diff --git a/.github/dependabot.yml b/.github/dependabot.yml index b588ccc89d..5a6815cd88 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -9,7 +9,7 @@ updates: groups: aws-sdk: patterns: - - "aws-sdk-*" + - "aws-sdk-*" # Watch the per-ecosystem native helpers - package-ecosystem: "composer" diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index adef3fa17c..6c5a2d9f59 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,5 +1,5 @@ name: Specs -on: +on: # yamllint disable-line rule:truthy push: branches: - "main" @@ -242,3 +242,5 @@ jobs: with: bundler-cache: true - run: ./bin/lint + # yamllint is installed in GitHub Actions base runner image: https://github.com/adrienverge/yamllint/pull/588 + - run: yamllint . diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 81d4a202f5..3cec64749d 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -11,7 +11,7 @@ # name: "CodeQL" -on: +on: # yamllint disable-line rule:truthy push: branches: [ main ] pull_request: @@ -45,41 +45,41 @@ jobs: # Learn more about CodeQL language support at https://git.io/codeql-language-support steps: - - name: Checkout repository - uses: actions/checkout@v3 + - name: Checkout repository + uses: actions/checkout@v3 - # Initializes the CodeQL tools for scanning. - - name: Initialize CodeQL (ruby) - uses: github/codeql-action/init@v2 - with: - languages: ${{ matrix.language }} - config: | - paths-ignore: - - 'bundler/spec/fixtures/projects/bundler1/invalid_ruby/Gemfile' - - 'bundler/spec/fixtures/projects/bundler2/invalid_ruby/Gemfile' - if: matrix.language == 'ruby' + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL (ruby) + uses: github/codeql-action/init@v2 + with: + languages: ${{ matrix.language }} + config: | + paths-ignore: + - 'bundler/spec/fixtures/projects/bundler1/invalid_ruby/Gemfile' + - 'bundler/spec/fixtures/projects/bundler2/invalid_ruby/Gemfile' + if: matrix.language == 'ruby' - - name: Initialize CodeQL (others) - uses: github/codeql-action/init@v2 - with: - languages: ${{ matrix.language }} - if: matrix.language != 'ruby' + - name: Initialize CodeQL (others) + uses: github/codeql-action/init@v2 + with: + languages: ${{ matrix.language }} + if: matrix.language != 'ruby' - # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). - # If this step fails, then you should remove it and run the build manually (see below) - - name: Autobuild - uses: github/codeql-action/autobuild@v2 + # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). + # If this step fails, then you should remove it and run the build manually (see below) + - name: Autobuild + uses: github/codeql-action/autobuild@v2 - # ℹī¸ Command-line programs to run using the OS shell. - # 📚 https://git.io/JvXDl + # ℹī¸ Command-line programs to run using the OS shell. + # 📚 https://git.io/JvXDl - # ✏ī¸ If the Autobuild fails above, remove it and uncomment the following three lines - # and modify them (or add more) to build your code if your project - # uses a compiled language + # ✏ī¸ If the Autobuild fails above, remove it and uncomment the following three lines + # and modify them (or add more) to build your code if your project + # uses a compiled language - #- run: | - # make bootstrap - # make release + # - run: | + # make bootstrap + # make release - - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v2 + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v2 diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 8d9031a4a3..8c92a1df02 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -1,5 +1,5 @@ name: Dependency Review -on: [pull_request] +on: [pull_request] # yamllint disable-line rule:truthy permissions: contents: read diff --git a/.github/workflows/gems-bump-version.yml b/.github/workflows/gems-bump-version.yml index 95ceeafb52..d4336403cb 100644 --- a/.github/workflows/gems-bump-version.yml +++ b/.github/workflows/gems-bump-version.yml @@ -1,5 +1,5 @@ name: Gems - Bump Version -on: +on: # yamllint disable-line rule:truthy schedule: - cron: '25 1 * * THU' workflow_dispatch: diff --git a/.github/workflows/gems-release-to-rubygems.yml b/.github/workflows/gems-release-to-rubygems.yml index e3a00bd255..b040f1a64c 100644 --- a/.github/workflows/gems-release-to-rubygems.yml +++ b/.github/workflows/gems-release-to-rubygems.yml @@ -1,5 +1,5 @@ name: Gems - Release to RubyGems -on: +on: # yamllint disable-line rule:truthy release: # It's fine to trigger on every release because if we tag a release w/o # bumping the Gem version, RubyGems will reject it with an error that the diff --git a/.github/workflows/images-branch.yml b/.github/workflows/images-branch.yml index 08e85c2613..06d75b3342 100644 --- a/.github/workflows/images-branch.yml +++ b/.github/workflows/images-branch.yml @@ -1,7 +1,7 @@ name: Branch images env: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} -on: +on: # yamllint disable-line rule:truthy pull_request: branches: - main diff --git a/.github/workflows/images-latest.yml b/.github/workflows/images-latest.yml index fbf5e2f14c..162bdb6472 100644 --- a/.github/workflows/images-latest.yml +++ b/.github/workflows/images-latest.yml @@ -1,7 +1,7 @@ name: Latest images env: UPDATER_IMAGE: "ghcr.io/dependabot/dependabot-updater-" -on: +on: # yamllint disable-line rule:truthy push: branches: - main diff --git a/.github/workflows/images-updater-core.yml b/.github/workflows/images-updater-core.yml index 9cbf1e4840..ff72358d4d 100644 --- a/.github/workflows/images-updater-core.yml +++ b/.github/workflows/images-updater-core.yml @@ -1,7 +1,7 @@ name: Updater-Core image env: UPDATER_CORE_IMAGE: "ghcr.io/dependabot/dependabot-updater-core" -on: +on: # yamllint disable-line rule:truthy push: branches: - main diff --git a/.github/workflows/labeler.yml b/.github/workflows/labeler.yml index 24f3887fc8..5b05dea2f2 100644 --- a/.github/workflows/labeler.yml +++ b/.github/workflows/labeler.yml @@ -1,6 +1,6 @@ name: Pull Request Labeler -on: +on: # yamllint disable-line rule:truthy - pull_request_target jobs: diff --git a/.github/workflows/smoke.yml b/.github/workflows/smoke.yml index 200d351af3..8440a2f1d2 100644 --- a/.github/workflows/smoke.yml +++ b/.github/workflows/smoke.yml @@ -1,10 +1,10 @@ # Runs all ecosystems cached and concurrently. name: Smoke -on: +on: # yamllint disable-line rule:truthy workflow_dispatch: push: - branches: [ "main" ] + branches: ["main"] pull_request: paths-ignore: - docs/** @@ -41,291 +41,291 @@ jobs: - { path: gradle, name: gradle-version-catalog, ecosystem: gradle } - { path: hex, name: hex, ecosystem: mix } - { path: maven, name: maven, ecosystem: maven } - - { path: npm_and_yarn, name: npm, ecosystem: npm} - - { path: npm_and_yarn, name: npm-group-rules, ecosystem: npm} - - { path: npm_and_yarn, name: npm-remove-transitive, ecosystem: npm} - - { path: npm_and_yarn, name: pnpm, ecosystem: npm} - - { path: npm_and_yarn, name: yarn, ecosystem: npm} - - { path: npm_and_yarn, name: yarn-berry, ecosystem: npm} - - { path: npm_and_yarn, name: yarn-berry-workspaces, ecosystem: npm} + - { path: npm_and_yarn, name: npm, ecosystem: npm } + - { path: npm_and_yarn, name: npm-group-rules, ecosystem: npm } + - { path: npm_and_yarn, name: npm-remove-transitive, ecosystem: npm } + - { path: npm_and_yarn, name: pnpm, ecosystem: npm } + - { path: npm_and_yarn, name: yarn, ecosystem: npm } + - { path: npm_and_yarn, name: yarn-berry, ecosystem: npm } + - { path: npm_and_yarn, name: yarn-berry-workspaces, ecosystem: npm } - { path: nuget, name: nuget, ecosystem: nuget } - { path: pub, name: pub, ecosystem: pub } - { path: python, name: pip, ecosystem: pip } - - { path: python, name: pipenv, ecosystem: pip} + - { path: python, name: pipenv, ecosystem: pip } - { path: python, name: pip-compile, ecosystem: pip } - { path: python, name: poetry, ecosystem: pip } - { path: swift, name: swift, ecosystem: swift } - { path: terraform, name: terraform, ecosystem: terraform } steps: - - uses: actions/checkout@v3 - - uses: dorny/paths-filter@v2 - if: github.event_name != 'workflow_dispatch' - id: changes - with: - filters: | - actions: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'github_actions/**' - bundler: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'bundler/**' - bundler-group-rules: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'bundler/**' - bundler-group-vendoring: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'bundler/**' - cargo: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'cargo/**' - composer: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'composer/**' - docker: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'docker/**' - elm: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'elm/**' - go: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'go_modules/**' - 'go-close-pr': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'go_modules/**' - 'go-security': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'go_modules/**' - 'go-update-pr': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'go_modules/**' - gradle: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'gradle/**' - 'gradle-version-catalog': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'gradle/**' - hex: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'hex/**' - maven: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'maven/**' - npm: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'npm_and_yarn/**' - 