondition, A as DependabotRecordUpdateJobUnknownErrorSchema, An as convertPlaceholder, At as DependabotGroupRuleJob, B as DependabotRequestType, Bt as DependabotRequirement, C as DependabotRecordEcosystemMeta, Cn as VersioningStrategy, Ct as DependabotExistingGroupPRSchema, D as DependabotRecordUpdateJobError, Dn as parseUpdates, Dt as DependabotExperimentsSchema, E as DependabotRecordEcosystemVersionsSchema, En as parseRegistries, Et as DependabotExperiments, F as DependabotUpdatePullRequest, Ft as DependabotJobFileSchema, G as DependabotJobBuilderOutput, Gt as DependabotSecurityAdvisorySchema, H as DependabotTokenType, Ht as DependabotRequirementSource, I as DependabotUpdatePullRequestSchema, It as DependabotPackageManager, J as mapAllowedUpdatesFromDependabotConfigToJobConfig, Jt as DependabotSourceProviderSchema, K as DependabotSourceInfo, Kt as DependabotSource, L as CreateApiServerAppOptions, Lt as DependabotPackageManagerSchema, M as DependabotRecordUpdateJobWarningSchema, Mn as DEPENDABOT_DEFAULT_AUTHOR_EMAIL, Mt as DependabotJobConfig, N as DependabotUpdateDependencyList, Nn as DEPENDABOT_DEFAULT_AUTHOR_NAME, Nt as DependabotJobConfigSchema, O as DependabotRecordUpdateJobErrorSchema, On as validateConfiguration, Ot as DependabotGroupJob, P as DependabotUpdateDependencyListSchema, Pn as GitAuthor, Pt as DependabotJobFile, Q as mapIgnoreConditionsFromDependabotConfigToJobConfig, Qt as FileUpdaterInput, R as DependabotRequest, Rt as DependabotProxyConfig, S as DependabotRecordCooldownMetaSchema, Sn as PackageEcosystemSchema, St as DependabotExistingGroupPR, T as DependabotRecordEcosystemVersions, Tn as parseDependabotConfig, Tt as DependabotExistingPRSchema, U as createApiServerApp, Ut as DependabotRequirementSourceSchema, V as DependabotRequestTypeSchema, Vt as DependabotRequirementSchema, W as DependabotJobBuilder, Wt as DependabotSecurityAdvisory, X as mapExperiments, Xt as FetchedFiles, Y as mapCredentials, Yt as DependabotSourceSchema, Z as mapGroupsFromDependabotConfigToJobConfig, Zt as FileFetcherInput, _ as DependabotMarkAsProcessed, _n as DependabotScheduleSchema, _t as DependabotConditionSchema, a as DependabotCreatePullRequest, an as DependabotCooldown, at as makeDirectoryKey, b as DependabotMetricSchema, bn as POSSIBLE_CONFIG_FILE_PATHS, bt as DependabotDependency, c as DependabotDependencyFileSchema, cn as DependabotGroupSchema, ct as CertificateAuthority, d as DependabotEcosystemMeta, dn as DependabotMultiEcosystemGroup, dt as DependabotAllowedSchema, en as DependabotAllowConditionSchema, et as mapSecurityAdvisories, f as DependabotEcosystemMetaSchema, fn as DependabotMultiEcosystemGroupSchema, ft as DependabotCommand, g as DependabotIncrementMetricSchema, gn as DependabotSchedule, gt as DependabotCondition, h as DependabotIncrementMetric, hn as DependabotRegistrySchema, ht as DependabotCommitOptionsSchema, i as DependabotClosePullRequestSchema, in as DependabotConfigSchema, it as parseExperiments, j as DependabotRecordUpdateJobWarning, jn as extractPlaceholder, jt as DependabotGroupRuleJobSchema, k as DependabotRecordUpdateJobUnknownError, kn as VariableFinderFn, kt as DependabotGroupJobSchema, l as DependabotDependencySubmission, ln as DependabotIgnoreCondition, lt as CertificateAuthoritySchema, m as DependabotEcosystemVersionManagerSchema, mn as DependabotRegistry, mt as DependabotCommitOptions, n as DependabotClosePullRequestReason, nn as DependabotCommitMessageSchema, nt as mapVersionStrategyToRequirementsUpdateStrategy, o as DependabotCreatePullRequestSchema, on as DependabotCooldownSchema, ot as getBranchNameForUpdate, p as DependabotEcosystemVersionManager, pn as DependabotPullRequestBranchName, pt as DependabotCommandSchema, q as makeRandomJobId, qt as DependabotSourceProvider, r as DependabotClosePullRequestReasonEnum, rn as DependabotConfig, rt as DEFAULT_EXPERIMENTS, s as DependabotDependencyFile, sn as DependabotGroup, st as sanitizeRef, t as DependabotClosePullRequest, tn as DependabotCommitMessage, tt as mapSourceFromDependabotConfigToJobConfig, u as DependabotDependencySubmissionSchema, un as DependabotIgnoreConditionSchema, ut as DependabotAllowed, v as DependabotMarkAsProcessedSchema, vn as DependabotUpdate, vt as DependabotCredential, w as DependabotRecordEcosystemMetaSchema, wn as VersioningStrategySchema, wt as DependabotExistingPR, x as DependabotRecordCooldownMeta, xn as PackageEcosystem, xt as DependabotDependencySchema, y as DependabotMetric, yn as DependabotUpdateSchema, yt as DependabotCredentialSchema, z as DependabotRequestSchema, zt as DependabotProxyConfigSchema } from "../index-vaaBSJ7v.mjs";
+import { $ as mapPackageEcosystemToPackageManager, $t as FileUpdaterInput, A as DependabotRecordUpdateJobUnknownErrorSchema, An as VariableFinderFn, At as DependabotGroupJobSchema, B as DependabotRequestType, Bt as DependabotProxyConfigSchema, C as DependabotRecordEcosystemMeta, Cn as PackageEcosystemSchema, Ct as DependabotExistingGroupPR, D as DependabotRecordUpdateJobError, Dn as parseRegistries, Dt as DependabotExperiments, E as DependabotRecordEcosystemVersionsSchema, En as parseDependabotConfig, Et as DependabotExistingPRSchema, F as DependabotUpdatePullRequest, Fn as GitAuthor, Ft as DependabotJobFile, G as DependabotJobBuilderOutput, Gt as DependabotSecurityAdvisory, H as DependabotTokenType, Ht as DependabotRequirementSchema, I as DependabotUpdatePullRequestSchema, It as DependabotJobFileSchema, J as mapAllowedUpdatesFromDependabotConfigToJobConfig, Jt as DependabotSourceProvider, K as DependabotSourceInfo, Kt as DependabotSecurityAdvisorySchema, L as CreateApiServerAppOptions, Lt as DependabotPackageManager, M as DependabotRecordUpdateJobWarningSchema, Mn as extractPlaceholder, Mt as DependabotGroupRuleJobSchema, N as DependabotUpdateDependencyList, Nn as DEPENDABOT_DEFAULT_AUTHOR_EMAIL, Nt as DependabotJobConfig, O as DependabotRecordUpdateJobErrorSchema, On as parseUpdates, Ot as DependabotExperimentsSchema, P as DependabotUpdateDependencyListSchema, Pn as DEPENDABOT_DEFAULT_AUTHOR_NAME, Pt as DependabotJobConfigSchema, Q as mapIgnoreConditionsFromDependabotConfigToJobConfig, Qt as FileFetcherInput, R as DependabotRequest, Rt as DependabotPackageManagerSchema, S as DependabotRecordCooldownMetaSchema, Sn as PackageEcosystem, St as DependabotDependencySchema, T as DependabotRecordEcosystemVersions, Tn as VersioningStrategySchema, Tt as DependabotExistingPR, U as createApiServerApp, Ut as DependabotRequirementSource, V as DependabotRequestTypeSchema, Vt as DependabotRequirement, W as DependabotJobBuilder, Wt as DependabotRequirementSourceSchema, X as mapExperiments, Xt as DependabotSourceSchema, Y as mapCredentials, Yt as DependabotSourceProviderSchema, Z as mapGroupsFromDependabotConfigToJobConfig, Zt as FetchedFiles, _ as DependabotMarkAsProcessed, _n as DependabotSchedule, _t as DependabotCondition, a as DependabotCreatePullRequest, an as DependabotConfigSchema, at as setExperiment, b as DependabotMetricSchema, bn as DependabotUpdateSchema, bt as DependabotCredentialSchema, c as DependabotDependencyFileSchema, cn as DependabotGroup, ct as sanitizeRef, d as DependabotEcosystemMeta, dn as DependabotIgnoreConditionSchema, dt as DependabotAllowed, en as DependabotAllowCondition, et as mapSecurityAdvisories, f as DependabotEcosystemMetaSchema, fn as DependabotMultiEcosystemGroup, ft as DependabotAllowedSchema, g as DependabotIncrementMetricSchema, gn as DependabotRegistrySchema, gt as DependabotCommitOptionsSchema, h as DependabotIncrementMetric, hn as DependabotRegistry, ht as DependabotCommitOptions, i as DependabotClosePullRequestSchema, in as DependabotConfig, it as parseExperiments, j as DependabotRecordUpdateJobWarning, jn as convertPlaceholder, jt as DependabotGroupRuleJob, k as DependabotRecordUpdateJobUnknownError, kn as validateConfiguration, kt as DependabotGroupJob, l as DependabotDependencySubmission, ln as DependabotGroupSchema, lt as CertificateAuthority, m as DependabotEcosystemVersionManagerSchema, mn as DependabotPullRequestBranchName, mt as DependabotCommandSchema, n as DependabotClosePullRequestReason, nn as DependabotCommitMessage, nt as mapVersionStrategyToRequirementsUpdateStrategy, o as DependabotCreatePullRequestSchema, on as DependabotCooldown, ot as makeDirectoryKey, p as DependabotEcosystemVersionManager, pn as DependabotMultiEcosystemGroupSchema, pt as DependabotCommand, q as makeRandomJobId, qt as DependabotSource, r as DependabotClosePullRequestReasonEnum, rn as DependabotCommitMessageSchema, rt as DEFAULT_EXPERIMENTS, s as DependabotDependencyFile, sn as DependabotCooldownSchema, st as getBranchNameForUpdate, t as DependabotClosePullRequest, tn as DependabotAllowConditionSchema, tt as mapSourceFromDependabotConfigToJobConfig, u as DependabotDependencySubmissionSchema, un as DependabotIgnoreCondition, ut as CertificateAuthoritySchema, v as DependabotMarkAsProcessedSchema, vn as DependabotScheduleSchema, vt as DependabotConditionSchema, w as DependabotRecordEcosystemMetaSchema, wn as VersioningStrategy, wt as DependabotExistingGroupPRSchema, x as DependabotRecordCooldownMeta, xn as POSSIBLE_CONFIG_FILE_PATHS, xt as DependabotDependency, y as DependabotMetric, yn as DependabotUpdate, yt as DependabotCredential, z as DependabotRequestSchema, zt as DependabotProxyConfig } from "../index-bwD11mTZ.mjs";
 import "../index-BWftXTYB.mjs";
-export { CertificateAuthority, CertificateAuthoritySchema, CreateApiServerAppOptions, DEFAULT_EXPERIMENTS, DEPENDABOT_DEFAULT_AUTHOR_EMAIL, DEPENDABOT_DEFAULT_AUTHOR_NAME, DependabotAllowCondition, DependabotAllowConditionSchema, DependabotAllowed, DependabotAllowedSchema, DependabotClosePullRequest, DependabotClosePullRequestReason, DependabotClosePullRequestReasonEnum, DependabotClosePullRequestSchema, DependabotCommand, DependabotCommandSchema, DependabotCommitMessage, DependabotCommitMessageSchema, DependabotCommitOptions, DependabotCommitOptionsSchema, DependabotCondition, DependabotConditionSchema, DependabotConfig, DependabotConfigSchema, DependabotCooldown, DependabotCooldownSchema, DependabotCreatePullRequest, DependabotCreatePullRequestSchema, DependabotCredential, DependabotCredentialSchema, DependabotDependency, DependabotDependencyFile, DependabotDependencyFileSchema, DependabotDependencySchema, DependabotDependencySubmission, DependabotDependencySubmissionSchema, DependabotEcosystemMeta, DependabotEcosystemMetaSchema, DependabotEcosystemVersionManager, DependabotEcosystemVersionManagerSchema, DependabotExistingGroupPR, DependabotExistingGroupPRSchema, DependabotExistingPR, DependabotExistingPRSchema, DependabotExperiments, DependabotExperimentsSchema, DependabotGroup, DependabotGroupJob, DependabotGroupJobSchema, DependabotGroupRuleJob, DependabotGroupRuleJobSchema, DependabotGroupSchema, DependabotIgnoreCondition, DependabotIgnoreConditionSchema, DependabotIncrementMetric, DependabotIncrementMetricSchema, DependabotJobBuilder, DependabotJobBuilderOutput, DependabotJobConfig, DependabotJobConfigSchema, DependabotJobFile, DependabotJobFileSchema, DependabotMarkAsProcessed, DependabotMarkAsProcessedSchema, DependabotMetric, DependabotMetricSchema, DependabotMultiEcosystemGroup, DependabotMultiEcosystemGroupSchema, DependabotPackageManager, DependabotPackageManagerSchema, DependabotProxyConfig, DependabotProxyConfigSchema, DependabotPullRequestBranchName, DependabotRecordCooldownMeta, DependabotRecordCooldownMetaSchema, DependabotRecordEcosystemMeta, DependabotRecordEcosystemMetaSchema, DependabotRecordEcosystemVersions, DependabotRecordEcosystemVersionsSchema, DependabotRecordUpdateJobError, DependabotRecordUpdateJobErrorSchema, DependabotRecordUpdateJobUnknownError, DependabotRecordUpdateJobUnknownErrorSchema, DependabotRecordUpdateJobWarning, DependabotRecordUpdateJobWarningSchema, DependabotRegistry, DependabotRegistrySchema, DependabotRequest, DependabotRequestSchema, DependabotRequestType, DependabotRequestTypeSchema, DependabotRequirement, DependabotRequirementSchema, DependabotRequirementSource, DependabotRequirementSourceSchema, DependabotSchedule, DependabotScheduleSchema, DependabotSecurityAdvisory, DependabotSecurityAdvisorySchema, DependabotSource, DependabotSourceInfo, DependabotSourceProvider, DependabotSourceProviderSchema, DependabotSourceSchema, DependabotTokenType, DependabotUpdate, DependabotUpdateDependencyList, DependabotUpdateDependencyListSchema, DependabotUpdatePullRequest, DependabotUpdatePullRequestSchema, DependabotUpdateSchema, FetchedFiles, FileFetcherInput, FileUpdaterInput, GitAuthor, POSSIBLE_CONFIG_FILE_PATHS, PackageEcosystem, PackageEcosystemSchema, VariableFinderFn, VersioningStrategy, VersioningStrategySchema, convertPlaceholder, createApiServerApp, extractPlaceholder, getBranchNameForUpdate, makeDirectoryKey, makeRandomJobId, mapAllowedUpdatesFromDependabotConfigToJobConfig, mapCredentials, mapExperiments, mapGroupsFromDependabotConfigToJobConfig, mapIgnoreConditionsFromDependabotConfigToJobConfig, mapPackageEcosystemToPackageManager, mapSecurityAdvisories, mapSourceFromDependabotConfigToJobConfig, mapVersionStrategyToRequirementsUpdateStrategy, parseDependabotConfig, parseExperiments, parseRegistries, parseUpdates, sanitizeRef, validateConfiguration };
+export { CertificateAuthority, CertificateAuthoritySchema, CreateApiServerAppOptions, DEFAULT_EXPERIMENTS, DEPENDABOT_DEFAULT_AUTHOR_EMAIL, DEPENDABOT_DEFAULT_AUTHOR_NAME, DependabotAllowCondition, DependabotAllowConditionSchema, DependabotAllowed, DependabotAllowedSchema, DependabotClosePullRequest, DependabotClosePullRequestReason, DependabotClosePullRequestReasonEnum, DependabotClosePullRequestSchema, DependabotCommand, DependabotCommandSchema, DependabotCommitMessage, DependabotCommitMessageSchema, DependabotCommitOptions, DependabotCommitOptionsSchema, DependabotCondition, DependabotConditionSchema, DependabotConfig, DependabotConfigSchema, DependabotCooldown, DependabotCooldownSchema, DependabotCreatePullRequest, DependabotCreatePullRequestSchema, DependabotCredential, DependabotCredentialSchema, DependabotDependency, DependabotDependencyFile, DependabotDependencyFileSchema, DependabotDependencySchema, DependabotDependencySubmission, DependabotDependencySubmissionSchema, DependabotEcosystemMeta, DependabotEcosystemMetaSchema, DependabotEcosystemVersionManager, DependabotEcosystemVersionManagerSchema, DependabotExistingGroupPR, DependabotExistingGroupPRSchema, DependabotExistingPR, DependabotExistingPRSchema, DependabotExperiments, DependabotExperimentsSchema, DependabotGroup, DependabotGroupJob, DependabotGroupJobSchema, DependabotGroupRuleJob, DependabotGroupRuleJobSchema, DependabotGroupSchema, DependabotIgnoreCondition, DependabotIgnoreConditionSchema, DependabotIncrementMetric, DependabotIncrementMetricSchema, DependabotJobBuilder, DependabotJobBuilderOutput, DependabotJobConfig, DependabotJobConfigSchema, DependabotJobFile, DependabotJobFileSchema, DependabotMarkAsProcessed, DependabotMarkAsProcessedSchema, DependabotMetric, DependabotMetricSchema, DependabotMultiEcosystemGroup, DependabotMultiEcosystemGroupSchema, DependabotPackageManager, DependabotPackageManagerSchema, DependabotProxyConfig, DependabotProxyConfigSchema, DependabotPullRequestBranchName, DependabotRecordCooldownMeta, DependabotRecordCooldownMetaSchema, DependabotRecordEcosystemMeta, DependabotRecordEcosystemMetaSchema, DependabotRecordEcosystemVersions, DependabotRecordEcosystemVersionsSchema, DependabotRecordUpdateJobError, DependabotRecordUpdateJobErrorSchema, DependabotRecordUpdateJobUnknownError, DependabotRecordUpdateJobUnknownErrorSchema, DependabotRecordUpdateJobWarning, DependabotRecordUpdateJobWarningSchema, DependabotRegistry, DependabotRegistrySchema, DependabotRequest, DependabotRequestSchema, DependabotRequestType, DependabotRequestTypeSchema, DependabotRequirement, DependabotRequirementSchema, DependabotRequirementSource, DependabotRequirementSourceSchema, DependabotSchedule, DependabotScheduleSchema, DependabotSecurityAdvisory, DependabotSecurityAdvisorySchema, DependabotSource, DependabotSourceInfo, DependabotSourceProvider, DependabotSourceProviderSchema, DependabotSourceSchema, DependabotTokenType, DependabotUpdate, DependabotUpdateDependencyList, DependabotUpdateDependencyListSchema, DependabotUpdatePullRequest, DependabotUpdatePullRequestSchema, DependabotUpdateSchema, FetchedFiles, FileFetcherInput, FileUpdaterInput, GitAuthor, POSSIBLE_CONFIG_FILE_PATHS, PackageEcosystem, PackageEcosystemSchema, VariableFinderFn, VersioningStrategy, VersioningStrategySchema, convertPlaceholder, createApiServerApp, extractPlaceholder, getBranchNameForUpdate, makeDirectoryKey, makeRandomJobId, mapAllowedUpdatesFromDependabotConfigToJobConfig, mapCredentials, mapExperiments, mapGroupsFromDependabotConfigToJobConfig, mapIgnoreConditionsFromDependabotConfigToJobConfig, mapPackageEcosystemToPackageManager, mapSecurityAdvisories, mapSourceFromDependabotConfigToJobConfig, mapVersionStrategyToRequirementsUpdateStrategy, parseDependabotConfig, parseExperiments, parseRegistries, parseUpdates, sanitizeRef, setExperiment, validateConfiguration };

package/dist/dependabot/index.mjs

@@ -1,5 +1,5 @@
 import "../logger-BqvUa-Ue.mjs";
-import { A as DependabotScheduleSchema, B as extractPlaceholder, C as DependabotCommitMessageSchema, D as DependabotIgnoreConditionSchema, E as DependabotGroupSchema, F as parseDependabotConfig, I as parseRegistries, L as parseUpdates, M as POSSIBLE_CONFIG_FILE_PATHS, N as PackageEcosystemSchema, O as DependabotMultiEcosystemGroupSchema, P as VersioningStrategySchema, R as validateConfiguration, S as DependabotAllowConditionSchema, T as DependabotCooldownSchema, V as makeDirectoryKey, _ as DependabotRequirementSchema, a as DependabotConditionSchema, b as DependabotSourceProviderSchema, c as DependabotExistingGroupPRSchema, d as DependabotGroupJobSchema, f as DependabotGroupRuleJobSchema, g as DependabotProxyConfigSchema, h as DependabotPackageManagerSchema, i as DependabotCommitOptionsSchema, j as DependabotUpdateSchema, k as DependabotRegistrySchema, l as DependabotExistingPRSchema, m as DependabotJobFileSchema, n as DependabotAllowedSchema, o as DependabotCredentialSchema, p as DependabotJobConfigSchema, r as DependabotCommandSchema, s as DependabotDependencySchema, t as CertificateAuthoritySchema, u as DependabotExperimentsSchema, v as DependabotRequirementSourceSchema, w as DependabotConfigSchema, x as DependabotSourceSchema, y as DependabotSecurityAdvisorySchema, z as convertPlaceholder } from "../job-DQiSYFHb.mjs";
-import { A as mapSecurityAdvisories, C as makeRandomJobId, D as mapGroupsFromDependabotConfigToJobConfig, E as mapExperiments, F as getBranchNameForUpdate, I as sanitizeRef, L as DEPENDABOT_DEFAULT_AUTHOR_EMAIL, M as mapVersionStrategyToRequirementsUpdateStrategy, N as DEFAULT_EXPERIMENTS, O as mapIgnoreConditionsFromDependabotConfigToJobConfig, P as parseExperiments, R as DEPENDABOT_DEFAULT_AUTHOR_NAME, S as DependabotJobBuilder, T as mapCredentials, _ as DependabotRecordUpdateJobErrorSchema, a as DependabotClosePullRequestSchema, b as DependabotUpdateDependencyListSchema, c as DependabotDependencySubmissionSchema, d as DependabotIncrementMetricSchema, f as DependabotMarkAsProcessedSchema, g as DependabotRecordEcosystemVersionsSchema, h as DependabotRecordEcosystemMetaSchema, i as DependabotClosePullRequestReasonEnum, j as mapSourceFromDependabotConfigToJobConfig, k as mapPackageEcosystemToPackageManager, l as DependabotEcosystemMetaSchema, m as DependabotRecordCooldownMetaSchema, n as DependabotRequestTypeSchema, o as DependabotCreatePullRequestSchema, p as DependabotMetricSchema, r as createApiServerApp, s as DependabotDependencyFileSchema, t as DependabotRequestSchema, u as DependabotEcosystemVersionManagerSchema, v as DependabotRecordUpdateJobUnknownErrorSchema, w as mapAllowedUpdatesFromDependabotConfigToJobConfig, x as DependabotUpdatePullRequestSchema, y as DependabotRecordUpdateJobWarningSchema } from "../dependabot-_TVZhG0L.mjs";
+import { A as DependabotScheduleSchema, B as extractPlaceholder, C as DependabotCommitMessageSchema, D as DependabotIgnoreConditionSchema, E as DependabotGroupSchema, F as parseDependabotConfig, I as parseRegistries, L as parseUpdates, M as POSSIBLE_CONFIG_FILE_PATHS, N as PackageEcosystemSchema, O as DependabotMultiEcosystemGroupSchema, P as VersioningStrategySchema, R as validateConfiguration, S as DependabotAllowConditionSchema, T as DependabotCooldownSchema, V as makeDirectoryKey, _ as DependabotRequirementSchema, a as DependabotConditionSchema, b as DependabotSourceProviderSchema, c as DependabotExistingGroupPRSchema, d as DependabotGroupJobSchema, f as DependabotGroupRuleJobSchema, g as DependabotProxyConfigSchema, h as DependabotPackageManagerSchema, i as DependabotCommitOptionsSchema, j as DependabotUpdateSchema, k as DependabotRegistrySchema, l as DependabotExistingPRSchema, m as DependabotJobFileSchema, n as DependabotAllowedSchema, o as DependabotCredentialSchema, p as DependabotJobConfigSchema, r as DependabotCommandSchema, s as DependabotDependencySchema, t as CertificateAuthoritySchema, u as DependabotExperimentsSchema, v as DependabotRequirementSourceSchema, w as DependabotConfigSchema, x as DependabotSourceSchema, y as DependabotSecurityAdvisorySchema, z as convertPlaceholder } from "../job-DanO84YW.mjs";
+import { A as mapSecurityAdvisories, C as makeRandomJobId, D as mapGroupsFromDependabotConfigToJobConfig, E as mapExperiments, F as setExperiment, I as getBranchNameForUpdate, L as sanitizeRef, M as mapVersionStrategyToRequirementsUpdateStrategy, N as DEFAULT_EXPERIMENTS, O as mapIgnoreConditionsFromDependabotConfigToJobConfig, P as parseExperiments, R as DEPENDABOT_DEFAULT_AUTHOR_EMAIL, S as DependabotJobBuilder, T as mapCredentials, _ as DependabotRecordUpdateJobErrorSchema, a as DependabotClosePullRequestSchema, b as DependabotUpdateDependencyListSchema, c as DependabotDependencySubmissionSchema, d as DependabotIncrementMetricSchema, f as DependabotMarkAsProcessedSchema, g as DependabotRecordEcosystemVersionsSchema, h as DependabotRecordEcosystemMetaSchema, i as DependabotClosePullRequestReasonEnum, j as mapSourceFromDependabotConfigToJobConfig, k as mapPackageEcosystemToPackageManager, l as DependabotEcosystemMetaSchema, m as DependabotRecordCooldownMetaSchema, n as DependabotRequestTypeSchema, o as DependabotCreatePullRequestSchema, p as DependabotMetricSchema, r as createApiServerApp, s as DependabotDependencyFileSchema, t as DependabotRequestSchema, u as DependabotEcosystemVersionManagerSchema, v as DependabotRecordUpdateJobUnknownErrorSchema, w as mapAllowedUpdatesFromDependabotConfigToJobConfig, x as DependabotUpdatePullRequestSchema, y as DependabotRecordUpdateJobWarningSchema, z as DEPENDABOT_DEFAULT_AUTHOR_NAME } from "../dependabot-E0nM5Xbb.mjs";
 
-export { CertificateAuthoritySchema, DEFAULT_EXPERIMENTS, DEPENDABOT_DEFAULT_AUTHOR_EMAIL, DEPENDABOT_DEFAULT_AUTHOR_NAME, DependabotAllowConditionSchema, DependabotAllowedSchema, DependabotClosePullRequestReasonEnum, DependabotClosePullRequestSchema, DependabotCommandSchema, DependabotCommitMessageSchema, DependabotCommitOptionsSchema, DependabotConditionSchema, DependabotConfigSchema, DependabotCooldownSchema, DependabotCreatePullRequestSchema, DependabotCredentialSchema, DependabotDependencyFileSchema, DependabotDependencySchema, DependabotDependencySubmissionSchema, DependabotEcosystemMetaSchema, DependabotEcosystemVersionManagerSchema, DependabotExistingGroupPRSchema, DependabotExistingPRSchema, DependabotExperimentsSchema, DependabotGroupJobSchema, DependabotGroupRuleJobSchema, DependabotGroupSchema, DependabotIgnoreConditionSchema, DependabotIncrementMetricSchema, DependabotJobBuilder, DependabotJobConfigSchema, DependabotJobFileSchema, DependabotMarkAsProcessedSchema, DependabotMetricSchema, DependabotMultiEcosystemGroupSchema, DependabotPackageManagerSchema, DependabotProxyConfigSchema, DependabotRecordCooldownMetaSchema, DependabotRecordEcosystemMetaSchema, DependabotRecordEcosystemVersionsSchema, DependabotRecordUpdateJobErrorSchema, DependabotRecordUpdateJobUnknownErrorSchema, DependabotRecordUpdateJobWarningSchema, DependabotRegistrySchema, DependabotRequestSchema, DependabotRequestTypeSchema, DependabotRequirementSchema, DependabotRequirementSourceSchema, DependabotScheduleSchema, DependabotSecurityAdvisorySchema, DependabotSourceProviderSchema, DependabotSourceSchema, DependabotUpdateDependencyListSchema, DependabotUpdatePullRequestSchema, DependabotUpdateSchema, POSSIBLE_CONFIG_FILE_PATHS, PackageEcosystemSchema, VersioningStrategySchema, convertPlaceholder, createApiServerApp, extractPlaceholder, getBranchNameForUpdate, makeDirectoryKey, makeRandomJobId, mapAllowedUpdatesFromDependabotConfigToJobConfig, mapCredentials, mapExperiments, mapGroupsFromDependabotConfigToJobConfig, mapIgnoreConditionsFromDependabotConfigToJobConfig, mapPackageEcosystemToPackageManager, mapSecurityAdvisories, mapSourceFromDependabotConfigToJobConfig, mapVersionStrategyToRequirementsUpdateStrategy, parseDependabotConfig, parseExperiments, parseRegistries, parseUpdates, sanitizeRef, validateConfiguration };
+export { CertificateAuthoritySchema, DEFAULT_EXPERIMENTS, DEPENDABOT_DEFAULT_AUTHOR_EMAIL, DEPENDABOT_DEFAULT_AUTHOR_NAME, DependabotAllowConditionSchema, DependabotAllowedSchema, DependabotClosePullRequestReasonEnum, DependabotClosePullRequestSchema, DependabotCommandSchema, DependabotCommitMessageSchema, DependabotCommitOptionsSchema, DependabotConditionSchema, DependabotConfigSchema, DependabotCooldownSchema, DependabotCreatePullRequestSchema, DependabotCredentialSchema, DependabotDependencyFileSchema, DependabotDependencySchema, DependabotDependencySubmissionSchema, DependabotEcosystemMetaSchema, DependabotEcosystemVersionManagerSchema, DependabotExistingGroupPRSchema, DependabotExistingPRSchema, DependabotExperimentsSchema, DependabotGroupJobSchema, DependabotGroupRuleJobSchema, DependabotGroupSchema, DependabotIgnoreConditionSchema, DependabotIncrementMetricSchema, DependabotJobBuilder, DependabotJobConfigSchema, DependabotJobFileSchema, DependabotMarkAsProcessedSchema, DependabotMetricSchema, DependabotMultiEcosystemGroupSchema, DependabotPackageManagerSchema, DependabotProxyConfigSchema, DependabotRecordCooldownMetaSchema, DependabotRecordEcosystemMetaSchema, DependabotRecordEcosystemVersionsSchema, DependabotRecordUpdateJobErrorSchema, DependabotRecordUpdateJobUnknownErrorSchema, DependabotRecordUpdateJobWarningSchema, DependabotRegistrySchema, DependabotRequestSchema, DependabotRequestTypeSchema, DependabotRequirementSchema, DependabotRequirementSourceSchema, DependabotScheduleSchema, DependabotSecurityAdvisorySchema, DependabotSourceProviderSchema, DependabotSourceSchema, DependabotUpdateDependencyListSchema, DependabotUpdatePullRequestSchema, DependabotUpdateSchema, POSSIBLE_CONFIG_FILE_PATHS, PackageEcosystemSchema, VersioningStrategySchema, convertPlaceholder, createApiServerApp, extractPlaceholder, getBranchNameForUpdate, makeDirectoryKey, makeRandomJobId, mapAllowedUpdatesFromDependabotConfigToJobConfig, mapCredentials, mapExperiments, mapGroupsFromDependabotConfigToJobConfig, mapIgnoreConditionsFromDependabotConfigToJobConfig, mapPackageEcosystemToPackageManager, mapSecurityAdvisories, mapSourceFromDependabotConfigToJobConfig, mapVersionStrategyToRequirementsUpdateStrategy, parseDependabotConfig, parseExperiments, parseRegistries, parseUpdates, sanitizeRef, setExperiment, validateConfiguration };

package/dist/{dependabot-_TVZhG0L.mjs → dependabot-E0nM5Xbb.mjs}

@@ -1,5 +1,5 @@
 import { n as logger } from "./logger-BqvUa-Ue.mjs";
-import { h as DependabotPackageManagerSchema, s as DependabotDependencySchema } from "./job-DQiSYFHb.mjs";
+import { h as DependabotPackageManagerSchema, s as DependabotDependencySchema } from "./job-DanO84YW.mjs";
 import { z } from "zod";
 import * as crypto$1 from "node:crypto";
 import { zValidator } from "@hono/zod-validator";
@@ -69,6 +69,20 @@ function parseExperiments(raw) {
 		return acc;
 	}, {});
 }
+/**
+* Set experiment in the given experiments map.
+* If the experiments map is undefined, a new map will be created.
+* @param experiments The experiments map to set the experiment in.
+* @param name The name of the experiment to set.
+* @param value The value of the experiment to set. Defaults to true.
+* @returns The updated experiments map.
+*/
+function setExperiment(experiments, name, value = true) {
+	return {
+		...experiments || {},
+		[name]: value
+	};
+}
 
 //#endregion
 //#region src/dependabot/job-builder.ts
@@ -86,8 +100,8 @@ var DependabotJobBuilder = class {
 	constructor({ source, config, update, systemAccessUser, systemAccessToken, githubToken, experiments, debug }) {
 		this.config = config;
 		this.update = update;
-		this.experiments = experiments;
 		this.debug = debug;
+		this.experiments = setExperiment(experiments, "enable_beta_ecosystems", config["enable-beta-ecosystems"]);
 		this.packageManager = mapPackageEcosystemToPackageManager(update["package-ecosystem"]);
 		this.source = mapSourceFromDependabotConfigToJobConfig(source, update);
 		this.credentials = mapCredentials({
@@ -623,5 +637,5 @@ function createApiServerApp({ basePath = `/api/update_jobs`, authenticate, getJo
 }
 
 //#endregion
-export { mapSecurityAdvisories as A, makeRandomJobId as C, mapGroupsFromDependabotConfigToJobConfig as D, mapExperiments as E, getBranchNameForUpdate as F, sanitizeRef as I, DEPENDABOT_DEFAULT_AUTHOR_EMAIL as L, mapVersionStrategyToRequirementsUpdateStrategy as M, DEFAULT_EXPERIMENTS as N, mapIgnoreConditionsFromDependabotConfigToJobConfig as O, parseExperiments as P, DEPENDABOT_DEFAULT_AUTHOR_NAME as R, DependabotJobBuilder as S, mapCredentials as T, DependabotRecordUpdateJobErrorSchema as _, DependabotClosePullRequestSchema as a, DependabotUpdateDependencyListSchema as b, DependabotDependencySubmissionSchema as c, DependabotIncrementMetricSchema as d, DependabotMarkAsProcessedSchema as f, DependabotRecordEcosystemVersionsSchema as g, DependabotRecordEcosystemMetaSchema as h, DependabotClosePullRequestReasonEnum as i, mapSourceFromDependabotConfigToJobConfig as j, mapPackageEcosystemToPackageManager as k, DependabotEcosystemMetaSchema as l, DependabotRecordCooldownMetaSchema as m, DependabotRequestTypeSchema as n, DependabotCreatePullRequestSchema as o, DependabotMetricSchema as p, createApiServerApp as r, DependabotDependencyFileSchema as s, DependabotRequestSchema as t, DependabotEcosystemVersionManagerSchema as u, DependabotRecordUpdateJobUnknownErrorSchema as v, mapAllowedUpdatesFromDependabotConfigToJobConfig as w, DependabotUpdatePullRequestSchema as x, DependabotRecordUpdateJobWarningSchema as y };
-//# sourceMappingURL=dependabot-_TVZhG0L.mjs.map
+export { mapSecurityAdvisories as A, makeRandomJobId as C, mapGroupsFromDependabotConfigToJobConfig as D, mapExperiments as E, setExperiment as F, getBranchNameForUpdate as I, sanitizeRef as L, mapVersionStrategyToRequirementsUpdateStrategy as M, DEFAULT_EXPERIMENTS as N, mapIgnoreConditionsFromDependabotConfigToJobConfig as O, parseExperiments as P, DEPENDABOT_DEFAULT_AUTHOR_EMAIL as R, DependabotJobBuilder as S, mapCredentials as T, DependabotRecordUpdateJobErrorSchema as _, DependabotClosePullRequestSchema as a, DependabotUpdateDependencyListSchema as b, DependabotDependencySubmissionSchema as c, DependabotIncrementMetricSchema as d, DependabotMarkAsProcessedSchema as f, DependabotRecordEcosystemVersionsSchema as g, DependabotRecordEcosystemMetaSchema as h, DependabotClosePullRequestReasonEnum as i, mapSourceFromDependabotConfigToJobConfig as j, mapPackageEcosystemToPackageManager as k, DependabotEcosystemMetaSchema as l, DependabotRecordCooldownMetaSchema as m, DependabotRequestTypeSchema as n, DependabotCreatePullRequestSchema as o, DependabotMetricSchema as p, createApiServerApp as r, DependabotDependencyFileSchema as s, DependabotRequestSchema as t, DependabotEcosystemVersionManagerSchema as u, DependabotRecordUpdateJobUnknownErrorSchema as v, mapAllowedUpdatesFromDependabotConfigToJobConfig as w, DependabotUpdatePullRequestSchema as x, DependabotRecordUpdateJobWarningSchema as y, DEPENDABOT_DEFAULT_AUTHOR_NAME as z };
+//# sourceMappingURL=dependabot-E0nM5Xbb.mjs.map

