Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the build-dependencies group with 7 updates #4361

Merged
merged 1 commit into from
Oct 22, 2024
Merged

Bump the build-dependencies group with 7 updates #4361

merged 1 commit into from
Oct 22, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 22, 2024

Bumps the build-dependencies group with 7 updates:

Package From To
org.asciidoctor:asciidoctorj-pdf 2.3.18 2.3.19
org.apache.maven.plugins:maven-project-info-reports-plugin 3.7.0 3.8.0
org.owasp:dependency-check-maven 10.0.4 11.0.0
org.junit:junit-bom 5.11.2 5.11.3
org.mockito:mockito-junit-jupiter 5.14.1 5.14.2
org.mockito:mockito-core 5.14.1 5.14.2
com.mysql:mysql-connector-j 9.0.0 9.1.0

Updates org.asciidoctor:asciidoctorj-pdf from 2.3.18 to 2.3.19

Commits

Updates org.apache.maven.plugins:maven-project-info-reports-plugin from 3.7.0 to 3.8.0

Commits
  • 5008104 [maven-release-plugin] prepare release maven-project-info-reports-plugin-3.8.0
  • 3809b11 [MPIR-470] Upgrade to Doxia 2.0.0 GA Stack
  • be10448 (doc) Added config for Dependabot
  • 9def033 [MPIR-469] Broken link to Git documentation page
  • 6fcd932 use new Reproducible Central badge endpoint
  • 272ce09 [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Updates org.owasp:dependency-check-maven from 10.0.4 to 11.0.0

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 11.0.0

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 11.0.0 (2024-10-21)

  • breaking change: Switch from JMockit to Mockito & build target to Java 11 (#6922)
    • dependency-check now requires a minimum of Java 11.0 to run
  • breaking change: bump com.h2database:h2 from 2.1.214 to 2.3.232 (#6132)
    • H2 databases generated with an older version of ODC will not work with ODC 11.0.0; a new H2 db must be generated
  • feat: Replace old Downloader by an Apache HTTPClient based downloader
  • feat: Use Apache HTTPClient for downloads of public resources (#6949)
  • feat: Also make NodeAuditSearch usr our HTTPClient based connections
  • feat: Also make OSSIndexAnalyzer use our HTTPClient based connections
  • feat: Migrate CentralSearch to use Apache HTTP-client via Downloader
  • feat: Extend apache HTTP-client usage to EngineVersionCheck
  • feat: Remove the need to specify dbDriver for external databases using JDBCv4 ServiceLoader supporting JDBC drivers (#6938)
  • fix: use latest generated suppressions (#7064)
  • fix: Fixup parameter sequence for Dowloader credentials (#7033)
  • fix: Fixup the missing addition of NVD API Datafeed credentials (if configured)
  • fix: Fixup broken proxy authentication in first attempt; extend to include KEV downloads
  • fix: store timestamps locally for local resources (#6936)
  • build: Remove the animal-sniffer, propagate java version to plugin-archetype (#6950)
  • build: Update Checkstyle configuration and Suppression DTD references (#6951)
  • chore: Update test db schema (#7036)
  • chore: remove old, unneeded database upgrade script
  • docs: reformat javadoc (#7009)
  • docs: Fixup javadoc warnings (#6995)
  • chore: Replace use of several deprecated methods/classes by their successors (#6933)

See the full listing of changes.

Commits
  • db79571 build: prepare release v11.0.0
  • ab479cf docs: update release notes
  • 2b36c82 fix: use latest generated suppressions (#7064)
  • 30eb04e chore: Remove unnecessary mysql-connector suppressions (#7059)
  • 26bd04c build(deps): bump com.github.spotbugs:spotbugs-annotations from 4.8.5 to 4.8....
  • bc1cc54 build(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from ...
  • 3734db6 build(deps): bump org.apache.httpcomponents.client5:httpclient5 from 5.3.1 to...
  • b126e35 build(deps): bump org.apache.maven.plugins:maven-deploy-plugin from 3.1.2 to ...
  • 46f1c72 build(deps): bump org.apache.maven.plugins:maven-deploy-plugin
  • d0d169e build(deps): bump org.apache.httpcomponents.client5:httpclient5
  • Additional commits viewable in compare view

Updates org.junit:junit-bom from 5.11.2 to 5.11.3

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.2...r5.11.3

Commits
  • b20991e Release 5.11.3
  • e57b508 Finalize 5.11.3 release notes
  • fb1254c Allow repeating ExtendWith annotation on fields and parameters
  • a3192bd Fix package name comparison on Java 8 (#4077)
  • fcb7b01 Remove useless Order annotation
  • 57dfcb5 Allow repeating @…Source annotations when used as meta annotations
  • 09cd8b3 Add ArchUnit test for consistency of repeatable annotations
  • fa46a92 Hard-wrap at 90 characters
  • 8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
  • b451122 Introduce release notes for 5.11.3
  • Additional commits viewable in compare view

