add a bundler example

jakecoffman · jakecoffman · commit fe6c600d792b · 2025-05-02T16:15:24.000-05:00
diff --git a/.github/dependabot/bundler.yml b/.github/dependabot/bundler.yml
@@ -0,0 +1,29 @@
+# This is the input to Dependabot CLI.
+# For more examples of what you can do, see the smoke tests: https://github.com/dependabot/smoke-tests/tree/main/tests
+
+job:
+  # this is the directory defined in dependabot-core for the ecosystem
+  package-manager: bundler
+  allowed-updates:
+    - dependency-type: direct
+      update-type: all
+  source:
+    provider: github
+    repo: dependabot/example-cli-usage
+    # looks absolute, but this is relative to the root of the repo
+    directory: /bundler-example
+    branch: main
+  dependency-groups:
+    - name: everything
+      rules:
+        - patterns:
+            - "*"
+# credentials are optional, but are used to authenticate with private repos and registries when provided
+credentials:
+  - type: git_source
+    # Most credentials take a url or host
+    host: github.com
+    # Credentials will be either username/password or token
+    username: x-access-token
+    # Dependabot CLI will inject secrets from the environment
+    password: $GITHUB_TOKEN
diff --git a/.github/dependabot/go.yml b/.github/dependabot/go.yml
@@ -14,7 +14,7 @@ job:
     provider: github
     repo: dependabot/example-cli-usage
     # looks absolute, but this is relative to the root of the repo
-    directory: /example
+    directory: /go-example
     branch: main
 # credentials are optional, but are used to authenticate with private repos and registries when provided
 credentials:
diff --git a/.github/workflows/example.yml b/.github/workflows/example.yml
@@ -29,6 +29,7 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: |
           ./dependabot update -f .github/dependabot/go.yml --timeout 20m > result.jsonl || true
+          ./dependabot update -f .github/dependabot/bundler.yml --timeout 20m >> result.jsonl || true
 
       - name: Upload result
         uses: actions/upload-artifact@v4
diff --git a/bundler-example/Gemfile b/bundler-example/Gemfile
@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+source "https://rubygems.org"
+
+gem "rubocop", "0.76.0"
+gem "toml-rb", "2.2.0"
+gem 'rack', git: 'git@github.com:rack/rack.git', tag: '2.1.4'
diff --git a/bundler-example/Gemfile.lock b/bundler-example/Gemfile.lock
@@ -0,0 +1,39 @@
+GIT
+  remote: git@github.com:rack/rack.git
+  revision: f3cf79d6460dc592767941806d1b2b7008f73e01
+  tag: 2.1.4
+  specs:
+    rack (2.1.4)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    ast (2.4.2)
+    citrus (3.0.2)
+    jaro_winkler (1.5.4)
+    parallel (1.22.1)
+    parser (3.1.2.0)
+      ast (~> 2.4.1)
+    rainbow (3.1.1)
+    rubocop (0.76.0)
+      jaro_winkler (~> 1.5.1)
+      parallel (~> 1.10)
+      parser (>= 2.6)
+      rainbow (>= 2.2.2, < 4.0)
+      ruby-progressbar (~> 1.7)
+      unicode-display_width (>= 1.4.0, < 1.7)
+    ruby-progressbar (1.11.0)
+    toml-rb (2.2.0)
+      citrus (~> 3.0, > 3.0)
+    unicode-display_width (1.6.1)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  rack!
+  rubocop (= 0.76.0)
+  toml-rb (= 2.2.0)
+
+BUNDLED WITH
+   2.1.4
diff --git a/go-example/README.md b/go-example/README.md
diff --git a/go-example/go.mod b/go-example/go.mod
diff --git a/go-example/go.sum b/go-example/go.sum
diff --git a/go-example/main.go b/go-example/main.go
@@ -1,4 +1,4 @@
-package example
+package go_example
 
 import (
 	_ "golang.org/x/net/html"

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-package example`
	`1`	`+package go_example`
`2`	`2`
`3`	`3`	`import (`
`4`	`4`	`_ "golang.org/x/net/html"`