package/dist/dependabot-E0nM5Xbb.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"dependabot-E0nM5Xbb.mjs","names":["branchName: string","crypto","DEFAULT_EXPERIMENTS: DependabotExperiments","updatingPullRequest: boolean","updateDependencyGroupName: string | null","updateDependencyNames: string[] | null","vulnerabilities: SecurityVulnerability[] | undefined","success: boolean"],"sources":["../src/dependabot/author.ts","../src/dependabot/branch-name.ts","../src/dependabot/experiments.ts","../src/dependabot/job-builder.ts","../src/dependabot/update.ts","../src/dependabot/server.ts"],"sourcesContent":["export type GitAuthor = {\n  name: string;\n  email: string;\n};\n\nexport const DEPENDABOT_DEFAULT_AUTHOR_EMAIL = 'noreply@github.com';\nexport const DEPENDABOT_DEFAULT_AUTHOR_NAME = 'dependabot[bot]';\n","import * as crypto from 'node:crypto';\nimport type { PackageEcosystem } from './config';\nimport type { DependabotExistingPR } from './job';\n\n// TODO: figure out how to handle IDENTIFIER field (in a group) in branch naming\n// Docs: https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#groups--\n// -> An identifier for a group is used in branch names and pull request titles.\n\nexport function getBranchNameForUpdate(\n  packageEcosystem: PackageEcosystem,\n  targetBranchName: string | undefined,\n  directory: string | undefined,\n  dependencyGroupName: string | undefined,\n  dependencies: DependabotExistingPR[],\n  separator: string = '/',\n): string {\n  // Based on dependabot-core implementation:\n  // https://github.com/dependabot/dependabot-core/blob/main/common/lib/dependabot/pull_request_creator/branch_namer/solo_strategy.rb\n  // https://github.com/dependabot/dependabot-core/blob/main/common/lib/dependabot/pull_request_creator/branch_namer/dependency_group_strategy.rb\n  let branchName: string;\n  const branchNameMightBeTooLong = dependencyGroupName || dependencies.length > 1;\n  if (branchNameMightBeTooLong) {\n    // Group/multi dependency update\n    // e.g. dependabot/nuget/main/microsoft-3b49c54d9e\n    const dependencyDigest = crypto\n      .createHash('md5')\n      .update(dependencies.map((d) => `${d['dependency-name']}-${d['dependency-version']}`).join(','))\n      .digest('hex')\n      .substring(0, 10);\n    branchName = `${dependencyGroupName || 'multi'}-${dependencyDigest}`;\n  } else {\n    // Single dependency update\n    // e.g. dependabot/nuget/main/Microsoft.Extensions.Logging-1.0.0\n    const dependencyNames = dependencies\n      .map((d) => d['dependency-name'])\n      .join('-and-')\n      .replace(/[:[]]/g, '-') // Replace `:` and `[]` with `-`\n      .replace(/@/g, ''); // Remove `@`\n    const versionSuffix = dependencies[0]?.removed ? 'removed' : dependencies[0]?.['dependency-version'];\n    branchName = `${dependencyNames}-${versionSuffix}`;\n  }\n\n  return sanitizeRef(\n    [\n      'dependabot',\n      packageEcosystem,\n      targetBranchName,\n      // normalize directory to remove leading/trailing slashes and replace remaining ones with the separator\n      directory\n        ? directory\n            .split('/')\n            .filter((part) => part.length > 0)\n            .join(separator)\n        : undefined,\n      branchName,\n    ],\n    separator,\n  );\n}\n\nexport function sanitizeRef(refParts: (string | undefined)[], separator: string): string {\n  // Based on dependabot-core implementation:\n  // https://github.com/dependabot/dependabot-core/blob/fc31ae64f492dc977cfe6773ab13fb6373aabec4/common/lib/dependabot/pull_request_creator/branch_namer/base.rb#L99\n\n  // This isn't a complete implementation of git's ref validation, but it\n  // covers most cases that crop up. Its list of allowed characters is a\n  // bit stricter than git's, but that's for cosmetic reasons.\n  return (\n    refParts\n      // Join the parts with the separator, ignore empty parts\n      .filter((p) => p && p.trim().length > 0)\n      .join(separator)\n      // Remove forbidden characters (those not already replaced elsewhere)\n      .replace(/[^A-Za-z0-9/\\-_.(){}]/g, '')\n      // Slashes can't be followed by periods\n      .replace(/\\/\\./g, '/dot-')\n      // Squeeze out consecutive periods and slashes\n      .replace(/\\.+/g, '.')\n      .replace(/\\/+/g, '/')\n      // Trailing periods are forbidden\n      .replace(/\\.$/, '')\n  );\n}\n","import type { DependabotExperiments } from './job';\n\n// The default experiments known to be used by the GitHub Dependabot service.\n// This changes often, update as needed by extracting them from a Dependabot GitHub Action run.\n//  e.g. https://github.com/mburumaxwell/dependabot-azure-devops/actions/workflows/dependabot/dependabot-updates\nexport const DEFAULT_EXPERIMENTS: DependabotExperiments = {\n  'record-ecosystem-versions': true,\n  'record-update-job-unknown-error': true,\n  'proxy-cached': true,\n  'dependency-change-validation': true,\n  'enable-file-parser-python-local': true,\n  'npm-fallback-version-above-v6': true,\n  'enable-record-ecosystem-meta': true,\n  'enable-corepack-for-npm-and-yarn': true,\n  'enable-shared-helpers-command-timeout': true,\n  'enable-dependabot-setting-up-cronjob': true,\n  'enable-engine-version-detection': true,\n  'avoid-duplicate-updates-package-json': true,\n  'allow-refresh-for-existing-pr-dependencies': true,\n  'allow-refresh-group-with-all-dependencies': true,\n  'exclude-local-composer-packages': true,\n  'enable-enhanced-error-details-for-updater': true,\n  'gradle-lockfile-updater': true,\n  'enable-exclude-paths-subdirectory-manifest-files': true,\n  'group-membership-enforcement': true,\n  'deprecate-close-command': true,\n  'deprecate-reopen-command': true,\n  'deprecate-merge-command': true,\n  'deprecate-cancel-merge-command': true,\n  'deprecate-squash-merge-command': true,\n};\n\n/**\n * Parses a comma-separated list of key=value pairs representing experiments.\n * @param raw A comma-separated list of key=value pairs representing experiments.\n * @returns A map of experiment names to their values.\n */\nexport function parseExperiments(raw?: string): DependabotExperiments | undefined {\n  return raw\n    ?.split(',')\n    .filter((entry) => entry.trim() !== '') // <-- filter out empty entries\n    .reduce((acc, cur) => {\n      const [key, value] = cur.split('=', 2);\n      acc[key!] = value || true;\n      return acc;\n    }, {} as DependabotExperiments);\n}\n\n/**\n * Set experiment in the given experiments map.\n * If the experiments map is undefined, a new map will be created.\n * @param experiments The experiments map to set the experiment in.\n * @param name The name of the experiment to set.\n * @param value The value of the experiment to set. Defaults to true.\n * @returns The updated experiments map.\n */\nexport function setExperiment(\n  experiments: DependabotExperiments | undefined,\n  name: string,\n  value: boolean | string = true,\n): DependabotExperiments {\n  return {\n    ...(experiments || {}),\n    // always add the experiment, even if the value is false or an empty string\n    // this allows explicit disabling of experiments\n    [name]: value,\n  };\n}\n","import type { SecurityVulnerability } from '@/github';\nimport type {\n  DependabotAllowCondition,\n  DependabotConfig,\n  DependabotGroup,\n  DependabotIgnoreCondition,\n  DependabotRegistry,\n  DependabotUpdate,\n  PackageEcosystem,\n  VersioningStrategy,\n} from './config';\nimport { setExperiment } from './experiments';\nimport type {\n  DependabotAllowed,\n  DependabotCondition,\n  DependabotCredential,\n  DependabotExistingGroupPR,\n  DependabotExistingPR,\n  DependabotExperiments,\n  DependabotGroupJob,\n  DependabotJobConfig,\n  DependabotPackageManager,\n  DependabotSecurityAdvisory,\n  DependabotSource,\n  DependabotSourceProvider,\n} from './job';\n\nexport type DependabotSourceInfo = {\n  provider: DependabotSourceProvider;\n  hostname: string;\n  'api-endpoint': string;\n  'repository-slug': string;\n};\n\nexport type DependabotJobBuilderOutput = {\n  job: DependabotJobConfig;\n  credentials: DependabotCredential[];\n};\n\n/**\n * Class for building dependabot job objects\n */\nexport class DependabotJobBuilder {\n  private readonly config: DependabotConfig;\n  private readonly update: DependabotUpdate;\n  private readonly experiments: DependabotExperiments;\n  private readonly debug: boolean;\n\n  private readonly packageManager: DependabotPackageManager;\n  private readonly source: DependabotSource;\n  private readonly credentials: DependabotCredential[];\n\n  constructor({\n    source,\n    config,\n    update,\n    systemAccessUser,\n    systemAccessToken,\n    githubToken,\n    experiments,\n    debug,\n  }: {\n    source: DependabotSourceInfo;\n    config: DependabotConfig;\n    update: DependabotUpdate;\n    experiments: DependabotExperiments;\n    systemAccessUser?: string;\n    systemAccessToken?: string;\n    githubToken?: string;\n    /** Determines if verbose log messages are logged */\n    debug: boolean;\n  }) {\n    this.config = config;\n    this.update = update;\n    this.debug = debug;\n\n    this.experiments = setExperiment(experiments, 'enable_beta_ecosystems', config['enable-beta-ecosystems']);\n\n    this.packageManager = mapPackageEcosystemToPackageManager(update['package-ecosystem']);\n    this.source = mapSourceFromDependabotConfigToJobConfig(source, update);\n    this.credentials = mapCredentials({\n      sourceHostname: source.hostname,\n      systemAccessUser,\n      systemAccessToken,\n      githubToken,\n      registries: config.registries,\n    });\n  }\n\n  /**\n   * Create a dependabot update job that updates nothing, but will discover the dependency list for a package ecosystem\n   */\n  public forDependenciesList({\n    id,\n    command,\n  }: {\n    id?: string;\n    command: DependabotJobConfig['command'];\n  }): DependabotJobBuilderOutput {\n    id ??= makeRandomJobId();\n    return {\n      job: {\n        id: id,\n        command: command,\n        'package-manager': this.packageManager,\n        'updating-a-pull-request': false,\n        dependencies: null,\n        'allowed-updates': [{ 'dependency-type': 'direct', 'update-type': 'all' }],\n        'ignore-conditions': [{ 'dependency-name': '*' }],\n        'security-updates-only': false,\n        'security-advisories': [],\n        source: this.source,\n        'update-subdependencies': false,\n        'existing-pull-requests': [],\n        'existing-group-pull-requests': [],\n        experiments: this.experiments,\n        'requirements-update-strategy': null,\n        'lockfile-only': false,\n        'commit-message-options': {\n          prefix: null,\n          'prefix-development': null,\n          'include-scope': null,\n        },\n        'vendor-dependencies': false,\n        'repo-private': true,\n        debug: this.debug,\n      },\n      credentials: this.credentials,\n    };\n  }\n\n  /**\n   * Create a dependabot update job that updates all dependencies for a package ecosystem\n   */\n  public forUpdate({\n    id,\n    command,\n    dependencyNamesToUpdate,\n    existingPullRequests,\n    pullRequestToUpdate,\n    securityVulnerabilities,\n  }: {\n    id?: string;\n    command: DependabotJobConfig['command'];\n    dependencyNamesToUpdate?: string[];\n    existingPullRequests: (DependabotExistingPR[] | DependabotExistingGroupPR)[];\n    pullRequestToUpdate?: DependabotExistingPR[] | DependabotExistingGroupPR;\n    securityVulnerabilities?: SecurityVulnerability[];\n  }): DependabotJobBuilderOutput {\n    id ??= makeRandomJobId();\n    const securityOnlyUpdate = this.update['open-pull-requests-limit'] === 0;\n\n    let updatingPullRequest: boolean;\n    let updateDependencyGroupName: string | null = null;\n    let updateDependencyNames: string[] | null;\n    let vulnerabilities: SecurityVulnerability[] | undefined;\n\n    if (pullRequestToUpdate) {\n      updatingPullRequest = true;\n      updateDependencyGroupName = Array.isArray(pullRequestToUpdate)\n        ? null\n        : pullRequestToUpdate['dependency-group-name'];\n      updateDependencyNames = (\n        Array.isArray(pullRequestToUpdate) ? pullRequestToUpdate : pullRequestToUpdate.dependencies\n      )?.map((d) => d['dependency-name']);\n      vulnerabilities = securityVulnerabilities?.filter((v) => updateDependencyNames?.includes(v.package.name));\n    } else {\n      updatingPullRequest = false;\n      const names = dependencyNamesToUpdate?.length ? dependencyNamesToUpdate : null;\n      updateDependencyNames =\n        securityOnlyUpdate && names\n          ? names?.filter((d) => securityVulnerabilities?.find((v) => v.package.name === d))\n          : names;\n      vulnerabilities = securityVulnerabilities;\n    }\n\n    return {\n      job: {\n        id: id,\n        command: command,\n        'package-manager': this.packageManager,\n        'updating-a-pull-request': updatingPullRequest || false,\n        'dependency-group-to-refresh': updateDependencyGroupName,\n        'dependency-groups': mapGroupsFromDependabotConfigToJobConfig(this.update.groups),\n        dependencies: updateDependencyNames,\n        'allowed-updates': mapAllowedUpdatesFromDependabotConfigToJobConfig(this.update.allow, securityOnlyUpdate),\n        'ignore-conditions': mapIgnoreConditionsFromDependabotConfigToJobConfig(this.update.ignore),\n        'security-updates-only': securityOnlyUpdate,\n        'security-advisories': mapSecurityAdvisories(vulnerabilities),\n        source: this.source,\n        'update-subdependencies': false,\n        'existing-pull-requests': existingPullRequests.filter((pr) => Array.isArray(pr)),\n        'existing-group-pull-requests': existingPullRequests.filter(\n          (pr): pr is DependabotExistingGroupPR => !Array.isArray(pr),\n        ),\n        'commit-message-options': {\n          prefix: this.update['commit-message']?.prefix ?? null,\n          'prefix-development': this.update['commit-message']?.['prefix-development'] ?? null,\n          'include-scope':\n            this.update['commit-message']?.include?.toLocaleLowerCase()?.trim() === 'scope' ? true : null,\n        },\n        cooldown: this.update.cooldown,\n        experiments: mapExperiments(this.experiments),\n        'reject-external-code':\n          this.update['insecure-external-code-execution']?.toLocaleLowerCase()?.trim() === 'allow',\n        'requirements-update-strategy': mapVersionStrategyToRequirementsUpdateStrategy(\n          this.update['versioning-strategy'],\n        ),\n        'lockfile-only': this.update['versioning-strategy'] === 'lockfile-only',\n        'vendor-dependencies': this.update.vendor ?? false,\n        'repo-private': true,\n        debug: this.debug,\n        'proxy-log-response-body-on-auth-failure': true,\n        'max-updater-run-time': 2700,\n        'enable-beta-ecosystems': this.config['enable-beta-ecosystems'] || false,\n        // Updates across ecosystems is still in development\n        // See https://github.com/dependabot/dependabot-core/issues/8126\n        //     https://github.com/dependabot/dependabot-core/pull/12339\n        // It needs to merged in the core repo first before we support it\n        // However, to match current job configs and to prevent surprises, we disable it\n        'multi-ecosystem-update': false,\n        'exclude-paths': this.update['exclude-paths'],\n      },\n      credentials: this.credentials,\n    };\n  }\n}\n\nexport function mapPackageEcosystemToPackageManager(ecosystem: PackageEcosystem): DependabotPackageManager {\n  // Map the dependabot config \"package ecosystem\" to the equivalent dependabot-core/cli \"package manager\".\n  // Config values: https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#package-ecosystem-\n  // Core/CLI values: https://github.com/dependabot/dependabot-core/blob/main/common/lib/dependabot/config/file.rb#L60-L81\n  switch (ecosystem) {\n    case 'docker-compose':\n      return 'docker_compose';\n    case 'dotnet-sdk':\n      return 'dotnet_sdk';\n    case 'github-actions':\n      return 'github_actions';\n    case 'gitsubmodule':\n      return 'submodules';\n    case 'gomod':\n      return 'go_modules';\n    case 'mix':\n      return 'hex';\n    case 'npm':\n      return 'npm_and_yarn';\n    // Additional aliases, sometimes used for convenience\n    case 'pipenv':\n      return 'pip';\n    case 'pip-compile':\n      return 'pip';\n    case 'poetry':\n      return 'pip';\n    case 'pnpm':\n      return 'npm_and_yarn';\n    case 'rust-toolchain':\n      return 'rust_toolchain';\n    case 'yarn':\n      return 'npm_and_yarn';\n    default:\n      return ecosystem;\n  }\n}\n\nexport function mapSourceFromDependabotConfigToJobConfig(\n  source: DependabotSourceInfo,\n  update: DependabotUpdate,\n): DependabotSource {\n  return {\n    provider: source.provider,\n    'api-endpoint': source['api-endpoint'],\n    hostname: source.hostname,\n    repo: source['repository-slug'],\n    branch: update['target-branch'],\n    commit: null, // use latest commit of target branch\n    directory: update.directory,\n    directories: update.directories,\n  };\n}\n\nexport function mapVersionStrategyToRequirementsUpdateStrategy(strategy?: VersioningStrategy): string | null {\n  if (!strategy) return null;\n  switch (strategy) {\n    case 'auto':\n      return null;\n    case 'increase':\n      return 'bump_versions';\n    case 'increase-if-necessary':\n      return 'bump_versions_if_necessary';\n    case 'lockfile-only':\n      return 'lockfile_only';\n    case 'widen':\n      return 'widen_ranges';\n    default:\n      throw new Error(`Invalid dependabot.yaml versioning strategy option '${strategy}'`);\n  }\n}\n\nexport function mapGroupsFromDependabotConfigToJobConfig(\n  dependencyGroups?: Record<string, DependabotGroup | null>,\n): DependabotGroupJob[] {\n  if (!dependencyGroups || !Object.keys(dependencyGroups).length) return [];\n  return Object.keys(dependencyGroups)\n    .filter((name) => dependencyGroups[name])\n    .map((name) => {\n      const group = dependencyGroups[name]!;\n      return {\n        name: name,\n        'applies-to': group['applies-to'],\n        rules: {\n          patterns: group.patterns?.length ? group.patterns : ['*'],\n          'exclude-patterns': group['exclude-patterns'],\n          'dependency-type': group['dependency-type'],\n          'update-types': group['update-types'],\n        },\n      } satisfies DependabotGroupJob;\n    });\n}\n\nexport function mapAllowedUpdatesFromDependabotConfigToJobConfig(\n  allowedUpdates?: DependabotAllowCondition[],\n  securityOnlyUpdate?: boolean,\n): DependabotAllowed[] {\n  // If no allow conditions are specified, update direct dependencies by default; This is what GitHub does.\n  // NOTE: 'update-type' appears to be a deprecated config, but still appears in the dependabot-core model and GitHub Dependabot job logs.\n  //       See: https://github.com/dependabot/dependabot-core/blob/b3a0c1f86c20729494097ebc695067099f5b4ada/updater/lib/dependabot/job.rb#L253C1-L257C78\n  if (!allowedUpdates) {\n    return [\n      {\n        'dependency-type': 'direct',\n        'update-type': securityOnlyUpdate ? 'security' : 'all',\n      },\n    ];\n  }\n  return allowedUpdates.map((allow) => {\n    return {\n      'dependency-name': allow['dependency-name'],\n      'dependency-type': allow['dependency-type'],\n      'update-type': allow['update-type'],\n    };\n  });\n}\n\nexport function mapIgnoreConditionsFromDependabotConfigToJobConfig(\n  ignoreConditions?: DependabotIgnoreCondition[],\n): DependabotCondition[] {\n  if (!ignoreConditions) return [];\n  return ignoreConditions.map((ignore) => {\n    return {\n      source: ignore.source,\n      'updated-at': ignore['updated-at'],\n      'dependency-name': ignore['dependency-name'] ?? '*',\n      'update-types': ignore['update-types'],\n\n      // The dependabot.yml config docs are not very clear about acceptable values; after scanning dependabot-core and dependabot-cli,\n      // this could either be a single version string (e.g. '>1.0.0'), or multiple version strings separated by commas (e.g. '>1.0.0, <2.0.0')\n      'version-requirement': Array.isArray(ignore.versions) ? (<string[]>ignore.versions)?.join(', ') : ignore.versions,\n    } satisfies DependabotCondition;\n  });\n}\n\nexport function mapExperiments(experiments?: DependabotExperiments): DependabotExperiments {\n  experiments ??= {};\n  return Object.keys(experiments).reduce((acc, key) => {\n    // Experiment values are known to be either 'true', 'false', or a string value.\n    // If the value is 'true' or 'false', convert it to a boolean type so that dependabot-core handles it correctly.\n    const value = experiments[key];\n    if (typeof value === 'string' && value?.toLocaleLowerCase() === 'true') {\n      acc[key] = true;\n    } else if (typeof value === 'string' && value?.toLocaleLowerCase() === 'false') {\n      acc[key] = false;\n    } else {\n      if (typeof value === 'string' || typeof value === 'boolean') acc[key] = value;\n    }\n    return acc;\n  }, {} as DependabotExperiments);\n}\n\nexport function mapSecurityAdvisories(securityVulnerabilities?: SecurityVulnerability[]): DependabotSecurityAdvisory[] {\n  if (!securityVulnerabilities) return [];\n\n  // A single security advisory can cause a vulnerability in multiple versions of a package.\n  // We need to map each unique security advisory to a list of affected-versions and patched-versions.\n  const vulnerabilitiesGroupedByPackageNameAndAdvisoryId = new Map<string, SecurityVulnerability[]>();\n  for (const vuln of securityVulnerabilities) {\n    const key = `${vuln.package.name}/${vuln.advisory.identifiers.map((i) => `${i.type}:${i.value}`).join('/')}`;\n    if (!vulnerabilitiesGroupedByPackageNameAndAdvisoryId.has(key)) {\n      vulnerabilitiesGroupedByPackageNameAndAdvisoryId.set(key, []);\n    }\n    vulnerabilitiesGroupedByPackageNameAndAdvisoryId.get(key)!.push(vuln);\n  }\n  return Array.from(vulnerabilitiesGroupedByPackageNameAndAdvisoryId.values()).map((vulns) => {\n    return {\n      'dependency-name': vulns[0]!.package.name,\n      'affected-versions': vulns.map((v) => v.vulnerableVersionRange).filter((v) => v && v.length > 0),\n      'patched-versions': vulns\n        .map((v) => v.firstPatchedVersion?.identifier)\n        .filter((v) => v && v.length > 0)\n        .map((v) => v!),\n      'unaffected-versions': [],\n    } satisfies DependabotSecurityAdvisory;\n  });\n}\n\nexport function mapCredentials({\n  sourceHostname,\n  systemAccessUser,\n  systemAccessToken,\n  githubToken,\n  registries,\n}: {\n  sourceHostname: string;\n  systemAccessUser?: string;\n  systemAccessToken?: string;\n  githubToken?: string;\n  registries?: Record<string, DependabotRegistry>;\n}): DependabotCredential[] {\n  const credentials = [];\n\n  // Required to authenticate with the git repository when cloning the source code\n  if (systemAccessToken) {\n    credentials.push({\n      type: 'git_source',\n      host: sourceHostname,\n      username: (systemAccessUser ?? '').trim()?.length > 0 ? systemAccessUser : 'x-access-token',\n      password: systemAccessToken,\n    });\n  }\n\n  // Required to avoid rate-limiting errors when generating pull request descriptions (e.g. fetching release notes, commit messages, etc)\n  if (githubToken) {\n    credentials.push({\n      type: 'git_source',\n      host: 'github.com',\n      username: 'x-access-token',\n      password: githubToken,\n    });\n  }\n  if (registries) {\n    // TODO: only registries for the current update should be set\n    // Required to authenticate with private package feeds when finding the latest version of dependencies.\n    // The registries have already been worked on (see parseRegistries) so there is no need to do anything else.\n    credentials.push(...Object.values(registries));\n  }\n\n  return credentials;\n}\n\nexport function makeRandomJobId(): string {\n  const array = new Uint32Array(1);\n  crypto.getRandomValues(array);\n  return `${array[0]! % 10000000000}`; // Limit to 10 digits to match GitHub's job IDs\n}\n","import { z } from 'zod';\nimport { DependabotDependencySchema, DependabotPackageManagerSchema } from './job';\n\n// we use nullish() because it does optional() and allows the value to be set to null\n\nexport const DependabotDependencyFileSchema = z.object({\n  // https://github.com/dependabot/dependabot-core/blob/5e2711f9913cc387acb7cb0d29d51fb52d235ef2/common/lib/dependabot/dependency_file.rb#L14-L15\n  content: z.string().nullish(),\n  content_encoding: z\n    .enum([\n      'utf-8',\n      'base64',\n      // for some reason, some files (e.g. txt in gomod) are marked as empty string encoding\n      '',\n    ])\n    .nullish(),\n  deleted: z.boolean().nullish(),\n  directory: z.string(),\n  name: z.string(),\n  operation: z.enum(['update', 'create', 'delete']),\n  support_file: z.boolean().nullish(),\n  vendored_file: z.boolean().nullish(),\n  symlink_target: z.string().nullish(),\n  type: z.string().nullish(),\n  mode: z\n    .enum({\n      executable: '100755',\n      file: '100644',\n      directory: '040000',\n      submodule: '160000',\n      symlink: '120000',\n    })\n    .or(z.string())\n    .nullish(),\n});\nexport type DependabotDependencyFile = z.infer<typeof DependabotDependencyFileSchema>;\n\nexport const DependabotUpdateDependencyListSchema = z.object({\n  dependencies: DependabotDependencySchema.array(),\n  dependency_files: z.string().array().nullish(),\n});\nexport type DependabotUpdateDependencyList = z.infer<typeof DependabotUpdateDependencyListSchema>;\n\nexport const DependabotDependencySubmissionSchema = z.object({\n  version: z.number(),\n  sha: z.string(),\n  ref: z.string(),\n  job: z.object({\n    correlator: z.string(),\n    id: z.string(),\n  }),\n  detector: z.object({\n    name: z.string(),\n    version: z.string(),\n    url: z.string(),\n  }),\n  manifests: z.object({\n    name: z.string().nullish(),\n    file: z.object({ source_location: z.string() }).nullish(),\n    metadata: z.object({ ecosystem: DependabotPackageManagerSchema }).nullish(),\n    resolved: z\n      .object({\n        package_url: z.string(),\n        relationship: z.enum(['direct', 'indirect']),\n        scope: z.enum(['runtime', 'development']),\n        dependencies: DependabotDependencySchema.array(),\n      })\n      .nullish(),\n  }),\n});\nexport type DependabotDependencySubmission = z.infer<typeof DependabotDependencySubmissionSchema>;\n\nexport const DependabotCreatePullRequestSchema = z.object({\n  'base-commit-sha': z.string(),\n  dependencies: DependabotDependencySchema.array(),\n  'updated-dependency-files': DependabotDependencyFileSchema.array(),\n  'pr-title': z.string(),\n  'pr-body': z.string().nullish(),\n  'commit-message': z.string(),\n  'dependency-group': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotCreatePullRequest = z.infer<typeof DependabotCreatePullRequestSchema>;\n\nexport const DependabotUpdatePullRequestSchema = z.object({\n  'base-commit-sha': z.string(),\n  'dependency-names': z.string().array(),\n  'updated-dependency-files': DependabotDependencyFileSchema.array(),\n  'pr-title': z.string().nullish(), // this is usually excluded when working with dependabot-cli and an empty string if the API\n  'pr-body': z.string().nullish(), // this is usually excluded when working with dependabot-cli and an empty string if the API\n  'commit-message': z.string().nullish(), // this is usually excluded when working with dependabot-cli and an empty string if the API\n  'dependency-group': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotUpdatePullRequest = z.infer<typeof DependabotUpdatePullRequestSchema>;\n\nexport const DependabotClosePullRequestReasonEnum = z.enum([\n  'dependencies_changed',\n  'dependency_group_empty',\n  'dependency_removed',\n  'up_to_date',\n  'update_no_longer_possible',\n]);\nexport type DependabotClosePullRequestReason = z.infer<typeof DependabotClosePullRequestReasonEnum>;\nexport const DependabotClosePullRequestSchema = z.object({\n  'dependency-names': z.string().array(),\n  reason: DependabotClosePullRequestReasonEnum.nullish(),\n});\nexport type