Class: Dependabot::Dependency

Inherits:

Object

• Object
• Dependabot::Dependency

Defined in:

lib/dependabot/dependency.rb

Instance Attribute Summary

• #metadata ⇒ Object readonly

  Returns the value of attribute metadata.

• #name ⇒ Object readonly

  Returns the value of attribute name.

• #package_manager ⇒ Object readonly

  Returns the value of attribute package_manager.

• #previous_requirements ⇒ Object readonly

  Returns the value of attribute previous_requirements.

• #previous_version ⇒ Object readonly

  Returns the value of attribute previous_version.

• #requirements ⇒ Object readonly

  Returns the value of attribute requirements.

• #subdependency_metadata ⇒ Object readonly

  Returns the value of attribute subdependency_metadata.

• #version ⇒ Object readonly

  Returns the value of attribute version.

Class Method Summary

• .display_name_builder_for_package_manager(package_manager) ⇒ Object
• .name_normaliser_for_package_manager(package_manager) ⇒ Object
• .production_check_for_package_manager(package_manager) ⇒ Object
• .register_display_name_builder(package_manager, name_builder) ⇒ Object
• .register_name_normaliser(package_manager, name_builder) ⇒ Object
• .register_production_check(package_manager, production_check) ⇒ Object

Instance Method Summary

• #==(other) ⇒ Object
• #all_versions ⇒ Object

  Returns all detected versions of the dependency.

• #appears_in_lockfile? ⇒ Boolean
• #display_name ⇒ Object
• #eql?(other) ⇒ Boolean
• #hash ⇒ Object
• #informational_only? ⇒ Boolean

  This dependency is being indirectly updated by an update to another dependency.

• #initialize(name:, requirements:, package_manager:, version: nil, previous_version: nil, previous_requirements: nil, subdependency_metadata: [], removed: false, metadata: {}) ⇒ Dependency constructor

  A new instance of Dependency.

• #numeric_version ⇒ Object
• #production? ⇒ Boolean
• #removed? ⇒ Boolean
• #subdependency_production_check ⇒ Object
• #to_h ⇒ Object
• #top_level? ⇒ Boolean

Constructor Details

#initialize(name:, requirements:, package_manager:, version: nil, previous_version: nil, previous_requirements: nil, subdependency_metadata: [], removed: false, metadata: {}) ⇒ Dependency

Returns a new instance of Dependency.

# File 'lib/dependabot/dependency.rb', line 42

def initialize(name:, requirements:, package_manager:, version: nil,
               previous_version: nil, previous_requirements: nil,
               subdependency_metadata: [], removed: false, metadata: {})
  @name = name
  @version = version
  @requirements = requirements.map { |req| symbolize_keys(req) }
  @previous_version = previous_version
  @previous_requirements =
    previous_requirements&.map { |req| symbolize_keys(req) }
  @package_manager = package_manager
  unless top_level? || subdependency_metadata == []
    @subdependency_metadata = subdependency_metadata&.
                              map { |h| symbolize_keys(h) }
  end
  @removed = removed
  @metadata = symbolize_keys(metadata || {})

  check_values
end

Instance Attribute Details

#metadata ⇒ Object (readonly)

Returns the value of attribute metadata.

# File 'lib/dependabot/dependency.rb', line 38

def metadata
  @metadata
end

#name ⇒ Object (readonly)

Returns the value of attribute name.

# File 'lib/dependabot/dependency.rb', line 38

def name
  @name
end

#package_manager ⇒ Object (readonly)

Returns the value of attribute package_manager.

# File 'lib/dependabot/dependency.rb', line 38

def package_manager
  @package_manager
end

#previous_requirements ⇒ Object (readonly)

Returns the value of attribute previous_requirements.

# File 'lib/dependabot/dependency.rb', line 38

def previous_requirements
  @previous_requirements
end

#previous_version ⇒ Object (readonly)

Returns the value of attribute previous_version.

# File 'lib/dependabot/dependency.rb', line 38

def previous_version
  @previous_version
end

#requirements ⇒ Object (readonly)

Returns the value of attribute requirements.

# File 'lib/dependabot/dependency.rb', line 38

def requirements
  @requirements
end

#subdependency_metadata ⇒ Object (readonly)

Returns the value of attribute subdependency_metadata.

# File 'lib/dependabot/dependency.rb', line 38

def subdependency_metadata
  @subdependency_metadata
end

#version ⇒ Object (readonly)

Returns the value of attribute version.

