Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixes Alias parsing was not enabled issue while loading Psych Lib in safe_load #9759

Merged
merged 5 commits into from
May 20, 2024
Merged

Fixes Alias parsing was not enabled issue while loading Psych Lib in safe_load #9759

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
2fd7e45
fixes Alias parsing was not enabled issue while loading Psych Lib in …
sachin-sandhu May 17, 2024
287161f
Fixes Alias parsing was not enabled issue while loading Psych Lib in …
sachin-sandhu May 18, 2024
c3d5a4d
Update pubspec_alias_true.yaml
sachin-sandhu May 18, 2024
f238d81
Update pubspec_alias_true.yaml
sachin-sandhu May 18, 2024
839d47f
Merge branch 'main' into ssandhu/9505-Alias-parsing-was-not-enabled
sachin-sandhu May 20, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion pub/lib/dependabot/pub/update_checker.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -168,7 +168,7 @@ def resolve_requirements_update_strategy
# go for RequirementsUpdateStrategy::BumpVersions.
pubspec = T.must(dependency_files.find { |d| d.name == "pubspec.yaml" })
begin
parsed_pubspec = YAML.safe_load(T.must(pubspec.content), aliases: false)
parsed_pubspec = YAML.safe_load(T.must(pubspec.content), aliases: true)
rescue ScriptError
return RequirementsUpdateStrategy::BumpVersions
end
Expand Down
23 changes: 23 additions & 0 deletions pub/spec/dependabot/pub/update_checker_spec.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -791,4 +791,27 @@
]
end
end

context "loads a YAML file with alias" do
fixture = "spec/fixtures/projects/yaml_alias/"
alias_info_file = "pubspec_alias_true.yaml"
non_alias_info_file = "pubspec.yaml"
it "parses a alias contained YAML file with aliases: true" do
yaml_object = File.open(fixture + alias_info_file, "r")
data = yaml_object.read
expect { YAML.safe_load(data, aliases: true) }.not_to raise_error
end

it "parses a alias contained YAML file with aliases: false" do
yaml_object = File.open(fixture + alias_info_file, "r")
data = yaml_object.read
expect { YAML.safe_load(data, aliases: false) }.to raise_error(Psych::AliasesNotEnabled)
end

it "parses a no alias YAML file with aliases: true" do
yaml_object = File.open(fixture + non_alias_info_file, "r")
data = yaml_object.read
expect { YAML.safe_load(data, aliases: true) }.not_to raise_error
end
end
end
9 changes: 9 additions & 0 deletions pub/spec/fixtures/projects/yaml_alias/pubspec.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
name: dependabot_testcase
environment:
sdk: '>=2.12.0 <3.0.0'
dependencies:
collection: ^1.14.13 # Locked to 1.14.13, can update with no unlock.
retry: ^2.0.0 # Can update with updated constraint, no further constraints.
protobuf: 1.1.4 # Can update with updated constraint, only together with fixnum to 2.0.0 or with fixnum and collection to 2.1.0.
fixnum: 0.10.11
path: 1.8.0 # Already at latest
16 changes: 16 additions & 0 deletions pub/spec/fixtures/projects/yaml_alias/pubspec_alias_true.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
default: &default
var1: info
var2: var5
var3: 1

var4:
<<: *default
dir: ls/var4.info

var5:
<<: *default
dir: ls/var5.info

var6:
<<: *default
dir: ls/var6.info
Loading