Read Gemfile to get current version before downloading

copy-updater-files.ps1

@@ -1,6 +1,8 @@
-Param(
-    [string] $tag = "v0.230.0"
-)
+# Find the current version for dependabot-omnibus
+$gemfileContent = Get-Content -Path "updater\Gemfile" -Raw
+$versionLine = $gemfileContent | Select-String 'gem "dependabot-omnibus", "(.*)"' | Select-Object -ExpandProperty Line
+$version = [regex]::Match($versionLine, '"~>(\d+\.\d+\.\d+)"').Groups[1].Value
+Write-Output "Found dependabot-omnibus version: $version"
 
 $files = @(
     ".ruby-version"
@@ -108,7 +110,7 @@ $files = @(
 $baseUrl = "https://raw.githubusercontent.com/dependabot/dependabot-core"
 
 foreach ($name in $files) {
-    $sourceUrl = "$baseUrl/$tag/$($name)"
+    $sourceUrl = "$baseUrl/v$version/$($name)"
     $destinationPath = Join-Path -Path '.' -ChildPath "$name"
 
     # Write-Host "`Downloading $name ..."

updater/bin/fetch_files.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 $LOAD_PATH.unshift(__dir__ + "/../lib")

updater/bin/update_files.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 $LOAD_PATH.unshift(__dir__ + "/../lib")

updater/lib/dependabot/api_client.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "http"

updater/lib/dependabot/base_command.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "raven"

updater/lib/dependabot/dependency_change.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # This class describes a change to the project's Dependencies which has been

updater/lib/dependabot/dependency_change_builder.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency"

updater/lib/dependabot/dependency_group_engine.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency_group"

updater/lib/dependabot/dependency_snapshot.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "base64"

updater/lib/dependabot/environment.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

updater/lib/dependabot/file_fetcher_command.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "base64"

updater/lib/dependabot/job.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/config/ignore_condition"
@@ -210,12 +211,12 @@ def vulnerable?(dependency)
 
       # Can't (currently) detect whether git dependencies are vulnerable
       version_class =
-        Dependabot::Utils.
-        version_class_for_package_manager(dependency.package_manager)
+        Dependabot::Utils
+        .version_class_for_package_manager(dependency.package_manager)
       return false unless version_class.correct?(dependency.version)
 
-      all_versions = dependency.all_versions.
-                     filter_map { |v| version_class.new(v) if version_class.correct?(v) }
+      all_versions = dependency.all_versions
+                               .filter_map { |v| version_class.new(v) if version_class.correct?(v) }
       security_advisories.any? { |a| all_versions.any? { |v| a.vulnerable?(v) } }
     end
 
@@ -241,8 +242,8 @@ def commit_message_options
 
     def security_advisories_for(dependency)
       relevant_advisories =
-        security_advisories.
-        select { |adv| adv.fetch("dependency-name").casecmp(dependency.name).zero? }
+        security_advisories
+        .select { |adv| adv.fetch("dependency-name").casecmp(dependency.name).zero? }
 
       relevant_advisories.map do |adv|
         vulnerable_versions = adv["affected-versions"] || []

updater/lib/dependabot/logger/formats.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "logger"

updater/lib/dependabot/sentry.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "raven"

updater/lib/dependabot/service.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "raven"

updater/lib/dependabot/setup.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/logger"

updater/lib/dependabot/update_files_command.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "base64"

updater/lib/dependabot/updater.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # Dependabot components

updater/lib/dependabot/updater/dependency_group_change_batch.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # This class is responsible for aggregating individual DependencyChange objects

updater/lib/dependabot/updater/error_handler.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/updater/errors"

updater/lib/dependabot/updater/errors.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 module Dependabot

updater/lib/dependabot/updater/group_update_creation.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/dependency_change_builder"
@@ -217,8 +218,11 @@ def semver_rules_allow_grouping?(group, dependency, checker)
         return false if git_dependency?(dependency)
 