DependabotClosePullRequest = z.infer<typeof DependabotClosePullRequestSchema>;\n\nexport const DependabotMarkAsProcessedSchema = z.object({\n  'base-commit-sha': z.string().nullish(),\n});\nexport type DependabotMarkAsProcessed = z.infer<typeof DependabotMarkAsProcessedSchema>;\n\nexport const DependabotRecordUpdateJobErrorSchema = z.object({\n  'error-type': z.string(),\n  'error-details': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotRecordUpdateJobError = z.infer<typeof DependabotRecordUpdateJobErrorSchema>;\n\nexport const DependabotRecordUpdateJobWarningSchema = z.object({\n  'warn-type': z.string(),\n  'warn-title': z.string(),\n  'warn-description': z.string(),\n});\nexport type DependabotRecordUpdateJobWarning = z.infer<typeof DependabotRecordUpdateJobWarningSchema>;\n\nexport const DependabotRecordUpdateJobUnknownErrorSchema = z.object({\n  'error-type': z.string(),\n  'error-details': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotRecordUpdateJobUnknownError = z.infer<typeof DependabotRecordUpdateJobUnknownErrorSchema>;\n\nexport const DependabotRecordEcosystemVersionsSchema = z.object({\n  ecosystem_versions: z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotRecordEcosystemVersions = z.infer<typeof DependabotRecordEcosystemVersionsSchema>;\n\nexport const DependabotEcosystemVersionManagerSchema = z.object({\n  name: z.string(),\n  version: z.string(),\n  raw_version: z.string(),\n  requirement: z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotEcosystemVersionManager = z.infer<typeof DependabotEcosystemVersionManagerSchema>;\n\nexport const DependabotEcosystemMetaSchema = z.object({\n  name: z.string(),\n  package_manager: DependabotEcosystemVersionManagerSchema.nullish(),\n  language: DependabotEcosystemVersionManagerSchema.nullish(),\n  version: DependabotEcosystemVersionManagerSchema.nullish(),\n});\nexport type DependabotEcosystemMeta = z.infer<typeof DependabotEcosystemMetaSchema>;\n\nexport const DependabotRecordEcosystemMetaSchema = z.object({\n  ecosystem: DependabotEcosystemMetaSchema,\n});\nexport type DependabotRecordEcosystemMeta = z.infer<typeof DependabotRecordEcosystemMetaSchema>;\n\nexport const DependabotRecordCooldownMetaSchema = z.object({\n  cooldown: z.object({\n    ecosystem_name: DependabotPackageManagerSchema,\n    config: z.object({\n      default_days: z.number(),\n      semver_major_days: z.number(),\n      semver_minor_days: z.number(),\n      semver_patch_days: z.number(),\n    }),\n  }),\n});\nexport type DependabotRecordCooldownMeta = z.infer<typeof DependabotRecordCooldownMetaSchema>;\n\nexport const DependabotIncrementMetricSchema = z.object({\n  metric: z.string(),\n  tags: z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotIncrementMetric = z.infer<typeof DependabotIncrementMetricSchema>;\n\nexport const DependabotMetricSchema = z.object({\n  metric: z.string(),\n  type: z.enum(['increment', 'gauge', 'distribution', 'histogram']),\n  value: z.number().nullish(),\n  values: z.number().array().nullish(),\n  tags: z.record(z.string(), z.string()).nullish(),\n});\nexport type DependabotMetric = z.infer<typeof DependabotMetricSchema>;\n","import { zValidator } from '@hono/zod-validator';\nimport { Hono } from 'hono';\nimport { type ZodType, z } from 'zod';\nimport { logger } from '@/logger';\nimport type { DependabotCredential, DependabotJobConfig } from './job';\nimport {\n  DependabotClosePullRequestSchema,\n  DependabotCreatePullRequestSchema,\n  DependabotDependencySubmissionSchema,\n  DependabotIncrementMetricSchema,\n  DependabotMarkAsProcessedSchema,\n  DependabotMetricSchema,\n  DependabotRecordCooldownMetaSchema,\n  DependabotRecordEcosystemMetaSchema,\n  DependabotRecordEcosystemVersionsSchema,\n  DependabotRecordUpdateJobErrorSchema,\n  DependabotRecordUpdateJobUnknownErrorSchema,\n  DependabotRecordUpdateJobWarningSchema,\n  DependabotUpdateDependencyListSchema,\n  DependabotUpdatePullRequestSchema,\n} from './update';\n\nexport const DependabotRequestTypeSchema = z.enum([\n  'create_pull_request',\n  'update_pull_request',\n  'close_pull_request',\n  'record_update_job_error',\n  'record_update_job_warning',\n  'record_update_job_unknown_error',\n  'mark_as_processed',\n  'update_dependency_list',\n  'create_dependency_submission',\n  'record_ecosystem_versions',\n  'increment_metric',\n  'record_ecosystem_meta',\n  'record_cooldown_meta',\n  'record_metrics', // from the runner\n]);\nexport type DependabotRequestType = z.infer<typeof DependabotRequestTypeSchema>;\n\nexport const DependabotRequestSchema = z.discriminatedUnion('type', [\n  z.object({ type: z.literal('create_pull_request'), data: DependabotCreatePullRequestSchema }),\n  z.object({ type: z.literal('update_pull_request'), data: DependabotUpdatePullRequestSchema }),\n  z.object({ type: z.literal('close_pull_request'), data: DependabotClosePullRequestSchema }),\n  z.object({ type: z.literal('record_update_job_error'), data: DependabotRecordUpdateJobErrorSchema }),\n  z.object({ type: z.literal('record_update_job_warning'), data: DependabotRecordUpdateJobWarningSchema }),\n  z.object({ type: z.literal('record_update_job_unknown_error'), data: DependabotRecordUpdateJobUnknownErrorSchema }),\n  z.object({ type: z.literal('mark_as_processed'), data: DependabotMarkAsProcessedSchema }),\n  z.object({ type: z.literal('update_dependency_list'), data: DependabotUpdateDependencyListSchema }),\n  z.object({ type: z.literal('create_dependency_submission'), data: DependabotDependencySubmissionSchema }),\n  z.object({ type: z.literal('record_ecosystem_versions'), data: DependabotRecordEcosystemVersionsSchema }),\n  z.object({ type: z.literal('record_ecosystem_meta'), data: DependabotRecordEcosystemMetaSchema.array() }),\n  z.object({ type: z.literal('record_cooldown_meta'), data: DependabotRecordCooldownMetaSchema.array() }),\n  z.object({ type: z.literal('increment_metric'), data: DependabotIncrementMetricSchema }),\n  z.object({ type: z.literal('record_metrics'), data: DependabotMetricSchema.array() }), // from the runner\n]);\nexport type DependabotRequest = z.infer<typeof DependabotRequestSchema>;\n\nexport type DependabotTokenType = 'job' | 'credentials';\n\n/**\n * Function type for authenticating requests.\n * @param type - The type of authentication ('job' or 'credentials').\n * @param id - The ID of the dependabot job.\n * @param value - The authentication value (e.g., API key).\n * @returns A promise that resolves to a boolean indicating whether the authentication was successful.\n */\ntype AuthenticatorFunc = (type: DependabotTokenType, id: string, value: string) => Promise<boolean>;\n\n/**\n * Handler function for processing dependabot requests.\n * @param id - The ID of the dependabot job.\n * @param request - The dependabot request to handle.\n * @returns A promise that resolves to the result of handling the request.\n */\ntype HandlerFunc = (id: string, request: DependabotRequest) => Promise<boolean>;\n\n/**\n * Function for inspecting raw dependabot requests.\n * @param id - The ID of the dependabot job.\n * @param type - The type of dependabot request.\n * @param raw - The raw JSON data of the request.\n * @returns A promise that resolves when the operation is complete.\n */\ntype InspectRequestFunc = (id: string, type: DependabotRequestType, raw: unknown) => Promise<void>;\n\n/**\n * Function for getting a dependabot job config by ID.\n * @param id - The ID of the dependabot job.\n * @returns A promise that resolves to the dependabot job config, or undefined if not found.\n */\ntype GetJobFunc = (id: string) => Promise<DependabotJobConfig | undefined>;\n\n/**\n * Function for getting dependabot credentials by job ID.\n * @param id - The ID of the dependabot job.\n * @returns A promise that resolves to an array of dependabot credentials, or undefined if not found.\n */\ntype GetCredentialsFunc = (id: string) => Promise<DependabotCredential[] | undefined>;\n\nexport type CreateApiServerAppOptions = {\n  /**\n   * Base path for the endpoints.\n   * @default `/api/update_jobs`\n   */\n  basePath?: string;\n\n  /** Handler function for authenticating requests. */\n  authenticate: AuthenticatorFunc;\n\n  /** Function for getting a dependabot job by ID. */\n  getJob: GetJobFunc;\n\n  /** Function for getting dependabot credentials by job ID. */\n  getCredentials: GetCredentialsFunc;\n\n  /**\n   * Optional function for inspecting raw dependabot requests.\n   * Should only be used for troubleshooting.\n   * */\n  inspect?: InspectRequestFunc;\n\n  /** Handler function for processing the operations. */\n  handle: HandlerFunc;\n};\n\n/**\n * Creates an API server application for handling dependabot update jobs.\n * The endpoints in the server application have paths in the format: `/api/update_jobs/:id/{operation}`,\n * where `:id` is the job ID and `{operation}` is one of the defined operations e.g. `create_pull_request`.\n *\n * You should set the job endpoint URL in the job container to\n * `http://<host>:<port>/api/update_jobs/:id` where `<host>` and `<port>` are the host and port\n *\n * These endpoints are protected using the provided API key.\n * @param params - The parameters for creating the API server application.\n * @returns The created API server application.\n */\nexport function createApiServerApp({\n  basePath = `/api/update_jobs`,\n  authenticate,\n  getJob,\n  getCredentials,\n  inspect,\n  handle,\n}: CreateApiServerAppOptions): Hono {\n  // Setup app with base path and middleware\n  const app = new Hono().basePath(basePath);\n\n  // Handle endpoints:\n  // - POST  request to /create_pull_request\n  // - POST  request to /update_pull_request\n  // - POST  request to /close_pull_request\n  // - POST  request to /record_update_job_error\n  // - POST  request to /record_update_job_warning\n  // - POST  request to /record_update_job_unknown_error\n  // - PATCH request to /mark_as_processed\n  // - POST  request to /update_dependency_list\n  // - POST  request to /create_dependency_submission\n  // - POST  request to /record_ecosystem_versions\n  // - POST  request to /record_ecosystem_meta\n  // - POST  request to /increment_metric\n\n  function operation<T extends ZodType>(type: DependabotRequestType, schema: T, method?: string) {\n    app.on(\n      method || 'post',\n      `/:id/${type}`,\n      zValidator('param', z.object({ id: z.string() })),\n      async (context, next) => {\n        /**\n         * Do not authenticate in scenarios where the server is not using HTTPS because the\n         * dependabot proxy will not send the job token over HTTP, yet trying to get HTTPS to work\n         * with localhost (self-signed certs) against docker (host.docker.internal) is complicated.\n         */\n        const url = new URL(context.req.url);\n        const isHTTPS = url.protocol === 'https:';\n        const { id } = context.req.valid('param');\n        if (isHTTPS) {\n          const value = context.req.header('Authorization');\n          if (!value) return context.body(null, 401);\n          const valid = await authenticate('job', id, value);\n          if (!valid) return context.body(null, 403);\n        } else {\n          logger.trace(`Skipping authentication because it is not secure ${context.req.url}`);\n        }\n\n        // if inspection is provided, call it with the raw request data\n        if (inspect) {\n          await inspect(id, type, await context.req.json());\n        }\n\n        await next();\n      },\n      zValidator('json', z.object({ data: schema })),\n      async (context) => {\n        const { id } = context.req.valid('param');\n        const { data } = context.req.valid('json') as { data: z.infer<typeof schema> };\n        // biome-ignore lint/suspicious/noExplicitAny: generic\n        const success: boolean = await handle(id, { type, data: data as any });\n        return context.body(null, success ? 204 : 400);\n      },\n    );\n  }\n\n  operation('create_pull_request', DependabotCreatePullRequestSchema);\n  operation('update_pull_request', DependabotUpdatePullRequestSchema);\n  operation('close_pull_request', DependabotClosePullRequestSchema);\n  operation('record_update_job_error', DependabotRecordUpdateJobErrorSchema);\n  operation('record_update_job_warning', DependabotRecordUpdateJobWarningSchema);\n  operation('record_update_job_unknown_error', DependabotRecordUpdateJobUnknownErrorSchema);\n  operation('mark_as_processed', DependabotMarkAsProcessedSchema, 'patch');\n  operation('update_dependency_list', DependabotUpdateDependencyListSchema);\n  operation('create_dependency_submission', DependabotDependencySubmissionSchema);\n  operation('record_ecosystem_versions', DependabotRecordEcosystemVersionsSchema);\n  operation('record_ecosystem_meta', DependabotRecordEcosystemMetaSchema.array());\n  operation('record_cooldown_meta', DependabotRecordCooldownMetaSchema.array());\n  operation('increment_metric', DependabotIncrementMetricSchema);\n  operation('record_metrics', DependabotMetricSchema.array()); // from the runner\n\n  // Handle endpoints:\n  // - GET request to /details\n  // - GET request to /credentials\n  app.on(\n    'get',\n    '/:id/details',\n    zValidator('param', z.object({ id: z.string() })),\n    async (context, next) => {\n      const { id } = context.req.valid('param');\n      const value = context.req.header('Authorization');\n      if (!value) return context.body(null, 401);\n      const valid = await authenticate('job', id, value);\n      if (!valid) return context.body(null, 403);\n      await next();\n    },\n    async (context) => {\n      const { id } = context.req.valid('param');\n      const job = await getJob(id);\n      if (!job) return context.body(null, 204);\n      return context.json(job);\n    },\n  );\n  app.on(\n    'get',\n    '/:id/credentials',\n    zValidator('param', z.object({ id: z.string() })),\n    async (context, next) => {\n      const { id } = context.req.valid('param');\n      const value = context.req.header('Authorization');\n      if (!value) return context.body(null, 401);\n      const valid = await authenticate('credentials', id, value);\n      if (!valid) return context.body(null, 403);\n      await next();\n    },\n    async (context) => {\n      const { id } = context.req.valid('param');\n      const credentials = await getCredentials(id);\n      if (!credentials) return context.body(null, 204);\n      return context.json(credentials);\n    },\n  );\n\n  return app;\n}\n"],"mappings":";;;;;;;;AAKA,MAAa,kCAAkC;AAC/C,MAAa,iCAAiC;;;;ACE9C,SAAgB,uBACd,kBACA,kBACA,WACA,qBACA,cACA,YAAoB,KACZ;CAIR,IAAIA;AAEJ,KADiC,uBAAuB,aAAa,SAAS,GAChD;EAG5B,MAAM,mBAAmBC,SACtB,WAAW,MAAM,CACjB,OAAO,aAAa,KAAK,MAAM,GAAG,EAAE,mBAAmB,GAAG,EAAE,wBAAwB,CAAC,KAAK,IAAI,CAAC,CAC/F,OAAO,MAAM,CACb,UAAU,GAAG,GAAG;AACnB,eAAa,GAAG,uBAAuB,QAAQ,GAAG;OAUlD,cAAa,GANW,aACrB,KAAK,MAAM,EAAE,mBAAmB,CAChC,KAAK,QAAQ,CACb,QAAQ,UAAU,IAAI,CACtB,QAAQ,MAAM,GAAG,CAEY,GADV,aAAa,IAAI,UAAU,YAAY,aAAa,KAAK;AAIjF,QAAO,YACL;EACE;EACA;EACA;EAEA,YACI,UACG,MAAM,IAAI,CACV,QAAQ,SAAS,KAAK,SAAS,EAAE,CACjC,KAAK,UAAU,GAClB;EACJ;EACD,EACD,UACD;;AAGH,SAAgB,YAAY,UAAkC,WAA2B;AAOvF,QACE,SAEG,QAAQ,MAAM,KAAK,EAAE,MAAM,CAAC,SAAS,EAAE,CACvC,KAAK,UAAU,CAEf,QAAQ,0BAA0B,GAAG,CAErC,QAAQ,SAAS,QAAQ,CAEzB,QAAQ,QAAQ,IAAI,CACpB,QAAQ,QAAQ,IAAI,CAEpB,QAAQ,OAAO,GAAG;;;;;AC3EzB,MAAaC,sBAA6C;CACxD,6BAA6B;CAC7B,mCAAmC;CACnC,gBAAgB;CAChB,gCAAgC;CAChC,mCAAmC;CACnC,iCAAiC;CACjC,gCAAgC;CAChC,oCAAoC;CACpC,yCAAyC;CACzC,wCAAwC;CACxC,mCAAmC;CACnC,wCAAwC;CACxC,8CAA8C;CAC9C,6CAA6C;CAC7C,mCAAmC;CACnC,6CAA6C;CAC7C,2BAA2B;CAC3B,oDAAoD;CACpD,gCAAgC;CAChC,2BAA2B;CAC3B,4BAA4B;CAC5B,2BAA2B;CAC3B,kCAAkC;CAClC,kCAAkC;CACnC;;;;;;AAOD,SAAgB,iBAAiB,KAAiD;AAChF,QAAO,KACH,MAAM,IAAI,CACX,QAAQ,UAAU,MAAM,MAAM,KAAK,GAAG,CACtC,QAAQ,KAAK,QAAQ;EACpB,MAAM,CAAC,KAAK,SAAS,IAAI,MAAM,KAAK,EAAE;AACtC,MAAI,OAAQ,SAAS;AACrB,SAAO;IACN,EAAE,CAA0B;;;;;;;;;;AAWnC,SAAgB,cACd,aACA,MACA,QAA0B,MACH;AACvB,QAAO;EACL,GAAI,eAAe,EAAE;GAGpB,OAAO;EACT;;;;;;;;ACxBH,IAAa,uBAAb,MAAkC;CAChC,AAAiB;CACjB,AAAiB;CACjB,AAAiB;CACjB,AAAiB;CAEjB,AAAiB;CACjB,AAAiB;CACjB,AAAiB;CAEjB,YAAY,EACV,QACA,QACA,QACA,kBACA,mBACA,aACA,aACA,SAWC;AACD,OAAK,SAAS;AACd,OAAK,SAAS;AACd,OAAK,QAAQ;AAEb,OAAK,cAAc,cAAc,aAAa,0BAA0B,OAAO,0BAA0B;AAEzG,OAAK,iBAAiB,oCAAoC,OAAO,qBAAqB;AACtF,OAAK,SAAS,yCAAyC,QAAQ,OAAO;AACtE,OAAK,cAAc,eAAe;GAChC,gBAAgB,OAAO;GACvB;GACA;GACA;GACA,YAAY,OAAO;GACpB,CAAC;;;;;CAMJ,AAAO,oBAAoB,EACzB,IACA,WAI6B;AAC7B,SAAO,iBAAiB;AACxB,SAAO;GACL,KAAK;IACC;IACK;IACT,mBAAmB,KAAK;IACxB,2BAA2B;IAC3B,cAAc;IACd,mBAAmB,CAAC;KAAE,mBAAmB;KAAU,eAAe;KAAO,CAAC;IAC1E,qBAAqB,CAAC,EAAE,mBAAmB,KAAK,CAAC;IACjD,yBAAyB;IACzB,uBAAuB,EAAE;IACzB,QAAQ,KAAK;IACb,0BAA0B;IAC1B,0BAA0B,EAAE;IAC5B,gCAAgC,EAAE;IAClC,aAAa,KAAK;IAClB,gCAAgC;IAChC,iBAAiB;IACjB,0BAA0B;KACxB,QAAQ;KACR,sBAAsB;KACtB,iBAAiB;KAClB;IACD,uBAAuB;IACvB,gBAAgB;IAChB,OAAO,KAAK;IACb;GACD,aAAa,KAAK;GACnB;;;;;CAMH,AAAO,UAAU,EACf,IACA,SACA,yBACA,sBACA,qBACA,2BAQ6B;AAC7B,SAAO,iBAAiB;EACxB,MAAM,qBAAqB,KAAK,OAAO,gCAAgC;EAEvE,IAAIC;EACJ,IAAIC,4BAA2C;EAC/C,IAAIC;EACJ,IAAIC;AAEJ,MAAI,qBAAqB;AACvB,yBAAsB;AACtB,+BAA4B,MAAM,QAAQ,oBAAoB,GAC1D,OACA,oBAAoB;AACxB,4BACE,MAAM,QAAQ,oBAAoB,GAAG,sBAAsB,oBAAoB,eAC9E,KAAK,MAAM,EAAE,mBAAmB;AACnC,qBAAkB,yBAAyB,QAAQ,MAAM,uBAAuB,SAAS,EAAE,QAAQ,KAAK,CAAC;SACpG;AACL,yBAAsB;GACtB,MAAM,QAAQ,yBAAyB,SAAS,0BAA0B;AAC1E,2BACE,sBAAsB,QAClB,OAAO,QAAQ,MAAM,yBAAyB,MAAM,MAAM,EAAE,QAAQ,SAAS,EAAE,CAAC,GAChF;AACN,qBAAkB;;AAGpB,SAAO;GACL,KAAK;IACC;IACK;IACT,mBAAmB,KAAK;IACxB,2BAA2B,uBAAuB;IAClD,+BAA+B;IAC/B,qBAAqB,yCAAyC,KAAK,OAAO,OAAO;IACjF,cAAc;IACd,mBAAmB,iDAAiD,KAAK,OAAO,OAAO,mBAAmB;IAC1G,qBAAqB,mDAAmD,KAAK,OAAO,OAAO;IAC3F,yBAAyB;IACzB,uBAAuB,sBAAsB,gBAAgB;IAC7D,QAAQ,KAAK;IACb,0BAA0B;IAC1B,0BAA0B,qBAAqB,QAAQ,OAAO,MAAM,QAAQ,GAAG,CAAC;IAChF,gCAAgC,qBAAqB,QAClD,OAAwC,CAAC,MAAM,QAAQ,GAAG,CAC5D;IACD,0BAA0B;KACxB,QAAQ,KAAK,OAAO,mBAAmB,UAAU;KACjD,sBAAsB,KAAK,OAAO,oBAAoB,yBAAyB;KAC/E,iBACE,KAAK,OAAO,mBAAmB,SAAS,mBAAmB,EAAE,MAAM,KAAK,UAAU,OAAO;KAC5F;IACD,UAAU,KAAK,OAAO;IACtB,aAAa,eAAe,KAAK,YAAY;IAC7C,wBACE,KAAK,OAAO,qCAAqC,mBAAmB,EAAE,MAAM,KAAK;IACnF,gCAAgC,+CAC9B,KAAK,OAAO,uBACb;IACD,iBAAiB,KAAK,OAAO,2BAA2B;IACxD,uBAAuB,KAAK,OAAO,UAAU;IAC7C,gBAAgB;IAChB,OAAO,KAAK;IACZ,2CAA2C;IAC3C,wBAAwB;IACxB,0BAA0B,KAAK,OAAO,6BAA6B;IAMnE,0BAA0B;IAC1B,iBAAiB,KAAK,OAAO;IAC9B;GACD,aAAa,KAAK;GACnB;;;AAIL,SAAgB,oCAAoC,WAAuD;AAIzG,SAAQ,WAAR;EACE,KAAK,iBACH,QAAO;EACT,KAAK,aACH,QAAO;EACT,KAAK,iBACH,QAAO;EACT,KAAK,eACH,QAAO;EACT,KAAK,QACH,QAAO;EACT,KAAK,MACH,QAAO;EACT,KAAK,MACH,QAAO;EAET,KAAK,SACH,QAAO;EACT,KAAK,cACH,QAAO;EACT,KAAK,SACH,QAAO;EACT,KAAK,OACH,QAAO;EACT,KAAK,iBACH,QAAO;EACT,KAAK,OACH,QAAO;EACT,QACE,QAAO;;;AAIb,SAAgB,yCACd,QACA,QACkB;AAClB,QAAO;EACL,UAAU,OAAO;EACjB,gBAAgB,OAAO;EACvB,UAAU,OAAO;EACjB,MAAM,OAAO;EACb,QAAQ,OAAO;EACf,QAAQ;EACR,WAAW,OAAO;EAClB,aAAa,OAAO;EACrB;;AAGH,SAAgB,+CAA+C,UAA8C;AAC3G,KAAI,CAAC,SAAU,QAAO;AACtB,SAAQ,UAAR;EACE,KAAK,OACH,QAAO;EACT,KAAK,WACH,QAAO;EACT,KAAK,wBACH,QAAO;EACT,KAAK,gBACH,QAAO;EACT,KAAK,QACH,QAAO;EACT,QACE,OAAM,IAAI,MAAM,uDAAuD,SAAS,GAAG;;;AAIzF,SAAgB,yCACd,kBACsB;AACtB,KAAI,CAAC,oBAAoB,CAAC,OAAO,KAAK,iBAAiB,CAAC,OAAQ,QAAO,EAAE;AACzE,QAAO,OAAO,KAAK,iBAAiB,CACjC,QAAQ,SAAS,iBAAiB,MAAM,CACxC,KAAK,SAAS;EACb,MAAM,QAAQ,iBAAiB;AAC/B,SAAO;GACC;GACN,cAAc,MAAM;GACpB,OAAO;IACL,UAAU,MAAM,UAAU,SAAS,MAAM,WAAW,CAAC,IAAI;IACzD,oBAAoB,MAAM;IAC1B,mBAAmB,MAAM;IACzB,gBAAgB,MAAM;IACvB;GACF;GACD;;AAGN,SAAgB,iDACd,gBACA,oBACqB;AAIrB,KAAI,CAAC,eACH,QAAO,CACL;EACE,mBAAmB;EACnB,eAAe,qBAAqB,aAAa;EAClD,CACF;AAEH,QAAO,eAAe,KAAK,UAAU;AACnC,SAAO;GACL,mBAAmB,MAAM;GACzB,mBAAmB,MAAM;GACzB,eAAe,MAAM;GACtB;GACD;;AAGJ,SAAgB,mDACd,kBACuB;AACvB,KAAI,CAAC,iBAAkB,QAAO,EAAE;AAChC,QAAO,iBAAiB,KAAK,WAAW;AACtC,SAAO;GACL,QAAQ,OAAO;GACf,cAAc,OAAO;GACrB,mBAAmB,OAAO,sBAAsB;GAChD,gBAAgB,OAAO;GAIvB,uBAAuB,MAAM,QAAQ,OAAO,SAAS,GAAc,OAAO,UAAW,KAAK,KAAK,GAAG,OAAO;GAC1G;GACD;;AAGJ,SAAgB,eAAe,aAA4D;AACzF,iBAAgB,EAAE;AAClB,QAAO,OAAO,KAAK,YAAY,CAAC,QAAQ,KAAK,QAAQ;EAGnD,MAAM,QAAQ,YAAY;AAC1B,MAAI,OAAO,UAAU,YAAY,OAAO,mBAAmB,KAAK,OAC9D,KAAI,OAAO;WACF,OAAO,UAAU,YAAY,OAAO,mBAAmB,KAAK,QACrE,KAAI,OAAO;WAEP,OAAO,UAAU,YAAY,OAAO,UAAU,UAAW,KAAI,OAAO;AAE1E,SAAO;IACN,EAAE,CAA0B;;AAGjC,SAAgB,sBAAsB,yBAAiF;AACrH,KAAI,CAAC,wBAAyB,QAAO,EAAE;CAIvC,MAAM,mEAAmD,IAAI,KAAsC;AACnG,MAAK,MAAM,QAAQ,yBAAyB;EAC1C,MAAM,MAAM,GAAG,KAAK,QAAQ,KAAK,GAAG,KAAK,SAAS,YAAY,KAAK,MAAM,GAAG,EAAE,KAAK,GAAG,EAAE,QAAQ,CAAC,KAAK,IAAI;AAC1G,MAAI,CAAC,iDAAiD,IAAI,IAAI,CAC5D,kDAAiD,IAAI,KAAK,EAAE,CAAC;AAE/D,mDAAiD,IAAI,IAAI,CAAE,KAAK,KAAK;;AAEvE,QAAO,MAAM,KAAK,iDAAiD,QAAQ,CAAC,CAAC,KAAK,UAAU;AAC1F,SAAO;GACL,mBAAmB,MAAM,GAAI,QAAQ;GACrC,qBAAqB,MAAM,KAAK,MAAM,EAAE,uBAAuB,CAAC,QAAQ,MAAM,KAAK,EAAE,SAAS,EAAE;GAChG,oBAAoB,MACjB,KAAK,MAAM,EAAE,qBAAqB,WAAW,CAC7C,QAAQ,MAAM,KAAK,EAAE,SAAS,EAAE,CAChC,KAAK,MAAM,EAAG;GACjB,uBAAuB,EAAE;GAC1B;GACD;;AAGJ,SAAgB,eAAe,EAC7B,gBACA,kBACA,mBACA,aACA,cAOyB;CACzB,MAAM,cAAc,EAAE;AAGtB,KAAI,kBACF,aAAY,KAAK;EACf,MAAM;EACN,MAAM;EACN,WAAW,oBAAoB,IAAI,MAAM,EAAE,SAAS,IAAI,mBAAmB;EAC3E,UAAU;EACX,CAAC;AAIJ,KAAI,YACF,aAAY,KAAK;EACf,MAAM;EACN,MAAM;EACN,UAAU;EACV,UAAU;EACX,CAAC;AAEJ,KAAI,WAIF,aAAY,KAAK,GAAG,OAAO,OAAO,WAAW,CAAC;AAGhD,QAAO;;AAGT,SAAgB,kBAA0B;CACxC,MAAM,QAAQ,IAAI,YAAY,EAAE;AAChC,QAAO,gBAAgB,MAAM;AAC7B,QAAO,GAAG,MAAM,KAAM;;;;;AC/bxB,MAAa,iCAAiC,EAAE,OAAO;CAErD,SAAS,EAAE,QAAQ,CAAC,SAAS;CAC7B,kBAAkB,EACf,KAAK;EACJ;EACA;EAEA;EACD,CAAC,CACD,SAAS;CACZ,SAAS,EAAE,SAAS,CAAC,SAAS;CAC9B,WAAW,EAAE,QAAQ;CACrB,MAAM,EAAE,QAAQ;CAChB,WAAW,EAAE,KAAK;EAAC;EAAU;EAAU;EAAS,CAAC;CACjD,cAAc,EAAE,SAAS,CAAC,SAAS;CACnC,eAAe,EAAE,SAAS,CAAC,SAAS;CACpC,gBAAgB,EAAE,QAAQ,CAAC,SAAS;CACpC,MAAM,EAAE,QAAQ,CAAC,SAAS;CAC1B,MAAM,EACH,KAAK;EACJ,YAAY;EACZ,MAAM;EACN,WAAW;EACX,WAAW;EACX,SAAS;EACV,CAAC,CACD,GAAG,EAAE,QAAQ,CAAC,CACd,SAAS;CACb,CAAC;AAGF,MAAa,uCAAuC,EAAE,OAAO;CAC3D,cAAc,2BAA2B,OAAO;CAChD,kBAAkB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAC/C,CAAC;AAGF,MAAa,uCAAuC,EAAE,OAAO;CAC3D,SAAS,EAAE,QAAQ;CACnB,KAAK,EAAE,QAAQ;CACf,KAAK,EAAE,QAAQ;CACf,KAAK,EAAE,OAAO;EACZ,YAAY,EAAE,QAAQ;EACtB,IAAI,EAAE,QAAQ;EACf,CAAC;CACF,UAAU,EAAE,OAAO;EACjB,MAAM,EAAE,QAAQ;EAChB,SAAS,EAAE,QAAQ;EACnB,KAAK,EAAE,QAAQ;EAChB,CAAC;CACF,WAAW,EAAE,OAAO;EAClB,MAAM,EAAE,QAAQ,CAAC,SAAS;EAC1B,MAAM,EAAE,OAAO,EAAE,iBAAiB,EAAE,QAAQ,EAAE,CAAC,CAAC,SAAS;EACzD,UAAU,EAAE,OAAO,EAAE,WAAW,gCAAgC,CAAC,CAAC,SAAS;EAC3E,UAAU,EACP,OAAO;GACN,aAAa,EAAE,QAAQ;GACvB,cAAc,EAAE,KAAK,CAAC,UAAU,WAAW,CAAC;GAC5C,OAAO,EAAE,KAAK,CAAC,WAAW,cAAc,CAAC;GACzC,cAAc,2BAA2B,OAAO;GACjD,CAAC,CACD,SAAS;EACb,CAAC;CACH,CAAC;AAGF,MAAa,oCAAoC,EAAE,OAAO;CACxD,mBAAmB,EAAE,QAAQ;CAC7B,cAAc,2BAA2B,OAAO;CAChD,4BAA4B,+BAA+B,OAAO;CAClE,YAAY,EAAE,QAAQ;CACtB,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,kBAAkB,EAAE,QAAQ;CAC5B,oBAAoB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CAC5D,CAAC;AAGF,MAAa,oCAAoC,EAAE,OAAO;CACxD,mBAAmB,EAAE,QAAQ;CAC7B,oBAAoB,EAAE,QAAQ,CAAC,OAAO;CACtC,4BAA4B,+BAA+B,OAAO;CAClE,YAAY,EAAE,QAAQ,CAAC,SAAS;CAChC,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,kBAAkB,EAAE,QAAQ,CAAC,SAAS;CACtC,oBAAoB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CAC5D,CAAC;AAGF,MAAa,uCAAuC,EAAE,KAAK;CACzD;CACA;CACA;CACA;CACA;CACD,CAAC;AAEF,MAAa,mCAAmC,EAAE,OAAO;CACvD,oBAAoB,EAAE,QAAQ,CAAC,OAAO;CACtC,QAAQ,qCAAqC,SAAS;CACvD,CAAC;AAGF,MAAa,kCAAkC,EAAE,OAAO,EACtD,mBAAmB,EAAE,QAAQ,CAAC,SAAS,EACxC,CAAC;AAGF,MAAa,uCAAuC,EAAE,OAAO;CAC3D,cAAc,EAAE,QAAQ;CACxB,iBAAiB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACzD,CAAC;AAGF,MAAa,yCAAyC,EAAE,OAAO;CAC7D,aAAa,EAAE,QAAQ;CACvB,cAAc,EAAE,QAAQ;CACxB,oBAAoB,EAAE,QAAQ;CAC/B,CAAC;AAGF,MAAa,8CAA8C,EAAE,OAAO;CAClE,cAAc,EAAE,QAAQ;CACxB,iBAAiB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACzD,CAAC;AAGF,MAAa,0CAA0C,EAAE,OAAO,EAC9D,oBAAoB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS,EAC5D,CAAC;AAGF,MAAa,0CAA0C,EAAE,OAAO;CAC9D,MAAM,EAAE,QAAQ;CAChB,SAAS,EAAE,QAAQ;CACnB,aAAa,EAAE,QAAQ;CACvB,aAAa,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACrD,CAAC;AAGF,MAAa,gCAAgC,EAAE,OAAO;CACpD,MAAM,EAAE,QAAQ;CAChB,iBAAiB,wCAAwC,SAAS;CAClE,UAAU,wCAAwC,SAAS;CAC3D,SAAS,wCAAwC,SAAS;CAC3D,CAAC;AAGF,MAAa,sCAAsC,EAAE,OAAO,EAC1D,WAAW,+BACZ,CAAC;AAGF,MAAa,qCAAqC,EAAE,OAAO,EACzD,UAAU,EAAE,OAAO;CACjB,gBAAgB;CAChB,QAAQ,EAAE,OAAO;EACf,cAAc,EAAE,QAAQ;EACxB,mBAAmB,EAAE,QAAQ;EAC7B,mBAAmB,EAAE,QAAQ;EAC7B,mBAAmB,EAAE,QAAQ;EAC9B,CAAC;CACH,CAAC,EACH,CAAC;AAGF,MAAa,kCAAkC,EAAE,OAAO;CACtD,QAAQ,EAAE,QAAQ;CAClB,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CAC9C,CAAC;AAGF,MAAa,yBAAyB,EAAE,OAAO;CAC7C,QAAQ,EAAE,QAAQ;CAClB,MAAM,EAAE,KAAK;EAAC;EAAa;EAAS;EAAgB;EAAY,CAAC;CACjE,OAAO,EAAE,QAAQ,CAAC,SAAS;CAC3B,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACpC,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,QAAQ,CAAC,CAAC,SAAS;CACjD,CAAC;;;;ACjKF,MAAa,8BAA8B,EAAE,KAAK;CAChD;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAAC;AAGF,MAAa,0BAA0B,EAAE,mBAAmB,QAAQ;CAClE,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,sBAAsB;EAAE,MAAM;EAAmC,CAAC;CAC7F,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,sBAAsB;EAAE,MAAM;EAAmC,CAAC;CAC7F,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,qBAAqB;EAAE,MAAM;EAAkC,CAAC;CAC3F,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,0BAA0B;EAAE,MAAM;EAAsC,CAAC;CACpG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,4BAA4B;EAAE,MAAM;EAAwC,CAAC;CACxG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,kCAAkC;EAAE,MAAM;EAA6C,CAAC;CACnH,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,oBAAoB;EAAE,MAAM;EAAiC,CAAC;CACzF,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,yBAAyB;EAAE,MAAM;EAAsC,CAAC;CACnG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,+BAA+B;EAAE,MAAM;EAAsC,CAAC;CACzG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,4BAA4B;EAAE,MAAM;EAAyC,CAAC;CACzG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,wBAAwB;EAAE,MAAM,oCAAoC,OAAO;EAAE,CAAC;CACzG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,uBAAuB;EAAE,MAAM,mCAAmC,OAAO;EAAE,CAAC;CACvG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,mBAAmB;EAAE,MAAM;EAAiC,CAAC;CACxF,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,iBAAiB;EAAE,MAAM,uBAAuB,OAAO;EAAE,CAAC;CACtF,CAAC;;;;;;;;;;;;;AAmFF,SAAgB,mBAAmB,EACjC,WAAW,oBACX,cACA,QACA,gBACA,SACA,UACkC;CAElC,MAAM,MAAM,IAAI,MAAM,CAAC,SAAS,SAAS;CAgBzC,SAAS,UAA6B,MAA6B,QAAW,QAAiB;AAC7F,MAAI,GACF,UAAU,QACV,QAAQ,QACR,WAAW,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC,EACjD,OAAO,SAAS,SAAS;GAOvB,MAAM,UADM,IAAI,IAAI,QAAQ,IAAI,IAAI,CAChB,aAAa;GACjC,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;AACzC,OAAI,SAAS;IACX,MAAM,QAAQ,QAAQ,IAAI,OAAO,gBAAgB;AACjD,QAAI,CAAC,MAAO,QAAO,QAAQ,KAAK,MAAM,IAAI;AAE1C,QAAI,CADU,MAAM,aAAa,OAAO,IAAI,MAAM,CACtC,QAAO,QAAQ,KAAK,MAAM,IAAI;SAE1C,QAAO,MAAM,oDAAoD,QAAQ,IAAI,MAAM;AAIrF,OAAI,QACF,OAAM,QAAQ,IAAI,MAAM,MAAM,QAAQ,IAAI,MAAM,CAAC;AAGnD,SAAM,MAAM;KAEd,WAAW,QAAQ,EAAE,OAAO,EAAE,MAAM,QAAQ,CAAC,CAAC,EAC9C,OAAO,YAAY;GACjB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;GACzC,MAAM,EAAE,SAAS,QAAQ,IAAI,MAAM,OAAO;GAE1C,MAAMC,UAAmB,MAAM,OAAO,IAAI;IAAE;IAAY;IAAa,CAAC;AACtE,UAAO,QAAQ,KAAK,MAAM,UAAU,MAAM,IAAI;IAEjD;;AAGH,WAAU,uBAAuB,kCAAkC;AACnE,WAAU,uBAAuB,kCAAkC;AACnE,WAAU,sBAAsB,iCAAiC;AACjE,WAAU,2BAA2B,qCAAqC;AAC1E,WAAU,6BAA6B,uCAAuC;AAC9E,WAAU,mCAAmC,4CAA4C;AACzF,WAAU,qBAAqB,iCAAiC,QAAQ;AACxE,WAAU,0BAA0B,qCAAqC;AACzE,WAAU,gCAAgC,qCAAqC;AAC/E,WAAU,6BAA6B,wCAAwC;AAC/E,WAAU,yBAAyB,oCAAoC,OAAO,CAAC;AAC/E,WAAU,wBAAwB,mCAAmC,OAAO,CAAC;AAC7E,WAAU,oBAAoB,gCAAgC;AAC9D,WAAU,kBAAkB,uBAAuB,OAAO,CAAC;AAK3D,KAAI,GACF,OACA,gBACA,WAAW,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC,EACjD,OAAO,SAAS,SAAS;EACvB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,QAAQ,QAAQ,IAAI,OAAO,gBAAgB;AACjD,MAAI,CAAC,MAAO,QAAO,QAAQ,KAAK,MAAM,IAAI;AAE1C,MAAI,CADU,MAAM,aAAa,OAAO,IAAI,MAAM,CACtC,QAAO,QAAQ,KAAK,MAAM,IAAI;AAC1C,QAAM,MAAM;IAEd,OAAO,YAAY;EACjB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,MAAM,MAAM,OAAO,GAAG;AAC5B,MAAI,CAAC,IAAK,QAAO,QAAQ,KAAK,MAAM,IAAI;AACxC,SAAO,QAAQ,KAAK,IAAI;GAE3B;AACD,KAAI,GACF,OACA,oBACA,WAAW,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC,EACjD,OAAO,SAAS,SAAS;EACvB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,QAAQ,QAAQ,IAAI,OAAO,gBAAgB;AACjD,MAAI,CAAC,MAAO,QAAO,QAAQ,KAAK,MAAM,IAAI;AAE1C,MAAI,CADU,MAAM,aAAa,eAAe,IAAI,MAAM,CAC9C,QAAO,QAAQ,KAAK,MAAM,IAAI;AAC1C,QAAM,MAAM;IAEd,OAAO,YAAY;EACjB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,cAAc,MAAM,eAAe,GAAG;AAC5C,MAAI,CAAC,YAAa,QAAO,QAAQ,KAAK,MAAM,IAAI;AAChD,SAAO,QAAQ,KAAK,YAAY;GAEnC;AAED,QAAO"}