'npm-remove-transitive': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'npm_and_yarn/**' - nuget: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'nuget/**' - pip: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'python/**' - 'pip-compile': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'python/**' - pipenv: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'python/**' - pnpm: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'npm_and_yarn/**' - poetry: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'python/**' - pub: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'pub/**' - submodules: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'git_submodules/**' - swift: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'swift/**' - terraform: - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'terraform/**' - 'yarn': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'npm_and_yarn/**' - 'yarn-berry': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'npm_and_yarn/**' - 'yarn-berry-workspaces': - - .github/workflows/smoke.yml - - .dockerignore - - Dockerfile.updater-core - - 'common/**' - - 'updater/**' - - 'npm_and_yarn/**' + - uses: actions/checkout@v3 + - uses: dorny/paths-filter@v2 + if: github.event_name != 'workflow_dispatch' + id: changes + with: + filters: | + actions: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'github_actions/**' + bundler: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'bundler/**' + bundler-group-rules: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'bundler/**' + bundler-group-vendoring: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'bundler/**' + cargo: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'cargo/**' + composer: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'composer/**' + docker: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'docker/**' + elm: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'elm/**' + go: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'go_modules/**' + 'go-close-pr': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'go_modules/**' + 'go-security': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'go_modules/**' + 'go-update-pr': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'go_modules/**' + gradle: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'gradle/**' + 'gradle-version-catalog': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'gradle/**' + hex: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'hex/**' + maven: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'maven/**' + npm: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'npm_and_yarn/**' + 'npm-remove-transitive': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'npm_and_yarn/**' + nuget: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'nuget/**' + pip: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'python/**' + 'pip-compile': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'python/**' + pipenv: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'python/**' + pnpm: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'npm_and_yarn/**' + poetry: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'python/**' + pub: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'pub/**' + submodules: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'git_submodules/**' + swift: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'swift/**' + terraform: + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'terraform/**' + 'yarn': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'npm_and_yarn/**' + 'yarn-berry': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'npm_and_yarn/**' + 'yarn-berry-workspaces': + - .github/workflows/smoke.yml + - .dockerignore + - Dockerfile.updater-core + - 'common/**' + - 'updater/**' + - 'npm_and_yarn/**' - - name: Download CLI and test - if: steps.changes.outputs[matrix.suite.name] == 'true' - run: | - gh release download --repo dependabot/cli -p "*linux-amd64.tar.gz" - tar xzvf *.tar.gz >/dev/null 2>&1 - ./dependabot --version - URL=https://api.github.com/repos/dependabot/smoke-tests/contents/tests/smoke-${{ matrix.suite.name }}.yaml - curl $(gh api $URL --jq .download_url) -o smoke.yaml + - name: Download CLI and test + if: steps.changes.outputs[matrix.suite.name] == 'true' + run: | + gh release download --repo dependabot/cli -p "*linux-amd64.tar.gz" + tar xzvf *.tar.gz >/dev/null 2>&1 + ./dependabot --version + URL=https://api.github.com/repos/dependabot/smoke-tests/contents/tests/smoke-${{ matrix.suite.name }}.yaml + curl $(gh api $URL --jq .download_url) -o smoke.yaml - # Download the Proxy cache. The job is ideally 100% cached so no real calls are made. - # Allowed to fail to get out of checking and egg situations, for example, when adding a new ecosystem. - - name: Download cache - if: steps.changes.outputs[matrix.suite.name] == 'true' - run: | - gh run download --repo dependabot/smoke-tests --name cache-${{ matrix.suite.name }} --dir cache - continue-on-error: true + # Download the Proxy cache. The job is ideally 100% cached so no real calls are made. + # Allowed to fail to get out of checking and egg situations, for example, when adding a new ecosystem. + - name: Download cache + if: steps.changes.outputs[matrix.suite.name] == 'true' + run: | + gh run download --repo dependabot/smoke-tests --name cache-${{ matrix.suite.name }} --dir cache + continue-on-error: true - - name: Build ecosystem image - if: steps.changes.outputs[matrix.suite.name] == 'true' - run: script/build ${{ matrix.suite.path }} + - name: Build ecosystem image + if: steps.changes.outputs[matrix.suite.name] == 'true' + run: script/build ${{ matrix.suite.path }} - - name: ${{ matrix.suite.name }} - if: steps.changes.outputs[matrix.suite.name] == 'true' - id: test - env: - LOCAL_GITHUB_ACCESS_TOKEN: ${{ secrets.GITHUB_TOKEN }} - run: | - set -o pipefail - ./dependabot test \ - -f=smoke.yaml \ - -o=result.yaml \ - --cache=cache \ - --timeout=20m \ - --updater-image=ghcr.io/dependabot/dependabot-updater-${{ matrix.suite.ecosystem }}:latest \ - 2>&1 | tee -a log.txt + - name: ${{ matrix.suite.name }} + if: steps.changes.outputs[matrix.suite.name] == 'true' + id: test + env: + LOCAL_GITHUB_ACCESS_TOKEN: ${{ secrets.GITHUB_TOKEN }} + run: | + set -o pipefail + ./dependabot test \ + -f=smoke.yaml \ + -o=result.yaml \ + --cache=cache \ + --timeout=20m \ + --updater-image=ghcr.io/dependabot/dependabot-updater-${{ matrix.suite.ecosystem }}:latest \ + 2>&1 | tee -a log.txt - - name: Diff - if: steps.test.outcome != 'skipped' - continue-on-error: true - run: diff --ignore-space-change smoke.yaml result.yaml && echo "Contents are identical" + - name: Diff + if: steps.test.outcome != 'skipped' + continue-on-error: true + run: diff --ignore-space-change smoke.yaml result.yaml && echo "Contents are identical" - - name: Create summary - if: steps.changes.outputs[matrix.suite.name] == 'true' - run: tail -n100 log.txt | grep -P '\d+/\d+ calls cached \(\d+%\)' >> $GITHUB_STEP_SUMMARY + - name: Create summary + if: steps.changes.outputs[matrix.suite.name] == 'true' + run: tail -n100 log.txt | grep -P '\d+/\d+ calls cached \(\d+%\)' >> $GITHUB_STEP_SUMMARY - # No upload at the end: - # - If a test is uncachable in some regard, the cache would grow unbound. - # - We might want to consider erroring if the cache is changed. + # No upload at the end: + # - If a test is uncachable in some regard, the cache would grow unbound. + # - We might want to consider erroring if the cache is changed. diff --git a/.yamllint.yaml b/.yamllint.yaml new file mode 100644 index 0000000000..6faceaecb4 --- /dev/null +++ b/.yamllint.yaml @@ -0,0 +1,27 @@ +--- +extends: default + +rules: + braces: {min-spaces-inside: 0, max-spaces-inside: 1} + brackets: {min-spaces-inside: 0, max-spaces-inside: 1} + comments: {min-spaces-from-content: 1} + document-start: disable + indentation: + indent-sequences: consistent + # Ignore the line length rule in this repo. 120 chars should be enough for the + # stuff we control, but we can't control the test outputs, which are currently + # saved in YAML files. + line-length: + # We could downgrade the line length error to a warning, but for now it clutters the output too much. + # max: 120 + # level: warning + disable + +ignore: + - "composer/helpers/v2/vendor/*" + - "github_actions/spec/fixtures/*" + - go_modules/spec/fixtures/projects/nested_vendor/nested/vendor/github.com/pkg/errors/appveyor.yml + - go_modules/spec/fixtures/projects/vendor/vendor/github.com/pkg/errors/appveyor.yml + - "vendor/bundle/ruby/*" + # TODO: VCR seems to be putting in bad indentation... need to track down why + - "*/spec/fixtures/vcr_cassettes/*" diff --git a/docker/spec/fixtures/kubernetes/yaml/bare.yaml b/docker/spec/fixtures/kubernetes/yaml/bare.yaml index 89920b83a9..e65ec6f5b0 100644 --- a/docker/spec/fixtures/kubernetes/yaml/bare.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/bare.yaml @@ -7,4 +7,4 @@ spec: - name: nginx image: nginx ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/digest.yaml b/docker/spec/fixtures/kubernetes/yaml/digest.yaml index 1ebf4cd3e7..3b496d9a01 100644 --- a/docker/spec/fixtures/kubernetes/yaml/digest.