Skip to content
This repository was archived by the owner on Sep 9, 2024. It is now read-only.

Commit 7305d4b

Browse files
dependabot[bot]kachick
dependabot[bot]
and
kachick
authored
Bump packageurl-js from 1.1.1 to 1.2.1 (#549)
* Bump packageurl-js from 1.1.1 to 1.2.1 Bumps [packageurl-js](https://github.com/package-url/packageurl-js) from 1.1.1 to 1.2.1. - [Changelog](https://github.com/package-url/packageurl-js/blob/master/CHANGELOG.md) - [Commits](package-url/packageurl-js@v1.1.1...v1.2.1) --- updated-dependencies: - dependency-name: packageurl-js dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * `makers setup && makers build` --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kenichi Kamiya <kachick1@gmail.com>
1 parent 5994f61 commit 7305d4b

File tree

3 files changed

+21
-11
lines changed

3 files changed

+21
-11
lines changed

dist/index.js

+13-3
Original file line numberDiff line numberDiff line change
@@ -38755,11 +38755,20 @@ var require_package_url2 = __commonJS({
3875538755
_handlePyPi() {
3875638756
this.name = this.name.toLowerCase().replace(/_/g, "-");
3875738757
}
38758+
_handlePub() {
38759+
this.name = this.name.toLowerCase();
38760+
if (!/^[a-z0-9_]+$/i.test(this.name)) {
38761+
throw new Error("Invalid purl: contains an illegal character.");
38762+
}
38763+
}
3875838764
toString() {
3875938765
var purl = ["pkg:", encodeURIComponent(this.type), "/"];
3876038766
if (this.type === "pypi") {
3876138767
this._handlePyPi();
3876238768
}
38769+
if (this.type === "pub") {
38770+
this._handlePub();
38771+
}
3876338772
if (this.namespace) {
3876438773
purl.push(
3876538774
encodeURIComponent(this.namespace).replace(/%3A/g, ":").replace(/%2F/g, "/")
@@ -38769,7 +38778,7 @@ var require_package_url2 = __commonJS({
3876938778
purl.push(encodeURIComponent(this.name).replace(/%3A/g, ":"));
3877038779
if (this.version) {
3877138780
purl.push("@");
38772-
purl.push(encodeURIComponent(this.version).replace(/%3A/g, ":"));
38781+
purl.push(encodeURIComponent(this.version).replace(/%3A/g, ":").replace(/%2B/g, "+"));
3877338782
}
3877438783
if (this.qualifiers) {
3877538784
purl.push("?");
@@ -38792,7 +38801,8 @@ var require_package_url2 = __commonJS({
3879238801
if (!purl || typeof purl !== "string" || !purl.trim()) {
3879338802
throw new Error("A purl string argument is required.");
3879438803
}
38795-
let [scheme, remainder] = purl.split(":", 2);
38804+
let scheme = purl.slice(0, purl.indexOf(":"));
38805+
let remainder = purl.slice(purl.indexOf(":") + 1);
3879638806
if (scheme !== "pkg") {
3879738807
throw new Error('purl is missing the required "pkg" scheme component.');
3879838808
}
@@ -38825,7 +38835,7 @@ var require_package_url2 = __commonJS({
3882538835
let index = path.indexOf("@");
3882638836
let rawVersion = path.substring(index + 1);
3882738837
version2 = decodeURIComponent(rawVersion);
38828-
let versionEncoded = encodeURIComponent(version2).replace(/%3A/g, ":");
38838+
let versionEncoded = encodeURIComponent(version2).replace(/%3A/g, ":").replace(/%2B/g, "+");
3882938839
if (rawVersion !== versionEncoded) {
3883038840
throw new Error("Invalid purl: version must be percent-encoded");
3883138841
}

package-lock.json

+7-7
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

+1-1
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@
2525
"@actions/core": "^1.10.1",
2626
"@actions/github": "^6.0.0",
2727
"@github/dependency-submission-toolkit": "^1.2.10",
28-
"packageurl-js": "^1.1.1",
28+
"packageurl-js": "^1.2.1",
2929
"zod": "^3.22.4"
3030
},
3131
"devDependencies": {

0 commit comments

Comments
 (0)