Implement a Generic Package Latest Version Finder

[kbukum1]

What are you trying to accomplish?

This PR refactors LatestVersionFinder into PackageLatestVersionFinder, making it more generic and reusable across different ecosystems. The primary goal is to move common logic into common, enabling other ecosystems to extend the abstract class without duplicating logic. Additionally, PackageRelease, PackageDetails, and PackageLanguage have been structured in a standard format, allowing Python and other package managers to adopt a unified approach.

What issues does this affect or fix?

• Enables reuse of PackageLatestVersionFinder across ecosystems.
• Moves PackageRelease, PackageDetails, and PackageLanguage into common for broader usage.
• Ensures ecosystem-specific logic remains in fetchers and registries while leveraging the abstract version finder.

Anything you want to highlight for special attention from reviewers?

• The Python implementation has already been adapted to extend the PackageLatestVersionFinder.
• Fetchers and Registries remain specific to each ecosystem while benefiting from shared logic.
• Tests have been updated to reflect the refactoring.

How will you know you've accomplished your goal?

• PackageLatestVersionFinder is successfully used across multiple ecosystems.
• Python and other package managers continue functioning correctly after migration.
• Tests confirm that package metadata retrieval remains accurate and efficient.

Checklist

• I have run the complete test suite to ensure all tests and linters pass.
• I have thoroughly tested my code changes to ensure they work as expected, including adding additional tests for new functionality.
• I have written clear and descriptive commit messages.
• I have provided a detailed description of the changes in the pull request, including the problem it addresses, how it fixes the problem, and any relevant details about the implementation.
• I have ensured that the code is well-documented and easy to understand.

[kbukum1]

Review Tip: Moved into common/lib/dependabot/package

[kbukum1]

Review Tip: Moved into common/lib/dependabot/package

[kbukum1]

Review Tip: Moved into common/lib/dependabot/package

[kbukum1]

Review Tip: Moved into dependabot/package/package_latest_version_finder, Dependabot::Package::PackageLatestVersionFinder abstract class.

[abdulapopoola]

why do we need this? I think we already have a Version class?

[kbukum1]

This is specifically keep information related to language from fetched for release. libraries if written for different language it will also include that. That's why we are keeping the details. You can check here in the following code. Example python library version can have something like CP37 (CPython 3.7), (Python 3.7) and so on.

Language keep information such as language, version and requirement all together for specific release. Currently we are using requirement to filter out versions.

• https://github.com/dependabot/dependabot-core/pull/11675/files#diff-effc7fbf43e30b0f3a829a63060a247de073f83d0075e6392afe5307e1de5a65R339

[abdulapopoola]

maybe call this Release instead?

[kbukum1]

I think Release so general. So was thinking it may mix up with other things?

[abdulapopoola]

Just noticed that this is a refactoring and move of existing code; ignore my earlier comments.

[kbukum1]

Just noticed that this is a refactoring and move of existing code; ignore my earlier comments.

Thanks for the review