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/digest.yaml @@ -7,4 +7,4 @@ spec: - name: ubuntu image: ubuntu@sha256:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005 ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/digest_and_tag.yaml b/docker/spec/fixtures/kubernetes/yaml/digest_and_tag.yaml index b0a85116e0..0f73153b0f 100644 --- a/docker/spec/fixtures/kubernetes/yaml/digest_and_tag.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/digest_and_tag.yaml @@ -7,4 +7,4 @@ spec: - name: ubuntu image: ubuntu:12.04.5@sha256:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005 ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/hyphen.yaml b/docker/spec/fixtures/kubernetes/yaml/hyphen.yaml index d6f019432b..ff55052b9a 100644 --- a/docker/spec/fixtures/kubernetes/yaml/hyphen.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/hyphen.yaml @@ -7,4 +7,4 @@ spec: - image: nginx:1.14.2 name: nginx ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/multiple.yaml b/docker/spec/fixtures/kubernetes/yaml/multiple.yaml index 3cc404c680..56b7e46444 100644 --- a/docker/spec/fixtures/kubernetes/yaml/multiple.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/multiple.yaml @@ -11,4 +11,4 @@ spec: - name: nginx image: nginx:1.14.2 ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/multiple_identical.yaml b/docker/spec/fixtures/kubernetes/yaml/multiple_identical.yaml index 9c56e50bfb..7edeb9c158 100644 --- a/docker/spec/fixtures/kubernetes/yaml/multiple_identical.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/multiple_identical.yaml @@ -11,4 +11,4 @@ spec: - name: nginx image: nginx:1.14.2 ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/namespace.yaml b/docker/spec/fixtures/kubernetes/yaml/namespace.yaml index 3fe6c73fb6..146ad1219c 100644 --- a/docker/spec/fixtures/kubernetes/yaml/namespace.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/namespace.yaml @@ -7,4 +7,4 @@ spec: - name: nginx image: my-repo/nginx:1.14.2 ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/non-numeric.yaml b/docker/spec/fixtures/kubernetes/yaml/non-numeric.yaml index 044927e82b..2d4536c593 100644 --- a/docker/spec/fixtures/kubernetes/yaml/non-numeric.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/non-numeric.yaml @@ -7,4 +7,4 @@ spec: - name: nginx image: nginx:fancy ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/pod.yaml b/docker/spec/fixtures/kubernetes/yaml/pod.yaml index 477754a76f..0e79d8a3c6 100644 --- a/docker/spec/fixtures/kubernetes/yaml/pod.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/pod.yaml @@ -7,4 +7,4 @@ spec: - name: nginx image: nginx:1.14.2 ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/docker/spec/fixtures/kubernetes/yaml/private_digest.yaml b/docker/spec/fixtures/kubernetes/yaml/private_digest.yaml index 37260c45da..8df4c34cee 100644 --- a/docker/spec/fixtures/kubernetes/yaml/private_digest.yaml +++ b/docker/spec/fixtures/kubernetes/yaml/private_digest.yaml @@ -7,4 +7,4 @@ spec: - name: ubuntu image: registry-host.io:5000/myreg/ubuntu@sha256:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005 ports: - - containerPort: 80 \ No newline at end of file + - containerPort: 80 diff --git a/npm_and_yarn/spec/fixtures/projects/pnpm/broken_lockfile/pnpm-lock.yaml b/npm_and_yarn/spec/fixtures/projects/pnpm/broken_lockfile/pnpm-lock.yaml index e219591e6b..1f9872b2c3 100644 --- a/npm_and_yarn/spec/fixtures/projects/pnpm/broken_lockfile/pnpm-lock.yaml +++ b/npm_and_yarn/spec/fixtures/projects/pnpm/broken_lockfile/pnpm-lock.yaml @@ -1 +1,2 @@ +# yamllint disable-file ,invalid-yaml diff --git a/pub/helpers/pubspec.yaml b/pub/helpers/pubspec.yaml index f9f7a86ef0..34edb9273f 100644 --- a/pub/helpers/pubspec.yaml +++ b/pub/helpers/pubspec.yaml @@ -11,5 +11,5 @@ dependencies: http: ^1.0.0 pub: git: - url: https://github.com/dart-lang/pub - ref: a42800e5a2f539dd5d86fdc3a6f3beefc971c753 + url: https://github.com/dart-lang/pub + ref: a42800e5a2f539dd5d86fdc3a6f3beefc971c753 diff --git a/pub/spec/dependabot/pub/file_parser_spec.rb b/pub/spec/dependabot/pub/file_parser_spec.rb index adf98bb4c6..aaf4ddadf8 100644 --- a/pub/spec/dependabot/pub/file_parser_spec.rb +++ b/pub/spec/dependabot/pub/file_parser_spec.rb @@ -80,7 +80,7 @@ it "raises a helpful error" do expect { subject }.to raise_error(Dependabot::DependabotError) do |error| expect(error.message).to start_with("dependency_services failed: " \ - "Error on line 2, column 1 of pubspec.yaml: Unexpected end of file.") + "Error on line 3, column 1 of pubspec.yaml: Unexpected end of file.") end end end diff --git a/pub/spec/fixtures/projects/broken_pubspec/pubspec.yaml