package/dist/{index-vaaBSJ7v.d.mts → index-bwD11mTZ.d.mts}

@@ -114,9 +114,9 @@ declare const DependabotAllowConditionSchema: z.ZodObject<{
   'dependency-name': z.ZodOptional<z.ZodString>;
   'dependency-type': z.ZodOptional<z.ZodEnum<{
     production: "production";
-    development: "development";
     direct: "direct";
     indirect: "indirect";
+    development: "development";
     all: "all";
   }>>;
   'update-type': z.ZodOptional<z.ZodEnum<{
@@ -279,9 +279,9 @@ declare const DependabotUpdateSchema: z.ZodPipe<z.ZodObject<{
     'dependency-name': z.ZodOptional<z.ZodString>;
     'dependency-type': z.ZodOptional<z.ZodEnum<{
       production: "production";
-      development: "development";
       direct: "direct";
       indirect: "indirect";
+      development: "development";
       all: "all";
     }>>;
     'update-type': z.ZodOptional<z.ZodEnum<{
@@ -342,7 +342,7 @@ declare const DependabotUpdateSchema: z.ZodPipe<z.ZodObject<{
   }, z.core.$strip>>;
   'rebase-strategy': z.ZodOptional<z.ZodString>;
   registries: z.ZodOptional<z.ZodArray<z.ZodString>>;
-  schedule: z.ZodOptional<z.ZodPipe<z.ZodObject<{
+  schedule: z.ZodPipe<z.ZodObject<{
     interval: z.ZodEnum<{
       daily: "daily";
       weekly: "weekly";
@@ -376,7 +376,7 @@ declare const DependabotUpdateSchema: z.ZodPipe<z.ZodObject<{
     timezone: string;
     time?: string | undefined;
     cronjob?: string | undefined;
-  }>>>;
+  }>>;
   'target-branch': z.ZodOptional<z.ZodString>;
   vendor: z.ZodOptional<z.ZodBoolean>;
   'versioning-strategy': z.ZodOptional<z.ZodEnum<{
@@ -390,12 +390,19 @@ declare const DependabotUpdateSchema: z.ZodPipe<z.ZodObject<{
   'multi-ecosystem-group': z.ZodOptional<z.ZodString>;
 }, z.core.$strip>, z.ZodTransform<{
   'package-ecosystem': "bundler" | "cargo" | "composer" | "conda" | "pub" | "docker" | "elm" | "gradle" | "maven" | "nuget" | "pip" | "swift" | "terraform" | "devcontainers" | "bun" | "uv" | "vcpkg" | "helm" | "julia" | "bazel" | "opentofu" | "docker-compose" | "dotnet-sdk" | "mix" | "gitsubmodule" | "github-actions" | "gomod" | "npm" | "pip-compile" | "pipenv" | "pnpm" | "poetry" | "rust-toolchain" | "yarn";
+  schedule: {
+    interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
+    day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
+    timezone: string;
+    time?: string | undefined;
+    cronjob?: string | undefined;
+  };
   directory?: string | undefined;
   directories?: string[] | undefined;
   'exclude-paths'?: string[] | undefined;
   allow?: {
     'dependency-name'?: string | undefined;
-    'dependency-type'?: "production" | "development" | "direct" | "indirect" | "all" | undefined;
+    'dependency-type'?: "production" | "direct" | "indirect" | "development" | "all" | undefined;
     'update-type'?: "all" | "security" | undefined;
   }[] | undefined;
   assignees?: string[] | undefined;
@@ -434,13 +441,6 @@ declare const DependabotUpdateSchema: z.ZodPipe<z.ZodObject<{
   } | undefined;
   'rebase-strategy'?: string | undefined;
   registries?: string[] | undefined;
-  schedule?: {
-    interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
-    day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
-    timezone: string;
-    time?: string | undefined;
-    cronjob?: string | undefined;
-  } | undefined;
   'target-branch'?: string | undefined;
   vendor?: boolean | undefined;
   'versioning-strategy'?: "auto" | "increase" | "increase-if-necessary" | "lockfile-only" | "widen" | undefined;
@@ -448,12 +448,19 @@ declare const DependabotUpdateSchema: z.ZodPipe<z.ZodObject<{
   'multi-ecosystem-group'?: string | undefined;
 }, {
   'package-ecosystem': "bundler" | "cargo" | "composer" | "conda" | "pub" | "docker" | "elm" | "gradle" | "maven" | "nuget" | "pip" | "swift" | "terraform" | "devcontainers" | "bun" | "uv" | "vcpkg" | "helm" | "julia" | "bazel" | "opentofu" | "docker-compose" | "dotnet-sdk" | "mix" | "gitsubmodule" | "github-actions" | "gomod" | "npm" | "pip-compile" | "pipenv" | "pnpm" | "poetry" | "rust-toolchain" | "yarn";
+  schedule: {
+    interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
+    day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
+    timezone: string;
+    time?: string | undefined;
+    cronjob?: string | undefined;
+  };
   directory?: string | undefined;
   directories?: string[] | undefined;
   'exclude-paths'?: string[] | undefined;
   allow?: {
     'dependency-name'?: string | undefined;
-    'dependency-type'?: "production" | "development" | "direct" | "indirect" | "all" | undefined;
+    'dependency-type'?: "production" | "direct" | "indirect" | "development" | "all" | undefined;
     'update-type'?: "all" | "security" | undefined;
   }[] | undefined;
   assignees?: string[] | undefined;
@@ -492,13 +499,6 @@ declare const DependabotUpdateSchema: z.ZodPipe<z.ZodObject<{
   } | undefined;
   'rebase-strategy'?: string | undefined;
   registries?: string[] | undefined;
-  schedule?: {
-    interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
-    day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
-    timezone: string;
-    time?: string | undefined;
-    cronjob?: string | undefined;
-  } | undefined;
   'target-branch'?: string | undefined;
   vendor?: boolean | undefined;
   'versioning-strategy'?: "auto" | "increase" | "increase-if-necessary" | "lockfile-only" | "widen" | undefined;
@@ -655,9 +655,9 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
       'dependency-name': z.ZodOptional<z.ZodString>;
       'dependency-type': z.ZodOptional<z.ZodEnum<{
         production: "production";
-        development: "development";
         direct: "direct";
         indirect: "indirect";
+        development: "development";
         all: "all";
       }>>;
       'update-type': z.ZodOptional<z.ZodEnum<{
@@ -718,7 +718,7 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
     }, z.core.$strip>>;
     'rebase-strategy': z.ZodOptional<z.ZodString>;
     registries: z.ZodOptional<z.ZodArray<z.ZodString>>;
-    schedule: z.ZodOptional<z.ZodPipe<z.ZodObject<{
+    schedule: z.ZodPipe<z.ZodObject<{
       interval: z.ZodEnum<{
         daily: "daily";
         weekly: "weekly";
@@ -752,7 +752,7 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
       timezone: string;
       time?: string | undefined;
       cronjob?: string | undefined;
-    }>>>;
+    }>>;
     'target-branch': z.ZodOptional<z.ZodString>;
     vendor: z.ZodOptional<z.ZodBoolean>;
     'versioning-strategy': z.ZodOptional<z.ZodEnum<{
@@ -766,12 +766,19 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
     'multi-ecosystem-group': z.ZodOptional<z.ZodString>;
   }, z.core.$strip>, z.ZodTransform<{
     'package-ecosystem': "bundler" | "cargo" | "composer" | "conda" | "pub" | "docker" | "elm" | "gradle" | "maven" | "nuget" | "pip" | "swift" | "terraform" | "devcontainers" | "bun" | "uv" | "vcpkg" | "helm" | "julia" | "bazel" | "opentofu" | "docker-compose" | "dotnet-sdk" | "mix" | "gitsubmodule" | "github-actions" | "gomod" | "npm" | "pip-compile" | "pipenv" | "pnpm" | "poetry" | "rust-toolchain" | "yarn";
+    schedule: {
+      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
+      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
+      timezone: string;
+      time?: string | undefined;
+      cronjob?: string | undefined;
+    };
     directory?: string | undefined;
     directories?: string[] | undefined;
     'exclude-paths'?: string[] | undefined;
     allow?: {
       'dependency-name'?: string | undefined;
-      'dependency-type'?: "production" | "development" | "direct" | "indirect" | "all" | undefined;
+      'dependency-type'?: "production" | "direct" | "indirect" | "development" | "all" | undefined;
       'update-type'?: "all" | "security" | undefined;
     }[] | undefined;
     assignees?: string[] | undefined;
@@ -810,13 +817,6 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
     } | undefined;
     'rebase-strategy'?: string | undefined;
     registries?: string[] | undefined;
-    schedule?: {
-      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
-      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
-      timezone: string;
-      time?: string | undefined;
-      cronjob?: string | undefined;
-    } | undefined;
     'target-branch'?: string | undefined;
     vendor?: boolean | undefined;
     'versioning-strategy'?: "auto" | "increase" | "increase-if-necessary" | "lockfile-only" | "widen" | undefined;
@@ -824,12 +824,19 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
     'multi-ecosystem-group'?: string | undefined;
   }, {
     'package-ecosystem': "bundler" | "cargo" | "composer" | "conda" | "pub" | "docker" | "elm" | "gradle" | "maven" | "nuget" | "pip" | "swift" | "terraform" | "devcontainers" | "bun" | "uv" | "vcpkg" | "helm" | "julia" | "bazel" | "opentofu" | "docker-compose" | "dotnet-sdk" | "mix" | "gitsubmodule" | "github-actions" | "gomod" | "npm" | "pip-compile" | "pipenv" | "pnpm" | "poetry" | "rust-toolchain" | "yarn";
+    schedule: {
+      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
+      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
+      timezone: string;
+      time?: string | undefined;
+      cronjob?: string | undefined;
+    };
     directory?: string | undefined;
     directories?: string[] | undefined;
     'exclude-paths'?: string[] | undefined;
     allow?: {
       'dependency-name'?: string | undefined;
-      'dependency-type'?: "production" | "development" | "direct" | "indirect" | "all" | undefined;
+      'dependency-type'?: "production" | "direct" | "indirect" | "development" | "all" | undefined;
       'update-type'?: "all" | "security" | undefined;
     }[] | undefined;
     assignees?: string[] | undefined;
@@ -868,13 +875,6 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
     } | undefined;
     'rebase-strategy'?: string | undefined;
     registries?: string[] | undefined;
-    schedule?: {
-      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
-      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
-      timezone: string;
-      time?: string | undefined;
-      cronjob?: string | undefined;
-    } | undefined;
     'target-branch'?: string | undefined;
     vendor?: boolean | undefined;
     'versioning-strategy'?: "auto" | "increase" | "increase-if-necessary" | "lockfile-only" | "widen" | undefined;
@@ -954,12 +954,19 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
   version: number;
   updates: {
     'package-ecosystem': "bundler" | "cargo" | "composer" | "conda" | "pub" | "docker" | "elm" | "gradle" | "maven" | "nuget" | "pip" | "swift" | "terraform" | "devcontainers" | "bun" | "uv" | "vcpkg" | "helm" | "julia" | "bazel" | "opentofu" | "docker-compose" | "dotnet-sdk" | "mix" | "gitsubmodule" | "github-actions" | "gomod" | "npm" | "pip-compile" | "pipenv" | "pnpm" | "poetry" | "rust-toolchain" | "yarn";
+    schedule: {
+      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
+      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
+      timezone: string;
+      time?: string | undefined;
+      cronjob?: string | undefined;
+    };
     directory?: string | undefined;
     directories?: string[] | undefined;
     'exclude-paths'?: string[] | undefined;
     allow?: {
       'dependency-name'?: string | undefined;
-      'dependency-type'?: "production" | "development" | "direct" | "indirect" | "all" | undefined;
+      'dependency-type'?: "production" | "direct" | "indirect" | "development" | "all" | undefined;
       'update-type'?: "all" | "security" | undefined;
     }[] | undefined;
     assignees?: string[] | undefined;
@@ -998,13 +1005,6 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
     } | undefined;
     'rebase-strategy'?: string | undefined;
     registries?: string[] | undefined;
-    schedule?: {
-      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
-      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
-      timezone: string;
-      time?: string | undefined;
-      cronjob?: string | undefined;
-    } | undefined;
     'target-branch'?: string | undefined;
     vendor?: boolean | undefined;
     'versioning-strategy'?: "auto" | "increase" | "increase-if-necessary" | "lockfile-only" | "widen" | undefined;
@@ -1055,12 +1055,19 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
   version: number;
   updates: {
     'package-ecosystem': "bundler" | "cargo" | "composer" | "conda" | "pub" | "docker" | "elm" | "gradle" | "maven" | "nuget" | "pip" | "swift" | "terraform" | "devcontainers" | "bun" | "uv" | "vcpkg" | "helm" | "julia" | "bazel" | "opentofu" | "docker-compose" | "dotnet-sdk" | "mix" | "gitsubmodule" | "github-actions" | "gomod" | "npm" | "pip-compile" | "pipenv" | "pnpm" | "poetry" | "rust-toolchain" | "yarn";
+    schedule: {
+      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
+      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
+      timezone: string;
+      time?: string | undefined;
+      cronjob?: string | undefined;
+    };
     directory?: string | undefined;
     directories?: string[] | undefined;
     'exclude-paths'?: string[] | undefined;
     allow?: {
       'dependency-name'?: string | undefined;
-      'dependency-type'?: "production" | "development" | "direct" | "indirect" | "all" | undefined;
+      'dependency-type'?: "production" | "direct" | "indirect" | "development" | "all" | undefined;
       'update-type'?: "all" | "security" | undefined;
     }[] | undefined;
     assignees?: string[] | undefined;
@@ -1099,13 +1106,6 @@ declare const DependabotConfigSchema: z.ZodPipe<z.ZodObject<{
     } | undefined;
     'rebase-strategy'?: string | undefined;
     registries?: string[] | undefined;
-    schedule?: {
-      interval: "daily" | "weekly" | "monthly" | "quarterly" | "semiannually" | "yearly" | "cron";
-      day: "sunday" | "monday" | "tuesday" | "wednesday" | "thursday" | "friday" | "saturday";
-      timezone: string;
-      time?: string | undefined;
-      cronjob?: string | undefined;
-    } | undefined;
     'target-branch'?: string | undefined;
     vendor?: boolean | undefined;
     'versioning-strategy'?: "auto" | "increase" | "increase-if-necessary" | "lockfile-only" | "widen" | undefined;
@@ -1319,6 +1319,7 @@ type DependabotCommitOptions = z.infer<typeof DependabotCommitOptionsSchema>;
 declare const DependabotExperimentsSchema: z.ZodRecord<z.ZodString, z.ZodUnion<readonly [z.ZodString, z.ZodBoolean]>>;
 type DependabotExperiments = z.infer<typeof DependabotExperimentsSchema>;
 declare const DependabotPackageManagerSchema: z.ZodEnum<{
+  hex: "hex";
   bundler: "bundler";
   cargo: "cargo";
   composer: "composer";
@@ -1331,7 +1332,6 @@ declare const DependabotPackageManagerSchema: z.ZodEnum<{
   go_modules: "go_modules";
   gradle: "gradle";
   maven: "maven";
-  hex: "hex";
   nuget: "nuget";
   npm_and_yarn: "npm_and_yarn";
   pip: "pip";
@@ -1364,6 +1364,7 @@ declare const DependabotJobConfigSchema: z.ZodObject<{
     recreate: "recreate";
   }>>;
   'package-manager': z.ZodEnum<{
+    hex: "hex";
     bundler: "bundler";
     cargo: "cargo";
     composer: "composer";
@@ -1376,7 +1377,6 @@ declare const DependabotJobConfigSchema: z.ZodObject<{
     go_modules: "go_modules";
     gradle: "gradle";
     maven: "maven";
-    hex: "hex";
     nuget: "nuget";
     npm_and_yarn: "npm_and_yarn";
     pip: "pip";
@@ -1496,6 +1496,7 @@ declare const DependabotJobFileSchema: z.ZodObject<{
       recreate: "recreate";
     }>>;
     'package-manager': z.ZodEnum<{
+      hex: "hex";
       bundler: "bundler";
       cargo: "cargo";
       composer: "composer";
@@ -1508,7 +1509,6 @@ declare const DependabotJobFileSchema: z.ZodObject<{
       go_modules: "go_modules";
       gradle: "gradle";
       maven: "maven";
-      hex: "hex";
       nuget: "nuget";
       npm_and_yarn: "npm_and_yarn";
       pip: "pip";
@@ -1700,6 +1700,15 @@ declare const DEFAULT_EXPERIMENTS: DependabotExperiments;
  * @returns A map of experiment names to their values.
  */
 declare function parseExperiments(raw?: string): DependabotExperiments | undefined;
+/**
+ * Set experiment in the given experiments map.
+ * If the experiments map is undefined, a new map will be created.
+ * @param experiments The experiments map to set the experiment in.
+ * @param name The name of the experiment to set.
+ * @param value The value of the experiment to set. Defaults to true.
+ * @returns The updated experiments map.
+ */
+declare function setExperiment(experiments: DependabotExperiments | undefined, name: string, value?: boolean | string): DependabotExperiments;
 //#endregion
 //#region src/dependabot/job-builder.d.ts
 type DependabotSourceInfo = {
@@ -1999,6 +2008,7 @@ declare const DependabotRequestSchema: z.ZodDiscriminatedUnion<[z.ZodObject<{
       }, z.core.$strip>>>;
       metadata: z.ZodOptional<z.ZodNullable<z.ZodObject<{
         ecosystem: z.ZodEnum<{
+          hex: "hex";
           bundler: "bundler";
           cargo: "cargo";
           composer: "composer";
@@ -2011,7 +2021,6 @@ declare const DependabotRequestSchema: z.ZodDiscriminatedUnion<[z.ZodObject<{
           go_modules: "go_modules";
           gradle: "gradle";
           maven: "maven";
-          hex: "hex";
           nuget: "nuget";
           npm_and_yarn: "npm_and_yarn";
           pip: "pip";
@@ -2037,8 +2046,8 @@ declare const DependabotRequestSchema: z.ZodDiscriminatedUnion<[z.ZodObject<{
           indirect: "indirect";
         }>;
         scope: z.ZodEnum<{
-          development: "development";
           runtime: "runtime";
+          development: "development";
         }>;
         dependencies: z.ZodArray<z.ZodObject<{
           name: z.ZodString;
@@ -2103,6 +2112,7 @@ declare const DependabotRequestSchema: z.ZodDiscriminatedUnion<[z.ZodObject<{
   data: z.ZodArray<z.ZodObject<{
     cooldown: z.ZodObject<{
       ecosystem_name: z.ZodEnum<{
+        hex: "hex";
         bundler: "bundler";
         cargo: "cargo";
         composer: "composer";
@@ -2115,7 +2125,6 @@ declare const DependabotRequestSchema: z.ZodDiscriminatedUnion<[z.ZodObject<{
         go_modules: "go_modules";
         gradle: "gradle";
         maven: "maven";
-        hex: "hex";
         nuget: "nuget";
         npm_and_yarn: "npm_and_yarn";
         pip: "pip";
@@ -2318,6 +2327,7 @@ declare const DependabotDependencySubmissionSchema: z.ZodObject<{
     }, z.core.$strip>>>;
     metadata: z.ZodOptional<z.ZodNullable<z.ZodObject<{
       ecosystem: z.ZodEnum<{
+        hex: "hex";
         bundler: "bundler";
         cargo: "cargo";
         composer: "composer";
@@ -2330,7 +2340,6 @@ declare const DependabotDependencySubmissionSchema: z.ZodObject<{
         go_modules: "go_modules";
         gradle: "gradle";
         maven: "maven";
-        hex: "hex";
         nuget: "nuget";
         npm_and_yarn: "npm_and_yarn";
         pip: "pip";
@@ -2356,8 +2365,8 @@ declare const DependabotDependencySubmissionSchema: z.ZodObject<{
         indirect: "indirect";
       }>;
       scope: z.ZodEnum<{
-        development: "development";
         runtime: "runtime";
+        development: "development";
       }>;
       dependencies: z.ZodArray<z.ZodObject<{
         name: z.ZodString;
@@ -2583,6 +2592,7 @@ type DependabotRecordEcosystemMeta = z.infer<typeof DependabotRecordEcosystemMet
 declare const DependabotRecordCooldownMetaSchema: z.ZodObject<{
   cooldown: z.ZodObject<{
     ecosystem_name: z.ZodEnum<{
+      hex: "hex";
       bundler: "bundler";
       cargo: "cargo";
       composer: "composer";
@@ -2595,7 +2605,6 @@ declare const DependabotRecordCooldownMetaSchema: z.ZodObject<{
       go_modules: "go_modules";
       gradle: "gradle";
       maven: "maven";
-      hex: "hex";
       nuget: "nuget";
       npm_and_yarn: "npm_and_yarn";
       pip: "pip";
@@ -2641,5 +2650,5 @@ declare const DependabotMetricSchema: z.ZodObject<{
 }, z.core.$strip>;
 type DependabotMetric = z.infer<typeof DependabotMetricSchema>;
 //#endregion
-export { mapPackageEcosystemToPackageManager as $, DependabotAllowCondition as $t, DependabotRecordUpdateJobUnknownErrorSchema as A, convertPlaceholder as An, DependabotGroupRuleJob as At, DependabotRequestType as B, DependabotRequirement as Bt, DependabotRecordEcosystemMeta as C, VersioningStrategy as Cn, DependabotExistingGroupPRSchema as Ct, DependabotRecordUpdateJobError as D, parseUpdates as Dn, DependabotExperimentsSchema as Dt, DependabotRecordEcosystemVersionsSchema as E, parseRegistries as En, DependabotExperiments as Et, DependabotUpdatePullRequest as F, DependabotJobFileSchema as Ft, DependabotJobBuilderOutput as G, DependabotSecurityAdvisorySchema as Gt, DependabotTokenType as H, DependabotRequirementSource as Ht, DependabotUpdatePullRequestSchema as I, DependabotPackageManager as It, mapAllowedUpdatesFromDependabotConfigToJobConfig as J, DependabotSourceProviderSchema as Jt, DependabotSourceInfo as K, DependabotSource as Kt, CreateApiServerAppOptions as L, DependabotPackageManagerSchema as Lt, DependabotRecordUpdateJobWarningSchema as M, DEPENDABOT_DEFAULT_AUTHOR_EMAIL as Mn, DependabotJobConfig as Mt, DependabotUpdateDependencyList as N, DEPENDABOT_DEFAULT_AUTHOR_NAME as Nn, DependabotJobConfigSchema as Nt, DependabotRecordUpdateJobErrorSchema as O, validateConfiguration as On, DependabotGroupJob as Ot, DependabotUpdateDependencyListSchema as P, GitAuthor as Pn, DependabotJobFile as Pt, mapIgnoreConditionsFromDependabotConfigToJobConfig as Q, FileUpdaterInput as Qt, DependabotRequest as R, DependabotProxyConfig as Rt, DependabotRecordCooldownMetaSchema as S, PackageEcosystemSchema as Sn, DependabotExistingGroupPR as St, DependabotRecordEcosystemVersions as T, parseDependabotConfig as Tn, DependabotExistingPRSchema as Tt, createApiServerApp as U, DependabotRequirementSourceSchema as Ut, DependabotRequestTypeSchema as V, DependabotRequirementSchema as Vt, DependabotJobBuilder as W, DependabotSecurityAdvisory as Wt, mapExperiments as X, FetchedFiles as Xt, mapCredentials as Y, DependabotSourceSchema as Yt, mapGroupsFromDependabotConfigToJobConfig as Z, FileFetcherInput as Zt, DependabotMarkAsProcessed as _, DependabotScheduleSchema as _n, DependabotConditionSchema as _t, DependabotCreatePullRequest as a, DependabotCooldown as an, makeDirectoryKey as at, DependabotMetricSchema as b, POSSIBLE_CONFIG_FILE_PATHS as bn, DependabotDependency as bt, DependabotDependencyFileSchema as c, DependabotGroupSchema as cn, CertificateAuthority as ct, DependabotEcosystemMeta as d, DependabotMultiEcosystemGroup as dn, DependabotAllowedSchema as dt, DependabotAllowConditionSchema as en, mapSecurityAdvisories as et, DependabotEcosystemMetaSchema as f, DependabotMultiEcosystemGroupSchema as fn, DependabotCommand as ft, DependabotIncrementMetricSchema as g, DependabotSchedule as gn, DependabotCondition as gt, DependabotIncrementMetric as h, DependabotRegistrySchema as hn, DependabotCommitOptionsSchema as ht, DependabotClosePullRequestSchema as i, DependabotConfigSchema as in, parseExperiments as it, DependabotRecordUpdateJobWarning as j, extractPlaceholder as jn, DependabotGroupRuleJobSchema as jt, DependabotRecordUpdateJobUnknownError as k, VariableFinderFn as kn, DependabotGroupJobSchema as kt, DependabotDependencySubmission as l, DependabotIgnoreCondition as ln, CertificateAuthoritySchema as lt, DependabotEcosystemVersionManagerSchema as m, DependabotRegistry as mn, DependabotCommitOptions as mt, DependabotClosePullRequestReason as n, DependabotCommitMessageSchema as nn, mapVersionStrategyToRequirementsUpdateStrategy as nt, DependabotCreatePullRequestSchema as o, DependabotCooldownSchema as on, getBranchNameForUpdate as ot, DependabotEcosystemVersionManager as p, DependabotPullRequestBranchName as pn, DependabotCommandSchema as pt, makeRandomJobId as q, DependabotSourceProvider as qt, DependabotClosePullRequestReasonEnum as r, DependabotConfig as rn, DEFAULT_EXPERIMENTS as rt, DependabotDependencyFile as s, DependabotGroup as sn, sanitizeRef as st, DependabotClosePullRequest as t, DependabotCommitMessage as tn, mapSourceFromDependabotConfigToJobConfig as tt, DependabotDependencySubmissionSchema as u, DependabotIgnoreConditionSchema as un, DependabotAllowed as ut, DependabotMarkAsProcessedSchema as v, DependabotUpdate as vn, DependabotCredential as vt, DependabotRecordEcosystemMetaSchema as w, VersioningStrategySchema as wn, DependabotExistingPR as wt, DependabotRecordCooldownMeta as x, PackageEcosystem as xn, DependabotDependencySchema as xt, DependabotMetric as y, DependabotUpdateSchema as yn, DependabotCredentialSchema as yt, DependabotRequestSchema as z, DependabotProxyConfigSchema as zt };
-//# sourceMappingURL=index-vaaBSJ7v.d.mts.map
+export { mapPackageEcosystemToPackageManager as $, FileUpdaterInput as $t, DependabotRecordUpdateJobUnknownErrorSchema as A, VariableFinderFn as An, DependabotGroupJobSchema as At, DependabotRequestType as B, DependabotProxyConfigSchema as Bt, DependabotRecordEcosystemMeta as C, PackageEcosystemSchema as Cn, DependabotExistingGroupPR as Ct, DependabotRecordUpdateJobError as D, parseRegistries as Dn, DependabotExperiments as Dt, DependabotRecordEcosystemVersionsSchema as E, parseDependabotConfig as En, DependabotExistingPRSchema as Et, DependabotUpdatePullRequest as F, GitAuthor as Fn, DependabotJobFile as Ft, DependabotJobBuilderOutput as G, DependabotSecurityAdvisory as Gt, DependabotTokenType as H, DependabotRequirementSchema as Ht, DependabotUpdatePullRequestSchema as I, DependabotJobFileSchema as It, mapAllowedUpdatesFromDependabotConfigToJobConfig as J, DependabotSourceProvider as Jt, DependabotSourceInfo as K, DependabotSecurityAdvisorySchema as Kt, CreateApiServerAppOptions as L, DependabotPackageManager as Lt, DependabotRecordUpdateJobWarningSchema as M, extractPlaceholder as Mn, DependabotGroupRuleJobSchema as Mt, DependabotUpdateDependencyList as N, DEPENDABOT_DEFAULT_AUTHOR_EMAIL as Nn, DependabotJobConfig as Nt, DependabotRecordUpdateJobErrorSchema as O, parseUpdates as On, DependabotExperimentsSchema as Ot, DependabotUpdateDependencyListSchema as P, DEPENDABOT_DEFAULT_AUTHOR_NAME as Pn, DependabotJobConfigSchema as Pt, mapIgnoreConditionsFromDependabotConfigToJobConfig as Q, FileFetcherInput as Qt, DependabotRequest as R, DependabotPackageManagerSchema as Rt, DependabotRecordCooldownMetaSchema as S, PackageEcosystem as Sn, DependabotDependencySchema as St, DependabotRecordEcosystemVersions as T, VersioningStrategySchema as Tn, DependabotExistingPR as Tt, createApiServerApp as U, DependabotRequirementSource as Ut, DependabotRequestTypeSchema as V, DependabotRequirement as Vt, DependabotJobBuilder as W, DependabotRequirementSourceSchema as Wt, mapExperiments as X, DependabotSourceSchema as Xt, mapCredentials as Y, DependabotSourceProviderSchema as Yt, mapGroupsFromDependabotConfigToJobConfig as Z, FetchedFiles as Zt, DependabotMarkAsProcessed as _, DependabotSchedule as _n, DependabotCondition as _t, DependabotCreatePullRequest as a, DependabotConfigSchema as an, setExperiment as at, DependabotMetricSchema as b, DependabotUpdateSchema as bn, DependabotCredentialSchema as bt, DependabotDependencyFileSchema as c, DependabotGroup as cn, sanitizeRef as ct, DependabotEcosystemMeta as d, DependabotIgnoreConditionSchema as dn, DependabotAllowed as dt, DependabotAllowCondition as en, mapSecurityAdvisories as et, DependabotEcosystemMetaSchema as f, DependabotMultiEcosystemGroup as fn, DependabotAllowedSchema as ft, DependabotIncrementMetricSchema as g, DependabotRegistrySchema as gn, DependabotCommitOptionsSchema as gt, DependabotIncrementMetric as h, DependabotRegistry as hn, DependabotCommitOptions as ht, DependabotClosePullRequestSchema as i, DependabotConfig as in, parseExperiments as it, DependabotRecordUpdateJobWarning as j, convertPlaceholder as jn, DependabotGroupRuleJob as jt, DependabotRecordUpdateJobUnknownError as k, validateConfiguration as kn, DependabotGroupJob as kt, DependabotDependencySubmission as l, DependabotGroupSchema as ln, CertificateAuthority as lt, DependabotEcosystemVersionManagerSchema as m, DependabotPullRequestBranchName as mn, DependabotCommandSchema as mt, DependabotClosePullRequestReason as n, DependabotCommitMessage as nn, mapVersionStrategyToRequirementsUpdateStrategy as nt, DependabotCreatePullRequestSchema as o, DependabotCooldown as on, makeDirectoryKey as ot, DependabotEcosystemVersionManager as p, DependabotMultiEcosystemGroupSchema as pn, DependabotCommand as pt, makeRandomJobId as q, DependabotSource as qt, DependabotClosePullRequestReasonEnum as r, DependabotCommitMessageSchema as rn, DEFAULT_EXPERIMENTS as rt, DependabotDependencyFile as s, DependabotCooldownSchema as sn, getBranchNameForUpdate as st, DependabotClosePullRequest as t, DependabotAllowConditionSchema as tn, mapSourceFromDependabotConfigToJobConfig as tt, DependabotDependencySubmissionSchema as u, DependabotIgnoreCondition as un, CertificateAuthoritySchema as ut, DependabotMarkAsProcessedSchema as v, DependabotScheduleSchema as vn, DependabotConditionSchema as vt, DependabotRecordEcosystemMetaSchema as w, VersioningStrategy as wn, DependabotExistingGroupPRSchema as wt, DependabotRecordCooldownMeta as x, POSSIBLE_CONFIG_FILE_PATHS as xn, DependabotDependency as xt, DependabotMetric as y, DependabotUpdate as yn, DependabotCredential as yt, DependabotRequestSchema as z, DependabotProxyConfig as zt };
+//# sourceMappingURL=index-bwD11mTZ.d.mts.map

package/dist/{job-DQiSYFHb.mjs → job-DanO84YW.mjs}

@@ -251,7 +251,7 @@ const DependabotUpdateSchema = z.object({
 	"pull-request-branch-name": DependabotPullRequestBranchNameSchema.optional(),
 	"rebase-strategy": z.string().optional(),
 	registries: z.string().array().optional(),
-	schedule: DependabotScheduleSchema.optional(),
+	schedule: DependabotScheduleSchema,
 	"target-branch": z.string().optional(),
 	vendor: z.boolean().optional(),
 	"versioning-strategy": VersioningStrategySchema.optional(),
@@ -557,4 +557,4 @@ const DependabotJobFileSchema = z.object({ job: DependabotJobConfigSchema });
 
 //#endregion
 export { DependabotScheduleSchema as A, extractPlaceholder as B, DependabotCommitMessageSchema as C, DependabotIgnoreConditionSchema as D, DependabotGroupSchema as E, parseDependabotConfig as F, parseRegistries as I, parseUpdates as L, POSSIBLE_CONFIG_FILE_PATHS as M, PackageEcosystemSchema as N, DependabotMultiEcosystemGroupSchema as O, VersioningStrategySchema as P, validateConfiguration as R, DependabotAllowConditionSchema as S, DependabotCooldownSchema as T, makeDirectoryKey as V, DependabotRequirementSchema as _, DependabotConditionSchema as a, DependabotSourceProviderSchema as b, DependabotExistingGroupPRSchema as c, DependabotGroupJobSchema as d, DependabotGroupRuleJobSchema as f, DependabotProxyConfigSchema as g, DependabotPackageManagerSchema as h, DependabotCommitOptionsSchema as i, DependabotUpdateSchema as j, DependabotRegistrySchema as k, DependabotExistingPRSchema as l, DependabotJobFileSchema as m, DependabotAllowedSchema as n, DependabotCredentialSchema as o, DependabotJobConfigSchema as p, DependabotCommandSchema as r, DependabotDependencySchema as s, CertificateAuthoritySchema as t, DependabotExperimentsSchema as u, DependabotRequirementSourceSchema as v, DependabotConfigSchema as w, DependabotSourceSchema as x, DependabotSecurityAdvisorySchema as y, convertPlaceholder as z };
-//# sourceMappingURL=job-DQiSYFHb.mjs.map
+//# sourceMappingURL=job-DanO84YW.mjs.map