# File 'lib/dependabot/dependency.rb', line 38

def version
  @version
end

Class Method Details

.display_name_builder_for_package_manager(package_manager) ⇒ Object

# File 'lib/dependabot/dependency.rb', line 22

def self.display_name_builder_for_package_manager(package_manager)
  @display_name_builders[package_manager]
end

.name_normaliser_for_package_manager(package_manager) ⇒ Object

# File 'lib/dependabot/dependency.rb', line 30

def self.name_normaliser_for_package_manager(package_manager)
  @name_normalisers[package_manager] || ->(name) { name }
end

.production_check_for_package_manager(package_manager) ⇒ Object

# File 'lib/dependabot/dependency.rb', line 11

def self.production_check_for_package_manager(package_manager)
  production_check = @production_checks[package_manager]
  return production_check if production_check

  raise "Unsupported package_manager #{package_manager}"
end

.register_display_name_builder(package_manager, name_builder) ⇒ Object

# File 'lib/dependabot/dependency.rb', line 26

def self.register_display_name_builder(package_manager, name_builder)
  @display_name_builders[package_manager] = name_builder
end

.register_name_normaliser(package_manager, name_builder) ⇒ Object

# File 'lib/dependabot/dependency.rb', line 34

def self.register_name_normaliser(package_manager, name_builder)
  @name_normalisers[package_manager] = name_builder
end

.register_production_check(package_manager, production_check) ⇒ Object

# File 'lib/dependabot/dependency.rb', line 18

def self.register_production_check(package_manager, production_check)
  @production_checks[package_manager] = production_check
end

Instance Method Details

#==(other) ⇒ Object

# File 'lib/dependabot/dependency.rb', line 129

def ==(other)
  other.instance_of?(self.class) && to_h == other.to_h
end

#all_versions ⇒ Object

Returns all detected versions of the dependency. Only ecosystems that support this feature will return more than the current version.

# File 'lib/dependabot/dependency.rb', line 115

def all_versions
  all_versions = metadata[:all_versions]
  return [version].compact unless all_versions

  all_versions.filter_map(&:version)
end

#appears_in_lockfile? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dependabot/dependency.rb', line 87

def appears_in_lockfile?
  previous_version || (version && previous_requirements.nil?)
end

#display_name ⇒ Object

# File 'lib/dependabot/dependency.rb', line 105

def display_name
  display_name_builder =
    self.class.display_name_builder_for_package_manager(package_manager)
  return name unless display_name_builder

  display_name_builder.call(name)
end

#eql?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dependabot/dependency.rb', line 137

def eql?(other)
  self.==(other)
end

#hash ⇒ Object

# File 'lib/dependabot/dependency.rb', line 133

def hash
  to_h.hash
end

#informational_only? ⇒ Boolean

This dependency is being indirectly updated by an update to another dependency. We don’t need to try and update it ourselves but want to surface it to the user in the PR.

Returns:

• (Boolean)

# File 'lib/dependabot/dependency.rb', line 125

def informational_only?
  metadata[:information_only]
end

#numeric_version ⇒ Object

# File 'lib/dependabot/dependency.rb', line 70

def numeric_version
  @numeric_version ||= version_class.new(version) if version && version_class.correct?(version)
end

#production? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dependabot/dependency.rb', line 91

def production?
  return subdependency_production_check unless top_level?

  groups = requirements.flat_map { |r| r.fetch(:groups).map(&:to_s) }

  self.class.
    production_check_for_package_manager(package_manager).
    call(groups)
end

#removed? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dependabot/dependency.rb', line 66

def removed?
  @removed
end

#subdependency_production_check ⇒ Object

# File 'lib/dependabot/dependency.rb', line 101

def subdependency_production_check
  !subdependency_metadata&.all? { |h| h[:production] == false }
end

#to_h ⇒ Object

# File 'lib/dependabot/dependency.rb', line 74

def to_h
  {
    "name" => name,
    "version" => version,
    "requirements" => requirements,
    "previous_version" => previous_version,
    "previous_requirements" => previous_requirements,
    "package_manager" => package_manager,
    "subdependency_metadata" => subdependency_metadata,
    "removed" => removed? ? true : nil
  }.compact
end

#top_level? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dependabot/dependency.rb', line 62

def top_level?
  requirements.any?
end