b/pub/spec/fixtures/projects/broken_pubspec/pubspec.yaml index 8598077f41..b6fbc306f8 100644 --- a/pub/spec/fixtures/projects/broken_pubspec/pubspec.yaml +++ b/pub/spec/fixtures/projects/broken_pubspec/pubspec.yaml @@ -1 +1,2 @@ +# yamllint disable-file name: 'does not parse diff --git a/pub/spec/fixtures/projects/constraints/pubspec.yaml b/pub/spec/fixtures/projects/constraints/pubspec.yaml index d444a37384..ea34c321e2 100644 --- a/pub/spec/fixtures/projects/constraints/pubspec.yaml +++ b/pub/spec/fixtures/projects/constraints/pubspec.yaml @@ -3,5 +3,5 @@ environment: sdk: '>=2.12.0 <3.0.0' dependencies: retry: ^2.0.0 -dev_dependencies: +dev_dependencies: test: '>=1.17.10 <=1.17.12' diff --git a/pub/spec/fixtures/projects/requires_flutter/pubspec.yaml b/pub/spec/fixtures/projects/requires_flutter/pubspec.yaml index 7a41584eb0..601526dd78 100644 --- a/pub/spec/fixtures/projects/requires_flutter/pubspec.yaml +++ b/pub/spec/fixtures/projects/requires_flutter/pubspec.yaml @@ -6,4 +6,4 @@ environment: dependencies: retry: ^2.0.0 flutter: - sdk: flutter \ No newline at end of file + sdk: flutter diff --git a/updater/config/licenses/config.yml b/updater/config/licenses/config.yml index 8ecab76690..e597b3d167 100644 --- a/updater/config/licenses/config.yml +++ b/updater/config/licenses/config.yml @@ -18,22 +18,22 @@ bundler: - test ignored: bundler: - # Internal gems - - dependabot-omnibus - - dependabot-bundler - - dependabot-cargo - - dependabot-common - - dependabot-composer - - dependabot-docker - - dependabot-elm - - dependabot-git_submodules - - dependabot-github_actions - - dependabot-go_modules - - dependabot-gradle - - dependabot-hex - - dependabot-maven - - dependabot-npm_and_yarn - - dependabot-nuget - - dependabot-pub - - dependabot-python - - dependabot-terraform + # Internal gems + - dependabot-omnibus + - dependabot-bundler + - dependabot-cargo + - dependabot-common + - dependabot-composer + - dependabot-docker + - dependabot-elm + - dependabot-git_submodules + - dependabot-github_actions + - dependabot-go_modules + - dependabot-gradle + - dependabot-hex + - dependabot-maven + - dependabot-npm_and_yarn + - dependabot-nuget + - dependabot-pub + - dependabot-python + - dependabot-terraform diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all.yaml index 7bd119c747..b698aad46a 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all.yaml @@ -15,11 +15,11 @@ job: ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -32,7 +32,7 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_by_dependency_type.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_by_dependency_type.yaml index 69f5ea520e..e38bdcb52b 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_by_dependency_type.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_by_dependency_type.yaml @@ -17,11 +17,11 @@ job: version-requirement: "> 1.56.0" requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -35,10 +35,9 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: dev-dependencies - rules: - dependency-type: "development" - - name: production-dependencies - rules: - dependency-type: "production" - + - name: dev-dependencies + rules: + dependency-type: "development" + - name: production-dependencies + rules: + dependency-type: "production" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_empty_group.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_empty_group.yaml index 9a27e46ff5..ce148d3c66 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_empty_group.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_empty_group.yaml @@ -15,11 +15,11 @@ job: ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -32,7 +32,7 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*bagel" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*bagel" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_overlapping_groups.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_overlapping_groups.yaml index 1977d2cd94..763524abfa 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_overlapping_groups.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_overlapping_groups.yaml @@ -15,11 +15,11 @@ job: ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -32,11 +32,11 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: my-group - rules: - patterns: - - "dummy-pkg-*" - - name: my-overlapping-group - rules: - patterns: - - "dummy-pkg-*" + - name: my-group + rules: + patterns: + - "dummy-pkg-*" + - name: my-overlapping-group + rules: + patterns: + - "dummy-pkg-*" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_semver_grouping_with_global_ignores.