grouped security updates: use the group if one is defined #8742

jakecoffman · 2024-01-09T15:33:33Z

Previously we assumed that a grouped security update would just group all of the dependencies passed in the job.

This PR will cause grouped security updates to use the one defined in the job instead.

~~We can't merge this until the service starts sending groups for these types of jobs.~~

I've updated this to fallback to the old behavior, so it should be mergeable now.

…ined

This reverts commit 9bb3936.

This reverts commit f6ae1d8. # Conflicts: # updater/lib/dependabot/dependency_snapshot.rb # updater/lib/dependabot/updater/group_update_creation.rb # updater/spec/dependabot/dependency_snapshot_spec.rb

…ined

jakecoffman · 2024-01-26T18:48:54Z

Almost good to go, but the devcontainers smoke test is trying to tell me something is wrong.

…ined

jakecoffman · 2024-01-29T15:44:41Z

Some of the new tests I just merged in are failing, so taking it back to draft.

…ined

updater/lib/dependabot/dependency_change_builder.rb

updater/lib/dependabot/dependency_group_engine.rb

updater/lib/dependabot/updater/operations/group_update_all_versions.rb

…ined

jakecoffman · 2024-01-31T15:59:17Z

I deployed this PR and saw exceptions where a grouped security update with 1 dependency wasn't getting picked up by the GroupUpdateAllVersions operation. So in 06673bf I swapped the check for an implicit group to be if directories is present which works better.

This will all be cleaned up once the API sends groups! 😓

jakecoffman · 2024-01-31T16:31:13Z

Redeployed and it looks good!

jakecoffman added 6 commits January 9, 2024 09:33

use the security group if one is defined

77b0e7b

boil down to group update all versions

45dec92

fix specs

4365fac

do security updates even if they aren't allowed

761eaf3

only job.dependencies are allowed in security updates

21e74b4

add test and fix lint

5d04dbe

jakecoffman changed the title ~~use the security group if one is defined~~ grouped security updates: use the group if one is defined Jan 10, 2024

jakecoffman added 3 commits January 12, 2024 10:12

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

eda23f2

…ined

support multi-dir ungrouped

3825ed6

support multi-dir ungrouped updates

f6ae1d8

jakecoffman mentioned this pull request Jan 12, 2024

more complex multi-dir example dependabot/smoke-tests#169

Merged

jakecoffman added 9 commits January 12, 2024 12:00

force directory to be nil when doing multi-directory updates

9bb3936

Revert "force directory to be nil when doing multi-directory updates"

769bdd9

This reverts commit 9bb3936.

use explicit method again

7f96171

Revert "support multi-dir ungrouped updates"

fb7b235

This reverts commit f6ae1d8. # Conflicts: # updater/lib/dependabot/dependency_snapshot.rb # updater/lib/dependabot/updater/group_update_creation.rb # updater/spec/dependabot/dependency_snapshot_spec.rb

fix multi-dir ungrouped

7eb4518

normalize

f068dd3

lint

f452587

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

df26f9f

…ined

add a pattern test

8f07872

jakecoffman mentioned this pull request Jan 26, 2024

grouped security updates don't require an explicit group #8907

Merged

jakecoffman added 4 commits January 26, 2024 10:05

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

98a9696

…ined

fix su-group-default and su-group-multidir

dfab119

fix and add tests

f199ecf

this test's setup is wrong, and already covered by new e2e tests

66993a5

add sanity check to help find this specific bug faster in the future

e041072

jakecoffman mentioned this pull request Jan 26, 2024

clean directory at job start #8912

Merged

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

7c3fc4e

…ined

jakecoffman marked this pull request as ready for review January 26, 2024 20:19

jakecoffman requested a review from a team as a code owner January 26, 2024 20:19

jakecoffman added 3 commits January 26, 2024 21:19

add test for group semver and group dependency type

e91bbf3

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

a855fe4

…ined

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

893256a

…ined

jakecoffman marked this pull request as draft January 29, 2024 15:44

jakecoffman added 3 commits January 29, 2024 09:45

add test script

ddb4e3b

hacky fix for no dependency_group_to_refresh on current GSU jobs

4cbe6e4

lint

dd33d5d

jakecoffman marked this pull request as ready for review January 29, 2024 19:35

jakecoffman mentioned this pull request Jan 29, 2024

updater end-to-end helper script #8932

Merged

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

0a3380d

…ined

abdulapopoola reviewed Jan 29, 2024

View reviewed changes

updater/lib/dependabot/dependency_change_builder.rb Show resolved Hide resolved

abdulapopoola reviewed Jan 29, 2024

View reviewed changes

updater/lib/dependabot/dependency_group_engine.rb Outdated Show resolved Hide resolved

abdulapopoola reviewed Jan 29, 2024

View reviewed changes

updater/lib/dependabot/updater/operations/group_update_all_versions.rb Show resolved Hide resolved

jakecoffman added 2 commits January 29, 2024 15:33

make a helper method for clarity

1bba4cd

revert last commit

8c2cb95

jurre approved these changes Jan 31, 2024

View reviewed changes

jakecoffman added 2 commits January 31, 2024 09:06

Merge branch 'main' into jakecoffman/use-security-group-if-one-is-def…

7263323

…ined

handle the case where a GSU only has 1 dependency

06673bf

jakecoffman merged commit 3d7d061 into main Jan 31, 2024
120 of 121 checks passed

jakecoffman deleted the jakecoffman/use-security-group-if-one-is-defined branch January 31, 2024 16:31

jakecoffman mentioned this pull request Feb 1, 2024

fix security updates getting into grouped code #8957

Merged

jakecoffman mentioned this pull request Feb 12, 2024

remove most multidir test groups dependabot/smoke-tests#182

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

grouped security updates: use the group if one is defined #8742

grouped security updates: use the group if one is defined #8742

jakecoffman commented Jan 9, 2024 •

edited

Loading

jakecoffman commented Jan 26, 2024 •

edited

Loading

jakecoffman commented Jan 29, 2024

jakecoffman commented Jan 31, 2024

jakecoffman commented Jan 31, 2024

grouped security updates: use the group if one is defined #8742

grouped security updates: use the group if one is defined #8742

Conversation

jakecoffman commented Jan 9, 2024 • edited Loading

jakecoffman commented Jan 26, 2024 • edited Loading

jakecoffman commented Jan 29, 2024

jakecoffman commented Jan 31, 2024

jakecoffman commented Jan 31, 2024

jakecoffman commented Jan 9, 2024 •

edited

Loading

jakecoffman commented Jan 26, 2024 •

edited

Loading