Skip to content

Add a uv graph job smoke test #387

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
Nishnha merged 3 commits into from
Mar 9, 2026
Merged

Add a uv graph job smoke test #387

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
45a96e1
Add a smoke uv graph job test
Nishnha Mar 3, 2026
19bd459
Update commit ref
Nishnha Mar 3, 2026
df06024
Fix detector version
Nishnha Mar 9, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
144 changes: 144 additions & 0 deletions tests/smoke-uv-graph.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,144 @@
input:
job:
command: graph
package-manager: uv
allowed-updates:
- update-type: all
experiments:
enable_dependency_submission_poc: true
source:
provider: github
repo: dependabot/smoke-tests
directories:
- uv
commit: 45a96e140b9237c96ef6df790c6f08ba6113e18f
hostname: github.com
api-endpoint: https://api.github.com
credentials:
- host: github.com
password: $LOCAL_GITHUB_ACCESS_TOKEN
type: git_source
username: x-access-token
output:
- type: create_dependency_submission
expect:
data:
version: 1
sha: 45a96e140b9237c96ef6df790c6f08ba6113e18f
ref: refs/heads/main
job:
correlator: dependabot-uv-uv
id: cli
detector:
name: dependabot
url: https://github.com/dependabot/dependabot-core
version: 0.364.0
manifests:
/uv/pyproject.toml:
file:
source_location: uv/pyproject.toml
metadata:
ecosystem: pypi
name: /uv/pyproject.toml
resolved:
pkg:pypi/blinker@1.9.0:
dependencies: []
package_url: pkg:pypi/blinker@1.9.0
relationship: indirect
scope: runtime
pkg:pypi/certifi@2026.2.25:
dependencies: []
package_url: pkg:pypi/certifi@2026.2.25
relationship: indirect
scope: runtime
pkg:pypi/charset-normalizer@3.4.4:
dependencies: []
package_url: pkg:pypi/charset-normalizer@3.4.4
relationship: indirect
scope: runtime
pkg:pypi/click@8.3.1:
dependencies:
- pkg:pypi/colorama@0.4.6
package_url: pkg:pypi/click@8.3.1
relationship: indirect
scope: runtime
pkg:pypi/colorama@0.4.6:
dependencies: []
package_url: pkg:pypi/colorama@0.4.6
relationship: indirect
scope: runtime
pkg:pypi/flask@3.1.3:
dependencies:
- pkg:pypi/blinker@1.9.0
- pkg:pypi/click@8.3.1
- pkg:pypi/itsdangerous@2.2.0
- pkg:pypi/jinja2@3.1.6
- pkg:pypi/markupsafe@3.0.3
- pkg:pypi/werkzeug@3.1.6
package_url: pkg:pypi/flask@3.1.3
relationship: direct
scope: runtime
pkg:pypi/idna@3.11:
dependencies: []
package_url: pkg:pypi/idna@3.11
relationship: indirect
scope: runtime
pkg:pypi/itsdangerous@2.2.0:
dependencies: []
package_url: pkg:pypi/itsdangerous@2.2.0
relationship: indirect
scope: runtime
pkg:pypi/jinja2@3.1.6:
dependencies:
- pkg:pypi/markupsafe@3.0.3
package_url: pkg:pypi/jinja2@3.1.6
relationship: indirect
scope: runtime
pkg:pypi/markupsafe@3.0.3:
dependencies: []
package_url: pkg:pypi/markupsafe@3.0.3
relationship: indirect
scope: runtime
pkg:pypi/requests@2.32.5:
dependencies:
- pkg:pypi/certifi@2026.2.25
- pkg:pypi/charset-normalizer@3.4.4
- pkg:pypi/idna@3.11
- pkg:pypi/urllib3@2.6.3
package_url: pkg:pypi/requests@2.32.5
relationship: direct
scope: runtime
pkg:pypi/ruff@0.15.4:
dependencies: []
package_url: pkg:pypi/ruff@0.15.4
relationship: direct
scope: development
pkg:pypi/ty@0.0.20:
dependencies: []
package_url: pkg:pypi/ty@0.0.20
relationship: direct
scope: development
pkg:pypi/urllib3@2.6.3:
dependencies: []
package_url: pkg:pypi/urllib3@2.6.3
relationship: indirect
scope: runtime
pkg:pypi/uv@0.1.0:
dependencies:
- pkg:pypi/flask@3.1.3
- pkg:pypi/requests@2.32.5
package_url: pkg:pypi/uv@0.1.0
relationship: indirect
scope: runtime
pkg:pypi/werkzeug@3.1.6:
dependencies:
- pkg:pypi/markupsafe@3.0.3
package_url: pkg:pypi/werkzeug@3.1.6
relationship: indirect
scope: runtime
metadata:
status: ok
- type: mark_as_processed
expect:
data:
base-commit-sha: 45a96e140b9237c96ef6df790c6f08ba6113e18f
16 changes: 16 additions & 0 deletions uv/pyproject.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
[project]
name = "uv"
version = "0.1.0"
description = "Add your description here"
readme = "README.md"
requires-python = ">=3.10"
dependencies = [
"flask>=3.1.3",
"requests>=2.32.5",
]

[dependency-groups]
dev = [
"ruff>=0.15.4",
"ty>=0.0.20",
]
Loading