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_semver_grouping_with_global_ignores.yaml index 83788d996b..d08e0f6915 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_semver_grouping_with_global_ignores.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_semver_grouping_with_global_ignores.yaml @@ -17,11 +17,11 @@ job: update-types: ["version-update:semver-major"] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -35,7 +35,7 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: patches - rules: - update-types: - - "patch" + - name: patches + rules: + update-types: + - "patch" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_existing_pr.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_existing_pr.yaml index 63f6a348a5..0d92199da9 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_existing_pr.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_existing_pr.yaml @@ -20,11 +20,11 @@ job: ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -37,7 +37,7 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: group-b - rules: - patterns: - - "dummy-pkg-b" + - name: group-b + rules: + patterns: + - "dummy-pkg-b" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_ungrouped.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_ungrouped.yaml index 46c3b2d355..51c66fbf59 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_ungrouped.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_ungrouped.yaml @@ -15,11 +15,11 @@ job: ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -32,7 +32,7 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: group-b - rules: - patterns: - - "dummy-pkg-b" + - name: group-b + rules: + patterns: + - "dummy-pkg-b" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_vendoring.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_vendoring.yaml index 70bbffbeb6..9540fd7334 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_vendoring.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_all_with_vendoring.yaml @@ -15,11 +15,11 @@ job: ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: true @@ -32,7 +32,7 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*" diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh.yaml index 3fb0a1257e..b0f9fd2ab6 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh.yaml @@ -8,24 +8,24 @@ job: api-endpoint: https://api.github.com/ hostname: github.com dependencies: - - dummy-pkg-b + - dummy-pkg-b existing-pull-requests: [] existing-group-pull-requests: - - dependency-group-name: everything-everywhere-all-at-once - dependencies: - - dependency-name: dummy-pkg-b - dependency-version: 1.2.0 + - dependency-group-name: everything-everywhere-all-at-once + dependencies: + - dependency-name: dummy-pkg-b + dependency-version: 1.2.0 updating-a-pull-request: true lockfile-only: false update-subdependencies: false ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -38,8 +38,8 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*" dependency-group-to-refresh: everything-everywhere-all-at-once diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_dependencies_changed.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_dependencies_changed.yaml index e0654c4d89..66546c9d6e 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_dependencies_changed.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_dependencies_changed.yaml @@ -8,27 +8,27 @@ job: api-endpoint: https://api.github.com/ hostname: github.com dependencies: - - dummy-pkg-b - - dummy-pkg-c + - dummy-pkg-b + - dummy-pkg-c existing-pull-requests: [] existing-group-pull-requests: - - dependency-group-name: everything-everywhere-all-at-once - dependencies: - - dependency-name: dummy-pkg-b - dependency-version: 1.2.0 - - dependency-name: dummy-pkg-c - dependency-version: 0.99.0 + - dependency-group-name: everything-everywhere-all-at-once + dependencies: + - dependency-name: dummy-pkg-b + dependency-version: 1.2.0 + - dependency-name: dummy-pkg-c + dependency-version: 0.99.0 updating-a-pull-request: true lockfile-only: false update-subdependencies: false ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -41,8 +41,8 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*" dependency-group-to-refresh: everything-everywhere-all-at-once diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_empty_group.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_empty_group.yaml index 77502ec14b..77614afe19 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_empty_group.