         version = Dependabot::Utils.version_class_for_package_manager(job.package_manager).new(dependency.version.to_s)
+        latest_version = Dependabot::Utils.version_class_for_package_manager(job.package_manager)
+                                          .new(checker.latest_version)
+
         # Not every version class implements .major, .minor, .patch so we calculate it here from the segments
-        latest = semver_segments(checker.latest_version)
+        latest = semver_segments(latest_version)
         current = semver_segments(version)
         return group.rules["update-types"].include?("major") if latest[:major] > current[:major]
         return group.rules["update-types"].include?("minor") if latest[:minor] > current[:minor]

updater/lib/dependabot/updater/operations.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/updater/operations/create_security_update_pull_request"

updater/lib/dependabot/updater/operations/create_group_update_pull_request.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/updater/group_update_creation"

updater/lib/dependabot/updater/operations/create_security_update_pull_request.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/updater/security_update_helpers"
@@ -201,11 +202,11 @@ def pr_exists_for_latest_version?(checker)
           latest_version = checker.latest_version&.to_s
           return false if latest_version.nil?
 
-          job.existing_pull_requests.
-            select { |pr| pr.count == 1 }.
-            map(&:first).
-            select { |pr| pr.fetch("dependency-name") == checker.dependency.name }.
-            any? { |pr| pr.fetch("dependency-version", nil) == latest_version }
+          job.existing_pull_requests
+             .select { |pr| pr.count == 1 }
+             .map(&:first)
+             .select { |pr| pr.fetch("dependency-name") == checker.dependency.name }
+             .any? { |pr| pr.fetch("dependency-version", nil) == latest_version }
         end
 
         def existing_pull_request(updated_dependencies)

updater/lib/dependabot/updater/operations/group_update_all_versions.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/updater/operations/create_group_update_pull_request"

updater/lib/dependabot/updater/operations/refresh_group_update_pull_request.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 require "dependabot/updater/group_update_creation"

updater/lib/dependabot/updater/operations/refresh_security_update_pull_request.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # This class implements our strategy for 'refreshing' an existing Pull Request

updater/lib/dependabot/updater/operations/refresh_version_update_pull_request.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # This class implements our strategy for 'refreshing' an existing Pull Request

updater/lib/dependabot/updater/operations/update_all_versions.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # This class implements our strategy for iterating over all of the dependencies
@@ -173,11 +174,11 @@ def pr_exists_for_latest_version?(checker)
           latest_version = checker.latest_version&.to_s
           return false if latest_version.nil?
 
-          job.existing_pull_requests.
-            select { |pr| pr.count == 1 }.
-            map(&:first).
-            select { |pr| pr.fetch("dependency-name") == checker.dependency.name }.
-            any? { |pr| pr.fetch("dependency-version", nil) == latest_version }
+          job.existing_pull_requests
+             .select { |pr| pr.count == 1 }
+             .map(&:first)
+             .select { |pr| pr.fetch("dependency-name") == checker.dependency.name }
+             .any? { |pr| pr.fetch("dependency-version", nil) == latest_version }
         end
 
         def existing_pull_request(updated_dependencies)
@@ -221,9 +222,9 @@ def log_requirements_for_update(requirements_to_unlock, checker)
         # If a version update for a peer dependency is possible we should
         # defer to the PR that will be created for it to avoid duplicate PRs.
         def peer_dependency_should_update_instead?(dependency_name, updated_deps)
-          updated_deps.
-            reject { |dep| dep.name == dependency_name }.
-            any? do |dep|
+          updated_deps
+            .reject { |dep| dep.name == dependency_name }
+            .any? do |dep|
               next true if existing_pull_request([dep])
 
               original_peer_dep = ::Dependabot::Dependency.new(
@@ -232,8 +233,8 @@ def peer_dependency_should_update_instead?(dependency_name, updated_deps)
                 requirements: dep.previous_requirements,
                 package_manager: dep.package_manager
               )
-              update_checker_for(original_peer_dep, raise_on_ignored: false).
-                can_update?(requirements_to_unlock: :own)
+              update_checker_for(original_peer_dep, raise_on_ignored: false)
+                .can_update?(requirements_to_unlock: :own)
             end
         end
 

updater/lib/dependabot/updater/security_update_helpers.rb

@@ -1,3 +1,4 @@
+# typed: false
 # frozen_string_literal: true
 
 # This module extracts all helpers required to perform additional update job