Describe the bug
After updating from 1.28.0 to 1.29.1, while NPM and Maven-based environments are still being correctly updated, the Python one (based on requirements.txt) will face the following issue:
/home/dependabot/dependabot-updater/vendor/ruby/3.3.0/gems/dependabot-python-0.260.0/lib/dependabot/python/authed_url_builder.rb:26:in `authed_url': undefined method `sub' for nil (NoMethodError)
url.sub("://", "://#{basic_auth_details}@")
^^^^
from /home/dependabot/dependabot-updater/vendor/ruby/3.3.0/gems/dependabot-python-0.260.0/lib/dependabot/python/file_updater.rb:126:in `block in pip_compile_index_urls'
from /home/dependabot/dependabot-updater/vendor/ruby/3.3.0/gems/dependabot-python-0.260.0/lib/dependabot/python/file_updater.rb:126:in `map'
from /home/dependabot/dependabot-updater/vendor/ruby/3.3.0/gems/dependabot-python-0.260.0/lib/dependabot/python/file_updater.rb:126:in `pip_compile_index_urls'
from /home/dependabot/dependabot-updater/vendor/ruby/3.3.0/gems/dependabot-python-0.260.0/lib/dependabot/python/file_updater.rb:118:in `updated_requirement_based_files'
from /home/dependabot/dependabot-updater/vendor/ruby/3.3.0/gems/dependabot-python-0.260.0/lib/dependabot/python/file_updater.rb:36:in `updated_dependency_files'
from bin/update_script.rb:671:in `block in <main>'
from bin/update_script.rb:549:in `each'
from bin/update_script.rb:549:in `<main>'
Categorization
[x] This is not a permissions issue (We cannot solve permission issues)
To Reproduce
Steps to reproduce the behavior:
Update Dependabot for Azure to 1.29.1
Try running it against a Python, requirements.txt-based repository in DevOps.
Expected behavior
Successful update of Python dependencies in an environment based on a requirement file.
Extension (please complete the following information):
Host: Azure DevOps
Server (please complete the following information):
Region westeurope
Additional context
Looking at the stack trace pasted above, it seems that the issue is caused by changes in Dependabot Core:
Describe the bug After updating from 1.28.0 to 1.29.1, while NPM and Maven-based environments are still being correctly updated, the Python one (based on requirements.txt) will face the following issue:
Categorization
To Reproduce Steps to reproduce the behavior:
Expected behavior Successful update of Python dependencies in an environment based on a requirement file.
Extension (please complete the following information):
Server (please complete the following information):
Additional context Looking at the stack trace pasted above, it seems that the issue is caused by changes in Dependabot Core:
nil
by default: https://github.com/dependabot/dependabot-core/blob/663bc8e8e51f1820697252da7a336283e7b07577/python/lib/dependabot/python/authed_url_builder.rb#L9I will be happy to provide more context if needed.