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_empty_group.yaml @@ -8,24 +8,24 @@ job: api-endpoint: https://api.github.com/ hostname: github.com dependencies: - - dummy-pkg-b + - dummy-pkg-b existing-pull-requests: [] existing-group-pull-requests: - - dependency-group-name: everything-everywhere-all-at-once - dependencies: - - dependency-name: dummy-pkg-b - dependency-version: 1.2.0 + - dependency-group-name: everything-everywhere-all-at-once + dependencies: + - dependency-name: dummy-pkg-b + dependency-version: 1.2.0 updating-a-pull-request: true lockfile-only: false update-subdependencies: false ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -38,8 +38,8 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*bagel" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*bagel" dependency-group-to-refresh: everything-everywhere-all-at-once diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_similar_pr.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_similar_pr.yaml index 1928845105..11db4aeb3b 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_similar_pr.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_similar_pr.yaml @@ -8,28 +8,28 @@ job: api-endpoint: https://api.github.com/ hostname: github.com dependencies: - - dummy-pkg-b + - dummy-pkg-b existing-pull-requests: [] existing-group-pull-requests: - - dependency-group-name: everything-everywhere-all-at-once - dependencies: - - dependency-name: dummy-pkg-b - dependency-version: 1.1.5 - - dependency-group-name: overlapping-group - dependencies: - - dependency-name: dummy-pkg-b - dependency-version: 1.2.0 + - dependency-group-name: everything-everywhere-all-at-once + dependencies: + - dependency-name: dummy-pkg-b + dependency-version: 1.1.5 + - dependency-group-name: overlapping-group + dependencies: + - dependency-name: dummy-pkg-b + dependency-version: 1.2.0 updating-a-pull-request: true lockfile-only: false update-subdependencies: false ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -42,12 +42,12 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*" - - name: overlapping-group - rules: - patterns: - - "dummy-pkg-*" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*" + - name: overlapping-group + rules: + patterns: + - "dummy-pkg-*" dependency-group-to-refresh: everything-everywhere-all-at-once diff --git a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_versions_changed.yaml b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_versions_changed.yaml index 9bc14d0fc5..79e42f2c26 100644 --- a/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_versions_changed.yaml +++ b/updater/spec/fixtures/job_definitions/bundler/version_updates/group_update_refresh_versions_changed.yaml @@ -8,24 +8,24 @@ job: api-endpoint: https://api.github.com/ hostname: github.com dependencies: - - dummy-pkg-b + - dummy-pkg-b existing-pull-requests: [] existing-group-pull-requests: - - dependency-group-name: everything-everywhere-all-at-once - dependencies: - - dependency-name: dummy-pkg-b - dependency-version: 1.1.5 + - dependency-group-name: everything-everywhere-all-at-once + dependencies: + - dependency-name: dummy-pkg-b + dependency-version: 1.1.5 updating-a-pull-request: true lockfile-only: false update-subdependencies: false ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -38,8 +38,8 @@ job: include-scope: security-updates-only: false dependency-groups: - - name: everything-everywhere-all-at-once - rules: - patterns: - - "*" + - name: everything-everywhere-all-at-once + rules: + patterns: + - "*" dependency-group-to-refresh: everything-everywhere-all-at-once diff --git a/updater/spec/fixtures/job_definitions/docker/version_updates/group_update_peer_manifests.yaml b/updater/spec/fixtures/job_definitions/docker/version_updates/group_update_peer_manifests.yaml index 3cd268a383..a7d9ab31e9 100644 --- a/updater/spec/fixtures/job_definitions/docker/version_updates/group_update_peer_manifests.yaml +++ b/updater/spec/fixtures/job_definitions/docker/version_updates/group_update_peer_manifests.yaml @@ -10,10 +10,10 @@ job: commit: 302aaa943c6507c10cbbfd1b7f0fd623c5743807 dependencies: dependency-groups: - - name: dependabot-core-images - rules: - patterns: - - "dependabot/*" + - name: dependabot-core-images + rules: + patterns: + - "dependabot/*" existing-pull-requests: [] updating-a-pull-request: false lockfile-only: false @@ -21,11 +21,11 @@ job: ignore-conditions: [] requirements-update-strategy: allowed-updates: - - dependency-type: direct - update-type: all + - dependency-type: direct + update-type: all credentials-metadata: - - type: git_source - host: github.com + - type: git_source + host: github.com security-advisories: [] max-updater-run-time: 2700 vendor-dependencies: false @@ -37,4 +37,3 @@ job: prefix-development: include-scope: security-updates-only: false -