package/dist/job-DanO84YW.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"job-DanO84YW.mjs","names":["matches: RegExpExecArray[]","regexp: RegExp","betaEcosystems: PackageEcosystem[]","updates: DependabotUpdate[]","registries: Record<string, DependabotRegistry>","referenced: string[]"],"sources":["../src/dependabot/directory-key.ts","../src/dependabot/placeholder.ts","../src/dependabot/config.ts","../src/dependabot/job.ts"],"sourcesContent":["/**\n * Options for creating a directory key that supports both naming conventions:\n * - `ecosystem` (standard format)\n * - `package-ecosystem` (alternative format for compatibility)\n *\n * Either a single `directory` or multiple `directories` can be specified.\n */\ntype MakeDirectoryKeyOptions =\n  | {\n      /** The package ecosystem (e.g., 'npm', 'pip', 'bundler') */\n      ecosystem: string;\n      /** Single directory path (optional if directories is provided) */\n      directory?: string | null;\n      /** Multiple directory paths (optional if directory is provided) */\n      directories?: string[];\n    }\n  | {\n      /** The package ecosystem using alternative naming convention */\n      'package-ecosystem': string;\n      /** Single directory path (optional if directories is provided) */\n      directory?: string | null;\n      /** Multiple directory paths (optional if directory is provided) */\n      directories?: string[];\n    };\n\n/**\n * Creates a unique directory key by combining the ecosystem and directory information.\n *\n * The key format is: `{ecosystem}::{directory_info}`\n * - For single directory: `npm::/src/frontend`\n * - For multiple directories: `npm::/src/frontend,/src/backend`\n *\n * @param options - Configuration object containing ecosystem and directory information\n * @returns A unique string key in the format `{ecosystem}::{directories}`\n *\n * @example\n * ```typescript\n * // Single directory\n * const key1 = makeDirectoryKey({ ecosystem: 'npm', directory: '/src' });\n * // Returns: \"npm::/src\"\n *\n * // Multiple directories\n * const key2 = makeDirectoryKey({\n *   ecosystem: 'pip',\n *   directories: ['/backend', '/scripts']\n * });\n * // Returns: \"pip::/backend,/scripts\"\n *\n * // Using alternative naming convention\n * const key3 = makeDirectoryKey({\n *   'package-ecosystem': 'bundler',\n *   directory: '/app'\n * });\n * // Returns: \"bundler::/app\"\n * ```\n */\nexport function makeDirectoryKey(options: MakeDirectoryKeyOptions): string {\n  // Extract ecosystem name from either naming convention\n  const ecosystem = 'ecosystem' in options ? options.ecosystem : options['package-ecosystem'];\n\n  // Use single directory if provided, otherwise join multiple directories with comma\n  const directoryPart = options.directory ?? options.directories!.join(',');\n\n  return `${ecosystem}::${directoryPart}`;\n}\n","export type VariableFinderFn = (name: string) => string | undefined | Promise<string | undefined>;\n\nasync function convertPlaceholder({\n  input,\n  variableFinder,\n}: {\n  input?: string;\n  variableFinder: VariableFinderFn;\n}): Promise<string | undefined> {\n  if (!input) return undefined;\n\n  const matches: RegExpExecArray[] = extractPlaceholder(input);\n  let result = input;\n  for (const match of matches) {\n    const placeholder = match[0];\n    const name = match[1]!;\n    const value = (await variableFinder(name)) ?? placeholder;\n    result = result.replace(placeholder, value);\n  }\n  return result;\n}\n\nfunction extractPlaceholder(input: string) {\n  const matches: RegExpExecArray[] = [];\n  const regexp: RegExp = /\\$\\{\\{\\s{0,10}([a-zA-Z_][a-zA-Z0-9._-]{0,99})\\s{0,10}\\}\\}/;\n\n  let searchInput = input;\n  let offset = 0;\n\n  while (searchInput.length > 0) {\n    const match = searchInput.match(regexp);\n    if (!match || match.index === undefined) break;\n\n    // Adjust match index to account for previous slices\n    const adjustedMatch = Object.assign([...match], {\n      index: match.index + offset,\n      input: input,\n      groups: match.groups,\n    }) as RegExpExecArray;\n\n    matches.push(adjustedMatch);\n\n    // Move past this match\n    const nextStart = match.index + match[0].length;\n    offset += nextStart;\n    searchInput = searchInput.slice(nextStart);\n  }\n\n  return matches;\n}\n\nexport { convertPlaceholder, extractPlaceholder };\n","import * as yaml from 'js-yaml';\nimport { z } from 'zod';\n\nimport { makeDirectoryKey } from './directory-key';\nimport { convertPlaceholder, type VariableFinderFn } from './placeholder';\n\nexport const DependabotRegistrySchema = z\n  .object({\n    type: z.enum([\n      // order matches\n      // https://docs.github.com/en/enterprise-cloud@latest/code-security/dependabot/working-with-dependabot/configuring-access-to-private-registries-for-dependabot#supported-private-registries\n\n      'cargo-registry',\n      'composer-repository',\n      'docker-registry',\n      'git',\n      'goproxy-server',\n      'helm-registry',\n      'hex-organization',\n      'hex-repository',\n      'maven-repository',\n      'npm-registry',\n      'nuget-feed',\n      'pub-repository',\n      'python-index',\n      'rubygems-server',\n      'terraform-registry',\n    ]),\n    url: z.string().optional(),\n    username: z.string().optional(),\n    password: z.string().optional(),\n    key: z.string().optional(),\n    token: z.string().optional(),\n    'replaces-base': z.boolean().optional(),\n    host: z.string().optional(), // for terraform and composer only\n    registry: z.string().optional(), // for npm only\n    organization: z.string().optional(), // for hex-organisation only\n    repo: z.string().optional(), // for hex-repository only\n    'public-key-fingerprint': z.string().optional(), // for hex-repository only\n    'index-url': z.string().optional(), // for python-index only\n    'auth-key': z.string().optional(), // used by composer-repository, docker-registry, etc\n    'tenant-id': z.string().optional(), // can only be for azure related stuff, not sure\n    'client-id': z.string().optional(), // can only be for azure related stuff, not sure\n  })\n  // change underscore to dash in the registry key/type\n  .transform((value) => ({ ...value, type: value.type.replace('-', '_') }));\nexport type DependabotRegistry = z.infer<typeof DependabotRegistrySchema>;\n\nexport const DependabotGroupSchema = z.object({\n  // Define an identifier for the group to use in branch names and pull request titles.\n  // This must start and end with a letter, and can contain letters, pipes |, underscores _, or hyphens -.\n  IDENTIFIER: z\n    .string()\n    .check(\n      z.regex(/^[a-zA-Z][a-zA-Z0-9|_-]*[a-zA-Z]$/, {\n        message:\n          'Group identifier must start and end with a letter, and can contain letters, pipes |, underscores _, or hyphens -.',\n      }),\n    )\n    .optional(),\n  'applies-to': z.enum(['version-updates', 'security-updates']).optional(),\n  'dependency-type': z.enum(['development', 'production']).optional(),\n  patterns: z.string().array().optional(),\n  'exclude-patterns': z.string().array().optional(),\n  'update-types': z.enum(['major', 'minor', 'patch']).array().optional(),\n});\nexport type DependabotGroup = z.infer<typeof DependabotGroupSchema>;\n\nexport const DependabotAllowConditionSchema = z.object({\n  'dependency-name': z.string().optional(),\n  'dependency-type': z.enum(['direct', 'indirect', 'all', 'production', 'development']).optional(),\n  'update-type': z.enum(['all', 'security']).optional(),\n});\nexport type DependabotAllowCondition = z.infer<typeof DependabotAllowConditionSchema>;\n\nexport const DependabotIgnoreConditionSchema = z\n  .object({\n    'dependency-name': z.string().optional(),\n    versions: z.string().array().or(z.string()).optional(),\n    'update-types': z\n      .enum(['version-update:semver-major', 'version-update:semver-minor', 'version-update:semver-patch'])\n      .array()\n      .optional(),\n  })\n  .and(z.record(z.string(), z.any()));\nexport type DependabotIgnoreCondition = z.infer<typeof DependabotIgnoreConditionSchema>;\n\nexport const DependabotScheduleSchema = z\n  .object({\n    interval: z.enum(['daily', 'weekly', 'monthly', 'quarterly', 'semiannually', 'yearly', 'cron']),\n\n    day: z\n      .enum(['sunday', 'monday', 'tuesday', 'wednesday', 'thursday', 'friday', 'saturday'])\n      .optional()\n      .default('monday'),\n\n    time: z\n      .string()\n      .default('02:00')\n      .check(z.regex(/^(0[0-9]|1[0-9]|2[0-3]):[0-5][0-9]$/, { message: 'Time must be in HH:MM format' }))\n      .optional(),\n\n    timezone: z\n      .string()\n      .optional()\n      .default('Etc/UTC')\n      .refine(\n        (value) => {\n          try {\n            // If tz is not a valid IANA name, this throws a RangeError\n            Intl.DateTimeFormat(undefined, { timeZone: value });\n            return true;\n          } catch {\n            return false;\n          }\n        },\n        { message: 'Invalid IANA time zone' },\n      ),\n    cronjob: z\n      .string()\n      .check(z.regex(/^\\S+ \\S+ \\S+ \\S+ \\S+$/, { message: 'Cronjob must be in standard cron format' }))\n      .optional(),\n  })\n  .transform((value, { addIssue }) => {\n    // if interval is 'cron', cronjob must be specified\n    if (value.interval === 'cron' && !value.cronjob) {\n      addIssue(\"The 'cronjob' field must be specified when the interval is set to 'cron'.\");\n    }\n\n    return value;\n  });\nexport type DependabotSchedule = z.infer<typeof DependabotScheduleSchema>;\n\nexport const DependabotCommitMessageSchema = z.object({\n  prefix: z.string().optional(),\n  'prefix-development': z.string().optional(),\n  include: z.string().optional(),\n});\nexport type DependabotCommitMessage = z.infer<typeof DependabotCommitMessageSchema>;\n\nexport const DependabotCooldownSchema = z.object({\n  'default-days': z.number().optional(),\n  'semver-major-days': z.number().optional(),\n  'semver-minor-days': z.number().optional(),\n  'semver-patch-days': z.number().optional(),\n  include: z.string().array().optional(),\n  exclude: z.string().array().optional(),\n});\nexport type DependabotCooldown = z.infer<typeof DependabotCooldownSchema>;\n\nconst DependabotPullRequestBranchNameSchema = z.object({\n  separator: z.string().optional(),\n});\nexport type DependabotPullRequestBranchName = z.infer<typeof DependabotPullRequestBranchNameSchema>;\n\nexport const PackageEcosystemSchema = z.enum([\n  // order matches\n  // https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#package-ecosystem-\n\n  'bazel', // still in beta as of 2025-Nov-17\n  'bun',\n  'bundler',\n  'cargo',\n  'composer',\n  'conda',\n  'devcontainers',\n  'docker',\n  'docker-compose',\n  'dotnet-sdk',\n  'helm',\n  'mix',\n  'elm',\n  'gitsubmodule',\n  'github-actions',\n  'gomod',\n  'gradle',\n  'julia',\n  'maven',\n  'npm',\n  'nuget',\n  'opentofu', // in beta as of 2025-Nov-17\n  'pip',\n  'pip-compile', // alias mapped to 'pip'\n  'pipenv', // alias mapped to 'pip'\n  'pnpm', // alias mapped to 'npm'\n  'poetry', // alias mapped to 'pip'\n  'pub',\n  'rust-toolchain',\n  'swift',\n  'terraform',\n  'uv',\n  'vcpkg',\n  'yarn', // alias mapped to 'npm'\n]);\nexport type PackageEcosystem = z.infer<typeof PackageEcosystemSchema>;\n\nexport const VersioningStrategySchema = z.enum(['auto', 'increase', 'increase-if-necessary', 'lockfile-only', 'widen']);\nexport type VersioningStrategy = z.infer<typeof VersioningStrategySchema>;\n\nexport const DependabotUpdateSchema = z\n  .object({\n    'package-ecosystem': PackageEcosystemSchema,\n    directory: z.string().optional(),\n    directories: z.string().array().optional(),\n    'exclude-paths': z.string().array().optional(),\n    allow: DependabotAllowConditionSchema.array().optional(),\n    assignees: z.string().array().optional(),\n    'commit-message': DependabotCommitMessageSchema.optional(),\n    cooldown: DependabotCooldownSchema.optional(),\n    groups: z.record(z.string(), DependabotGroupSchema).optional(),\n    ignore: DependabotIgnoreConditionSchema.array().optional(),\n    'insecure-external-code-execution': z.enum(['allow', 'deny']).optional(),\n    labels: z.string().array().optional(),\n    milestone: z.coerce.string().optional(),\n    'open-pull-requests-limit': z.number().check(z.int(), z.gte(0)).optional(),\n    'pull-request-branch-name': DependabotPullRequestBranchNameSchema.optional(),\n    'rebase-strategy': z.string().optional(),\n    registries: z.string().array().optional(),\n    schedule: DependabotScheduleSchema,\n    'target-branch': z.string().optional(),\n    vendor: z.boolean().optional(),\n    'versioning-strategy': VersioningStrategySchema.optional(),\n    patterns: z.string().array().optional(),\n    'multi-ecosystem-group': z.string().optional(),\n  })\n  .transform((value, { addIssue }) => {\n    // either 'directory' or 'directories' must be specified\n    if (!value.directory && (!value.directories || value.directories.length === 0)) {\n      addIssue(\"Either 'directory' or 'directories' must be specified in the dependency update configuration.\");\n    }\n\n    // validate that 'directory' does not contain glob patterns\n    if (value.directory && /[*?[\\]{}]/.test(value.directory)) {\n      addIssue(\"The 'directory' field must not include glob pattern.\");\n    }\n\n    value['open-pull-requests-limit'] ??= 5; // default to 5 if not specified\n\n    // The patterns key is required when using multi-ecosystem-group.\n    // You can specify dependency patterns to include only certain dependencies in the group,\n    // or use [\"*\"] to include all dependencies.\n    if (value['multi-ecosystem-group'] && (!value.patterns || value.patterns.length === 0)) {\n      addIssue(\n        \"The 'patterns' field must be specified and contain at least one pattern when using 'multi-ecosystem-group'.\",\n      );\n    }\n\n    return value;\n  });\nexport type DependabotUpdate = z.infer<typeof DependabotUpdateSchema>;\n\nexport const DependabotMultiEcosystemGroupSchema = z.object({\n  schedule: DependabotScheduleSchema,\n  labels: z.string().array().optional(), // behaviour: additive\n  milestone: z.coerce.string().optional(), // behaviour: group-only\n  assignees: z.string().array().optional(), // behaviour: additive\n  'target-branch': z.string().optional(), // behaviour: group-only\n  'commit-message': DependabotCommitMessageSchema.optional(), // behaviour: group-only\n  'pull-request-branch-name': DependabotPullRequestBranchNameSchema.optional(), // behaviour: group-only\n});\nexport type DependabotMultiEcosystemGroup = z.infer<typeof DependabotMultiEcosystemGroupSchema>;\n\n/**\n * Represents the dependabot.yaml configuration file options.\n * See: https://docs.github.com/en/github/administering-a-repository/configuration-options-for-dependency-updates#configuration-options-for-dependabotyml\n */\nexport const DependabotConfigSchema = z\n  .object({\n    /**\n     * Mandatory. configuration file version.\n     **/\n    version: z.number().refine((v) => v === 2, { message: 'Only version 2 of dependabot is supported' }),\n\n    /**\n     * Optional. Configure groups of ecosystems to update together in a single pull request.\n     */\n    'multi-ecosystem-groups': z.record(z.string(), DependabotMultiEcosystemGroupSchema).optional(),\n\n    /**\n     * Mandatory. Configure how Dependabot updates the versions or project dependencies.\n     * Each entry configures the update settings for a particular package manager.\n     */\n    updates: DependabotUpdateSchema.array().check(\n      z.minLength(1, { message: 'At least one update configuration is required' }),\n    ),\n\n    /**\n     * Optional.\n     * Specify authentication details to access private package registries.\n     */\n    registries: z.record(z.string(), DependabotRegistrySchema).optional(),\n\n    /**\n     * Optional. Enables updates for ecosystems that are not yet generally available.\n     * https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#enable-beta-ecosystems-\n     */\n    'enable-beta-ecosystems': z.boolean().optional(),\n  })\n  .transform((value, { addIssue }) => {\n    // If you attempt to set group-only keys at the ecosystem level (in updates entries),\n    // Dependabot will throw a configuration error and fail to process your dependabot.yml file.\n    // These keys must only be specified in the multi-ecosystem-groups section.\n    // https://docs.github.com/en/code-security/dependabot/working-with-dependabot/configuring-multi-ecosystem-updates#group-only-keys\n    const groupOnlyKeys = ['milestone', 'target-branch', 'commit-message', 'pull-request-branch-name'] as const;\n    if (value['multi-ecosystem-groups']) {\n      for (const update of value.updates) {\n        for (const key of groupOnlyKeys) {\n          if (key in update) {\n            addIssue(\n              `The '${key}' field must not be specified in the 'updates' section when using 'multi-ecosystem-groups'. It is a group-only field.`,\n            );\n          }\n        }\n      }\n    }\n\n    // ensure there is no update with the same package-ecosystem and directory/directories combination\n    const seen = new Set<string>();\n    for (const update of value.updates) {\n      const key = makeDirectoryKey(update);\n      if (seen.has(key)) {\n        addIssue(\n          `Duplicate update configuration found for '${update['package-ecosystem']}' and directory: '${update.directory ?? update.directories?.join(',')}'`,\n        );\n      }\n      seen.add(key);\n    }\n\n    // ensure that the ecosystems in beta are only used when 'enable-beta-ecosystems' is true\n    const betaEcosystems: PackageEcosystem[] = ['bazel', 'conda', 'opentofu'];\n    if (!value['enable-beta-ecosystems']) {\n      for (const update of value.updates) {\n        if (betaEcosystems.includes(update['package-ecosystem'])) {\n          addIssue(\n            `The package ecosystem '${update['package-ecosystem']}' is currently in beta. To use it, set 'enable-beta-ecosystems' to true in the dependabot configuration.`,\n          );\n        }\n      }\n    }\n\n    return value;\n  });\n\nexport type DependabotConfig = z.infer<typeof DependabotConfigSchema>;\n\nexport function parseUpdates(config: DependabotConfig, configPath: string): DependabotUpdate[] {\n  const updates: DependabotUpdate[] = [];\n\n  // Parse the value of each of the updates obtained from the file\n  for (const update of config.updates) {\n    // populate the 'ignore' conditions 'source' and 'updated-at' properties, if missing\n    // NOTE: 'source' and 'updated-at' are not documented in the dependabot.yml config docs, but are defined in the dependabot-core and dependabot-cli models.\n    //       Currently they don't appear to add much value to the update process, but are populated here for completeness.\n    if (update.ignore) {\n      for (const condition of update.ignore) {\n        condition.source ??= configPath;\n        // we don't know the last updated time, so we use the current time\n        condition['updated-at'] ??= new Date().toISOString();\n      }\n    }\n\n    updates.push(update);\n  }\n  return updates;\n}\n\nexport async function parseRegistries(\n  config: DependabotConfig,\n  variableFinder: VariableFinderFn,\n): Promise<Record<string, DependabotRegistry>> {\n  // Parse the value of each of the registries obtained from the config\n  const registries: Record<string, DependabotRegistry> = {};\n  for (const [key, registry] of Object.entries(config.registries || {})) {\n    const updated = { ...registry };\n    const { type } = updated;\n\n    // handle special fields for 'hex-organization' types\n    if (type === 'hex_organization' && !updated.organization) {\n      throw new Error(`The value 'organization' in dependency registry config '${type}' is missing`);\n    }\n\n    // handle special fields for 'hex-repository' types\n    if (type === 'hex_repository' && !updated.repo) {\n      throw new Error(`The value 'repo' in dependency registry config '${key}' is missing`);\n    }\n\n    // parse username, password, key, and token while replacing tokens where necessary\n    updated.username = await convertPlaceholder({ input: updated.username, variableFinder: variableFinder });\n    updated.password = await convertPlaceholder({ input: updated.password, variableFinder: variableFinder });\n    updated.key = await convertPlaceholder({ input: updated.key, variableFinder: variableFinder });\n    updated.token = await convertPlaceholder({ input: updated.token, variableFinder: variableFinder });\n\n    // TODO: include sources for this logic, otherwise it looks like magic.\n    // Initially, this was based on reading through the dependabot-core logic\n    // but much has since changed.\n\n    // parse the url\n    const url = updated.url;\n    if (!url && type !== 'hex_organization') {\n      throw new Error(`The value 'url' in dependency registry config '${key}' is missing`);\n    }\n    if (url) {\n      /*\n       * Some credentials do not use the 'url' property in the Ruby updater.\n       * The 'host' and 'registry' properties are derived from the given URL.\n       * The 'registry' property is derived from the 'url' by stripping off the scheme.\n       * The 'host' property is derived from the hostname of the 'url'.\n       *\n       * 'npm_registry' and 'docker_registry' use 'registry' only.\n       * 'terraform_registry' uses 'host' only.\n       * 'composer_repository' uses both 'url' and 'host'.\n       * 'python_index' uses 'index-url' instead of 'url'.\n       */\n\n      if (URL.canParse(url)) {\n        const parsedUrl = new URL(url);\n\n        const addRegistry = type === 'docker_registry' || type === 'npm_registry';\n        if (addRegistry) updated.registry = url.replace('https://', '').replace('http://', '');\n\n        const addHost = type === 'composer_repository' || type === 'terraform_registry';\n        if (addHost) updated.host = parsedUrl.hostname;\n      }\n\n      if (type === 'python_index') updated['index-url'] = url;\n\n      const removeUrl =\n        type === 'docker_registry' ||\n        type === 'npm_registry' ||\n        type === 'terraform_registry' ||\n        type === 'python_index';\n      if (removeUrl) delete updated.url; // remove the url if not needed\n    }\n\n    // add to list\n    registries[key] = updated;\n  }\n  return registries;\n}\n\nexport function validateConfiguration(updates: DependabotUpdate[], registries: Record<string, DependabotRegistry>) {\n  const configured = Object.keys(registries);\n  const referenced: string[] = [];\n  for (const u of updates) referenced.push(...(u.registries ?? []));\n\n  // ensure there are no configured registries that have not been referenced\n  const missingConfiguration = referenced.filter((el) => !configured.includes(el));\n  if (missingConfiguration.length > 0) {\n    throw new Error(\n      `Referenced registries: '${missingConfiguration.join(',')}' have not been configured in the root of dependabot.yml`,\n    );\n  }\n\n  // ensure there are no registries referenced but not configured\n  const missingReferences = configured.filter((el) => !referenced.includes(el));\n  if (missingReferences.length > 0) {\n    throw new Error(`Registries: '${missingReferences.join(',')}' have not been referenced by any update`);\n  }\n}\n\n/**\n * Possible paths to the dependabot config file.\n * Remember to prefix with a forward slash when querying API endpoints or where necessary.\n */\nexport const POSSIBLE_CONFIG_FILE_PATHS = [\n  '.azuredevops/dependabot.yml',\n  '.azuredevops/dependabot.yaml',\n  '.github/dependabot.yaml',\n  '.github/dependabot.yml',\n];\n\n/**\n * Parse the contents of a dependabot config YAML file\n * @returns {DependabotConfig} config - the dependabot configuration\n */\nexport async function parseDependabotConfig({\n  configContents,\n  configPath,\n  variableFinder,\n}: {\n  configContents: string;\n  configPath: string;\n  variableFinder: VariableFinderFn;\n}): Promise<DependabotConfig> {\n  // Load the config\n  const loadedConfig = yaml.load(configContents);\n  if (loadedConfig === null || typeof loadedConfig !== 'object') {\n    throw new Error('Invalid dependabot config object');\n  }\n\n  // Parse the config\n  const config = await DependabotConfigSchema.parseAsync(loadedConfig);\n  const updates = parseUpdates(config, configPath);\n  const registries = await parseRegistries(config, variableFinder);\n  validateConfiguration(updates, registries);\n\n  return { ...config, updates, registries };\n}\n","import { z } from 'zod';\nimport { DependabotCooldownSchema } from './config';\n\n// we use nullish() because it does optional() and allows the value to be set to null\n\nexport const DependabotCredentialSchema = z.record(z.string(), z.any());\nexport type DependabotCredential = z.infer<typeof DependabotCredentialSchema>;\n\nexport const CertificateAuthoritySchema = z.object({\n  cert: z.string(),\n  key: z.string(),\n});\nexport type CertificateAuthority = z.infer<typeof CertificateAuthoritySchema>;\n\nexport const DependabotProxyConfigSchema = z.object({\n  all_credentials: DependabotCredentialSchema.array(),\n  ca: CertificateAuthoritySchema,\n});\nexport type DependabotProxyConfig = z.infer<typeof DependabotProxyConfigSchema>;\n\nexport const DependabotSourceProviderSchema = z.enum(['azure', 'gitlab', 'bitbucket']);\nexport type DependabotSourceProvider = z.infer<typeof DependabotSourceProviderSchema>;\n\nexport const DependabotSourceSchema = z.object({\n  provider: DependabotSourceProviderSchema,\n  repo: z.string(),\n  directory: z.string().nullish(),\n  directories: z.string().array().nullish(),\n  branch: z.string().nullish(),\n  commit: z.string().nullish(),\n  hostname: z.string().nullish(), // Must be provided if api-endpoint is\n  'api-endpoint': z.string().nullish(), // Must be provided if hostname is\n});\nexport type DependabotSource = z.infer<typeof DependabotSourceSchema>;\n\nexport const DependabotExistingPRSchema = z.object({\n  'dependency-name': z.string(),\n  'dependency-version': z.string().nullish(),\n  directory: z.string().nullish(),\n  removed: z.boolean().nullish(),\n});\nexport type DependabotExistingPR = z.infer<typeof DependabotExistingPRSchema>;\n\nexport const DependabotExistingGroupPRSchema = z.object({\n  'dependency-group-name': z.string(),\n  dependencies: DependabotExistingPRSchema.array(),\n});\nexport type DependabotExistingGroupPR = z.infer<typeof DependabotExistingGroupPRSchema>;\n\nexport const DependabotAllowedSchema = z.object({\n  'dependency-name': z.string().nullish(),\n  'dependency-type': z.string().nullish(),\n  'update-type': z.enum(['all', 'security']).optional(),\n});\nexport type DependabotAllowed = z.infer<typeof DependabotAllowedSchema>;\n\nexport const DependabotGroupRuleJobSchema = z.object({\n  patterns: z.string().array().nullish(),\n  'exclude-patterns': z.string().array().nullish(),\n  'dependency-type': z.string().nullish(),\n  'update-types': z.string().array().nullish(),\n});\nexport type DependabotGroupRuleJob = z.infer<typeof DependabotGroupRuleJobSchema>;\n\nexport const DependabotGroupJobSchema = z.object({\n  name: z.string(),\n  'applies-to': z.string().nullish(),\n  rules: DependabotGroupRuleJobSchema,\n});\nexport type DependabotGroupJob = z.infer<typeof DependabotGroupJobSchema>;\n\nexport const DependabotConditionSchema = z.object({\n  'dependency-name': z.string(),\n  source: z.string().nullish(),\n  'update-types': z.string().array().nullish(),\n  'updated-at': z.coerce.string().nullish(),\n  'version-requirement': z.string().nullish(),\n});\nexport type DependabotCondition = z.infer<typeof DependabotConditionSchema>;\n\nexport const DependabotSecurityAdvisorySchema = z.object({\n  'dependency-name': z.string(),\n  'affected-versions': z.string().array(),\n  'patched-versions': z.string().array().nullish(), // may not be patched as of yet\n  'unaffected-versions': z.string().array(),\n});\nexport type DependabotSecurityAdvisory = z.infer<typeof DependabotSecurityAdvisorySchema>;\n\nexport const DependabotRequirementSourceSchema = z.record(z.string(), z.any());\nexport type DependabotRequirementSource = z.infer<typeof DependabotRequirementSourceSchema>;\n\nexport const DependabotRequirementSchema = z.object({\n  file: z.string().nullish(), // e.g. 'requirements.txt' or '/Root.csproj'\n  groups: z.string().array().nullish(), // e.g. ['dependencies']\n  metadata: z.record(z.string(), z.any()).nullish(),\n  requirement: z.string().nullish(), // e.g. '==3.2.0' or '8.1.0'\n  source: DependabotRequirementSourceSchema.nullish(),\n  version: z.string().nullish(),\n  'previous-version': z.string().nullish(),\n});\nexport type DependabotRequirement = z.infer<typeof DependabotRequirementSchema>;\n\nexport const DependabotDependencySchema = z.object({\n  name: z.string(), // e.g. 'django' or 'GraphQL.Server.Ui.Voyager'\n  'previous-requirements': DependabotRequirementSchema.array().nullish(),\n  'previous-version': z.string().nullish(),\n  version: z.string().nullish(), // e.g. '5.0.1' or '8.1.0'\n  requirements: DependabotRequirementSchema.array().nullish(),\n  removed: z.boolean().nullish(),\n  directory: z.string().nullish(),\n});\nexport type DependabotDependency = z.infer<typeof DependabotDependencySchema>;\n\nexport const DependabotCommitOptionsSchema = z.object({\n  prefix: z.string().nullish(),\n  'prefix-development': z.string().nullish(),\n  'include-scope': z.boolean().nullish(),\n});\nexport type DependabotCommitOptions = z.infer<typeof DependabotCommitOptionsSchema>;\n\nexport const DependabotExperimentsSchema = z.record(z.string(), z.union([z.string(), z.boolean()]));\nexport type DependabotExperiments = z.infer<typeof DependabotExperimentsSchema>;\n\nexport const DependabotPackageManagerSchema = z.enum([\n  'bundler',\n  'cargo',\n  'composer',\n  'conda',\n  'pub',\n  'docker',\n  'elm',\n  'github_actions', // ecosystem(s): 'github-actions'\n  'submodules', // ecosystem(s): 'gitsubmodule'\n  'go_modules', // ecosystem(s): 'gomod'\n  'gradle',\n  'maven',\n  'hex', // ecosystem(s): 'mix'\n  'nuget',\n  'npm_and_yarn', // ecosystem(s): 'npm', 'pnpm', 'yarn'\n  'pip', // ecosystem(s): 'pipenv', 'pip-compile', 'poetry'\n  'rust_toolchain', // ecosystem(s): 'rust-toolchain'\n  'swift',\n  'terraform',\n  'devcontainers',\n  'dotnet_sdk', // ecosystem(s): 'dotnet-sdk'\n  'bun',\n  'docker_compose', //  // ecosystem(s): 'docker-compose',\n  'uv',\n  'vcpkg',\n  'helm',\n  'julia',\n  'bazel',\n  'opentofu',\n]);\nexport type DependabotPackageManager = z.infer<typeof DependabotPackageManagerSchema>;\n\nexport const DependabotCommandSchema = z.enum(['graph', 'version', 'recreate']);\nexport type DependabotCommand = z.infer<typeof DependabotCommandSchema>;\n\n// See: https://github.com/dependabot/cli/blob/main/internal/model/job.go\n//      https://github.com/dependabot/dependabot-core/blob/main/updater/lib/dependabot/job.rb\nexport const DependabotJobConfigSchema = z.object({\n  id: z.string(),\n  command: DependabotCommandSchema.optional(),\n  'package-manager': DependabotPackageManagerSchema,\n  'allowed-updates': DependabotAllowedSchema.array(),\n  debug: z.boolean().nullable(),\n  'dependency-groups': DependabotGroupJobSchema.array().nullish(),\n  dependencies: z.string().array().nullable(),\n  'dependency-group-to-refresh': z.string().nullish(),\n  'existing-pull-requests': DependabotExistingPRSchema.array().array(),\n  'existing-group-pull-requests': DependabotExistingGroupPRSchema.array(),\n  experiments: DependabotExperimentsSchema,\n  'ignore-conditions': DependabotConditionSchema.array(),\n  'lockfile-only': z.boolean(),\n  'requirements-update-strategy': z.string().nullable(),\n  'security-advisories': DependabotSecurityAdvisorySchema.array(),\n  'security-updates-only': z.boolean(),\n  source: DependabotSourceSchema,\n  'update-subdependencies': z.boolean(),\n  'updating-a-pull-request': z.boolean(),\n  'vendor-dependencies': z.boolean(),\n  'reject-external-code': z.boolean().nullish(),\n  'repo-private': z.boolean(),\n  'commit-message-options': DependabotCommitOptionsSchema,\n  'credentials-metadata': DependabotCredentialSchema.array().nullish(),\n  'max-updater-run-time': z.int().nullish(),\n  cooldown: DependabotCooldownSchema.nullish(),\n  'proxy-log-response-body-on-auth-failure': z.boolean().nullish(),\n  'enable-beta-ecosystems': z.boolean().nullish(),\n  'multi-ecosystem-update': z.boolean().nullish(),\n  'exclude-paths': z.string().array().optional(),\n});\nexport type DependabotJobConfig = z.infer<typeof DependabotJobConfigSchema>;\n\nexport const DependabotJobFileSchema = z.object({\n  job: DependabotJobConfigSchema,\n});\nexport type DependabotJobFile = z.infer<typeof DependabotJobFileSchema>;\n\n// Code below is borrowed and adapted from dependabot-action\n\n// biome-ignore-start lint/suspicious/noExplicitAny: generic\nexport type FetchedFiles = {\n  base_commit_sha: string;\n  dependency_files: any[];\n  base64_dependency_files: any[];\n};\n// biome-ignore-end lint/suspicious/noExplicitAny: generic\n\nexport type FileFetcherInput = {\n  job: DependabotJobConfig;\n};\n\nexport type FileUpdaterInput = FetchedFiles & {\n  job: DependabotJobConfig;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAwDA,SAAgB,iBAAiB,SAA0C;AAOzE,QAAO,GALW,eAAe,UAAU,QAAQ,YAAY,QAAQ,qBAKnD,IAFE,QAAQ,aAAa,QAAQ,YAAa,KAAK,IAAI;;;;;AC3D3E,eAAe,mBAAmB,EAChC,OACA,kBAI8B;AAC9B,KAAI,CAAC,MAAO,QAAO;CAEnB,MAAMA,UAA6B,mBAAmB,MAAM;CAC5D,IAAI,SAAS;AACb,MAAK,MAAM,SAAS,SAAS;EAC3B,MAAM,cAAc,MAAM;EAC1B,MAAM,OAAO,MAAM;EACnB,MAAM,QAAS,MAAM,eAAe,KAAK,IAAK;AAC9C,WAAS,OAAO,QAAQ,aAAa,MAAM;;AAE7C,QAAO;;AAGT,SAAS,mBAAmB,OAAe;CACzC,MAAMA,UAA6B,EAAE;CACrC,MAAMC,SAAiB;CAEvB,IAAI,cAAc;CAClB,IAAI,SAAS;AAEb,QAAO,YAAY,SAAS,GAAG;EAC7B,MAAM,QAAQ,YAAY,MAAM,OAAO;AACvC,MAAI,CAAC,SAAS,MAAM,UAAU,OAAW;EAGzC,MAAM,gBAAgB,OAAO,OAAO,CAAC,GAAG,MAAM,EAAE;GAC9C,OAAO,MAAM,QAAQ;GACd;GACP,QAAQ,MAAM;GACf,CAAC;AAEF,UAAQ,KAAK,cAAc;EAG3B,MAAM,YAAY,MAAM,QAAQ,MAAM,GAAG;AACzC,YAAU;AACV,gBAAc,YAAY,MAAM,UAAU;;AAG5C,QAAO;;;;;AC1CT,MAAa,2BAA2B,EACrC,OAAO;CACN,MAAM,EAAE,KAAK;EAIX;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACD,CAAC;CACF,KAAK,EAAE,QAAQ,CAAC,UAAU;CAC1B,UAAU,EAAE,QAAQ,CAAC,UAAU;CAC/B,UAAU,EAAE,QAAQ,CAAC,UAAU;CAC/B,KAAK,EAAE,QAAQ,CAAC,UAAU;CAC1B,OAAO,EAAE,QAAQ,CAAC,UAAU;CAC5B,iBAAiB,EAAE,SAAS,CAAC,UAAU;CACvC,MAAM,EAAE,QAAQ,CAAC,UAAU;CAC3B,UAAU,EAAE,QAAQ,CAAC,UAAU;CAC/B,cAAc,EAAE,QAAQ,CAAC,UAAU;CACnC,MAAM,EAAE,QAAQ,CAAC,UAAU;CAC3B,0BAA0B,EAAE,QAAQ,CAAC,UAAU;CAC/C,aAAa,EAAE,QAAQ,CAAC,UAAU;CAClC,YAAY,EAAE,QAAQ,CAAC,UAAU;CACjC,aAAa,EAAE,QAAQ,CAAC,UAAU;CAClC,aAAa,EAAE,QAAQ,CAAC,UAAU;CACnC,CAAC,CAED,WAAW,WAAW;CAAE,GAAG;CAAO,MAAM,MAAM,KAAK,QAAQ,KAAK,IAAI;CAAE,EAAE;AAG3E,MAAa,wBAAwB,EAAE,OAAO;CAG5C,YAAY,EACT,QAAQ,CACR,MACC,EAAE,MAAM,qCAAqC,EAC3C,SACE,qHACH,CAAC,CACH,CACA,UAAU;CACb,cAAc,EAAE,KAAK,CAAC,mBAAmB,mBAAmB,CAAC,CAAC,UAAU;CACxE,mBAAmB,EAAE,KAAK,CAAC,eAAe,aAAa,CAAC,CAAC,UAAU;CACnE,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACvC,oBAAoB,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACjD,gBAAgB,EAAE,KAAK;EAAC;EAAS;EAAS;EAAQ,CAAC,CAAC,OAAO,CAAC,UAAU;CACvE,CAAC;AAGF,MAAa,iCAAiC,EAAE,OAAO;CACrD,mBAAmB,EAAE,QAAQ,CAAC,UAAU;CACxC,mBAAmB,EAAE,KAAK;EAAC;EAAU;EAAY;EAAO;EAAc;EAAc,CAAC,CAAC,UAAU;CAChG,eAAe,EAAE,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC,UAAU;CACtD,CAAC;AAGF,MAAa,kCAAkC,EAC5C,OAAO;CACN,mBAAmB,EAAE,QAAQ,CAAC,UAAU;CACxC,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC,UAAU;CACtD,gBAAgB,EACb,KAAK;EAAC;EAA+B;EAA+B;EAA8B,CAAC,CACnG,OAAO,CACP,UAAU;CACd,CAAC,CACD,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC;AAGrC,MAAa,2BAA2B,EACrC,OAAO;CACN,UAAU,EAAE,KAAK;EAAC;EAAS;EAAU;EAAW;EAAa;EAAgB;EAAU;EAAO,CAAC;CAE/F,KAAK,EACF,KAAK;EAAC;EAAU;EAAU;EAAW;EAAa;EAAY;EAAU;EAAW,CAAC,CACpF,UAAU,CACV,QAAQ,SAAS;CAEpB,MAAM,EACH,QAAQ,CACR,QAAQ,QAAQ,CAChB,MAAM,EAAE,MAAM,uCAAuC,EAAE,SAAS,gCAAgC,CAAC,CAAC,CAClG,UAAU;CAEb,UAAU,EACP,QAAQ,CACR,UAAU,CACV,QAAQ,UAAU,CAClB,QACE,UAAU;AACT,MAAI;AAEF,QAAK,eAAe,QAAW,EAAE,UAAU,OAAO,CAAC;AACnD,UAAO;UACD;AACN,UAAO;;IAGX,EAAE,SAAS,0BAA0B,CACtC;CACH,SAAS,EACN,QAAQ,CACR,MAAM,EAAE,MAAM,yBAAyB,EAAE,SAAS,2CAA2C,CAAC,CAAC,CAC/F,UAAU;CACd,CAAC,CACD,WAAW,OAAO,EAAE,eAAe;AAElC,KAAI,MAAM,aAAa,UAAU,CAAC,MAAM,QACtC,UAAS,4EAA4E;AAGvF,QAAO;EACP;AAGJ,MAAa,gCAAgC,EAAE,OAAO;CACpD,QAAQ,EAAE,QAAQ,CAAC,UAAU;CAC7B,sBAAsB,EAAE,QAAQ,CAAC,UAAU;CAC3C,SAAS,EAAE,QAAQ,CAAC,UAAU;CAC/B,CAAC;AAGF,MAAa,2BAA2B,EAAE,OAAO;CAC/C,gBAAgB,EAAE,QAAQ,CAAC,UAAU;CACrC,qBAAqB,EAAE,QAAQ,CAAC,UAAU;CAC1C,qBAAqB,EAAE,QAAQ,CAAC,UAAU;CAC1C,qBAAqB,EAAE,QAAQ,CAAC,UAAU;CAC1C,SAAS,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACtC,SAAS,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACvC,CAAC;AAGF,MAAM,wCAAwC,EAAE,OAAO,EACrD,WAAW,EAAE,QAAQ,CAAC,UAAU,EACjC,CAAC;AAGF,MAAa,yBAAyB,EAAE,KAAK;CAI3C;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAAC;AAGF,MAAa,2BAA2B,EAAE,KAAK;CAAC;CAAQ;CAAY;CAAyB;CAAiB;CAAQ,CAAC;AAGvH,MAAa,yBAAyB,EACnC,OAAO;CACN,qBAAqB;CACrB,WAAW,EAAE,QAAQ,CAAC,UAAU;CAChC,aAAa,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC1C,iBAAiB,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC9C,OAAO,+BAA+B,OAAO,CAAC,UAAU;CACxD,WAAW,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACxC,kBAAkB,8BAA8B,UAAU;CAC1D,UAAU,yBAAyB,UAAU;CAC7C,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,sBAAsB,CAAC,UAAU;CAC9D,QAAQ,gCAAgC,OAAO,CAAC,UAAU;CAC1D,oCAAoC,EAAE,KAAK,CAAC,SAAS,OAAO,CAAC,CAAC,UAAU;CACxE,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACrC,WAAW,EAAE,OAAO,QAAQ,CAAC,UAAU;CACvC,4BAA4B,EAAE,QAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU;CAC1E,4BAA4B,sCAAsC,UAAU;CAC5E,mBAAmB,EAAE,QAAQ,CAAC,UAAU;CACxC,YAAY,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACzC,UAAU;CACV,iBAAiB,EAAE,QAAQ,CAAC,UAAU;CACtC,QAAQ,EAAE,SAAS,CAAC,UAAU;CAC9B,uBAAuB,yBAAyB,UAAU;CAC1D,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACvC,yBAAyB,EAAE,QAAQ,CAAC,UAAU;CAC/C,CAAC,CACD,WAAW,OAAO,EAAE,eAAe;AAElC,KAAI,CAAC,MAAM,cAAc,CAAC,MAAM,eAAe,MAAM,YAAY,WAAW,GAC1E,UAAS,gGAAgG;AAI3G,KAAI,MAAM,aAAa,YAAY,KAAK,MAAM,UAAU,CACtD,UAAS,uDAAuD;AAGlE,OAAM,gCAAgC;AAKtC,KAAI,MAAM,6BAA6B,CAAC,MAAM,YAAY,MAAM,SAAS,WAAW,GAClF,UACE,8GACD;AAGH,QAAO;EACP;AAGJ,MAAa,sCAAsC,EAAE,OAAO;CAC1D,UAAU;CACV,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACrC,WAAW,EAAE,OAAO,QAAQ,CAAC,UAAU;CACvC,WAAW,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACxC,iBAAiB,EAAE,QAAQ,CAAC,UAAU;CACtC,kBAAkB,8BAA8B,UAAU;CAC1D,4BAA4B,sCAAsC,UAAU;CAC7E,CAAC;;;;;AAOF,MAAa,yBAAyB,EACnC,OAAO;CAIN,SAAS,EAAE,QAAQ,CAAC,QAAQ,MAAM,MAAM,GAAG,EAAE,SAAS,6CAA6C,CAAC;CAKpG,0BAA0B,EAAE,OAAO,EAAE,QAAQ,EAAE,oCAAoC,CAAC,UAAU;CAM9F,SAAS,uBAAuB,OAAO,CAAC,MACtC,EAAE,UAAU,GAAG,EAAE,SAAS,iDAAiD,CAAC,CAC7E;CAMD,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,yBAAyB,CAAC,UAAU;CAMrE,0BAA0B,EAAE,SAAS,CAAC,UAAU;CACjD,CAAC,CACD,WAAW,OAAO,EAAE,eAAe;CAKlC,MAAM,gBAAgB;EAAC;EAAa;EAAiB;EAAkB;EAA2B;AAClG,KAAI,MAAM,2BACR;OAAK,MAAM,UAAU,MAAM,QACzB,MAAK,MAAM,OAAO,cAChB,KAAI,OAAO,OACT,UACE,QAAQ,IAAI,uHACb;;CAOT,MAAM,uBAAO,IAAI,KAAa;AAC9B,MAAK,MAAM,UAAU,MAAM,SAAS;EAClC,MAAM,MAAM,iBAAiB,OAAO;AACpC,MAAI,KAAK,IAAI,IAAI,CACf,UACE,6CAA6C,OAAO,qBAAqB,oBAAoB,OAAO,aAAa,OAAO,aAAa,KAAK,IAAI,CAAC,GAChJ;AAEH,OAAK,IAAI,IAAI;;CAIf,MAAMC,iBAAqC;EAAC;EAAS;EAAS;EAAW;AACzE,KAAI,CAAC,MAAM,2BACT;OAAK,MAAM,UAAU,MAAM,QACzB,KAAI,eAAe,SAAS,OAAO,qBAAqB,CACtD,UACE,0BAA0B,OAAO,qBAAqB,0GACvD;;AAKP,QAAO;EACP;AAIJ,SAAgB,aAAa,QAA0B,YAAwC;CAC7F,MAAMC,UAA8B,EAAE;AAGtC,MAAK,MAAM,UAAU,OAAO,SAAS;AAInC,MAAI,OAAO,OACT,MAAK,MAAM,aAAa,OAAO,QAAQ;AACrC,aAAU,WAAW;AAErB,aAAU,mCAAkB,IAAI,MAAM,EAAC,aAAa;;AAIxD,UAAQ,KAAK,OAAO;;AAEtB,QAAO;;AAGT,eAAsB,gBACpB,QACA,gBAC6C;CAE7C,MAAMC,aAAiD,EAAE;AACzD,MAAK,MAAM,CAAC,KAAK,aAAa,OAAO,QAAQ,OAAO,cAAc,EAAE,CAAC,EAAE;EACrE,MAAM,UAAU,EAAE,GAAG,UAAU;EAC/B,MAAM,EAAE,SAAS;AAGjB,MAAI,SAAS,sBAAsB,CAAC,QAAQ,aAC1C,OAAM,IAAI,MAAM,2DAA2D,KAAK,cAAc;AAIhG,MAAI,SAAS,oBAAoB,CAAC,QAAQ,KACxC,OAAM,IAAI,MAAM,mDAAmD,IAAI,cAAc;AAIvF,UAAQ,WAAW,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAA0B;GAAgB,CAAC;AACxG,UAAQ,WAAW,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAA0B;GAAgB,CAAC;AACxG,UAAQ,MAAM,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAAqB;GAAgB,CAAC;AAC9F,UAAQ,QAAQ,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAAuB;GAAgB,CAAC;EAOlG,MAAM,MAAM,QAAQ;AACpB,MAAI,CAAC,OAAO,SAAS,mBACnB,OAAM,IAAI,MAAM,kDAAkD,IAAI,cAAc;AAEtF,MAAI,KAAK;AAaP,OAAI,IAAI,SAAS,IAAI,EAAE;IACrB,MAAM,YAAY,IAAI,IAAI,IAAI;AAG9B,QADoB,SAAS,qBAAqB,SAAS,eAC1C,SAAQ,WAAW,IAAI,QAAQ,YAAY,GAAG,CAAC,QAAQ,WAAW,GAAG;AAGtF,QADgB,SAAS,yBAAyB,SAAS,qBAC9C,SAAQ,OAAO,UAAU;;AAGxC,OAAI,SAAS,eAAgB,SAAQ,eAAe;AAOpD,OAJE,SAAS,qBACT,SAAS,kBACT,SAAS,wBACT,SAAS,eACI,QAAO,QAAQ;;AAIhC,aAAW,OAAO;;AAEpB,QAAO;;AAGT,SAAgB,sBAAsB,SAA6B,YAAgD;CACjH,MAAM,aAAa,OAAO,KAAK,WAAW;CAC1C,MAAMC,aAAuB,EAAE;AAC/B,MAAK,MAAM,KAAK,QAAS,YAAW,KAAK,GAAI,EAAE,cAAc,EAAE,CAAE;CAGjE,MAAM,uBAAuB,WAAW,QAAQ,OAAO,CAAC,WAAW,SAAS,GAAG,CAAC;AAChF,KAAI,qBAAqB,SAAS,EAChC,OAAM,IAAI,MACR,2BAA2B,qBAAqB,KAAK,IAAI,CAAC,0DAC3D;CAIH,MAAM,oBAAoB,WAAW,QAAQ,OAAO,CAAC,WAAW,SAAS,GAAG,CAAC;AAC7E,KAAI,kBAAkB,SAAS,EAC7B,OAAM,IAAI,MAAM,gBAAgB,kBAAkB,KAAK,IAAI,CAAC,0CAA0C;;;;;;AAQ1G,MAAa,6BAA6B;CACxC;CACA;CACA;CACA;CACD;;;;;AAMD,eAAsB,sBAAsB,EAC1C,gBACA,YACA,kBAK4B;CAE5B,MAAM,eAAe,KAAK,KAAK,eAAe;AAC9C,KAAI,iBAAiB,QAAQ,OAAO,iBAAiB,SACnD,OAAM,IAAI,MAAM,mCAAmC;CAIrD,MAAM,SAAS,MAAM,uBAAuB,WAAW,aAAa;CACpE,MAAM,UAAU,aAAa,QAAQ,WAAW;CAChD,MAAM,aAAa,MAAM,gBAAgB,QAAQ,eAAe;AAChE,uBAAsB,SAAS,WAAW;AAE1C,QAAO;EAAE,GAAG;EAAQ;EAAS;EAAY;;;;;AC3e3C,MAAa,6BAA6B,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC;AAGvE,MAAa,6BAA6B,EAAE,OAAO;CACjD,MAAM,EAAE,QAAQ;CAChB,KAAK,EAAE,QAAQ;CAChB,CAAC;AAGF,MAAa,8BAA8B,EAAE,OAAO;CAClD,iBAAiB,2BAA2B,OAAO;CACnD,IAAI;CACL,CAAC;AAGF,MAAa,iCAAiC,EAAE,KAAK;CAAC;CAAS;CAAU;CAAY,CAAC;AAGtF,MAAa,yBAAyB,EAAE,OAAO;CAC7C,UAAU;CACV,MAAM,EAAE,QAAQ;CAChB,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,aAAa,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACzC,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,UAAU,EAAE,QAAQ,CAAC,SAAS;CAC9B,gBAAgB,EAAE,QAAQ,CAAC,SAAS;CACrC,CAAC;AAGF,MAAa,6BAA6B,EAAE,OAAO;CACjD,mBAAmB,EAAE,QAAQ;CAC7B,sBAAsB,EAAE,QAAQ,CAAC,SAAS;CAC1C,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,SAAS,EAAE,SAAS,CAAC,SAAS;CAC/B,CAAC;AAGF,MAAa,kCAAkC,EAAE,OAAO;CACtD,yBAAyB,EAAE,QAAQ;CACnC,cAAc,2BAA2B,OAAO;CACjD,CAAC;AAGF,MAAa,0BAA0B,EAAE,OAAO;CAC9C,mBAAmB,EAAE,QAAQ,CAAC,SAAS;CACvC,mBAAmB,EAAE,QAAQ,CAAC,SAAS;CACvC,eAAe,EAAE,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC,UAAU;CACtD,CAAC;AAGF,MAAa,+BAA+B,EAAE,OAAO;CACnD,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACtC,oBAAoB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAChD,mBAAmB,EAAE,QAAQ,CAAC,SAAS;CACvC,gBAAgB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAC7C,CAAC;AAGF,MAAa,2BAA2B,EAAE,OAAO;CAC/C,MAAM,EAAE,QAAQ;CAChB,cAAc,EAAE,QAAQ,CAAC,SAAS;CAClC,OAAO;CACR,CAAC;AAGF,MAAa,4BAA4B,EAAE,OAAO;CAChD,mBAAmB,EAAE,QAAQ;CAC7B,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,gBAAgB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAC5C,cAAc,EAAE,OAAO,QAAQ,CAAC,SAAS;CACzC,uBAAuB,EAAE,QAAQ,CAAC,SAAS;CAC5C,CAAC;AAGF,MAAa,mCAAmC,EAAE,OAAO;CACvD,mBAAmB,EAAE,QAAQ;CAC7B,qBAAqB,EAAE,QAAQ,CAAC,OAAO;CACvC,oBAAoB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAChD,uBAAuB,EAAE,QAAQ,CAAC,OAAO;CAC1C,CAAC;AAGF,MAAa,oCAAoC,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC;AAG9E,MAAa,8BAA8B,EAAE,OAAO;CAClD,MAAM,EAAE,QAAQ,CAAC,SAAS;CAC1B,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACpC,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACjD,aAAa,EAAE,QAAQ,CAAC,SAAS;CACjC,QAAQ,kCAAkC,SAAS;CACnD,SAAS,EAAE,QAAQ,CAAC,SAAS;CAC7B,oBAAoB,EAAE,QAAQ,CAAC,SAAS;CACzC,CAAC;AAGF,MAAa,6BAA6B,EAAE,OAAO;CACjD,MAAM,EAAE,QAAQ;CAChB,yBAAyB,4BAA4B,OAAO,CAAC,SAAS;CACtE,oBAAoB,EAAE,QAAQ,CAAC,SAAS;CACxC,SAAS,EAAE,QAAQ,CAAC,SAAS;CAC7B,cAAc,4BAA4B,OAAO,CAAC,SAAS;CAC3D,SAAS,EAAE,SAAS,CAAC,SAAS;CAC9B,WAAW,EAAE,QAAQ,CAAC,SAAS;CAChC,CAAC;AAGF,MAAa,gCAAgC,EAAE,OAAO;CACpD,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,sBAAsB,EAAE,QAAQ,CAAC,SAAS;CAC1C,iBAAiB,EAAE,SAAS,CAAC,SAAS;CACvC,CAAC;AAGF,MAAa,8BAA8B,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,MAAM,CAAC,EAAE,QAAQ,EAAE,EAAE,SAAS,CAAC,CAAC,CAAC;AAGnG,MAAa,iCAAiC,EAAE,KAAK;CACnD;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAAC;AAGF,MAAa,0BAA0B,EAAE,KAAK;CAAC;CAAS;CAAW;CAAW,CAAC;AAK/E,MAAa,4BAA4B,EAAE,OAAO;CAChD,IAAI,EAAE,QAAQ;CACd,SAAS,wBAAwB,UAAU;CAC3C,mBAAmB;CACnB,mBAAmB,wBAAwB,OAAO;CAClD,OAAO,EAAE,SAAS,CAAC,UAAU;CAC7B,qBAAqB,yBAAyB,OAAO,CAAC,SAAS;CAC/D,cAAc,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC3C,+BAA+B,EAAE,QAAQ,CAAC,SAAS;CACnD,0BAA0B,2BAA2B,OAAO,CAAC,OAAO;CACpE,gCAAgC,gCAAgC,OAAO;CACvE,aAAa;CACb,qBAAqB,0BAA0B,OAAO;CACtD,iBAAiB,EAAE,SAAS;CAC5B,gCAAgC,EAAE,QAAQ,CAAC,UAAU;CACrD,uBAAuB,iCAAiC,OAAO;CAC/D,yBAAyB,EAAE,SAAS;CACpC,QAAQ;CACR,0BAA0B,EAAE,SAAS;CACrC,2BAA2B,EAAE,SAAS;CACtC,uBAAuB,EAAE,SAAS;CAClC,wBAAwB,EAAE,SAAS,CAAC,SAAS;CAC7C,gBAAgB,EAAE,SAAS;CAC3B,0BAA0B;CAC1B,wBAAwB,2BAA2B,OAAO,CAAC,SAAS;CACpE,wBAAwB,EAAE,KAAK,CAAC,SAAS;CACzC,UAAU,yBAAyB,SAAS;CAC5C,2CAA2C,EAAE,SAAS,CAAC,SAAS;CAChE,0BAA0B,EAAE,SAAS,CAAC,SAAS;CAC/C,0BAA0B,EAAE,SAAS,CAAC,SAAS;CAC/C,iBAAiB,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC/C,CAAC;AAGF,MAAa,0BAA0B,EAAE,OAAO,EAC9C,KAAK,2BACN,CAAC"}

package/dist/usage.d.mts

@@ -49,6 +49,7 @@ declare const UsageTelemetryRequestDataSchema: z.ZodObject<{
   owner: z.ZodURL;
   project: z.ZodOptional<z.ZodURL>;
   'package-manager': z.ZodEnum<{
+    hex: "hex";
     bundler: "bundler";
     cargo: "cargo";
     composer: "composer";
@@ -61,7 +62,6 @@ declare const UsageTelemetryRequestDataSchema: z.ZodObject<{
     go_modules: "go_modules";
     gradle: "gradle";
     maven: "maven";
-    hex: "hex";
     nuget: "nuget";
     npm_and_yarn: "npm_and_yarn";
     pip: "pip";

package/dist/usage.mjs

@@ -1,4 +1,4 @@
-import { b as DependabotSourceProviderSchema, h as DependabotPackageManagerSchema } from "./job-DQiSYFHb.mjs";
+import { b as DependabotSourceProviderSchema, h as DependabotPackageManagerSchema } from "./job-DanO84YW.mjs";
 import { z } from "zod";
 
