Class: Dependabot::Gradle::UpdateChecker

Inherits:

UpdateCheckers::Base

• Object
• UpdateCheckers::Base
• Dependabot::Gradle::UpdateChecker

Defined in:

lib/dependabot/gradle/update_checker.rb,
lib/dependabot/gradle/update_checker/version_finder.rb,
lib/dependabot/gradle/update_checker/requirements_updater.rb,
lib/dependabot/gradle/update_checker/multi_dependency_updater.rb

Defined Under Namespace

Classes: MultiDependencyUpdater, RequirementsUpdater, VersionFinder

Instance Method Summary

• #latest_resolvable_version ⇒ Object
• #latest_resolvable_version_with_no_unlock ⇒ Object
• #latest_version ⇒ Object
• #lowest_resolvable_security_fix_version ⇒ Object
• #lowest_security_fix_version ⇒ Object
• #requirements_unlocked_or_can_be? ⇒ Boolean
• #updated_requirements ⇒ Object

Instance Method Details

#latest_resolvable_version ⇒ Object

# File 'lib/dependabot/gradle/update_checker.rb', line 20

def latest_resolvable_version
  # TODO: Resolve the build.gradle to find the latest version we could
  # update to without updating any other dependencies at the same time.
  #
  # The above is hard. Currently we just return the latest version and
  # hope (hence this package manager is in beta!)
  return if git_dependency?
  return nil if version_comes_from_multi_dependency_property?
  return nil if version_comes_from_dependency_set?

  latest_version
end

#latest_resolvable_version_with_no_unlock ⇒ Object

# File 'lib/dependabot/gradle/update_checker.rb', line 45

def latest_resolvable_version_with_no_unlock
  # Irrelevant, since Gradle has a single dependency file.
  #
  # For completeness we ought to resolve the build.gradle and return the
  # latest version that satisfies the current constraint AND any
  # constraints placed on it by other dependencies. Seeing as we're
  # never going to take any action as a result, though, we just return
  # nil.
  nil
end

#latest_version ⇒ Object

# File 'lib/dependabot/gradle/update_checker.rb', line 14

def latest_version
  return if git_dependency?

  latest_version_details&.fetch(:version)
end

#lowest_resolvable_security_fix_version ⇒ Object

# File 'lib/dependabot/gradle/update_checker.rb', line 37

def lowest_resolvable_security_fix_version
  return if git_dependency?
  return nil if version_comes_from_multi_dependency_property?
  return nil if version_comes_from_dependency_set?

  lowest_security_fix_version
end

#lowest_security_fix_version ⇒ Object

# File 'lib/dependabot/gradle/update_checker.rb', line 33

def lowest_security_fix_version
  lowest_security_fix_version_details&.fetch(:version)
end

#requirements_unlocked_or_can_be? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dependabot/gradle/update_checker.rb', line 69

def requirements_unlocked_or_can_be?
  # If the dependency version come from a property we couldn't
  # interpolate then there's nothing we can do.
  !dependency.version.include?("$")
end

#updated_requirements ⇒ Object

# File 'lib/dependabot/gradle/update_checker.rb', line 56

def updated_requirements
  property_names =
    declarations_using_a_property.
    map { |req| req.dig(:metadata, :property_name) }

  RequirementsUpdater.new(
    requirements: dependency.requirements,
    latest_version: preferred_resolvable_version&.to_s,
    source_url: preferred_version_details&.fetch(:source_url),
    properties_to_update: property_names
  ).updated_requirements
end