Skip to content

Bump dependabot-omnibus from 0.115.0 to 0.123.1

NipaNipa requested to merge dependabot/bundler/dependabot-omnibus-0.123.1 into master

Bumps dependabot-omnibus from 0.115.0 to 0.123.1.

Changelog

Sourced from dependabot-omnibus's changelog.

v0.123.1, 19 October 2020

  • Go mod: Handle cannot find module during go mod tidy
  • Python: Add 3.9.0 and upgrade pyenv to v1.2.21 (@​ulgens)
  • Bundler: Ignore changed .gemspec from vendor/cache folder

v0.123.0, 13 October 2020

  • Bundler: Refactored Dependabot's use of Bundler commands to shell out instead of running in a forked process.
    • This aligns Bundler with other package managers and will enable us to support other Bundler versions in future.

v0.122.1, 13 October 2020

  • Bump phpstan/phpstan from 0.12.48 to 0.12.49 in /composer/helpers
  • Gracefully handle gomod package import that has changed
  • Treat .bundlecache files as binary
  • Check if files are binary using the file util
  • Bump jest from 26.5.2 to 26.5.3 in /npm_and_yarn/helpers
  • Bump eslint from 7.10.0 to 7.11.0 in /npm_and_yarn/helpers
  • Update tests and fixtures for new Cargo.lock format
  • Explicitly install version of rust toolchain
  • Rust toolchain has been upgraded to 1.47.0. This means PRs will now try to upgrade the lockfile to cargo's v2 format.
  • Update rubocop requirement from ~> 0.92.0 to ~> 0.93.0 in /common
  • Add a fingerprint to generated gitconfigs
  • If there isn't a backup gitconfig, remove the generated one
  • dry-run: updater-opts via option

v0.122.0, 7 October 2020

  • Add experimental support for go mod vendor
  • Enable code coverage reporting of dependabot-core

v0.121.1, 7 October 2020

  • Configure git when creating a temp repo for gomod updates
  • Bump jest from 26.5.0 to 26.5.2 in /npm_and_yarn/helpers
  • Bump poetry from 1.1.1 to 1.1.2 in /python/helpers
  • Refactor: reusable VendorDependencies object

v0.121.0, 6 October 2020

  • Add experimental support for go mod tidy

v0.120.5, 6 October 2020

  • Allow requirements.txt files of up to 200kb
  • Bump poetry from 1.0.10 to 1.1.1 in /python/helpers
... (truncated)
Commits
  • ae578fe v0.123.1
  • f781a04 Merge pull request #2626 from dependabot/feelepxyz/handle-changed-gemspecs
  • 41ff34e Ignore changed .gemspec from vendor/cache folder
  • 2503c85 Merge pull request #2622 from ulgens/python39
  • 045a8ee Add Python 3.9
  • 3d4d7d5 Merge pull request #2645 from dependabot/jurre/pyenv-1.2.21
  • b7b21d2 Upgrade pyenv to v1.2.21
  • e6ed8b1 Merge pull request #2642 from dependabot/feelepxyz/dry-run-advisories
  • 0a02c63 bin/dry-run: Parse SECURITY_ADVISORIES ENV
  • 96ae00d Merge pull request #2637 from jurre/jurre/mv-vendor-updater-spec
  • Additional commits viewable in compare view

Merge request reports