 //#region src/usage.ts

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@paklo/core",
-  "version": "0.7.3",
+  "version": "0.8.0",
   "sideEffects": false,
   "type": "module",
   "author": "mburumaxwell",
@@ -60,19 +60,19 @@
   "homepage": "https://github.com/mburumaxwell/dependabot-azure-devops#readme",
   "dependencies": {
     "@hono/zod-validator": "0.7.5",
-    "hono": "4.10.6",
+    "hono": "4.10.7",
     "js-yaml": "4.1.1",
     "octokit": "5.0.5",
     "pino": "10.1.0",
-    "pino-pretty": "13.1.2",
+    "pino-pretty": "13.1.3",
     "semver": "7.7.3",
-    "zod": "4.1.12"
+    "zod": "4.1.13"
   },
   "devDependencies": {
     "@types/js-yaml": "4.0.9",
     "@types/node": "24.10.1",
     "@types/semver": "7.7.1",
-    "tsdown": "0.16.6"
+    "tsdown": "0.16.8"
   },
   "publishConfig": {
     "access": "public"

package/dist/dependabot-_TVZhG0L.mjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"dependabot-_TVZhG0L.mjs","names":["branchName: string","crypto","DEFAULT_EXPERIMENTS: DependabotExperiments","updatingPullRequest: boolean","updateDependencyGroupName: string | null","updateDependencyNames: string[] | null","vulnerabilities: SecurityVulnerability[] | undefined","success: boolean"],"sources":["../src/dependabot/author.ts","../src/dependabot/branch-name.ts","../src/dependabot/experiments.ts","../src/dependabot/job-builder.ts","../src/dependabot/update.ts","../src/dependabot/server.ts"],"sourcesContent":["export type GitAuthor = {\n  name: string;\n  email: string;\n};\n\nexport const DEPENDABOT_DEFAULT_AUTHOR_EMAIL = 'noreply@github.com';\nexport const DEPENDABOT_DEFAULT_AUTHOR_NAME = 'dependabot[bot]';\n","import * as crypto from 'node:crypto';\nimport type { PackageEcosystem } from './config';\nimport type { DependabotExistingPR } from './job';\n\n// TODO: figure out how to handle IDENTIFIER field (in a group) in branch naming\n// Docs: https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#groups--\n// -> An identifier for a group is used in branch names and pull request titles.\n\nexport function getBranchNameForUpdate(\n  packageEcosystem: PackageEcosystem,\n  targetBranchName: string | undefined,\n  directory: string | undefined,\n  dependencyGroupName: string | undefined,\n  dependencies: DependabotExistingPR[],\n  separator: string = '/',\n): string {\n  // Based on dependabot-core implementation:\n  // https://github.com/dependabot/dependabot-core/blob/main/common/lib/dependabot/pull_request_creator/branch_namer/solo_strategy.rb\n  // https://github.com/dependabot/dependabot-core/blob/main/common/lib/dependabot/pull_request_creator/branch_namer/dependency_group_strategy.rb\n  let branchName: string;\n  const branchNameMightBeTooLong = dependencyGroupName || dependencies.length > 1;\n  if (branchNameMightBeTooLong) {\n    // Group/multi dependency update\n    // e.g. dependabot/nuget/main/microsoft-3b49c54d9e\n    const dependencyDigest = crypto\n      .createHash('md5')\n      .update(dependencies.map((d) => `${d['dependency-name']}-${d['dependency-version']}`).join(','))\n      .digest('hex')\n      .substring(0, 10);\n    branchName = `${dependencyGroupName || 'multi'}-${dependencyDigest}`;\n  } else {\n    // Single dependency update\n    // e.g. dependabot/nuget/main/Microsoft.Extensions.Logging-1.0.0\n    const dependencyNames = dependencies\n      .map((d) => d['dependency-name'])\n      .join('-and-')\n      .replace(/[:[]]/g, '-') // Replace `:` and `[]` with `-`\n      .replace(/@/g, ''); // Remove `@`\n    const versionSuffix = dependencies[0]?.removed ? 'removed' : dependencies[0]?.['dependency-version'];\n    branchName = `${dependencyNames}-${versionSuffix}`;\n  }\n\n  return sanitizeRef(\n    [\n      'dependabot',\n      packageEcosystem,\n      targetBranchName,\n      // normalize directory to remove leading/trailing slashes and replace remaining ones with the separator\n      directory\n        ? directory\n            .split('/')\n            .filter((part) => part.length > 0)\n            .join(separator)\n        : undefined,\n      branchName,\n    ],\n    separator,\n  );\n}\n\nexport function sanitizeRef(refParts: (string | undefined)[], separator: string): string {\n  // Based on dependabot-core implementation:\n  // https://github.com/dependabot/dependabot-core/blob/fc31ae64f492dc977cfe6773ab13fb6373aabec4/common/lib/dependabot/pull_request_creator/branch_namer/base.rb#L99\n\n  // This isn't a complete implementation of git's ref validation, but it\n  // covers most cases that crop up. Its list of allowed characters is a\n  // bit stricter than git's, but that's for cosmetic reasons.\n  return (\n    refParts\n      // Join the parts with the separator, ignore empty parts\n      .filter((p) => p && p.trim().length > 0)\n      .join(separator)\n      // Remove forbidden characters (those not already replaced elsewhere)\n      .replace(/[^A-Za-z0-9/\\-_.(){}]/g, '')\n      // Slashes can't be followed by periods\n      .replace(/\\/\\./g, '/dot-')\n      // Squeeze out consecutive periods and slashes\n      .replace(/\\.+/g, '.')\n      .replace(/\\/+/g, '/')\n      // Trailing periods are forbidden\n      .replace(/\\.$/, '')\n  );\n}\n","import type { DependabotExperiments } from './job';\n\n// The default experiments known to be used by the GitHub Dependabot service.\n// This changes often, update as needed by extracting them from a Dependabot GitHub Action run.\n//  e.g. https://github.com/mburumaxwell/dependabot-azure-devops/actions/workflows/dependabot/dependabot-updates\nexport const DEFAULT_EXPERIMENTS: DependabotExperiments = {\n  'record-ecosystem-versions': true,\n  'record-update-job-unknown-error': true,\n  'proxy-cached': true,\n  'dependency-change-validation': true,\n  'enable-file-parser-python-local': true,\n  'npm-fallback-version-above-v6': true,\n  'enable-record-ecosystem-meta': true,\n  'enable-corepack-for-npm-and-yarn': true,\n  'enable-shared-helpers-command-timeout': true,\n  'enable-dependabot-setting-up-cronjob': true,\n  'enable-engine-version-detection': true,\n  'avoid-duplicate-updates-package-json': true,\n  'allow-refresh-for-existing-pr-dependencies': true,\n  'allow-refresh-group-with-all-dependencies': true,\n  'exclude-local-composer-packages': true,\n  'enable-enhanced-error-details-for-updater': true,\n  'gradle-lockfile-updater': true,\n  'enable-exclude-paths-subdirectory-manifest-files': true,\n  'group-membership-enforcement': true,\n  'deprecate-close-command': true,\n  'deprecate-reopen-command': true,\n  'deprecate-merge-command': true,\n  'deprecate-cancel-merge-command': true,\n  'deprecate-squash-merge-command': true,\n};\n\n/**\n * Parses a comma-separated list of key=value pairs representing experiments.\n * @param raw A comma-separated list of key=value pairs representing experiments.\n * @returns A map of experiment names to their values.\n */\nexport function parseExperiments(raw?: string): DependabotExperiments | undefined {\n  return raw\n    ?.split(',')\n    .filter((entry) => entry.trim() !== '') // <-- filter out empty entries\n    .reduce((acc, cur) => {\n      const [key, value] = cur.split('=', 2);\n      acc[key!] = value || true;\n      return acc;\n    }, {} as DependabotExperiments);\n}\n","import type { SecurityVulnerability } from '@/github';\nimport type {\n  DependabotAllowCondition,\n  DependabotConfig,\n  DependabotGroup,\n  DependabotIgnoreCondition,\n  DependabotRegistry,\n  DependabotUpdate,\n  PackageEcosystem,\n  VersioningStrategy,\n} from './config';\nimport type {\n  DependabotAllowed,\n  DependabotCondition,\n  DependabotCredential,\n  DependabotExistingGroupPR,\n  DependabotExistingPR,\n  DependabotExperiments,\n  DependabotGroupJob,\n  DependabotJobConfig,\n  DependabotPackageManager,\n  DependabotSecurityAdvisory,\n  DependabotSource,\n  DependabotSourceProvider,\n} from './job';\n\nexport type DependabotSourceInfo = {\n  provider: DependabotSourceProvider;\n  hostname: string;\n  'api-endpoint': string;\n  'repository-slug': string;\n};\n\nexport type DependabotJobBuilderOutput = {\n  job: DependabotJobConfig;\n  credentials: DependabotCredential[];\n};\n\n/**\n * Class for building dependabot job objects\n */\nexport class DependabotJobBuilder {\n  private readonly config: DependabotConfig;\n  private readonly update: DependabotUpdate;\n  private readonly experiments: DependabotExperiments;\n  private readonly debug: boolean;\n\n  private readonly packageManager: DependabotPackageManager;\n  private readonly source: DependabotSource;\n  private readonly credentials: DependabotCredential[];\n\n  constructor({\n    source,\n    config,\n    update,\n    systemAccessUser,\n    systemAccessToken,\n    githubToken,\n    experiments,\n    debug,\n  }: {\n    source: DependabotSourceInfo;\n    config: DependabotConfig;\n    update: DependabotUpdate;\n    experiments: DependabotExperiments;\n    systemAccessUser?: string;\n    systemAccessToken?: string;\n    githubToken?: string;\n    /** Determines if verbose log messages are logged */\n    debug: boolean;\n  }) {\n    this.config = config;\n    this.update = update;\n    this.experiments = experiments;\n    this.debug = debug;\n\n    this.packageManager = mapPackageEcosystemToPackageManager(update['package-ecosystem']);\n    this.source = mapSourceFromDependabotConfigToJobConfig(source, update);\n    this.credentials = mapCredentials({\n      sourceHostname: source.hostname,\n      systemAccessUser,\n      systemAccessToken,\n      githubToken,\n      registries: config.registries,\n    });\n  }\n\n  /**\n   * Create a dependabot update job that updates nothing, but will discover the dependency list for a package ecosystem\n   */\n  public forDependenciesList({\n    id,\n    command,\n  }: {\n    id?: string;\n    command: DependabotJobConfig['command'];\n  }): DependabotJobBuilderOutput {\n    id ??= makeRandomJobId();\n    return {\n      job: {\n        id: id,\n        command: command,\n        'package-manager': this.packageManager,\n        'updating-a-pull-request': false,\n        dependencies: null,\n        'allowed-updates': [{ 'dependency-type': 'direct', 'update-type': 'all' }],\n        'ignore-conditions': [{ 'dependency-name': '*' }],\n        'security-updates-only': false,\n        'security-advisories': [],\n        source: this.source,\n        'update-subdependencies': false,\n        'existing-pull-requests': [],\n        'existing-group-pull-requests': [],\n        experiments: this.experiments,\n        'requirements-update-strategy': null,\n        'lockfile-only': false,\n        'commit-message-options': {\n          prefix: null,\n          'prefix-development': null,\n          'include-scope': null,\n        },\n        'vendor-dependencies': false,\n        'repo-private': true,\n        debug: this.debug,\n      },\n      credentials: this.credentials,\n    };\n  }\n\n  /**\n   * Create a dependabot update job that updates all dependencies for a package ecosystem\n   */\n  public forUpdate({\n    id,\n    command,\n    dependencyNamesToUpdate,\n    existingPullRequests,\n    pullRequestToUpdate,\n    securityVulnerabilities,\n  }: {\n    id?: string;\n    command: DependabotJobConfig['command'];\n    dependencyNamesToUpdate?: string[];\n    existingPullRequests: (DependabotExistingPR[] | DependabotExistingGroupPR)[];\n    pullRequestToUpdate?: DependabotExistingPR[] | DependabotExistingGroupPR;\n    securityVulnerabilities?: SecurityVulnerability[];\n  }): DependabotJobBuilderOutput {\n    id ??= makeRandomJobId();\n    const securityOnlyUpdate = this.update['open-pull-requests-limit'] === 0;\n\n    let updatingPullRequest: boolean;\n    let updateDependencyGroupName: string | null = null;\n    let updateDependencyNames: string[] | null;\n    let vulnerabilities: SecurityVulnerability[] | undefined;\n\n    if (pullRequestToUpdate) {\n      updatingPullRequest = true;\n      updateDependencyGroupName = Array.isArray(pullRequestToUpdate)\n        ? null\n        : pullRequestToUpdate['dependency-group-name'];\n      updateDependencyNames = (\n        Array.isArray(pullRequestToUpdate) ? pullRequestToUpdate : pullRequestToUpdate.dependencies\n      )?.map((d) => d['dependency-name']);\n      vulnerabilities = securityVulnerabilities?.filter((v) => updateDependencyNames?.includes(v.package.name));\n    } else {\n      updatingPullRequest = false;\n      const names = dependencyNamesToUpdate?.length ? dependencyNamesToUpdate : null;\n      updateDependencyNames =\n        securityOnlyUpdate && names\n          ? names?.filter((d) => securityVulnerabilities?.find((v) => v.package.name === d))\n          : names;\n      vulnerabilities = securityVulnerabilities;\n    }\n\n    return {\n      job: {\n        id: id,\n        command: command,\n        'package-manager': this.packageManager,\n        'updating-a-pull-request': updatingPullRequest || false,\n        'dependency-group-to-refresh': updateDependencyGroupName,\n        'dependency-groups': mapGroupsFromDependabotConfigToJobConfig(this.update.groups),\n        dependencies: updateDependencyNames,\n        'allowed-updates': mapAllowedUpdatesFromDependabotConfigToJobConfig(this.update.allow, securityOnlyUpdate),\n        'ignore-conditions': mapIgnoreConditionsFromDependabotConfigToJobConfig(this.update.ignore),\n        'security-updates-only': securityOnlyUpdate,\n        'security-advisories': mapSecurityAdvisories(vulnerabilities),\n        source: this.source,\n        'update-subdependencies': false,\n        'existing-pull-requests': existingPullRequests.filter((pr) => Array.isArray(pr)),\n        'existing-group-pull-requests': existingPullRequests.filter(\n          (pr): pr is DependabotExistingGroupPR => !Array.isArray(pr),\n        ),\n        'commit-message-options': {\n          prefix: this.update['commit-message']?.prefix ?? null,\n          'prefix-development': this.update['commit-message']?.['prefix-development'] ?? null,\n          'include-scope':\n            this.update['commit-message']?.include?.toLocaleLowerCase()?.trim() === 'scope' ? true : null,\n        },\n        cooldown: this.update.cooldown,\n        experiments: mapExperiments(this.experiments),\n        'reject-external-code':\n          this.update['insecure-external-code-execution']?.toLocaleLowerCase()?.trim() === 'allow',\n        'requirements-update-strategy': mapVersionStrategyToRequirementsUpdateStrategy(\n          this.update['versioning-strategy'],\n        ),\n        'lockfile-only': this.update['versioning-strategy'] === 'lockfile-only',\n        'vendor-dependencies': this.update.vendor ?? false,\n        'repo-private': true,\n        debug: this.debug,\n        'proxy-log-response-body-on-auth-failure': true,\n        'max-updater-run-time': 2700,\n        'enable-beta-ecosystems': this.config['enable-beta-ecosystems'] || false,\n        // Updates across ecosystems is still in development\n        // See https://github.com/dependabot/dependabot-core/issues/8126\n        //     https://github.com/dependabot/dependabot-core/pull/12339\n        // It needs to merged in the core repo first before we support it\n        // However, to match current job configs and to prevent surprises, we disable it\n        'multi-ecosystem-update': false,\n        'exclude-paths': this.update['exclude-paths'],\n      },\n      credentials: this.credentials,\n    };\n  }\n}\n\nexport function mapPackageEcosystemToPackageManager(ecosystem: PackageEcosystem): DependabotPackageManager {\n  // Map the dependabot config \"package ecosystem\" to the equivalent dependabot-core/cli \"package manager\".\n  // Config values: https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#package-ecosystem-\n  // Core/CLI values: https://github.com/dependabot/dependabot-core/blob/main/common/lib/dependabot/config/file.rb#L60-L81\n  switch (ecosystem) {\n    case 'docker-compose':\n      return 'docker_compose';\n    case 'dotnet-sdk':\n      return 'dotnet_sdk';\n    case 'github-actions':\n      return 'github_actions';\n    case 'gitsubmodule':\n      return 'submodules';\n    case 'gomod':\n      return 'go_modules';\n    case 'mix':\n      return 'hex';\n    case 'npm':\n      return 'npm_and_yarn';\n    // Additional aliases, sometimes used for convenience\n    case 'pipenv':\n      return 'pip';\n    case 'pip-compile':\n      return 'pip';\n    case 'poetry':\n      return 'pip';\n    case 'pnpm':\n      return 'npm_and_yarn';\n    case 'rust-toolchain':\n      return 'rust_toolchain';\n    case 'yarn':\n      return 'npm_and_yarn';\n    default:\n      return ecosystem;\n  }\n}\n\nexport function mapSourceFromDependabotConfigToJobConfig(\n  source: DependabotSourceInfo,\n  update: DependabotUpdate,\n): DependabotSource {\n  return {\n    provider: source.provider,\n    'api-endpoint': source['api-endpoint'],\n    hostname: source.hostname,\n    repo: source['repository-slug'],\n    branch: update['target-branch'],\n    commit: null, // use latest commit of target branch\n    directory: update.directory,\n    directories: update.directories,\n  };\n}\n\nexport function mapVersionStrategyToRequirementsUpdateStrategy(strategy?: VersioningStrategy): string | null {\n  if (!strategy) return null;\n  switch (strategy) {\n    case 'auto':\n      return null;\n    case 'increase':\n      return 'bump_versions';\n    case 'increase-if-necessary':\n      return 'bump_versions_if_necessary';\n    case 'lockfile-only':\n      return 'lockfile_only';\n    case 'widen':\n      return 'widen_ranges';\n    default:\n      throw new Error(`Invalid dependabot.yaml versioning strategy option '${strategy}'`);\n  }\n}\n\nexport function mapGroupsFromDependabotConfigToJobConfig(\n  dependencyGroups?: Record<string, DependabotGroup | null>,\n): DependabotGroupJob[] {\n  if (!dependencyGroups || !Object.keys(dependencyGroups).length) return [];\n  return Object.keys(dependencyGroups)\n    .filter((name) => dependencyGroups[name])\n    .map((name) => {\n      const group = dependencyGroups[name]!;\n      return {\n        name: name,\n        'applies-to': group['applies-to'],\n        rules: {\n          patterns: group.patterns?.length ? group.patterns : ['*'],\n          'exclude-patterns': group['exclude-patterns'],\n          'dependency-type': group['dependency-type'],\n          'update-types': group['update-types'],\n        },\n      } satisfies DependabotGroupJob;\n    });\n}\n\nexport function mapAllowedUpdatesFromDependabotConfigToJobConfig(\n  allowedUpdates?: DependabotAllowCondition[],\n  securityOnlyUpdate?: boolean,\n): DependabotAllowed[] {\n  // If no allow conditions are specified, update direct dependencies by default; This is what GitHub does.\n  // NOTE: 'update-type' appears to be a deprecated config, but still appears in the dependabot-core model and GitHub Dependabot job logs.\n  //       See: https://github.com/dependabot/dependabot-core/blob/b3a0c1f86c20729494097ebc695067099f5b4ada/updater/lib/dependabot/job.rb#L253C1-L257C78\n  if (!allowedUpdates) {\n    return [\n      {\n        'dependency-type': 'direct',\n        'update-type': securityOnlyUpdate ? 'security' : 'all',\n      },\n    ];\n  }\n  return allowedUpdates.map((allow) => {\n    return {\n      'dependency-name': allow['dependency-name'],\n      'dependency-type': allow['dependency-type'],\n      'update-type': allow['update-type'],\n    };\n  });\n}\n\nexport function mapIgnoreConditionsFromDependabotConfigToJobConfig(\n  ignoreConditions?: DependabotIgnoreCondition[],\n): DependabotCondition[] {\n  if (!ignoreConditions) return [];\n  return ignoreConditions.map((ignore) => {\n    return {\n      source: ignore.source,\n      'updated-at': ignore['updated-at'],\n      'dependency-name': ignore['dependency-name'] ?? '*',\n      'update-types': ignore['update-types'],\n\n      // The dependabot.yml config docs are not very clear about acceptable values; after scanning dependabot-core and dependabot-cli,\n      // this could either be a single version string (e.g. '>1.0.0'), or multiple version strings separated by commas (e.g. '>1.0.0, <2.0.0')\n      'version-requirement': Array.isArray(ignore.versions) ? (<string[]>ignore.versions)?.join(', ') : ignore.versions,\n    } satisfies DependabotCondition;\n  });\n}\n\nexport function mapExperiments(experiments?: DependabotExperiments): DependabotExperiments {\n  experiments ??= {};\n  return Object.keys(experiments).reduce((acc, key) => {\n    // Experiment values are known to be either 'true', 'false', or a string value.\n    // If the value is 'true' or 'false', convert it to a boolean type so that dependabot-core handles it correctly.\n    const value = experiments[key];\n    if (typeof value === 'string' && value?.toLocaleLowerCase() === 'true') {\n      acc[key] = true;\n    } else if (typeof value === 'string' && value?.toLocaleLowerCase() === 'false') {\n      acc[key] = false;\n    } else {\n      if (typeof value === 'string' || typeof value === 'boolean') acc[key] = value;\n    }\n    return acc;\n  }, {} as DependabotExperiments);\n}\n\nexport function mapSecurityAdvisories(securityVulnerabilities?: SecurityVulnerability[]): DependabotSecurityAdvisory[] {\n  if (!securityVulnerabilities) return [];\n\n  // A single security advisory can cause a vulnerability in multiple versions of a package.\n  // We need to map each unique security advisory to a list of affected-versions and patched-versions.\n  const vulnerabilitiesGroupedByPackageNameAndAdvisoryId = new Map<string, SecurityVulnerability[]>();\n  for (const vuln of securityVulnerabilities) {\n    const key = `${vuln.package.name}/${vuln.advisory.identifiers.map((i) => `${i.type}:${i.value}`).join('/')}`;\n    if (!vulnerabilitiesGroupedByPackageNameAndAdvisoryId.has(key)) {\n      vulnerabilitiesGroupedByPackageNameAndAdvisoryId.set(key, []);\n    }\n    vulnerabilitiesGroupedByPackageNameAndAdvisoryId.get(key)!.push(vuln);\n  }\n  return Array.from(vulnerabilitiesGroupedByPackageNameAndAdvisoryId.values()).map((vulns) => {\n    return {\n      'dependency-name': vulns[0]!.package.name,\n      'affected-versions': vulns.map((v) => v.vulnerableVersionRange).filter((v) => v && v.length > 0),\n      'patched-versions': vulns\n        .map((v) => v.firstPatchedVersion?.identifier)\n        .filter((v) => v && v.length > 0)\n        .map((v) => v!),\n      'unaffected-versions': [],\n    } satisfies DependabotSecurityAdvisory;\n  });\n}\n\nexport function mapCredentials({\n  sourceHostname,\n  systemAccessUser,\n  systemAccessToken,\n  githubToken,\n  registries,\n}: {\n  sourceHostname: string;\n  systemAccessUser?: string;\n  systemAccessToken?: string;\n  githubToken?: string;\n  registries?: Record<string, DependabotRegistry>;\n}): DependabotCredential[] {\n  const credentials = [];\n\n  // Required to authenticate with the git repository when cloning the source code\n  if (systemAccessToken) {\n    credentials.push({\n      type: 'git_source',\n      host: sourceHostname,\n      username: (systemAccessUser ?? '').trim()?.length > 0 ? systemAccessUser : 'x-access-token',\n      password: systemAccessToken,\n    });\n  }\n\n  // Required to avoid rate-limiting errors when generating pull request descriptions (e.g. fetching release notes, commit messages, etc)\n  if (githubToken) {\n    credentials.push({\n      type: 'git_source',\n      host: 'github.com',\n      username: 'x-access-token',\n      password: githubToken,\n    });\n  }\n  if (registries) {\n    // TODO: only registries for the current update should be set\n    // Required to authenticate with private package feeds when finding the latest version of dependencies.\n    // The registries have already been worked on (see parseRegistries) so there is no need to do anything else.\n    credentials.push(...Object.values(registries));\n  }\n\n  return credentials;\n}\n\nexport function makeRandomJobId(): string {\n  const array = new Uint32Array(1);\n  crypto.getRandomValues(array);\n  return `${array[0]! % 10000000000}`; // Limit to 10 digits to match GitHub's job IDs\n}\n","import { z } from 'zod';\nimport { DependabotDependencySchema, DependabotPackageManagerSchema } from './job';\n\n// we use nullish() because it does optional() and allows the value to be set to null\n\nexport const DependabotDependencyFileSchema = z.object({\n  // https://github.com/dependabot/dependabot-core/blob/5e2711f9913cc387acb7cb0d29d51fb52d235ef2/common/lib/dependabot/dependency_file.rb#L14-L15\n  content: z.string().nullish(),\n  content_encoding: z\n    .enum([\n      'utf-8',\n      'base64',\n      // for some reason, some files (e.g. txt in gomod) are marked as empty string encoding\n      '',\n    ])\n    .nullish(),\n  deleted: z.boolean().nullish(),\n  directory: z.string(),\n  name: z.string(),\n  operation: z.enum(['update', 'create', 'delete']),\n  support_file: z.boolean().nullish(),\n  vendored_file: z.boolean().nullish(),\n  symlink_target: z.string().nullish(),\n  type: z.string().nullish(),\n  mode: z\n    .enum({\n      executable: '100755',\n      file: '100644',\n      directory: '040000',\n      submodule: '160000',\n      symlink: '120000',\n    })\n    .or(z.string())\n    .nullish(),\n});\nexport type DependabotDependencyFile = z.infer<typeof DependabotDependencyFileSchema>;\n\nexport const DependabotUpdateDependencyListSchema = z.object({\n  dependencies: DependabotDependencySchema.array(),\n  dependency_files: z.string().array().nullish(),\n});\nexport type DependabotUpdateDependencyList = z.infer<typeof DependabotUpdateDependencyListSchema>;\n\nexport const DependabotDependencySubmissionSchema = z.object({\n  version: z.number(),\n  sha: z.string(),\n  ref: z.string(),\n  job: z.object({\n    correlator: z.string(),\n    id: z.string(),\n  }),\n  detector: z.object({\n    name: z.string(),\n    version: z.string(),\n    url: z.string(),\n  }),\n  manifests: z.object({\n    name: z.string().nullish(),\n    file: z.object({ source_location: z.string() }).nullish(),\n    metadata: z.object({ ecosystem: DependabotPackageManagerSchema }).nullish(),\n    resolved: z\n      .object({\n        package_url: z.string(),\n        relationship: z.enum(['direct', 'indirect']),\n        scope: z.enum(['runtime', 'development']),\n        dependencies: DependabotDependencySchema.array(),\n      })\n      .nullish(),\n  }),\n});\nexport type DependabotDependencySubmission = z.infer<typeof DependabotDependencySubmissionSchema>;\n\nexport const DependabotCreatePullRequestSchema = z.object({\n  'base-commit-sha': z.string(),\n  dependencies: DependabotDependencySchema.array(),\n  'updated-dependency-files': DependabotDependencyFileSchema.array(),\n  'pr-title': z.string(),\n  'pr-body': z.string().nullish(),\n  'commit-message': z.string(),\n  'dependency-group': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotCreatePullRequest = z.infer<typeof DependabotCreatePullRequestSchema>;\n\nexport const DependabotUpdatePullRequestSchema = z.object({\n  'base-commit-sha': z.string(),\n  'dependency-names': z.string().array(),\n  'updated-dependency-files': DependabotDependencyFileSchema.array(),\n  'pr-title': z.string().nullish(), // this is usually excluded when working with dependabot-cli and an empty string if the API\n  'pr-body': z.string().nullish(), // this is usually excluded when working with dependabot-cli and an empty string if the API\n  'commit-message': z.string().nullish(), // this is usually excluded when working with dependabot-cli and an empty string if the API\n  'dependency-group': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotUpdatePullRequest = z.infer<typeof DependabotUpdatePullRequestSchema>;\n\nexport const DependabotClosePullRequestReasonEnum = z.enum([\n  'dependencies_changed',\n  'dependency_group_empty',\n  'dependency_removed',\n  'up_to_date',\n  'update_no_longer_possible',\n]);\nexport type DependabotClosePullRequestReason = z.infer<typeof DependabotClosePullRequestReasonEnum>;\nexport const DependabotClosePullRequestSchema = z.object({\n  'dependency-names': z.string().array(),\n  reason: