dependabot/fetch-metadata
2
0
Fork 0
mirror of https://github.com/dependabot/fetch-metadata.git synced 2026-03-13 18:17:13 -04:00
Code Issues Packages Projects Releases Wiki Activity
295 Commits 8 Branches 28 Tags
bfac3fa29cc6834ca2e3fd659343da191a65d971
Commit Graph

53 Commits

Author SHA1 Message Date
Salim Bensiali
50776e5524 Call trimSlashes on the computed manifest path instead of on just 
`directory`
 2022-03-24 07:20:42 +00:00
Salim Bensiali
b31caa4279 Add failing tests for verified_commits.ts\'s getAlert function 2022-03-24 07:18:36 +00:00
Michael Waddell
84741a1a63 If the update-type is missing for some reason, calculate it from the versions 2022-03-04 22:40:59 -06:00
Barry Gordon
0ca01a5553 Merge pull request #146 from pangaeatech/get_compat_score 
Return compatibility score
 2022-02-28 18:10:37 +00:00
Michael Waddell
9a3daafb32 linting 2022-02-26 13:46:10 -06:00
Michael Waddell
4a8756595b Allow fetch-metadata to run on a PR even if it has additional commits, as long as the 0th one was added by dependabot and is verified. 2022-02-26 13:40:40 -06:00
Michael Waddell
e05077052f updating unit test 2022-02-21 19:36:58 -06:00
Michael Waddell
ba0ddd7fd8 disabling by default 2022-02-21 19:36:02 -06:00
Michael Waddell
dd76591256 Merge branch 'flag-security-alerts' into get_compat_score 2022-02-21 19:27:14 -06:00
Michael Waddell
6d854e50fd Merge branch 'main' into get_compat_score 2022-02-21 19:22:05 -06:00
Michael Waddell
e935ee51d1 linting 2022-02-21 19:16:52 -06:00
Michael Waddell
cfcd55c7b9 Make new "get-alerts" functionality off by default 2022-02-21 19:09:53 -06:00
Michael Waddell
582a0e6a5f Merge branch 'main' into flag-security-alerts 2022-02-21 17:41:40 -06:00
Barry Gordon
91c778d976 Fix new Typescript rules 2022-02-21 20:22:22 +00:00
Michael Waddell
e0099a154d Adding compatibility-score to output 2022-02-20 18:43:16 -06:00
Michael Waddell
e79c4e95c1 fixing bug with directory name when the dependency name contains slashes 2022-02-19 21:37:09 -06:00
Michael Waddell
1dafcbca7f unit testing 2022-02-18 22:24:17 -06:00
Michael Waddell
317bd19a8e updating documentation and adding more checks to unit tests 2022-02-17 21:15:55 -06:00
Michael Waddell
7a9c6b6a09 linting 2022-02-17 20:34:09 -06:00
Michael Waddell
4d5384fc6f linting and unit testing 2022-02-17 20:32:55 -06:00
Michael Waddell
d5d6d4da96 Using graphql to pull alert details 
closes #84
closes #102
 2022-02-17 07:45:14 -06:00
Michael Waddell
17e334fb15 Merge branch 'main' into use_author 2022-02-11 20:46:55 -06:00
Michael Waddell
ffbb37fe01 renaming target_branch to target-branch 2022-02-11 14:08:20 -06:00
Michael Waddell
aa297d42a6 linting 2022-02-09 14:21:04 -06:00
Michael Waddell
ca81f5871d have to make a call-out to get the details of the PR 2022-02-09 14:20:09 -06:00
Michael Waddell
7b566f4b94 linting 2022-02-09 13:56:31 -06:00
Michael Waddell
74c5483adb Using branchNames per @Nishnha's suggestion 2022-02-09 13:45:56 -06:00
Michael Waddell
9967bee0ba fixing comment style 2022-02-09 13:45:29 -06:00
Michael Waddell
4d237c6cf0 Update src/dependabot/update_metadata.ts 
Co-authored-by: Nish Sinha <nishnha@github.com>
 2022-02-09 13:42:39 -06:00
Michael Waddell
8001861ce3 Added directory, package-ecosystem and target_branch to output 
closes issue #76
 2022-02-07 17:39:02 -06:00
Michael Waddell
960d125896 Check PR Author instead of Action Actor 
closes issue #112
 2022-02-07 11:24:33 -06:00
Barry Gordon
fca28e5a1d Handle API errors specifically 2021-06-02 17:24:39 +01:00
Barry Gordon
c51850a258 Ensure we fail out cleanly if there is an exception 2021-06-02 15:24:28 +01:00
Philip Harrison
1193fb955a Fix tests 2021-06-02 14:13:10 +01:00
Philip Harrison
493bd7ca6c Fix lint 2021-06-02 13:57:58 +01:00
Philip Harrison
bc1a61c29a Log the metadata outputs 
Adding a log group around `Outputting metadata for updated dependencies`
and logging the metadata outputs in there.

I found myself reaching for the metadata output in the logs.
It should make it easier to debug an action that's not matching a pr.
 2021-06-02 10:10:51 +01:00
Barry Gordon
4258dff3df Remove a few last references to 'indirect:production' 2021-06-01 14:52:37 +01:00
Barry Gordon
a551173326 Fix indirect update types 
Co-authored-by: Philip Harrison <philip@mailharrison.com>
 2021-06-01 14:52:37 +01:00
Barry Gordon
20ad4bf5b0 Ensure we exit the Action run if there is no metadata 2021-05-28 15:44:09 +01:00
Barry Gordon
f4d4a4047c Add unit tests for output logic 2021-05-28 15:38:52 +01:00
Barry Gordon
b2b3dcd640 Summarize both update type and dependency type 2021-05-28 15:16:39 +01:00
Barry Gordon
5ff9bff977 Use the highest semver level in the summary 2021-05-28 14:52:19 +01:00
Barry Gordon
b78ce012aa Walk back changes to output just the first dependency, provide a summary 2021-05-28 14:28:15 +01:00
Barry Gordon
a3e258c3e0 Set the dependency update keys as outputs instead of a JSON string 2021-05-27 16:28:13 +01:00
Barry Gordon
32dc0a10fe Merge branch 'main' into feelexyz/rename-keys-to-match-metadata 2021-05-27 11:37:21 +01:00
Barry Gordon
2712042ea6 Merge branch 'main' into feelepxyz/rename-output-key 2021-05-27 11:36:25 +01:00
Philip Harrison
0e0aa93e38 Match commit metadata fragment from start of line 
Updated the tests to reflect commit messages where it begins at the
start of the line so we can match `---` and `...` as being at the
start of the line.
 2021-05-27 11:26:40 +01:00
Philip Harrison
33c0a49593 Rename output key to updated-dependencies 
Thoughts on renaming this and encouraging a specific `id` instead?
 2021-05-27 11:26:21 +01:00
Philip Harrison
64e23a0a37 Prefix dependency to name and type keys 
Updating the keys to match the metadata and disambiguate from
`updateType`.

This also matches the config file for allow/ignore.
 2021-05-27 11:26:04 +01:00
Barry Gordon
77e6e637ae Add main.js as the action entry point 2021-05-26 17:45:19 +01:00