Skip to content

Commit

Permalink
Move #filter_vulnerable_version to come before `#filter_ignored_ver…
Browse files Browse the repository at this point in the history 
…sion`
  • Loading branch information
@Nishnha
Nishnha committed Jun 22, 2021
1 parent d68c097 commit 7d0b62c
Show file tree
Hide file tree
Showing 7 changed files with 15 additions and 14 deletions.
4 changes: 2 additions & 2 deletions bundler/lib/dependabot/bundler/update_checker/latest_version_finder.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -56,10 +56,10 @@ def fetch_lowest_security_fix_version

relevant_versions = dependency_source.versions
relevant_versions = filter_prerelease_versions(relevant_versions)
relevant_versions = filter_ignored_versions(relevant_versions)
relevant_versions = filter_lower_versions(relevant_versions)
relevant_versions = Dependabot::UpdateCheckers::VersionFilters.filter_vulnerable_versions(relevant_versions,
security_advisories)
relevant_versions = filter_ignored_versions(relevant_versions)
relevant_versions = filter_lower_versions(relevant_versions)

relevant_versions.min
end
Expand Down
4 changes: 2 additions & 2 deletions cargo/lib/dependabot/cargo/update_checker/latest_version_finder.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -42,10 +42,10 @@ def fetch_latest_version
def fetch_lowest_security_fix_version
versions = available_versions
versions = filter_prerelease_versions(versions)
versions = filter_ignored_versions(versions)
versions = filter_lower_versions(versions)
versions = Dependabot::UpdateCheckers::VersionFilters.filter_vulnerable_versions(versions,
security_advisories)
versions = filter_ignored_versions(versions)
versions = filter_lower_versions(versions)

versions.min
end
Expand Down
4 changes: 2 additions & 2 deletions composer/lib/dependabot/composer/update_checker/latest_version_finder.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,10 +46,10 @@ def fetch_latest_version
def fetch_lowest_security_fix_version
versions = available_versions
versions = filter_prerelease_versions(versions)
versions = filter_ignored_versions(versions)
versions = filter_lower_versions(versions)
versions = Dependabot::UpdateCheckers::VersionFilters.filter_vulnerable_versions(versions,
security_advisories)
versions = filter_ignored_versions(versions)
versions = filter_lower_versions(versions)

versions.min
end
Expand Down
4 changes: 2 additions & 2 deletions gradle/lib/dependabot/gradle/update_checker/version_finder.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -47,10 +47,10 @@ def lowest_security_fix_version_details
possible_versions = filter_prereleases(possible_versions)
possible_versions = filter_date_based_versions(possible_versions)
possible_versions = filter_version_types(possible_versions)
possible_versions = filter_ignored_versions(possible_versions)
possible_versions = filter_lower_versions(possible_versions)
possible_versions = Dependabot::UpdateCheckers::VersionFilters.filter_vulnerable_versions(possible_versions,
security_advisories)
possible_versions = filter_ignored_versions(possible_versions)
possible_versions = filter_lower_versions(possible_versions)

possible_versions.first
end
Expand Down
4 changes: 2 additions & 2 deletions maven/lib/dependabot/maven/update_checker/version_finder.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,10 +44,10 @@ def lowest_security_fix_version_details
possible_versions = filter_prereleases(possible_versions)
possible_versions = filter_date_based_versions(possible_versions)
possible_versions = filter_version_types(possible_versions)
possible_versions = filter_ignored_versions(possible_versions)
possible_versions = filter_lower_versions(possible_versions)
possible_versions = Dependabot::UpdateCheckers::VersionFilters.filter_vulnerable_versions(possible_versions,
security_advisories)
possible_versions = filter_ignored_versions(possible_versions)
possible_versions = filter_lower_versions(possible_versions)

possible_versions.find { |v| released?(v.fetch(:version)) }
end
Expand Down
4 changes: 2 additions & 2 deletions nuget/lib/dependabot/nuget/update_checker/version_finder.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,11 +43,11 @@ def lowest_security_fix_version_details
begin
possible_versions = versions
possible_versions = filter_prereleases(possible_versions)
possible_versions = filter_ignored_versions(possible_versions)
possible_versions = filter_lower_versions(possible_versions)
possible_versions = Dependabot::UpdateCheckers::VersionFilters.filter_vulnerable_versions(
possible_versions, security_advisories
)
possible_versions = filter_ignored_versions(possible_versions)
possible_versions = filter_lower_versions(possible_versions)

possible_versions.min_by { |hash| hash.fetch(:version) }
end
Expand Down
5 changes: 3 additions & 2 deletions python/lib/dependabot/python/update_checker/latest_version_finder.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -72,10 +72,11 @@ def fetch_lowest_security_fix_version(python_version:)
versions = filter_yanked_versions(versions)
versions = filter_unsupported_versions(versions, python_version)
versions = filter_prerelease_versions(versions)
versions = filter_ignored_versions(versions)
versions = filter_lower_versions(versions)
versions = Dependabot::UpdateCheckers::VersionFilters.filter_vulnerable_versions(versions,
security_advisories)
versions = filter_ignored_versions(versions)
versions = filter_lower_versions(versions)

versions.min
end

Expand Down

0 comments on commit 7d0b62c

Please sign in to comment.