DependabotClosePullRequestReasonEnum.nullish(),\n});\nexport type DependabotClosePullRequest = z.infer<typeof DependabotClosePullRequestSchema>;\n\nexport const DependabotMarkAsProcessedSchema = z.object({\n  'base-commit-sha': z.string().nullish(),\n});\nexport type DependabotMarkAsProcessed = z.infer<typeof DependabotMarkAsProcessedSchema>;\n\nexport const DependabotRecordUpdateJobErrorSchema = z.object({\n  'error-type': z.string(),\n  'error-details': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotRecordUpdateJobError = z.infer<typeof DependabotRecordUpdateJobErrorSchema>;\n\nexport const DependabotRecordUpdateJobWarningSchema = z.object({\n  'warn-type': z.string(),\n  'warn-title': z.string(),\n  'warn-description': z.string(),\n});\nexport type DependabotRecordUpdateJobWarning = z.infer<typeof DependabotRecordUpdateJobWarningSchema>;\n\nexport const DependabotRecordUpdateJobUnknownErrorSchema = z.object({\n  'error-type': z.string(),\n  'error-details': z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotRecordUpdateJobUnknownError = z.infer<typeof DependabotRecordUpdateJobUnknownErrorSchema>;\n\nexport const DependabotRecordEcosystemVersionsSchema = z.object({\n  ecosystem_versions: z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotRecordEcosystemVersions = z.infer<typeof DependabotRecordEcosystemVersionsSchema>;\n\nexport const DependabotEcosystemVersionManagerSchema = z.object({\n  name: z.string(),\n  version: z.string(),\n  raw_version: z.string(),\n  requirement: z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotEcosystemVersionManager = z.infer<typeof DependabotEcosystemVersionManagerSchema>;\n\nexport const DependabotEcosystemMetaSchema = z.object({\n  name: z.string(),\n  package_manager: DependabotEcosystemVersionManagerSchema.nullish(),\n  language: DependabotEcosystemVersionManagerSchema.nullish(),\n  version: DependabotEcosystemVersionManagerSchema.nullish(),\n});\nexport type DependabotEcosystemMeta = z.infer<typeof DependabotEcosystemMetaSchema>;\n\nexport const DependabotRecordEcosystemMetaSchema = z.object({\n  ecosystem: DependabotEcosystemMetaSchema,\n});\nexport type DependabotRecordEcosystemMeta = z.infer<typeof DependabotRecordEcosystemMetaSchema>;\n\nexport const DependabotRecordCooldownMetaSchema = z.object({\n  cooldown: z.object({\n    ecosystem_name: DependabotPackageManagerSchema,\n    config: z.object({\n      default_days: z.number(),\n      semver_major_days: z.number(),\n      semver_minor_days: z.number(),\n      semver_patch_days: z.number(),\n    }),\n  }),\n});\nexport type DependabotRecordCooldownMeta = z.infer<typeof DependabotRecordCooldownMetaSchema>;\n\nexport const DependabotIncrementMetricSchema = z.object({\n  metric: z.string(),\n  tags: z.record(z.string(), z.any()).nullish(),\n});\nexport type DependabotIncrementMetric = z.infer<typeof DependabotIncrementMetricSchema>;\n\nexport const DependabotMetricSchema = z.object({\n  metric: z.string(),\n  type: z.enum(['increment', 'gauge', 'distribution', 'histogram']),\n  value: z.number().nullish(),\n  values: z.number().array().nullish(),\n  tags: z.record(z.string(), z.string()).nullish(),\n});\nexport type DependabotMetric = z.infer<typeof DependabotMetricSchema>;\n","import { zValidator } from '@hono/zod-validator';\nimport { Hono } from 'hono';\nimport { type ZodType, z } from 'zod';\nimport { logger } from '@/logger';\nimport type { DependabotCredential, DependabotJobConfig } from './job';\nimport {\n  DependabotClosePullRequestSchema,\n  DependabotCreatePullRequestSchema,\n  DependabotDependencySubmissionSchema,\n  DependabotIncrementMetricSchema,\n  DependabotMarkAsProcessedSchema,\n  DependabotMetricSchema,\n  DependabotRecordCooldownMetaSchema,\n  DependabotRecordEcosystemMetaSchema,\n  DependabotRecordEcosystemVersionsSchema,\n  DependabotRecordUpdateJobErrorSchema,\n  DependabotRecordUpdateJobUnknownErrorSchema,\n  DependabotRecordUpdateJobWarningSchema,\n  DependabotUpdateDependencyListSchema,\n  DependabotUpdatePullRequestSchema,\n} from './update';\n\nexport const DependabotRequestTypeSchema = z.enum([\n  'create_pull_request',\n  'update_pull_request',\n  'close_pull_request',\n  'record_update_job_error',\n  'record_update_job_warning',\n  'record_update_job_unknown_error',\n  'mark_as_processed',\n  'update_dependency_list',\n  'create_dependency_submission',\n  'record_ecosystem_versions',\n  'increment_metric',\n  'record_ecosystem_meta',\n  'record_cooldown_meta',\n  'record_metrics', // from the runner\n]);\nexport type DependabotRequestType = z.infer<typeof DependabotRequestTypeSchema>;\n\nexport const DependabotRequestSchema = z.discriminatedUnion('type', [\n  z.object({ type: z.literal('create_pull_request'), data: DependabotCreatePullRequestSchema }),\n  z.object({ type: z.literal('update_pull_request'), data: DependabotUpdatePullRequestSchema }),\n  z.object({ type: z.literal('close_pull_request'), data: DependabotClosePullRequestSchema }),\n  z.object({ type: z.literal('record_update_job_error'), data: DependabotRecordUpdateJobErrorSchema }),\n  z.object({ type: z.literal('record_update_job_warning'), data: DependabotRecordUpdateJobWarningSchema }),\n  z.object({ type: z.literal('record_update_job_unknown_error'), data: DependabotRecordUpdateJobUnknownErrorSchema }),\n  z.object({ type: z.literal('mark_as_processed'), data: DependabotMarkAsProcessedSchema }),\n  z.object({ type: z.literal('update_dependency_list'), data: DependabotUpdateDependencyListSchema }),\n  z.object({ type: z.literal('create_dependency_submission'), data: DependabotDependencySubmissionSchema }),\n  z.object({ type: z.literal('record_ecosystem_versions'), data: DependabotRecordEcosystemVersionsSchema }),\n  z.object({ type: z.literal('record_ecosystem_meta'), data: DependabotRecordEcosystemMetaSchema.array() }),\n  z.object({ type: z.literal('record_cooldown_meta'), data: DependabotRecordCooldownMetaSchema.array() }),\n  z.object({ type: z.literal('increment_metric'), data: DependabotIncrementMetricSchema }),\n  z.object({ type: z.literal('record_metrics'), data: DependabotMetricSchema.array() }), // from the runner\n]);\nexport type DependabotRequest = z.infer<typeof DependabotRequestSchema>;\n\nexport type DependabotTokenType = 'job' | 'credentials';\n\n/**\n * Function type for authenticating requests.\n * @param type - The type of authentication ('job' or 'credentials').\n * @param id - The ID of the dependabot job.\n * @param value - The authentication value (e.g., API key).\n * @returns A promise that resolves to a boolean indicating whether the authentication was successful.\n */\ntype AuthenticatorFunc = (type: DependabotTokenType, id: string, value: string) => Promise<boolean>;\n\n/**\n * Handler function for processing dependabot requests.\n * @param id - The ID of the dependabot job.\n * @param request - The dependabot request to handle.\n * @returns A promise that resolves to the result of handling the request.\n */\ntype HandlerFunc = (id: string, request: DependabotRequest) => Promise<boolean>;\n\n/**\n * Function for inspecting raw dependabot requests.\n * @param id - The ID of the dependabot job.\n * @param type - The type of dependabot request.\n * @param raw - The raw JSON data of the request.\n * @returns A promise that resolves when the operation is complete.\n */\ntype InspectRequestFunc = (id: string, type: DependabotRequestType, raw: unknown) => Promise<void>;\n\n/**\n * Function for getting a dependabot job config by ID.\n * @param id - The ID of the dependabot job.\n * @returns A promise that resolves to the dependabot job config, or undefined if not found.\n */\ntype GetJobFunc = (id: string) => Promise<DependabotJobConfig | undefined>;\n\n/**\n * Function for getting dependabot credentials by job ID.\n * @param id - The ID of the dependabot job.\n * @returns A promise that resolves to an array of dependabot credentials, or undefined if not found.\n */\ntype GetCredentialsFunc = (id: string) => Promise<DependabotCredential[] | undefined>;\n\nexport type CreateApiServerAppOptions = {\n  /**\n   * Base path for the endpoints.\n   * @default `/api/update_jobs`\n   */\n  basePath?: string;\n\n  /** Handler function for authenticating requests. */\n  authenticate: AuthenticatorFunc;\n\n  /** Function for getting a dependabot job by ID. */\n  getJob: GetJobFunc;\n\n  /** Function for getting dependabot credentials by job ID. */\n  getCredentials: GetCredentialsFunc;\n\n  /**\n   * Optional function for inspecting raw dependabot requests.\n   * Should only be used for troubleshooting.\n   * */\n  inspect?: InspectRequestFunc;\n\n  /** Handler function for processing the operations. */\n  handle: HandlerFunc;\n};\n\n/**\n * Creates an API server application for handling dependabot update jobs.\n * The endpoints in the server application have paths in the format: `/api/update_jobs/:id/{operation}`,\n * where `:id` is the job ID and `{operation}` is one of the defined operations e.g. `create_pull_request`.\n *\n * You should set the job endpoint URL in the job container to\n * `http://<host>:<port>/api/update_jobs/:id` where `<host>` and `<port>` are the host and port\n *\n * These endpoints are protected using the provided API key.\n * @param params - The parameters for creating the API server application.\n * @returns The created API server application.\n */\nexport function createApiServerApp({\n  basePath = `/api/update_jobs`,\n  authenticate,\n  getJob,\n  getCredentials,\n  inspect,\n  handle,\n}: CreateApiServerAppOptions): Hono {\n  // Setup app with base path and middleware\n  const app = new Hono().basePath(basePath);\n\n  // Handle endpoints:\n  // - POST  request to /create_pull_request\n  // - POST  request to /update_pull_request\n  // - POST  request to /close_pull_request\n  // - POST  request to /record_update_job_error\n  // - POST  request to /record_update_job_warning\n  // - POST  request to /record_update_job_unknown_error\n  // - PATCH request to /mark_as_processed\n  // - POST  request to /update_dependency_list\n  // - POST  request to /create_dependency_submission\n  // - POST  request to /record_ecosystem_versions\n  // - POST  request to /record_ecosystem_meta\n  // - POST  request to /increment_metric\n\n  function operation<T extends ZodType>(type: DependabotRequestType, schema: T, method?: string) {\n    app.on(\n      method || 'post',\n      `/:id/${type}`,\n      zValidator('param', z.object({ id: z.string() })),\n      async (context, next) => {\n        /**\n         * Do not authenticate in scenarios where the server is not using HTTPS because the\n         * dependabot proxy will not send the job token over HTTP, yet trying to get HTTPS to work\n         * with localhost (self-signed certs) against docker (host.docker.internal) is complicated.\n         */\n        const url = new URL(context.req.url);\n        const isHTTPS = url.protocol === 'https:';\n        const { id } = context.req.valid('param');\n        if (isHTTPS) {\n          const value = context.req.header('Authorization');\n          if (!value) return context.body(null, 401);\n          const valid = await authenticate('job', id, value);\n          if (!valid) return context.body(null, 403);\n        } else {\n          logger.trace(`Skipping authentication because it is not secure ${context.req.url}`);\n        }\n\n        // if inspection is provided, call it with the raw request data\n        if (inspect) {\n          await inspect(id, type, await context.req.json());\n        }\n\n        await next();\n      },\n      zValidator('json', z.object({ data: schema })),\n      async (context) => {\n        const { id } = context.req.valid('param');\n        const { data } = context.req.valid('json') as { data: z.infer<typeof schema> };\n        // biome-ignore lint/suspicious/noExplicitAny: generic\n        const success: boolean = await handle(id, { type, data: data as any });\n        return context.body(null, success ? 204 : 400);\n      },\n    );\n  }\n\n  operation('create_pull_request', DependabotCreatePullRequestSchema);\n  operation('update_pull_request', DependabotUpdatePullRequestSchema);\n  operation('close_pull_request', DependabotClosePullRequestSchema);\n  operation('record_update_job_error', DependabotRecordUpdateJobErrorSchema);\n  operation('record_update_job_warning', DependabotRecordUpdateJobWarningSchema);\n  operation('record_update_job_unknown_error', DependabotRecordUpdateJobUnknownErrorSchema);\n  operation('mark_as_processed', DependabotMarkAsProcessedSchema, 'patch');\n  operation('update_dependency_list', DependabotUpdateDependencyListSchema);\n  operation('create_dependency_submission', DependabotDependencySubmissionSchema);\n  operation('record_ecosystem_versions', DependabotRecordEcosystemVersionsSchema);\n  operation('record_ecosystem_meta', DependabotRecordEcosystemMetaSchema.array());\n  operation('record_cooldown_meta', DependabotRecordCooldownMetaSchema.array());\n  operation('increment_metric', DependabotIncrementMetricSchema);\n  operation('record_metrics', DependabotMetricSchema.array()); // from the runner\n\n  // Handle endpoints:\n  // - GET request to /details\n  // - GET request to /credentials\n  app.on(\n    'get',\n    '/:id/details',\n    zValidator('param', z.object({ id: z.string() })),\n    async (context, next) => {\n      const { id } = context.req.valid('param');\n      const value = context.req.header('Authorization');\n      if (!value) return context.body(null, 401);\n      const valid = await authenticate('job', id, value);\n      if (!valid) return context.body(null, 403);\n      await next();\n    },\n    async (context) => {\n      const { id } = context.req.valid('param');\n      const job = await getJob(id);\n      if (!job) return context.body(null, 204);\n      return context.json(job);\n    },\n  );\n  app.on(\n    'get',\n    '/:id/credentials',\n    zValidator('param', z.object({ id: z.string() })),\n    async (context, next) => {\n      const { id } = context.req.valid('param');\n      const value = context.req.header('Authorization');\n      if (!value) return context.body(null, 401);\n      const valid = await authenticate('credentials', id, value);\n      if (!valid) return context.body(null, 403);\n      await next();\n    },\n    async (context) => {\n      const { id } = context.req.valid('param');\n      const credentials = await getCredentials(id);\n      if (!credentials) return context.body(null, 204);\n      return context.json(credentials);\n    },\n  );\n\n  return app;\n}\n"],"mappings":";;;;;;;;AAKA,MAAa,kCAAkC;AAC/C,MAAa,iCAAiC;;;;ACE9C,SAAgB,uBACd,kBACA,kBACA,WACA,qBACA,cACA,YAAoB,KACZ;CAIR,IAAIA;AAEJ,KADiC,uBAAuB,aAAa,SAAS,GAChD;EAG5B,MAAM,mBAAmBC,SACtB,WAAW,MAAM,CACjB,OAAO,aAAa,KAAK,MAAM,GAAG,EAAE,mBAAmB,GAAG,EAAE,wBAAwB,CAAC,KAAK,IAAI,CAAC,CAC/F,OAAO,MAAM,CACb,UAAU,GAAG,GAAG;AACnB,eAAa,GAAG,uBAAuB,QAAQ,GAAG;OAUlD,cAAa,GANW,aACrB,KAAK,MAAM,EAAE,mBAAmB,CAChC,KAAK,QAAQ,CACb,QAAQ,UAAU,IAAI,CACtB,QAAQ,MAAM,GAAG,CAEY,GADV,aAAa,IAAI,UAAU,YAAY,aAAa,KAAK;AAIjF,QAAO,YACL;EACE;EACA;EACA;EAEA,YACI,UACG,MAAM,IAAI,CACV,QAAQ,SAAS,KAAK,SAAS,EAAE,CACjC,KAAK,UAAU,GAClB;EACJ;EACD,EACD,UACD;;AAGH,SAAgB,YAAY,UAAkC,WAA2B;AAOvF,QACE,SAEG,QAAQ,MAAM,KAAK,EAAE,MAAM,CAAC,SAAS,EAAE,CACvC,KAAK,UAAU,CAEf,QAAQ,0BAA0B,GAAG,CAErC,QAAQ,SAAS,QAAQ,CAEzB,QAAQ,QAAQ,IAAI,CACpB,QAAQ,QAAQ,IAAI,CAEpB,QAAQ,OAAO,GAAG;;;;;AC3EzB,MAAaC,sBAA6C;CACxD,6BAA6B;CAC7B,mCAAmC;CACnC,gBAAgB;CAChB,gCAAgC;CAChC,mCAAmC;CACnC,iCAAiC;CACjC,gCAAgC;CAChC,oCAAoC;CACpC,yCAAyC;CACzC,wCAAwC;CACxC,mCAAmC;CACnC,wCAAwC;CACxC,8CAA8C;CAC9C,6CAA6C;CAC7C,mCAAmC;CACnC,6CAA6C;CAC7C,2BAA2B;CAC3B,oDAAoD;CACpD,gCAAgC;CAChC,2BAA2B;CAC3B,4BAA4B;CAC5B,2BAA2B;CAC3B,kCAAkC;CAClC,kCAAkC;CACnC;;;;;;AAOD,SAAgB,iBAAiB,KAAiD;AAChF,QAAO,KACH,MAAM,IAAI,CACX,QAAQ,UAAU,MAAM,MAAM,KAAK,GAAG,CACtC,QAAQ,KAAK,QAAQ;EACpB,MAAM,CAAC,KAAK,SAAS,IAAI,MAAM,KAAK,EAAE;AACtC,MAAI,OAAQ,SAAS;AACrB,SAAO;IACN,EAAE,CAA0B;;;;;;;;ACJnC,IAAa,uBAAb,MAAkC;CAChC,AAAiB;CACjB,AAAiB;CACjB,AAAiB;CACjB,AAAiB;CAEjB,AAAiB;CACjB,AAAiB;CACjB,AAAiB;CAEjB,YAAY,EACV,QACA,QACA,QACA,kBACA,mBACA,aACA,aACA,SAWC;AACD,OAAK,SAAS;AACd,OAAK,SAAS;AACd,OAAK,cAAc;AACnB,OAAK,QAAQ;AAEb,OAAK,iBAAiB,oCAAoC,OAAO,qBAAqB;AACtF,OAAK,SAAS,yCAAyC,QAAQ,OAAO;AACtE,OAAK,cAAc,eAAe;GAChC,gBAAgB,OAAO;GACvB;GACA;GACA;GACA,YAAY,OAAO;GACpB,CAAC;;;;;CAMJ,AAAO,oBAAoB,EACzB,IACA,WAI6B;AAC7B,SAAO,iBAAiB;AACxB,SAAO;GACL,KAAK;IACC;IACK;IACT,mBAAmB,KAAK;IACxB,2BAA2B;IAC3B,cAAc;IACd,mBAAmB,CAAC;KAAE,mBAAmB;KAAU,eAAe;KAAO,CAAC;IAC1E,qBAAqB,CAAC,EAAE,mBAAmB,KAAK,CAAC;IACjD,yBAAyB;IACzB,uBAAuB,EAAE;IACzB,QAAQ,KAAK;IACb,0BAA0B;IAC1B,0BAA0B,EAAE;IAC5B,gCAAgC,EAAE;IAClC,aAAa,KAAK;IAClB,gCAAgC;IAChC,iBAAiB;IACjB,0BAA0B;KACxB,QAAQ;KACR,sBAAsB;KACtB,iBAAiB;KAClB;IACD,uBAAuB;IACvB,gBAAgB;IAChB,OAAO,KAAK;IACb;GACD,aAAa,KAAK;GACnB;;;;;CAMH,AAAO,UAAU,EACf,IACA,SACA,yBACA,sBACA,qBACA,2BAQ6B;AAC7B,SAAO,iBAAiB;EACxB,MAAM,qBAAqB,KAAK,OAAO,gCAAgC;EAEvE,IAAIC;EACJ,IAAIC,4BAA2C;EAC/C,IAAIC;EACJ,IAAIC;AAEJ,MAAI,qBAAqB;AACvB,yBAAsB;AACtB,+BAA4B,MAAM,QAAQ,oBAAoB,GAC1D,OACA,oBAAoB;AACxB,4BACE,MAAM,QAAQ,oBAAoB,GAAG,sBAAsB,oBAAoB,eAC9E,KAAK,MAAM,EAAE,mBAAmB;AACnC,qBAAkB,yBAAyB,QAAQ,MAAM,uBAAuB,SAAS,EAAE,QAAQ,KAAK,CAAC;SACpG;AACL,yBAAsB;GACtB,MAAM,QAAQ,yBAAyB,SAAS,0BAA0B;AAC1E,2BACE,sBAAsB,QAClB,OAAO,QAAQ,MAAM,yBAAyB,MAAM,MAAM,EAAE,QAAQ,SAAS,EAAE,CAAC,GAChF;AACN,qBAAkB;;AAGpB,SAAO;GACL,KAAK;IACC;IACK;IACT,mBAAmB,KAAK;IACxB,2BAA2B,uBAAuB;IAClD,+BAA+B;IAC/B,qBAAqB,yCAAyC,KAAK,OAAO,OAAO;IACjF,cAAc;IACd,mBAAmB,iDAAiD,KAAK,OAAO,OAAO,mBAAmB;IAC1G,qBAAqB,mDAAmD,KAAK,OAAO,OAAO;IAC3F,yBAAyB;IACzB,uBAAuB,sBAAsB,gBAAgB;IAC7D,QAAQ,KAAK;IACb,0BAA0B;IAC1B,0BAA0B,qBAAqB,QAAQ,OAAO,MAAM,QAAQ,GAAG,CAAC;IAChF,gCAAgC,qBAAqB,QAClD,OAAwC,CAAC,MAAM,QAAQ,GAAG,CAC5D;IACD,0BAA0B;KACxB,QAAQ,KAAK,OAAO,mBAAmB,UAAU;KACjD,sBAAsB,KAAK,OAAO,oBAAoB,yBAAyB;KAC/E,iBACE,KAAK,OAAO,mBAAmB,SAAS,mBAAmB,EAAE,MAAM,KAAK,UAAU,OAAO;KAC5F;IACD,UAAU,KAAK,OAAO;IACtB,aAAa,eAAe,KAAK,YAAY;IAC7C,wBACE,KAAK,OAAO,qCAAqC,mBAAmB,EAAE,MAAM,KAAK;IACnF,gCAAgC,+CAC9B,KAAK,OAAO,uBACb;IACD,iBAAiB,KAAK,OAAO,2BAA2B;IACxD,uBAAuB,KAAK,OAAO,UAAU;IAC7C,gBAAgB;IAChB,OAAO,KAAK;IACZ,2CAA2C;IAC3C,wBAAwB;IACxB,0BAA0B,KAAK,OAAO,6BAA6B;IAMnE,0BAA0B;IAC1B,iBAAiB,KAAK,OAAO;IAC9B;GACD,aAAa,KAAK;GACnB;;;AAIL,SAAgB,oCAAoC,WAAuD;AAIzG,SAAQ,WAAR;EACE,KAAK,iBACH,QAAO;EACT,KAAK,aACH,QAAO;EACT,KAAK,iBACH,QAAO;EACT,KAAK,eACH,QAAO;EACT,KAAK,QACH,QAAO;EACT,KAAK,MACH,QAAO;EACT,KAAK,MACH,QAAO;EAET,KAAK,SACH,QAAO;EACT,KAAK,cACH,QAAO;EACT,KAAK,SACH,QAAO;EACT,KAAK,OACH,QAAO;EACT,KAAK,iBACH,QAAO;EACT,KAAK,OACH,QAAO;EACT,QACE,QAAO;;;AAIb,SAAgB,yCACd,QACA,QACkB;AAClB,QAAO;EACL,UAAU,OAAO;EACjB,gBAAgB,OAAO;EACvB,UAAU,OAAO;EACjB,MAAM,OAAO;EACb,QAAQ,OAAO;EACf,QAAQ;EACR,WAAW,OAAO;EAClB,aAAa,OAAO;EACrB;;AAGH,SAAgB,+CAA+C,UAA8C;AAC3G,KAAI,CAAC,SAAU,QAAO;AACtB,SAAQ,UAAR;EACE,KAAK,OACH,QAAO;EACT,KAAK,WACH,QAAO;EACT,KAAK,wBACH,QAAO;EACT,KAAK,gBACH,QAAO;EACT,KAAK,QACH,QAAO;EACT,QACE,OAAM,IAAI,MAAM,uDAAuD,SAAS,GAAG;;;AAIzF,SAAgB,yCACd,kBACsB;AACtB,KAAI,CAAC,oBAAoB,CAAC,OAAO,KAAK,iBAAiB,CAAC,OAAQ,QAAO,EAAE;AACzE,QAAO,OAAO,KAAK,iBAAiB,CACjC,QAAQ,SAAS,iBAAiB,MAAM,CACxC,KAAK,SAAS;EACb,MAAM,QAAQ,iBAAiB;AAC/B,SAAO;GACC;GACN,cAAc,MAAM;GACpB,OAAO;IACL,UAAU,MAAM,UAAU,SAAS,MAAM,WAAW,CAAC,IAAI;IACzD,oBAAoB,MAAM;IAC1B,mBAAmB,MAAM;IACzB,gBAAgB,MAAM;IACvB;GACF;GACD;;AAGN,SAAgB,iDACd,gBACA,oBACqB;AAIrB,KAAI,CAAC,eACH,QAAO,CACL;EACE,mBAAmB;EACnB,eAAe,qBAAqB,aAAa;EAClD,CACF;AAEH,QAAO,eAAe,KAAK,UAAU;AACnC,SAAO;GACL,mBAAmB,MAAM;GACzB,mBAAmB,MAAM;GACzB,eAAe,MAAM;GACtB;GACD;;AAGJ,SAAgB,mDACd,kBACuB;AACvB,KAAI,CAAC,iBAAkB,QAAO,EAAE;AAChC,QAAO,iBAAiB,KAAK,WAAW;AACtC,SAAO;GACL,QAAQ,OAAO;GACf,cAAc,OAAO;GACrB,mBAAmB,OAAO,sBAAsB;GAChD,gBAAgB,OAAO;GAIvB,uBAAuB,MAAM,QAAQ,OAAO,SAAS,GAAc,OAAO,UAAW,KAAK,KAAK,GAAG,OAAO;GAC1G;GACD;;AAGJ,SAAgB,eAAe,aAA4D;AACzF,iBAAgB,EAAE;AAClB,QAAO,OAAO,KAAK,YAAY,CAAC,QAAQ,KAAK,QAAQ;EAGnD,MAAM,QAAQ,YAAY;AAC1B,MAAI,OAAO,UAAU,YAAY,OAAO,mBAAmB,KAAK,OAC9D,KAAI,OAAO;WACF,OAAO,UAAU,YAAY,OAAO,mBAAmB,KAAK,QACrE,KAAI,OAAO;WAEP,OAAO,UAAU,YAAY,OAAO,UAAU,UAAW,KAAI,OAAO;AAE1E,SAAO;IACN,EAAE,CAA0B;;AAGjC,SAAgB,sBAAsB,yBAAiF;AACrH,KAAI,CAAC,wBAAyB,QAAO,EAAE;CAIvC,MAAM,mEAAmD,IAAI,KAAsC;AACnG,MAAK,MAAM,QAAQ,yBAAyB;EAC1C,MAAM,MAAM,GAAG,KAAK,QAAQ,KAAK,GAAG,KAAK,SAAS,YAAY,KAAK,MAAM,GAAG,EAAE,KAAK,GAAG,EAAE,QAAQ,CAAC,KAAK,IAAI;AAC1G,MAAI,CAAC,iDAAiD,IAAI,IAAI,CAC5D,kDAAiD,IAAI,KAAK,EAAE,CAAC;AAE/D,mDAAiD,IAAI,IAAI,CAAE,KAAK,KAAK;;AAEvE,QAAO,MAAM,KAAK,iDAAiD,QAAQ,CAAC,CAAC,KAAK,UAAU;AAC1F,SAAO;GACL,mBAAmB,MAAM,GAAI,QAAQ;GACrC,qBAAqB,MAAM,KAAK,MAAM,EAAE,uBAAuB,CAAC,QAAQ,MAAM,KAAK,EAAE,SAAS,EAAE;GAChG,oBAAoB,MACjB,KAAK,MAAM,EAAE,qBAAqB,WAAW,CAC7C,QAAQ,MAAM,KAAK,EAAE,SAAS,EAAE,CAChC,KAAK,MAAM,EAAG;GACjB,uBAAuB,EAAE;GAC1B;GACD;;AAGJ,SAAgB,eAAe,EAC7B,gBACA,kBACA,mBACA,aACA,cAOyB;CACzB,MAAM,cAAc,EAAE;AAGtB,KAAI,kBACF,aAAY,KAAK;EACf,MAAM;EACN,MAAM;EACN,WAAW,oBAAoB,IAAI,MAAM,EAAE,SAAS,IAAI,mBAAmB;EAC3E,UAAU;EACX,CAAC;AAIJ,KAAI,YACF,aAAY,KAAK;EACf,MAAM;EACN,MAAM;EACN,UAAU;EACV,UAAU;EACX,CAAC;AAEJ,KAAI,WAIF,aAAY,KAAK,GAAG,OAAO,OAAO,WAAW,CAAC;AAGhD,QAAO;;AAGT,SAAgB,kBAA0B;CACxC,MAAM,QAAQ,IAAI,YAAY,EAAE;AAChC,QAAO,gBAAgB,MAAM;AAC7B,QAAO,GAAG,MAAM,KAAM;;;;;AC7bxB,MAAa,iCAAiC,EAAE,OAAO;CAErD,SAAS,EAAE,QAAQ,CAAC,SAAS;CAC7B,kBAAkB,EACf,KAAK;EACJ;EACA;EAEA;EACD,CAAC,CACD,SAAS;CACZ,SAAS,EAAE,SAAS,CAAC,SAAS;CAC9B,WAAW,EAAE,QAAQ;CACrB,MAAM,EAAE,QAAQ;CAChB,WAAW,EAAE,KAAK;EAAC;EAAU;EAAU;EAAS,CAAC;CACjD,cAAc,EAAE,SAAS,CAAC,SAAS;CACnC,eAAe,EAAE,SAAS,CAAC,SAAS;CACpC,gBAAgB,EAAE,QAAQ,CAAC,SAAS;CACpC,MAAM,EAAE,QAAQ,CAAC,SAAS;CAC1B,MAAM,EACH,KAAK;EACJ,YAAY;EACZ,MAAM;EACN,WAAW;EACX,WAAW;EACX,SAAS;EACV,CAAC,CACD,GAAG,EAAE,QAAQ,CAAC,CACd,SAAS;CACb,CAAC;AAGF,MAAa,uCAAuC,EAAE,OAAO;CAC3D,cAAc,2BAA2B,OAAO;CAChD,kBAAkB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAC/C,CAAC;AAGF,MAAa,uCAAuC,EAAE,OAAO;CAC3D,SAAS,EAAE,QAAQ;CACnB,KAAK,EAAE,QAAQ;CACf,KAAK,EAAE,QAAQ;CACf,KAAK,EAAE,OAAO;EACZ,YAAY,EAAE,QAAQ;EACtB,IAAI,EAAE,QAAQ;EACf,CAAC;CACF,UAAU,EAAE,OAAO;EACjB,MAAM,EAAE,QAAQ;EAChB,SAAS,EAAE,QAAQ;EACnB,KAAK,EAAE,QAAQ;EAChB,CAAC;CACF,WAAW,EAAE,OAAO;EAClB,MAAM,EAAE,QAAQ,CAAC,SAAS;EAC1B,MAAM,EAAE,OAAO,EAAE,iBAAiB,EAAE,QAAQ,EAAE,CAAC,CAAC,SAAS;EACzD,UAAU,EAAE,OAAO,EAAE,WAAW,gCAAgC,CAAC,CAAC,SAAS;EAC3E,UAAU,EACP,OAAO;GACN,aAAa,EAAE,QAAQ;GACvB,cAAc,EAAE,KAAK,CAAC,UAAU,WAAW,CAAC;GAC5C,OAAO,EAAE,KAAK,CAAC,WAAW,cAAc,CAAC;GACzC,cAAc,2BAA2B,OAAO;GACjD,CAAC,CACD,SAAS;EACb,CAAC;CACH,CAAC;AAGF,MAAa,oCAAoC,EAAE,OAAO;CACxD,mBAAmB,EAAE,QAAQ;CAC7B,cAAc,2BAA2B,OAAO;CAChD,4BAA4B,+BAA+B,OAAO;CAClE,YAAY,EAAE,QAAQ;CACtB,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,kBAAkB,EAAE,QAAQ;CAC5B,oBAAoB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CAC5D,CAAC;AAGF,MAAa,oCAAoC,EAAE,OAAO;CACxD,mBAAmB,EAAE,QAAQ;CAC7B,oBAAoB,EAAE,QAAQ,CAAC,OAAO;CACtC,4BAA4B,+BAA+B,OAAO;CAClE,YAAY,EAAE,QAAQ,CAAC,SAAS;CAChC,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,kBAAkB,EAAE,QAAQ,CAAC,SAAS;CACtC,oBAAoB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CAC5D,CAAC;AAGF,MAAa,uCAAuC,EAAE,KAAK;CACzD;CACA;CACA;CACA;CACA;CACD,CAAC;AAEF,MAAa,mCAAmC,EAAE,OAAO;CACvD,oBAAoB,EAAE,QAAQ,CAAC,OAAO;CACtC,QAAQ,qCAAqC,SAAS;CACvD,CAAC;AAGF,MAAa,kCAAkC,EAAE,OAAO,EACtD,mBAAmB,EAAE,QAAQ,CAAC,SAAS,EACxC,CAAC;AAGF,MAAa,uCAAuC,EAAE,OAAO;CAC3D,cAAc,EAAE,QAAQ;CACxB,iBAAiB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACzD,CAAC;AAGF,MAAa,yCAAyC,EAAE,OAAO;CAC7D,aAAa,EAAE,QAAQ;CACvB,cAAc,EAAE,QAAQ;CACxB,oBAAoB,EAAE,QAAQ;CAC/B,CAAC;AAGF,MAAa,8CAA8C,EAAE,OAAO;CAClE,cAAc,EAAE,QAAQ;CACxB,iBAAiB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACzD,CAAC;AAGF,MAAa,0CAA0C,EAAE,OAAO,EAC9D,oBAAoB,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS,EAC5D,CAAC;AAGF,MAAa,0CAA0C,EAAE,OAAO;CAC9D,MAAM,EAAE,QAAQ;CAChB,SAAS,EAAE,QAAQ;CACnB,aAAa,EAAE,QAAQ;CACvB,aAAa,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACrD,CAAC;AAGF,MAAa,gCAAgC,EAAE,OAAO;CACpD,MAAM,EAAE,QAAQ;CAChB,iBAAiB,wCAAwC,SAAS;CAClE,UAAU,wCAAwC,SAAS;CAC3D,SAAS,wCAAwC,SAAS;CAC3D,CAAC;AAGF,MAAa,sCAAsC,EAAE,OAAO,EAC1D,WAAW,+BACZ,CAAC;AAGF,MAAa,qCAAqC,EAAE,OAAO,EACzD,UAAU,EAAE,OAAO;CACjB,gBAAgB;CAChB,QAAQ,EAAE,OAAO;EACf,cAAc,EAAE,QAAQ;EACxB,mBAAmB,EAAE,QAAQ;EAC7B,mBAAmB,EAAE,QAAQ;EAC7B,mBAAmB,EAAE,QAAQ;EAC9B,CAAC;CACH,CAAC,EACH,CAAC;AAGF,MAAa,kCAAkC,EAAE,OAAO;CACtD,QAAQ,EAAE,QAAQ;CAClB,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CAC9C,CAAC;AAGF,MAAa,yBAAyB,EAAE,OAAO;CAC7C,QAAQ,EAAE,QAAQ;CAClB,MAAM,EAAE,KAAK;EAAC;EAAa;EAAS;EAAgB;EAAY,CAAC;CACjE,OAAO,EAAE,QAAQ,CAAC,SAAS;CAC3B,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACpC,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,QAAQ,CAAC,CAAC,SAAS;CACjD,CAAC;;;;ACjKF,MAAa,8BAA8B,EAAE,KAAK;CAChD;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAAC;AAGF,MAAa,0BAA0B,EAAE,mBAAmB,QAAQ;CAClE,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,sBAAsB;EAAE,MAAM;EAAmC,CAAC;CAC7F,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,sBAAsB;EAAE,MAAM;EAAmC,CAAC;CAC7F,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,qBAAqB;EAAE,MAAM;EAAkC,CAAC;CAC3F,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,0BAA0B;EAAE,MAAM;EAAsC,CAAC;CACpG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,4BAA4B;EAAE,MAAM;EAAwC,CAAC;CACxG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,kCAAkC;EAAE,MAAM;EAA6C,CAAC;CACnH,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,oBAAoB;EAAE,MAAM;EAAiC,CAAC;CACzF,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,yBAAyB;EAAE,MAAM;EAAsC,CAAC;CACnG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,+BAA+B;EAAE,MAAM;EAAsC,CAAC;CACzG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,4BAA4B;EAAE,MAAM;EAAyC,CAAC;CACzG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,wBAAwB;EAAE,MAAM,oCAAoC,OAAO;EAAE,CAAC;CACzG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,uBAAuB;EAAE,MAAM,mCAAmC,OAAO;EAAE,CAAC;CACvG,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,mBAAmB;EAAE,MAAM;EAAiC,CAAC;CACxF,EAAE,OAAO;EAAE,MAAM,EAAE,QAAQ,iBAAiB;EAAE,MAAM,uBAAuB,OAAO;EAAE,CAAC;CACtF,CAAC;;;;;;;;;;;;;AAmFF,SAAgB,mBAAmB,EACjC,WAAW,oBACX,cACA,QACA,gBACA,SACA,UACkC;CAElC,MAAM,MAAM,IAAI,MAAM,CAAC,SAAS,SAAS;CAgBzC,SAAS,UAA6B,MAA6B,QAAW,QAAiB;AAC7F,MAAI,GACF,UAAU,QACV,QAAQ,QACR,WAAW,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC,EACjD,OAAO,SAAS,SAAS;GAOvB,MAAM,UADM,IAAI,IAAI,QAAQ,IAAI,IAAI,CAChB,aAAa;GACjC,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;AACzC,OAAI,SAAS;IACX,MAAM,QAAQ,QAAQ,IAAI,OAAO,gBAAgB;AACjD,QAAI,CAAC,MAAO,QAAO,QAAQ,KAAK,MAAM,IAAI;AAE1C,QAAI,CADU,MAAM,aAAa,OAAO,IAAI,MAAM,CACtC,QAAO,QAAQ,KAAK,MAAM,IAAI;SAE1C,QAAO,MAAM,oDAAoD,QAAQ,IAAI,MAAM;AAIrF,OAAI,QACF,OAAM,QAAQ,IAAI,MAAM,MAAM,QAAQ,IAAI,MAAM,CAAC;AAGnD,SAAM,MAAM;KAEd,WAAW,QAAQ,EAAE,OAAO,EAAE,MAAM,QAAQ,CAAC,CAAC,EAC9C,OAAO,YAAY;GACjB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;GACzC,MAAM,EAAE,SAAS,QAAQ,IAAI,MAAM,OAAO;GAE1C,MAAMC,UAAmB,MAAM,OAAO,IAAI;IAAE;IAAY;IAAa,CAAC;AACtE,UAAO,QAAQ,KAAK,MAAM,UAAU,MAAM,IAAI;IAEjD;;AAGH,WAAU,uBAAuB,kCAAkC;AACnE,WAAU,uBAAuB,kCAAkC;AACnE,WAAU,sBAAsB,iCAAiC;AACjE,WAAU,2BAA2B,qCAAqC;AAC1E,WAAU,6BAA6B,uCAAuC;AAC9E,WAAU,mCAAmC,4CAA4C;AACzF,WAAU,qBAAqB,iCAAiC,QAAQ;AACxE,WAAU,0BAA0B,qCAAqC;AACzE,WAAU,gCAAgC,qCAAqC;AAC/E,WAAU,6BAA6B,wCAAwC;AAC/E,WAAU,yBAAyB,oCAAoC,OAAO,CAAC;AAC/E,WAAU,wBAAwB,mCAAmC,OAAO,CAAC;AAC7E,WAAU,oBAAoB,gCAAgC;AAC9D,WAAU,kBAAkB,uBAAuB,OAAO,CAAC;AAK3D,KAAI,GACF,OACA,gBACA,WAAW,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC,EACjD,OAAO,SAAS,SAAS;EACvB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,QAAQ,QAAQ,IAAI,OAAO,gBAAgB;AACjD,MAAI,CAAC,MAAO,QAAO,QAAQ,KAAK,MAAM,IAAI;AAE1C,MAAI,CADU,MAAM,aAAa,OAAO,IAAI,MAAM,CACtC,QAAO,QAAQ,KAAK,MAAM,IAAI;AAC1C,QAAM,MAAM;IAEd,OAAO,YAAY;EACjB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,MAAM,MAAM,OAAO,GAAG;AAC5B,MAAI,CAAC,IAAK,QAAO,QAAQ,KAAK,MAAM,IAAI;AACxC,SAAO,QAAQ,KAAK,IAAI;GAE3B;AACD,KAAI,GACF,OACA,oBACA,WAAW,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC,EACjD,OAAO,SAAS,SAAS;EACvB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,QAAQ,QAAQ,IAAI,OAAO,gBAAgB;AACjD,MAAI,CAAC,MAAO,QAAO,QAAQ,KAAK,MAAM,IAAI;AAE1C,MAAI,CADU,MAAM,aAAa,eAAe,IAAI,MAAM,CAC9C,QAAO,QAAQ,KAAK,MAAM,IAAI;AAC1C,QAAM,MAAM;IAEd,OAAO,YAAY;EACjB,MAAM,EAAE,OAAO,QAAQ,IAAI,MAAM,QAAQ;EACzC,MAAM,cAAc,MAAM,eAAe,GAAG;AAC5C,MAAI,CAAC,YAAa,QAAO,QAAQ,KAAK,MAAM,IAAI;AAChD,SAAO,QAAQ,KAAK,YAAY;GAEnC;AAED,QAAO"}

package/dist/job-DQiSYFHb.mjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"job-DQiSYFHb.mjs","names":["matches: RegExpExecArray[]","regexp: RegExp","betaEcosystems: PackageEcosystem[]","updates: DependabotUpdate[]","registries: Record<string, DependabotRegistry>","referenced: string[]"],"sources":["../src/dependabot/directory-key.ts","../src/dependabot/placeholder.ts","../src/dependabot/config.ts","../src/dependabot/job.ts"],"sourcesContent":["/**\n * Options for creating a directory key that supports both naming conventions:\n * - `ecosystem` (standard format)\n * - `package-ecosystem` (alternative format for compatibility)\n *\n * Either a single `directory` or multiple `directories` can be specified.\n */\ntype MakeDirectoryKeyOptions =\n  | {\n      /** The package ecosystem (e.g., 'npm', 'pip', 'bundler') */\n      ecosystem: string;\n      /** Single directory path (optional if directories is provided) */\n      directory?: string | null;\n      /** Multiple directory paths (optional if directory is provided) */\n      directories?: string[];\n    }\n  | {\n      /** The package ecosystem using alternative naming convention */\n      'package-ecosystem': string;\n      /** Single directory path (optional if directories is provided) */\n      directory?: string | null;\n      /** Multiple directory paths (optional if directory is provided) */\n      directories?: string[];\n    };\n\n/**\n * Creates a unique directory key by combining the ecosystem and directory information.\n *\n * The key format is: `{ecosystem}::{directory_info}`\n * - For single directory: `npm::/src/frontend`\n * - For multiple directories: `npm::/src/frontend,/src/backend`\n *\n * @param options - Configuration object containing ecosystem and directory information\n * @returns A unique string key in the format `{ecosystem}::{directories}`\n *\n * @example\n * ```typescript\n * // Single directory\n * const key1 = makeDirectoryKey({ ecosystem: 'npm', directory: '/src' });\n * // Returns: \"npm::/src\"\n *\n * // Multiple directories\n * const key2 = makeDirectoryKey({\n *   ecosystem: 'pip',\n *   directories: ['/backend', '/scripts']\n * });\n * // Returns: \"pip::/backend,/scripts\"\n *\n * // Using alternative naming convention\n * const key3 = makeDirectoryKey({\n *   'package-ecosystem': 'bundler',\n *   directory: '/app'\n * });\n * // Returns: \"bundler::/app\"\n * ```\n */\nexport function makeDirectoryKey(options: MakeDirectoryKeyOptions): string {\n  // Extract ecosystem name from either naming convention\n  const ecosystem = 'ecosystem' in options ? options.ecosystem : options['package-ecosystem'];\n\n  // Use single directory if provided, otherwise join multiple directories with comma\n  const directoryPart = options.directory ?? options.directories!.join(',');\n\n  return `${ecosystem}::${directoryPart}`;\n}\n","export type VariableFinderFn = (name: string) => string | undefined | Promise<string | undefined>;\n\nasync function convertPlaceholder({\n  input,\n  variableFinder,\n}: {\n  input?: string;\n  variableFinder: VariableFinderFn;\n}): Promise<string | undefined> {\n  if (!input) return undefined;\n\n  const matches: RegExpExecArray[] = extractPlaceholder(input);\n  let result = input;\n  for (const match of matches) {\n    const placeholder = match[0];\n    const name = match[1]!;\n    const value = (await variableFinder(name)) ?? placeholder;\n    result = result.replace(placeholder, value);\n  }\n  return result;\n}\n\nfunction extractPlaceholder(input: string) {\n  const matches: RegExpExecArray[] = [];\n  const regexp: RegExp = /\\$\\{\\{\\s{0,10}([a-zA-Z_][a-zA-Z0-9._-]{0,99})\\s{0,10}\\}\\}/;\n\n  let searchInput = input;\n  let offset = 0;\n\n  while (searchInput.length > 0) {\n    const match = searchInput.match(regexp);\n    if (!match || match.index === undefined) break;\n\n    // Adjust match index to account for previous slices\n    const adjustedMatch = Object.assign([...match], {\n      index: match.index + offset,\n      input: input,\n      groups: match.groups,\n    }) as RegExpExecArray;\n\n    matches.push(adjustedMatch);\n\n    // Move past this match\n    const nextStart = match.index + match[0].length;\n    offset += nextStart;\n    searchInput = searchInput.slice(nextStart);\n  }\n\n  return matches;\n}\n\nexport { convertPlaceholder, extractPlaceholder };\n","import * as yaml from 'js-yaml';\nimport { z } from 'zod';\n\nimport { makeDirectoryKey } from './directory-key';\nimport { convertPlaceholder, type VariableFinderFn } from './placeholder';\n\nexport const DependabotRegistrySchema = z\n  .object({\n    type: z.enum([\n      // order matches\n      // https://docs.github.com/en/enterprise-cloud@latest/code-security/dependabot/working-with-dependabot/configuring-access-to-private-registries-for-dependabot#supported-private-registries\n\n      'cargo-registry',\n      'composer-repository',\n      'docker-registry',\n      'git',\n      'goproxy-server',\n      'helm-registry',\n      'hex-organization',\n      'hex-repository',\n      'maven-repository',\n      'npm-registry',\n      'nuget-feed',\n      'pub-repository',\n      'python-index',\n      'rubygems-server',\n      'terraform-registry',\n    ]),\n    url: z.string().optional(),\n    username: z.string().optional(),\n    password: z.string().optional(),\n    key: z.string().optional(),\n    token: z.string().optional(),\n    'replaces-base': z.boolean().optional(),\n    host: z.string().optional(), // for terraform and composer only\n    registry: z.string().optional(), // for npm only\n    organization: z.string().optional(), // for hex-organisation only\n    repo: z.string().optional(), // for hex-repository only\n    'public-key-fingerprint': z.string().optional(), // for hex-repository only\n    'index-url': z.string().optional(), // for python-index only\n    'auth-key': z.string().optional(), // used by composer-repository, docker-registry, etc\n    'tenant-id': z.string().optional(), // can only be for azure related stuff, not sure\n    'client-id': z.string().optional(), // can only be for azure related stuff, not sure\n  })\n  // change underscore to dash in the registry key/type\n  .transform((value) => ({ ...value, type: value.type.replace('-', '_') }));\nexport type DependabotRegistry = z.infer<typeof DependabotRegistrySchema>;\n\nexport const DependabotGroupSchema = z.object({\n  // Define an identifier for the group to use in branch names and pull request titles.\n  // This must start and end with a letter, and can contain letters, pipes |, underscores _, or hyphens -.\n  IDENTIFIER: z\n    .string()\n    .check(\n      z.regex(/^[a-zA-Z][a-zA-Z0-9|_-]*[a-zA-Z]$/, {\n        message:\n          'Group identifier must start and end with a letter, and can contain letters, pipes |, underscores _, or hyphens -.',\n      }),\n    )\n    .optional(),\n  'applies-to': z.enum(['version-updates', 'security-updates']).optional(),\n  'dependency-type': z.enum(['development', 'production']).optional(),\n  patterns: z.string().array().optional(),\n  'exclude-patterns': z.string().array().optional(),\n  'update-types': z.enum(['major', 'minor', 'patch']).array().optional(),\n});\nexport type DependabotGroup = z.infer<typeof DependabotGroupSchema>;\n\nexport const DependabotAllowConditionSchema = z.object({\n  'dependency-name': z.string().optional(),\n  'dependency-type': z.enum(['direct', 'indirect', 'all', 'production', 'development']).optional(),\n  'update-type': z.enum(['all', 'security']).optional(),\n});\nexport type DependabotAllowCondition = z.infer<typeof DependabotAllowConditionSchema>;\n\nexport const DependabotIgnoreConditionSchema = z\n  .object({\n    'dependency-name': z.string().optional(),\n    versions: z.string().array().or(z.string()).optional(),\n    'update-types': z\n      .enum(['version-update:semver-major', 'version-update:semver-minor', 'version-update:semver-patch'])\n      .array()\n      .optional(),\n  })\n  .and(z.record(z.string(), z.any()));\nexport type DependabotIgnoreCondition = z.infer<typeof DependabotIgnoreConditionSchema>;\n\nexport const DependabotScheduleSchema = z\n  .object({\n    interval: z.enum(['daily', 'weekly', 'monthly', 'quarterly', 'semiannually', 'yearly', 'cron']),\n\n    day: z\n      .enum(['sunday', 'monday', 'tuesday', 'wednesday', 'thursday', 'friday', 'saturday'])\n      .optional()\n      .default('monday'),\n\n    time: z\n      .string()\n      .default('02:00')\n      .check(z.regex(/^(0[0-9]|1[0-9]|2[0-3]):[0-5][0-9]$/, { message: 'Time must be in HH:MM format' }))\n      .optional(),\n\n    timezone: z\n      .string()\n      .optional()\n      .default('Etc/UTC')\n      .refine(\n        (value) => {\n          try {\n            // If tz is not a valid IANA name, this throws a RangeError\n            Intl.DateTimeFormat(undefined, { timeZone: value });\n            return true;\n          } catch {\n            return false;\n          }\n        },\n        { message: 'Invalid IANA time zone' },\n      ),\n    cronjob: z\n      .string()\n      .check(z.regex(/^\\S+ \\S+ \\S+ \\S+ \\S+$/, { message: 'Cronjob must be in standard cron format' }))\n      .optional(),\n  })\n  .transform((value, { addIssue }) => {\n    // if interval is 'cron', cronjob must be specified\n    if (value.interval === 'cron' && !value.cronjob) {\n      addIssue(\"The 'cronjob' field must be specified when the interval is set to 'cron'.\");\n    }\n\n    return value;\n  });\nexport type DependabotSchedule = z.infer<typeof DependabotScheduleSchema>;\n\nexport const DependabotCommitMessageSchema = z.object({\n  prefix: z.string().optional(),\n  'prefix-development': z.string().optional(),\n  include: z.string().optional(),\n});\nexport type DependabotCommitMessage = z.infer<typeof DependabotCommitMessageSchema>;\n\nexport const DependabotCooldownSchema = z.object({\n  'default-days': z.number().optional(),\n  'semver-major-days': z.number().optional(),\n  'semver-minor-days': z.number().optional(),\n  'semver-patch-days': z.number().optional(),\n  include: z.string().array().optional(),\n  exclude: z.string().array().optional(),\n});\nexport type DependabotCooldown = z.infer<typeof DependabotCooldownSchema>;\n\nconst DependabotPullRequestBranchNameSchema = z.object({\n  separator: z.string().optional(),\n});\nexport type DependabotPullRequestBranchName = z.infer<typeof DependabotPullRequestBranchNameSchema>;\n\nexport const PackageEcosystemSchema = z.enum([\n  // order matches\n  // https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#package-ecosystem-\n\n  'bazel', // still in beta as of 2025-Nov-17\n  'bun',\n  'bundler',\n  'cargo',\n  'composer',\n  'conda',\n  'devcontainers',\n  'docker',\n  'docker-compose',\n  'dotnet-sdk',\n  'helm',\n  'mix',\n  'elm',\n  'gitsubmodule',\n  'github-actions',\n  'gomod',\n  'gradle',\n  'julia',\n  'maven',\n  'npm',\n  'nuget',\n  'opentofu', // in beta as of 2025-Nov-17\n  'pip',\n  'pip-compile', // alias mapped to 'pip'\n  'pipenv', // alias mapped to 'pip'\n  'pnpm', // alias mapped to 'npm'\n  'poetry', // alias mapped to 'pip'\n  'pub',\n  'rust-toolchain',\n  'swift',\n  'terraform',\n  'uv',\n  'vcpkg',\n  'yarn', // alias mapped to 'npm'\n]);\nexport type PackageEcosystem = z.infer<typeof PackageEcosystemSchema>;\n\nexport const VersioningStrategySchema = z.enum(['auto', 'increase', 'increase-if-necessary', 'lockfile-only', 'widen']);\nexport type VersioningStrategy = z.infer<typeof VersioningStrategySchema>;\n\nexport const DependabotUpdateSchema = z\n  .object({\n    'package-ecosystem': PackageEcosystemSchema,\n    directory: z.string().optional(),\n    directories: z.string().array().optional(),\n    'exclude-paths': z.string().array().optional(),\n    allow: DependabotAllowConditionSchema.array().optional(),\n    assignees: z.string().array().optional(),\n    'commit-message': DependabotCommitMessageSchema.optional(),\n    cooldown: DependabotCooldownSchema.optional(),\n    groups: z.record(z.string(), DependabotGroupSchema).optional(),\n    ignore: DependabotIgnoreConditionSchema.array().optional(),\n    'insecure-external-code-execution': z.enum(['allow', 'deny']).optional(),\n    labels: z.string().array().optional(),\n    milestone: z.coerce.string().optional(),\n    'open-pull-requests-limit': z.number().check(z.int(), z.gte(0)).optional(),\n    'pull-request-branch-name': DependabotPullRequestBranchNameSchema.optional(),\n    'rebase-strategy': z.string().optional(),\n    registries: z.string().array().optional(),\n    schedule: DependabotScheduleSchema.optional(), // TODO: make required after 2025-Nov-30\n    'target-branch': z.string().optional(),\n    vendor: z.boolean().optional(),\n    'versioning-strategy': VersioningStrategySchema.optional(),\n    patterns: z.string().array().optional(),\n    'multi-ecosystem-group': z.string().optional(),\n  })\n  .transform((value, { addIssue }) => {\n    // either 'directory' or 'directories' must be specified\n    if (!value.directory && (!value.directories || value.directories.length === 0)) {\n      addIssue(\"Either 'directory' or 'directories' must be specified in the dependency update configuration.\");\n    }\n\n    // validate that 'directory' does not contain glob patterns\n    if (value.directory && /[*?[\\]{}]/.test(value.directory)) {\n      addIssue(\"The 'directory' field must not include glob pattern.\");\n    }\n\n    value['open-pull-requests-limit'] ??= 5; // default to 5 if not specified\n\n    // The patterns key is required when using multi-ecosystem-group.\n    // You can specify dependency patterns to include only certain dependencies in the group,\n    // or use [\"*\"] to include all dependencies.\n    if (value['multi-ecosystem-group'] && (!value.patterns || value.patterns.length === 0)) {\n      addIssue(\n        \"The 'patterns' field must be specified and contain at least one pattern when using 'multi-ecosystem-group'.\",\n      );\n    }\n\n    return value;\n  });\nexport type DependabotUpdate = z.infer<typeof DependabotUpdateSchema>;\n\nexport const DependabotMultiEcosystemGroupSchema = z.object({\n  schedule: DependabotScheduleSchema,\n  labels: z.string().array().optional(), // behaviour: additive\n  milestone: z.coerce.string().optional(), // behaviour: group-only\n  assignees: z.string().array().optional(), // behaviour: additive\n  'target-branch': z.string().optional(), // behaviour: group-only\n  'commit-message': DependabotCommitMessageSchema.optional(), // behaviour: group-only\n  'pull-request-branch-name': DependabotPullRequestBranchNameSchema.optional(), // behaviour: group-only\n});\nexport type DependabotMultiEcosystemGroup = z.infer<typeof DependabotMultiEcosystemGroupSchema>;\n\n/**\n * Represents the dependabot.yaml configuration file options.\n * See: https://docs.github.com/en/github/administering-a-repository/configuration-options-for-dependency-updates#configuration-options-for-dependabotyml\n */\nexport const DependabotConfigSchema = z\n  .object({\n    /**\n     * Mandatory. configuration file version.\n     **/\n    version: z.number().refine((v) => v === 2, { message: 'Only version 2 of dependabot is supported' }),\n\n    /**\n     * Optional. Configure groups of ecosystems to update together in a single pull request.\n     */\n    'multi-ecosystem-groups': z.record(z.string(), DependabotMultiEcosystemGroupSchema).optional(),\n\n    /**\n     * Mandatory. Configure how Dependabot updates the versions or project dependencies.\n     * Each entry configures the update settings for a particular package manager.\n     */\n    updates: DependabotUpdateSchema.array().check(\n      z.minLength(1, { message: 'At least one update configuration is required' }),\n    ),\n\n    /**\n     * Optional.\n     * Specify authentication details to access private package registries.\n     */\n    registries: z.record(z.string(), DependabotRegistrySchema).optional(),\n\n    /**\n     * Optional. Enables updates for ecosystems that are not yet generally available.\n     * https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#enable-beta-ecosystems-\n     */\n    'enable-beta-ecosystems': z.boolean().optional(),\n  })\n  .transform((value, { addIssue }) => {\n    // If you attempt to set group-only keys at the ecosystem level (in updates entries),\n    // Dependabot will throw a configuration error and fail to process your dependabot.yml file.\n    // These keys must only be specified in the multi-ecosystem-groups section.\n    // https://docs.github.com/en/code-security/dependabot/working-with-dependabot/configuring-multi-ecosystem-updates#group-only-keys\n    const groupOnlyKeys = ['milestone', 'target-branch', 'commit-message', 'pull-request-branch-name'] as const;\n    if (value['multi-ecosystem-groups']) {\n      for (const update of value.updates) {\n        for (const key of groupOnlyKeys) {\n          if (key in update) {\n            addIssue(\n              `The '${key}' field must not be specified in the 'updates' section when using 'multi-ecosystem-groups'. It is a group-only field.`,\n            );\n          }\n        }\n      }\n    }\n\n    // ensure there is no update with the same package-ecosystem and directory/directories combination\n    const seen = new Set<string>();\n    for (const update of value.updates) {\n      const key = makeDirectoryKey(update);\n      if (seen.has(key)) {\n        addIssue(\n          `Duplicate update configuration found for '${update['package-ecosystem']}' and directory: '${update.directory ?? update.directories?.join(',')}'`,\n        );\n      }\n      seen.add(key);\n    }\n\n    // ensure that the ecosystems in beta are only used when 'enable-beta-ecosystems' is true\n    const betaEcosystems: PackageEcosystem[] = ['bazel', 'conda', 'opentofu'];\n    if (!value['enable-beta-ecosystems']) {\n      for (const update of value.updates) {\n        if (betaEcosystems.includes(update['package-ecosystem'])) {\n          addIssue(\n            `The package ecosystem '${update['package-ecosystem']}' is currently in beta. To use it, set 'enable-beta-ecosystems' to true in the dependabot configuration.`,\n          );\n        }\n      }\n    }\n\n    return value;\n  });\n\nexport type DependabotConfig = z.infer<typeof DependabotConfigSchema>;\n\nexport function parseUpdates(config: DependabotConfig, configPath: string): DependabotUpdate[] {\n  const updates: DependabotUpdate[] = [];\n\n  // Parse the value of each of the updates obtained from the file\n  for (const update of config.updates) {\n    // populate the 'ignore' conditions 'source' and 'updated-at' properties, if missing\n    // NOTE: 'source' and 'updated-at' are not documented in the dependabot.yml config docs, but are defined in the dependabot-core and dependabot-cli models.\n    //       Currently they don't appear to add much value to the update process, but are populated here for completeness.\n    if (update.ignore) {\n      for (const condition of update.ignore) {\n        condition.source ??= configPath;\n        // we don't know the last updated time, so we use the current time\n        condition['updated-at'] ??= new Date().toISOString();\n      }\n    }\n\n    updates.push(update);\n  }\n  return updates;\n}\n\nexport async function parseRegistries(\n  config: DependabotConfig,\n  variableFinder: VariableFinderFn,\n): Promise<Record<string, DependabotRegistry>> {\n  // Parse the value of each of the registries obtained from the config\n  const registries: Record<string, DependabotRegistry> = {};\n  for (const [key, registry] of Object.entries(config.registries || {})) {\n    const updated = { ...registry };\n    const { type } = updated;\n\n    // handle special fields for 'hex-organization' types\n    if (type === 'hex_organization' && !updated.organization) {\n      throw new Error(`The value 'organization' in dependency registry config '${type}' is missing`);\n    }\n\n    // handle special fields for 'hex-repository' types\n    if (type === 'hex_repository' && !updated.repo) {\n      throw new Error(`The value 'repo' in dependency registry config '${key}' is missing`);\n    }\n\n    // parse username, password, key, and token while replacing tokens where necessary\n    updated.username = await convertPlaceholder({ input: updated.username, variableFinder: variableFinder });\n    updated.password = await convertPlaceholder({ input: updated.password, variableFinder: variableFinder });\n    updated.key = await convertPlaceholder({ input: updated.key, variableFinder: variableFinder });\n    updated.token = await convertPlaceholder({ input: updated.token, variableFinder: variableFinder });\n\n    // TODO: include sources for this logic, otherwise it looks like magic.\n    // Initially, this was based on reading through the dependabot-core logic\n    // but much has since changed.\n\n    // parse the url\n    const url = updated.url;\n    if (!url && type !== 'hex_organization') {\n      throw new Error(`The value 'url' in dependency registry config '${key}' is missing`);\n    }\n    if (url) {\n      /*\n       * Some credentials do not use the 'url' property in the Ruby updater.\n       * The 'host' and 'registry' properties are derived from the given URL.\n       * The 'registry' property is derived from the 'url' by stripping off the scheme.\n       * The 'host' property is derived from the hostname of the 'url'.\n       *\n       * 'npm_registry' and 'docker_registry' use 'registry' only.\n       * 'terraform_registry' uses 'host' only.\n       * 'composer_repository' uses both 'url' and 'host'.\n       * 'python_index' uses 'index-url' instead of 'url'.\n       */\n\n      if (URL.canParse(url)) {\n        const parsedUrl = new URL(url);\n\n        const addRegistry = type === 'docker_registry' || type === 'npm_registry';\n        if (addRegistry) updated.registry = url.replace('https://', '').replace('http://', '');\n\n        const addHost = type === 'composer_repository' || type === 'terraform_registry';\n        if (addHost) updated.host = parsedUrl.hostname;\n      }\n\n      if (type === 'python_index') updated['index-url'] = url;\n\n      const removeUrl =\n        type === 'docker_registry' ||\n        type === 'npm_registry' ||\n        type === 'terraform_registry' ||\n        type === 'python_index';\n      if (removeUrl) delete updated.url; // remove the url if not needed\n    }\n\n    // add to list\n    registries[key] = updated;\n  }\n  return registries;\n}\n\nexport function validateConfiguration(updates: DependabotUpdate[], registries: Record<string, DependabotRegistry>) {\n  const configured = Object.keys(registries);\n  const referenced: string[] = [];\n  for (const u of updates) referenced.push(...(u.registries ?? []));\n\n  // ensure there are no configured registries that have not been referenced\n  const missingConfiguration = referenced.filter((el) => !configured.includes(el));\n  if (missingConfiguration.length > 0) {\n    throw new Error(\n      `Referenced registries: '${missingConfiguration.join(',')}' have not been configured in the root of dependabot.yml`,\n    );\n  }\n\n  // ensure there are no registries referenced but not configured\n  const missingReferences = configured.filter((el) => !referenced.includes(el));\n  if (missingReferences.length > 0) {\n    throw new Error(`Registries: '${missingReferences.join(',')}' have not been referenced by any update`);\n  }\n}\n\n/**\n * Possible paths to the dependabot config file.\n * Remember to prefix with a forward slash when querying API endpoints or where necessary.\n */\nexport const POSSIBLE_CONFIG_FILE_PATHS = [\n  '.azuredevops/dependabot.yml',\n  '.azuredevops/dependabot.yaml',\n  '.github/dependabot.yaml',\n  '.github/dependabot.yml',\n];\n\n/**\n * Parse the contents of a dependabot config YAML file\n * @returns {DependabotConfig} config - the dependabot configuration\n */\nexport async function parseDependabotConfig({\n  configContents,\n  configPath,\n  variableFinder,\n}: {\n  configContents: string;\n  configPath: string;\n  variableFinder: VariableFinderFn;\n}): Promise<DependabotConfig> {\n  // Load the config\n  const loadedConfig = yaml.load(configContents);\n  if (loadedConfig === null || typeof loadedConfig !== 'object') {\n    throw new Error('Invalid dependabot config object');\n  }\n\n  // Parse the config\n  const config = await DependabotConfigSchema.parseAsync(loadedConfig);\n  const updates = parseUpdates(config, configPath);\n  const registries = await parseRegistries(config, variableFinder);\n  validateConfiguration(updates, registries);\n\n  return { ...config, updates, registries };\n}\n","import { z } from 'zod';\nimport { DependabotCooldownSchema } from './config';\n\n// we use nullish() because it does optional() and allows the value to be set to null\n\nexport const DependabotCredentialSchema = z.record(z.string(), z.any());\nexport type DependabotCredential = z.infer<typeof DependabotCredentialSchema>;\n\nexport const CertificateAuthoritySchema = z.object({\n  cert: z.string(),\n  key: z.string(),\n});\nexport type CertificateAuthority = z.infer<typeof CertificateAuthoritySchema>;\n\nexport const DependabotProxyConfigSchema = z.object({\n  all_credentials: DependabotCredentialSchema.array(),\n  ca: CertificateAuthoritySchema,\n});\nexport type DependabotProxyConfig = z.infer<typeof DependabotProxyConfigSchema>;\n\nexport const DependabotSourceProviderSchema = z.enum(['azure', 'gitlab', 'bitbucket']);\nexport type DependabotSourceProvider = z.infer<typeof DependabotSourceProviderSchema>;\n\nexport const DependabotSourceSchema = z.object({\n  provider: DependabotSourceProviderSchema,\n  repo: z.string(),\n  directory: z.string().nullish(),\n  directories: z.string().array().nullish(),\n  branch: z.string().nullish(),\n  commit: z.string().nullish(),\n  hostname: z.string().nullish(), // Must be provided if api-endpoint is\n  'api-endpoint': z.string().nullish(), // Must be provided if hostname is\n});\nexport type DependabotSource = z.infer<typeof DependabotSourceSchema>;\n\nexport const DependabotExistingPRSchema = z.object({\n  'dependency-name': z.string(),\n  'dependency-version': z.string().nullish(),\n  directory: z.string().nullish(),\n  removed: z.boolean().nullish(),\n});\nexport type DependabotExistingPR = z.infer<typeof DependabotExistingPRSchema>;\n\nexport const DependabotExistingGroupPRSchema = z.object({\n  'dependency-group-name': z.string(),\n  dependencies: DependabotExistingPRSchema.array(),\n});\nexport type DependabotExistingGroupPR = z.infer<typeof DependabotExistingGroupPRSchema>;\n\nexport const DependabotAllowedSchema = z.object({\n  'dependency-name': z.string().nullish(),\n  'dependency-type': z.string().nullish(),\n  'update-type': z.enum(['all', 'security']).optional(),\n});\nexport type DependabotAllowed = z.infer<typeof DependabotAllowedSchema>;\n\nexport const DependabotGroupRuleJobSchema = z.object({\n  patterns: z.string().array().nullish(),\n  'exclude-patterns': z.string().array().nullish(),\n  'dependency-type': z.string().nullish(),\n  'update-types': z.string().array().nullish(),\n});\nexport type DependabotGroupRuleJob = z.infer<typeof DependabotGroupRuleJobSchema>;\n\nexport const DependabotGroupJobSchema = z.object({\n  name: z.string(),\n  'applies-to': z.string().nullish(),\n  rules: DependabotGroupRuleJobSchema,\n});\nexport type DependabotGroupJob = z.infer<typeof DependabotGroupJobSchema>;\n\nexport const DependabotConditionSchema = z.object({\n  'dependency-name': z.string(),\n  source: z.string().nullish(),\n  'update-types': z.string().array().nullish(),\n  'updated-at': z.coerce.string().nullish(),\n  'version-requirement': z.string().nullish(),\n});\nexport type DependabotCondition = z.infer<typeof DependabotConditionSchema>;\n\nexport const DependabotSecurityAdvisorySchema = z.object({\n  'dependency-name': z.string(),\n  'affected-versions': z.string().array(),\n  'patched-versions': z.string().array().nullish(), // may not be patched as of yet\n  'unaffected-versions': z.string().array(),\n});\nexport type DependabotSecurityAdvisory = z.infer<typeof DependabotSecurityAdvisorySchema>;\n\nexport const DependabotRequirementSourceSchema = z.record(z.string(), z.any());\nexport type DependabotRequirementSource = z.infer<typeof DependabotRequirementSourceSchema>;\n\nexport const DependabotRequirementSchema = z.object({\n  file: z.string().nullish(), // e.g. 'requirements.txt' or '/Root.csproj'\n  groups: z.string().array().nullish(), // e.g. ['dependencies']\n  metadata: z.record(z.string(), z.any()).nullish(),\n  requirement: z.string().nullish(), // e.g. '==3.2.0' or '8.1.0'\n  source: DependabotRequirementSourceSchema.nullish(),\n  version: z.string().nullish(),\n  'previous-version': z.string().nullish(),\n});\nexport type DependabotRequirement = z.infer<typeof DependabotRequirementSchema>;\n\nexport const DependabotDependencySchema = z.object({\n  name: z.string(), // e.g. 'django' or 'GraphQL.Server.Ui.Voyager'\n  'previous-requirements': DependabotRequirementSchema.array().nullish(),\n  'previous-version': z.string().nullish(),\n  version: z.string().nullish(), // e.g. '5.0.1' or '8.1.0'\n  requirements: DependabotRequirementSchema.array().nullish(),\n  removed: z.boolean().nullish(),\n  directory: z.string().nullish(),\n});\nexport type DependabotDependency = z.infer<typeof DependabotDependencySchema>;\n\nexport const DependabotCommitOptionsSchema = z.object({\n  prefix: z.string().nullish(),\n  'prefix-development': z.string().nullish(),\n  'include-scope': z.boolean().nullish(),\n});\nexport type DependabotCommitOptions = z.infer<typeof DependabotCommitOptionsSchema>;\n\nexport const DependabotExperimentsSchema = z.record(z.string(), z.union([z.string(), z.boolean()]));\nexport type DependabotExperiments = z.infer<typeof DependabotExperimentsSchema>;\n\nexport const DependabotPackageManagerSchema = z.enum([\n  'bundler',\n  'cargo',\n  'composer',\n  'conda',\n  'pub',\n  'docker',\n  'elm',\n  'github_actions', // ecosystem(s): 'github-actions'\n  'submodules', // ecosystem(s): 'gitsubmodule'\n  'go_modules', // ecosystem(s): 'gomod'\n  'gradle',\n  'maven',\n  'hex', // ecosystem(s): 'mix'\n  'nuget',\n  'npm_and_yarn', // ecosystem(s): 'npm', 'pnpm', 'yarn'\n  'pip', // ecosystem(s): 'pipenv', 'pip-compile', 'poetry'\n  'rust_toolchain', // ecosystem(s): 'rust-toolchain'\n  'swift',\n  'terraform',\n  'devcontainers',\n  'dotnet_sdk', // ecosystem(s): 'dotnet-sdk'\n  'bun',\n  'docker_compose', //  // ecosystem(s): 'docker-compose',\n  'uv',\n  'vcpkg',\n  'helm',\n  'julia',\n  'bazel',\n  'opentofu',\n]);\nexport type DependabotPackageManager = z.infer<typeof DependabotPackageManagerSchema>;\n\nexport const DependabotCommandSchema = z.enum(['graph', 'version', 'recreate']);\nexport type DependabotCommand = z.infer<typeof DependabotCommandSchema>;\n\n// See: https://github.com/dependabot/cli/blob/main/internal/model/job.go\n//      https://github.com/dependabot/dependabot-core/blob/main/updater/lib/dependabot/job.rb\nexport const DependabotJobConfigSchema = z.object({\n  id: z.string(),\n  command: DependabotCommandSchema.optional(),\n  'package-manager': DependabotPackageManagerSchema,\n  'allowed-updates': DependabotAllowedSchema.array(),\n  debug: z.boolean().nullable(),\n  'dependency-groups': DependabotGroupJobSchema.array().nullish(),\n  dependencies: z.string().array().nullable(),\n  'dependency-group-to-refresh': z.string().nullish(),\n  'existing-pull-requests': DependabotExistingPRSchema.array().array(),\n  'existing-group-pull-requests': DependabotExistingGroupPRSchema.array(),\n  experiments: DependabotExperimentsSchema,\n  'ignore-conditions': DependabotConditionSchema.array(),\n  'lockfile-only': z.boolean(),\n  'requirements-update-strategy': z.string().nullable(),\n  'security-advisories': DependabotSecurityAdvisorySchema.array(),\n  'security-updates-only': z.boolean(),\n  source: DependabotSourceSchema,\n  'update-subdependencies': z.boolean(),\n  'updating-a-pull-request': z.boolean(),\n  'vendor-dependencies': z.boolean(),\n  'reject-external-code': z.boolean().nullish(),\n  'repo-private': z.boolean(),\n  'commit-message-options': DependabotCommitOptionsSchema,\n  'credentials-metadata': DependabotCredentialSchema.array().nullish(),\n  'max-updater-run-time': z.int().nullish(),\n  cooldown: DependabotCooldownSchema.nullish(),\n  'proxy-log-response-body-on-auth-failure': z.boolean().nullish(),\n  'enable-beta-ecosystems': z.boolean().nullish(),\n  'multi-ecosystem-update': z.boolean().nullish(),\n  'exclude-paths': z.string().array().optional(),\n});\nexport type DependabotJobConfig = z.infer<typeof DependabotJobConfigSchema>;\n\nexport const DependabotJobFileSchema = z.object({\n  job: DependabotJobConfigSchema,\n});\nexport type DependabotJobFile = z.infer<typeof DependabotJobFileSchema>;\n\n// Code below is borrowed and adapted from dependabot-action\n\n// biome-ignore-start lint/suspicious/noExplicitAny: generic\nexport type FetchedFiles = {\n  base_commit_sha: string;\n  dependency_files: any[];\n  base64_dependency_files: any[];\n};\n// biome-ignore-end lint/suspicious/noExplicitAny: generic\n\nexport type FileFetcherInput = {\n  job: DependabotJobConfig;\n};\n\nexport type FileUpdaterInput = FetchedFiles & {\n  job: DependabotJobConfig;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAwDA,SAAgB,iBAAiB,SAA0C;AAOzE,QAAO,GALW,eAAe,UAAU,QAAQ,YAAY,QAAQ,qBAKnD,IAFE,QAAQ,aAAa,QAAQ,YAAa,KAAK,IAAI;;;;;AC3D3E,eAAe,mBAAmB,EAChC,OACA,kBAI8B;AAC9B,KAAI,CAAC,MAAO,QAAO;CAEnB,MAAMA,UAA6B,mBAAmB,MAAM;CAC5D,IAAI,SAAS;AACb,MAAK,MAAM,SAAS,SAAS;EAC3B,MAAM,cAAc,MAAM;EAC1B,MAAM,OAAO,MAAM;EACnB,MAAM,QAAS,MAAM,eAAe,KAAK,IAAK;AAC9C,WAAS,OAAO,QAAQ,aAAa,MAAM;;AAE7C,QAAO;;AAGT,SAAS,mBAAmB,OAAe;CACzC,MAAMA,UAA6B,EAAE;CACrC,MAAMC,SAAiB;CAEvB,IAAI,cAAc;CAClB,IAAI,SAAS;AAEb,QAAO,YAAY,SAAS,GAAG;EAC7B,MAAM,QAAQ,YAAY,MAAM,OAAO;AACvC,MAAI,CAAC,SAAS,MAAM,UAAU,OAAW;EAGzC,MAAM,gBAAgB,OAAO,OAAO,CAAC,GAAG,MAAM,EAAE;GAC9C,OAAO,MAAM,QAAQ;GACd;GACP,QAAQ,MAAM;GACf,CAAC;AAEF,UAAQ,KAAK,cAAc;EAG3B,MAAM,YAAY,MAAM,QAAQ,MAAM,GAAG;AACzC,YAAU;AACV,gBAAc,YAAY,MAAM,UAAU;;AAG5C,QAAO;;;;;AC1CT,MAAa,2BAA2B,EACrC,OAAO;CACN,MAAM,EAAE,KAAK;EAIX;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACD,CAAC;CACF,KAAK,EAAE,QAAQ,CAAC,UAAU;CAC1B,UAAU,EAAE,QAAQ,CAAC,UAAU;CAC/B,UAAU,EAAE,QAAQ,CAAC,UAAU;CAC/B,KAAK,EAAE,QAAQ,CAAC,UAAU;CAC1B,OAAO,EAAE,QAAQ,CAAC,UAAU;CAC5B,iBAAiB,EAAE,SAAS,CAAC,UAAU;CACvC,MAAM,EAAE,QAAQ,CAAC,UAAU;CAC3B,UAAU,EAAE,QAAQ,CAAC,UAAU;CAC/B,cAAc,EAAE,QAAQ,CAAC,UAAU;CACnC,MAAM,EAAE,QAAQ,CAAC,UAAU;CAC3B,0BAA0B,EAAE,QAAQ,CAAC,UAAU;CAC/C,aAAa,EAAE,QAAQ,CAAC,UAAU;CAClC,YAAY,EAAE,QAAQ,CAAC,UAAU;CACjC,aAAa,EAAE,QAAQ,CAAC,UAAU;CAClC,aAAa,EAAE,QAAQ,CAAC,UAAU;CACnC,CAAC,CAED,WAAW,WAAW;CAAE,GAAG;CAAO,MAAM,MAAM,KAAK,QAAQ,KAAK,IAAI;CAAE,EAAE;AAG3E,MAAa,wBAAwB,EAAE,OAAO;CAG5C,YAAY,EACT,QAAQ,CACR,MACC,EAAE,MAAM,qCAAqC,EAC3C,SACE,qHACH,CAAC,CACH,CACA,UAAU;CACb,cAAc,EAAE,KAAK,CAAC,mBAAmB,mBAAmB,CAAC,CAAC,UAAU;CACxE,mBAAmB,EAAE,KAAK,CAAC,eAAe,aAAa,CAAC,CAAC,UAAU;CACnE,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACvC,oBAAoB,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACjD,gBAAgB,EAAE,KAAK;EAAC;EAAS;EAAS;EAAQ,CAAC,CAAC,OAAO,CAAC,UAAU;CACvE,CAAC;AAGF,MAAa,iCAAiC,EAAE,OAAO;CACrD,mBAAmB,EAAE,QAAQ,CAAC,UAAU;CACxC,mBAAmB,EAAE,KAAK;EAAC;EAAU;EAAY;EAAO;EAAc;EAAc,CAAC,CAAC,UAAU;CAChG,eAAe,EAAE,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC,UAAU;CACtD,CAAC;AAGF,MAAa,kCAAkC,EAC5C,OAAO;CACN,mBAAmB,EAAE,QAAQ,CAAC,UAAU;CACxC,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC,UAAU;CACtD,gBAAgB,EACb,KAAK;EAAC;EAA+B;EAA+B;EAA8B,CAAC,CACnG,OAAO,CACP,UAAU;CACd,CAAC,CACD,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC;AAGrC,MAAa,2BAA2B,EACrC,OAAO;CACN,UAAU,EAAE,KAAK;EAAC;EAAS;EAAU;EAAW;EAAa;EAAgB;EAAU;EAAO,CAAC;CAE/F,KAAK,EACF,KAAK;EAAC;EAAU;EAAU;EAAW;EAAa;EAAY;EAAU;EAAW,CAAC,CACpF,UAAU,CACV,QAAQ,SAAS;CAEpB,MAAM,EACH,QAAQ,CACR,QAAQ,QAAQ,CAChB,MAAM,EAAE,MAAM,uCAAuC,EAAE,SAAS,gCAAgC,CAAC,CAAC,CAClG,UAAU;CAEb,UAAU,EACP,QAAQ,CACR,UAAU,CACV,QAAQ,UAAU,CAClB,QACE,UAAU;AACT,MAAI;AAEF,QAAK,eAAe,QAAW,EAAE,UAAU,OAAO,CAAC;AACnD,UAAO;UACD;AACN,UAAO;;IAGX,EAAE,SAAS,0BAA0B,CACtC;CACH,SAAS,EACN,QAAQ,CACR,MAAM,EAAE,MAAM,yBAAyB,EAAE,SAAS,2CAA2C,CAAC,CAAC,CAC/F,UAAU;CACd,CAAC,CACD,WAAW,OAAO,EAAE,eAAe;AAElC,KAAI,MAAM,aAAa,UAAU,CAAC,MAAM,QACtC,UAAS,4EAA4E;AAGvF,QAAO;EACP;AAGJ,MAAa,gCAAgC,EAAE,OAAO;CACpD,QAAQ,EAAE,QAAQ,CAAC,UAAU;CAC7B,sBAAsB,EAAE,QAAQ,CAAC,UAAU;CAC3C,SAAS,EAAE,QAAQ,CAAC,UAAU;CAC/B,CAAC;AAGF,MAAa,2BAA2B,EAAE,OAAO;CAC/C,gBAAgB,EAAE,QAAQ,CAAC,UAAU;CACrC,qBAAqB,EAAE,QAAQ,CAAC,UAAU;CAC1C,qBAAqB,EAAE,QAAQ,CAAC,UAAU;CAC1C,qBAAqB,EAAE,QAAQ,CAAC,UAAU;CAC1C,SAAS,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACtC,SAAS,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACvC,CAAC;AAGF,MAAM,wCAAwC,EAAE,OAAO,EACrD,WAAW,EAAE,QAAQ,CAAC,UAAU,EACjC,CAAC;AAGF,MAAa,yBAAyB,EAAE,KAAK;CAI3C;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAAC;AAGF,MAAa,2BAA2B,EAAE,KAAK;CAAC;CAAQ;CAAY;CAAyB;CAAiB;CAAQ,CAAC;AAGvH,MAAa,yBAAyB,EACnC,OAAO;CACN,qBAAqB;CACrB,WAAW,EAAE,QAAQ,CAAC,UAAU;CAChC,aAAa,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC1C,iBAAiB,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC9C,OAAO,+BAA+B,OAAO,CAAC,UAAU;CACxD,WAAW,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACxC,kBAAkB,8BAA8B,UAAU;CAC1D,UAAU,yBAAyB,UAAU;CAC7C,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,sBAAsB,CAAC,UAAU;CAC9D,QAAQ,gCAAgC,OAAO,CAAC,UAAU;CAC1D,oCAAoC,EAAE,KAAK,CAAC,SAAS,OAAO,CAAC,CAAC,UAAU;CACxE,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACrC,WAAW,EAAE,OAAO,QAAQ,CAAC,UAAU;CACvC,4BAA4B,EAAE,QAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU;CAC1E,4BAA4B,sCAAsC,UAAU;CAC5E,mBAAmB,EAAE,QAAQ,CAAC,UAAU;CACxC,YAAY,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACzC,UAAU,yBAAyB,UAAU;CAC7C,iBAAiB,EAAE,QAAQ,CAAC,UAAU;CACtC,QAAQ,EAAE,SAAS,CAAC,UAAU;CAC9B,uBAAuB,yBAAyB,UAAU;CAC1D,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACvC,yBAAyB,EAAE,QAAQ,CAAC,UAAU;CAC/C,CAAC,CACD,WAAW,OAAO,EAAE,eAAe;AAElC,KAAI,CAAC,MAAM,cAAc,CAAC,MAAM,eAAe,MAAM,YAAY,WAAW,GAC1E,UAAS,gGAAgG;AAI3G,KAAI,MAAM,aAAa,YAAY,KAAK,MAAM,UAAU,CACtD,UAAS,uDAAuD;AAGlE,OAAM,gCAAgC;AAKtC,KAAI,MAAM,6BAA6B,CAAC,MAAM,YAAY,MAAM,SAAS,WAAW,GAClF,UACE,8GACD;AAGH,QAAO;EACP;AAGJ,MAAa,sCAAsC,EAAE,OAAO;CAC1D,UAAU;CACV,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACrC,WAAW,EAAE,OAAO,QAAQ,CAAC,UAAU;CACvC,WAAW,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CACxC,iBAAiB,EAAE,QAAQ,CAAC,UAAU;CACtC,kBAAkB,8BAA8B,UAAU;CAC1D,4BAA4B,sCAAsC,UAAU;CAC7E,CAAC;;;;;AAOF,MAAa,yBAAyB,EACnC,OAAO;CAIN,SAAS,EAAE,QAAQ,CAAC,QAAQ,MAAM,MAAM,GAAG,EAAE,SAAS,6CAA6C,CAAC;CAKpG,0BAA0B,EAAE,OAAO,EAAE,QAAQ,EAAE,oCAAoC,CAAC,UAAU;CAM9F,SAAS,uBAAuB,OAAO,CAAC,MACtC,EAAE,UAAU,GAAG,EAAE,SAAS,iDAAiD,CAAC,CAC7E;CAMD,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,yBAAyB,CAAC,UAAU;CAMrE,0BAA0B,EAAE,SAAS,CAAC,UAAU;CACjD,CAAC,CACD,WAAW,OAAO,EAAE,eAAe;CAKlC,MAAM,gBAAgB;EAAC;EAAa;EAAiB;EAAkB;EAA2B;AAClG,KAAI,MAAM,2BACR;OAAK,MAAM,UAAU,MAAM,QACzB,MAAK,MAAM,OAAO,cAChB,KAAI,OAAO,OACT,UACE,QAAQ,IAAI,uHACb;;CAOT,MAAM,uBAAO,IAAI,KAAa;AAC9B,MAAK,MAAM,UAAU,MAAM,SAAS;EAClC,MAAM,MAAM,iBAAiB,OAAO;AACpC,MAAI,KAAK,IAAI,IAAI,CACf,UACE,6CAA6C,OAAO,qBAAqB,oBAAoB,OAAO,aAAa,OAAO,aAAa,KAAK,IAAI,CAAC,GAChJ;AAEH,OAAK,IAAI,IAAI;;CAIf,MAAMC,iBAAqC;EAAC;EAAS;EAAS;EAAW;AACzE,KAAI,CAAC,MAAM,2BACT;OAAK,MAAM,UAAU,MAAM,QACzB,KAAI,eAAe,SAAS,OAAO,qBAAqB,CACtD,UACE,0BAA0B,OAAO,qBAAqB,0GACvD;;AAKP,QAAO;EACP;AAIJ,SAAgB,aAAa,QAA0B,YAAwC;CAC7F,MAAMC,UAA8B,EAAE;AAGtC,MAAK,MAAM,UAAU,OAAO,SAAS;AAInC,MAAI,OAAO,OACT,MAAK,MAAM,aAAa,OAAO,QAAQ;AACrC,aAAU,WAAW;AAErB,aAAU,mCAAkB,IAAI,MAAM,EAAC,aAAa;;AAIxD,UAAQ,KAAK,OAAO;;AAEtB,QAAO;;AAGT,eAAsB,gBACpB,QACA,gBAC6C;CAE7C,MAAMC,aAAiD,EAAE;AACzD,MAAK,MAAM,CAAC,KAAK,aAAa,OAAO,QAAQ,OAAO,cAAc,EAAE,CAAC,EAAE;EACrE,MAAM,UAAU,EAAE,GAAG,UAAU;EAC/B,MAAM,EAAE,SAAS;AAGjB,MAAI,SAAS,sBAAsB,CAAC,QAAQ,aAC1C,OAAM,IAAI,MAAM,2DAA2D,KAAK,cAAc;AAIhG,MAAI,SAAS,oBAAoB,CAAC,QAAQ,KACxC,OAAM,IAAI,MAAM,mDAAmD,IAAI,cAAc;AAIvF,UAAQ,WAAW,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAA0B;GAAgB,CAAC;AACxG,UAAQ,WAAW,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAA0B;GAAgB,CAAC;AACxG,UAAQ,MAAM,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAAqB;GAAgB,CAAC;AAC9F,UAAQ,QAAQ,MAAM,mBAAmB;GAAE,OAAO,QAAQ;GAAuB;GAAgB,CAAC;EAOlG,MAAM,MAAM,QAAQ;AACpB,MAAI,CAAC,OAAO,SAAS,mBACnB,OAAM,IAAI,MAAM,kDAAkD,IAAI,cAAc;AAEtF,MAAI,KAAK;AAaP,OAAI,IAAI,SAAS,IAAI,EAAE;IACrB,MAAM,YAAY,IAAI,IAAI,IAAI;AAG9B,QADoB,SAAS,qBAAqB,SAAS,eAC1C,SAAQ,WAAW,IAAI,QAAQ,YAAY,GAAG,CAAC,QAAQ,WAAW,GAAG;AAGtF,QADgB,SAAS,yBAAyB,SAAS,qBAC9C,SAAQ,OAAO,UAAU;;AAGxC,OAAI,SAAS,eAAgB,SAAQ,eAAe;AAOpD,OAJE,SAAS,qBACT,SAAS,kBACT,SAAS,wBACT,SAAS,eACI,QAAO,QAAQ;;AAIhC,aAAW,OAAO;;AAEpB,QAAO;;AAGT,SAAgB,sBAAsB,SAA6B,YAAgD;CACjH,MAAM,aAAa,OAAO,KAAK,WAAW;CAC1C,MAAMC,aAAuB,EAAE;AAC/B,MAAK,MAAM,KAAK,QAAS,YAAW,KAAK,GAAI,EAAE,cAAc,EAAE,CAAE;CAGjE,MAAM,uBAAuB,WAAW,QAAQ,OAAO,CAAC,WAAW,SAAS,GAAG,CAAC;AAChF,KAAI,qBAAqB,SAAS,EAChC,OAAM,IAAI,MACR,2BAA2B,qBAAqB,KAAK,IAAI,CAAC,0DAC3D;CAIH,MAAM,oBAAoB,WAAW,QAAQ,OAAO,CAAC,WAAW,SAAS,GAAG,CAAC;AAC7E,KAAI,kBAAkB,SAAS,EAC7B,OAAM,IAAI,MAAM,gBAAgB,kBAAkB,KAAK,IAAI,CAAC,0CAA0C;;;;;;AAQ1G,MAAa,6BAA6B;CACxC;CACA;CACA;CACA;CACD;;;;;AAMD,eAAsB,sBAAsB,EAC1C,gBACA,YACA,kBAK4B;CAE5B,MAAM,eAAe,KAAK,KAAK,eAAe;AAC9C,KAAI,iBAAiB,QAAQ,OAAO,iBAAiB,SACnD,OAAM,IAAI,MAAM,mCAAmC;CAIrD,MAAM,SAAS,MAAM,uBAAuB,WAAW,aAAa;CACpE,MAAM,UAAU,aAAa,QAAQ,WAAW;CAChD,MAAM,aAAa,MAAM,gBAAgB,QAAQ,eAAe;AAChE,uBAAsB,SAAS,WAAW;AAE1C,QAAO;EAAE,GAAG;EAAQ;EAAS;EAAY;;;;;AC3e3C,MAAa,6BAA6B,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC;AAGvE,MAAa,6BAA6B,EAAE,OAAO;CACjD,MAAM,EAAE,QAAQ;CAChB,KAAK,EAAE,QAAQ;CAChB,CAAC;AAGF,MAAa,8BAA8B,EAAE,OAAO;CAClD,iBAAiB,2BAA2B,OAAO;CACnD,IAAI;CACL,CAAC;AAGF,MAAa,iCAAiC,EAAE,KAAK;CAAC;CAAS;CAAU;CAAY,CAAC;AAGtF,MAAa,yBAAyB,EAAE,OAAO;CAC7C,UAAU;CACV,MAAM,EAAE,QAAQ;CAChB,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,aAAa,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACzC,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,UAAU,EAAE,QAAQ,CAAC,SAAS;CAC9B,gBAAgB,EAAE,QAAQ,CAAC,SAAS;CACrC,CAAC;AAGF,MAAa,6BAA6B,EAAE,OAAO;CACjD,mBAAmB,EAAE,QAAQ;CAC7B,sBAAsB,EAAE,QAAQ,CAAC,SAAS;CAC1C,WAAW,EAAE,QAAQ,CAAC,SAAS;CAC/B,SAAS,EAAE,SAAS,CAAC,SAAS;CAC/B,CAAC;AAGF,MAAa,kCAAkC,EAAE,OAAO;CACtD,yBAAyB,EAAE,QAAQ;CACnC,cAAc,2BAA2B,OAAO;CACjD,CAAC;AAGF,MAAa,0BAA0B,EAAE,OAAO;CAC9C,mBAAmB,EAAE,QAAQ,CAAC,SAAS;CACvC,mBAAmB,EAAE,QAAQ,CAAC,SAAS;CACvC,eAAe,EAAE,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC,UAAU;CACtD,CAAC;AAGF,MAAa,+BAA+B,EAAE,OAAO;CACnD,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACtC,oBAAoB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAChD,mBAAmB,EAAE,QAAQ,CAAC,SAAS;CACvC,gBAAgB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAC7C,CAAC;AAGF,MAAa,2BAA2B,EAAE,OAAO;CAC/C,MAAM,EAAE,QAAQ;CAChB,cAAc,EAAE,QAAQ,CAAC,SAAS;CAClC,OAAO;CACR,CAAC;AAGF,MAAa,4BAA4B,EAAE,OAAO;CAChD,mBAAmB,EAAE,QAAQ;CAC7B,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,gBAAgB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAC5C,cAAc,EAAE,OAAO,QAAQ,CAAC,SAAS;CACzC,uBAAuB,EAAE,QAAQ,CAAC,SAAS;CAC5C,CAAC;AAGF,MAAa,mCAAmC,EAAE,OAAO;CACvD,mBAAmB,EAAE,QAAQ;CAC7B,qBAAqB,EAAE,QAAQ,CAAC,OAAO;CACvC,oBAAoB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CAChD,uBAAuB,EAAE,QAAQ,CAAC,OAAO;CAC1C,CAAC;AAGF,MAAa,oCAAoC,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC;AAG9E,MAAa,8BAA8B,EAAE,OAAO;CAClD,MAAM,EAAE,QAAQ,CAAC,SAAS;CAC1B,QAAQ,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;CACpC,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,KAAK,CAAC,CAAC,SAAS;CACjD,aAAa,EAAE,QAAQ,CAAC,SAAS;CACjC,QAAQ,kCAAkC,SAAS;CACnD,SAAS,EAAE,QAAQ,CAAC,SAAS;CAC7B,oBAAoB,EAAE,QAAQ,CAAC,SAAS;CACzC,CAAC;AAGF,MAAa,6BAA6B,EAAE,OAAO;CACjD,MAAM,EAAE,QAAQ;CAChB,yBAAyB,4BAA4B,OAAO,CAAC,SAAS;CACtE,oBAAoB,EAAE,QAAQ,CAAC,SAAS;CACxC,SAAS,EAAE,QAAQ,CAAC,SAAS;CAC7B,cAAc,4BAA4B,OAAO,CAAC,SAAS;CAC3D,SAAS,EAAE,SAAS,CAAC,SAAS;CAC9B,WAAW,EAAE,QAAQ,CAAC,SAAS;CAChC,CAAC;AAGF,MAAa,gCAAgC,EAAE,OAAO;CACpD,QAAQ,EAAE,QAAQ,CAAC,SAAS;CAC5B,sBAAsB,EAAE,QAAQ,CAAC,SAAS;CAC1C,iBAAiB,EAAE,SAAS,CAAC,SAAS;CACvC,CAAC;AAGF,MAAa,8BAA8B,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,MAAM,CAAC,EAAE,QAAQ,EAAE,EAAE,SAAS,CAAC,CAAC,CAAC;AAGnG,MAAa,iCAAiC,EAAE,KAAK;CACnD;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAAC;AAGF,MAAa,0BAA0B,EAAE,KAAK;CAAC;CAAS;CAAW;CAAW,CAAC;AAK/E,MAAa,4BAA4B,EAAE,OAAO;CAChD,IAAI,EAAE,QAAQ;CACd,SAAS,wBAAwB,UAAU;CAC3C,mBAAmB;CACnB,mBAAmB,wBAAwB,OAAO;CAClD,OAAO,EAAE,SAAS,CAAC,UAAU;CAC7B,qBAAqB,yBAAyB,OAAO,CAAC,SAAS;CAC/D,cAAc,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC3C,+BAA+B,EAAE,QAAQ,CAAC,SAAS;CACnD,0BAA0B,2BAA2B,OAAO,CAAC,OAAO;CACpE,gCAAgC,gCAAgC,OAAO;CACvE,aAAa;CACb,qBAAqB,0BAA0B,OAAO;CACtD,iBAAiB,EAAE,SAAS;CAC5B,gCAAgC,EAAE,QAAQ,CAAC,UAAU;CACrD,uBAAuB,iCAAiC,OAAO;CAC/D,yBAAyB,EAAE,SAAS;CACpC,QAAQ;CACR,0BAA0B,EAAE,SAAS;CACrC,2BAA2B,EAAE,SAAS;CACtC,uBAAuB,EAAE,SAAS;CAClC,wBAAwB,EAAE,SAAS,CAAC,SAAS;CAC7C,gBAAgB,EAAE,SAAS;CAC3B,0BAA0B;CAC1B,wBAAwB,2BAA2B,OAAO,CAAC,SAAS;CACpE,wBAAwB,EAAE,KAAK,CAAC,SAAS;CACzC,UAAU,yBAAyB,SAAS;CAC5C,2CAA2C,EAAE,SAAS,CAAC,SAAS;CAChE,0BAA0B,EAAE,SAAS,CAAC,SAAS;CAC/C,0BAA0B,EAAE,SAAS,CAAC,SAAS;CAC/C,iBAAiB,EAAE,QAAQ,CAAC,OAAO,CAAC,UAAU;CAC/C,CAAC;AAGF,MAAa,0BAA0B,EAAE,OAAO,EAC9C,KAAK,2BACN,CAAC"}