Updates org.mockito:mockito-junit-jupiter from 5.14.1 to 5.14.2

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.14.2

Changelog generated by Shipkit Changelog Gradle Plugin

5.14.2

Commits
  • 7834859 Update nexusPublishing to use project.group(#3470)
  • 297d147 Bump org.jetbrains.kotlin:kotlin-stdlib from 2.0.20 to 2.0.21 (#3468)
  • 6a72b10 Bump bytebuddy from 1.15.3 to 1.15.4 (#3467)
  • 68ca2f8 Bump biz.aQute.bnd:biz.aQute.bnd.gradle from 6.4.0 to 7.0.0 (#3136)
  • 147c599 Bump junit-jupiter from 5.11.1 to 5.11.2 (#3461)
  • 9942641 Avoid attach warning if Byte Buddy is configured for command-line attach. (#3...
  • 560d855 Removes deprecated and now unused gradle/root/gradle-fix.gradle
  • 1c0b04b Rename extension modules with mockito- prefix (#3460)
  • ab32438 Move core sources to mockito-core
  • 61dcd83 Switch gradleEnterprise to develocity
  • Additional commits viewable in compare view

Updates org.mockito:mockito-core from 5.14.1 to 5.14.2

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.14.2

Changelog generated by Shipkit Changelog Gradle Plugin

5.14.2

Commits
  • 7834859 Update nexusPublishing to use project.group(#3470)
  • 297d147 Bump org.jetbrains.kotlin:kotlin-stdlib from 2.0.20 to 2.0.21 (#3468)
  • 6a72b10 Bump bytebuddy from 1.15.3 to 1.15.4 (#3467)
  • 68ca2f8 Bump biz.aQute.bnd:biz.aQute.bnd.gradle from 6.4.0 to 7.0.0 (#3136)
  • 147c599 Bump junit-jupiter from 5.11.1 to 5.11.2 (#3461)
  • 9942641 Avoid attach warning if Byte Buddy is configured for command-line attach. (#3...
  • 560d855 Removes deprecated and now unused gradle/root/gradle-fix.gradle
  • 1c0b04b Rename extension modules with mockito- prefix (#3460)
  • ab32438 Move core sources to mockito-core
  • 61dcd83 Switch gradleEnterprise to develocity
  • Additional commits viewable in compare view

Updates org.mockito:mockito-core from 5.14.1 to 5.14.2

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.14.2

Changelog generated by Shipkit Changelog Gradle Plugin

5.14.2

Commits
  • 7834859 Update nexusPublishing to use project.group(#3470)
  • 297d147 Bump org.jetbrains.kotlin:kotlin-stdlib from 2.0.20 to 2.0.21 (#3468)
  • 6a72b10 Bump bytebuddy from 1.15.3 to 1.15.4 (#3467)
  • 68ca2f8 Bump biz.aQute.bnd:biz.aQute.bnd.gradle from 6.4.0 to 7.0.0 (#3136)
  • 147c599 Bump junit-jupiter from 5.11.1 to 5.11.2 (#3461)
  • 9942641 Avoid attach warning if Byte Buddy is configured for command-line attach. (#3...
  • 560d855 Removes deprecated and now unused gradle/root/gradle-fix.gradle
  • 1c0b04b Rename extension modules with mockito- prefix (#3460)
  • ab32438 Move core sources to mockito-core
  • 61dcd83 Switch gradleEnterprise to develocity
  • Additional commits viewable in compare view

Updates com.mysql:mysql-connector-j from 9.0.0 to 9.1.0

Changelog

Sourced from com.mysql:mysql-connector-j's changelog.

Changelog

https://dev.mysql.com/doc/relnotes/connector-j/en/

Version 9.1.0

  • Fix for Bug#116114 (Bug#37067812), Connector/J is writing incorrect values when passed negative dates.

  • Fix for Bug#96623 (Bug#30221117), batch update with rewriteBatchedStatements&useServerPrepStmts send fail request.

  • Fix for Bug#114705 (Bug#36539680), Contribution: make trustStorePassword be null if this.trustStoreSettings.keyStorePassword is null. Thanks to Jesper Blomquist for his contribution.

  • Fix for Bug#84117 (Bug#25247468), includeThreadNamesAsStatementComment ignored when using prepared statement. Thanks to Yyjun Yyjun for his contribution.

  • Fix for Bug#101054 (Bug#32544786), Batched Query > maxAllowedPacket size causes an ArrayIndexOutOfBoundsException.

  • Fix for Bug#108415 (Bug#34579258), NullPointerException in AbstractQuery::stopQueryTimer. Thanks to Anthony Milbourne for his contribution.

  • Fix for Bug#115265 (Bug#36843227), Second stored procedure call with cacheCallableStmts might fail.

  • Fix for Bug#36936407, PrepareCall method doesn't work as expected when DB name is involved.

  • WL#16490, OpenID Connect authentication support.

  • Fix for Bug#112790 (Bug#35936477), Statement.getGeneratedKeys() returns unexpected value.

  • Fix for Bug#113509 (Bug#36154975), closeOnCompletion cause no statement reuse and server memory leak.

  • Fix for Bug#109418 (Bug#36043556), batch insert threw an unexpected exception.

  • Fix for Bug#114410 (Bug#36434816), Code performance issue.

  • Fix for Bug#110586 (Bug#35254470), got unexpected result when the data type was set to ZEROFILL.

Version 9.0.0

  • WL#16391, Upgrade 3rd party libraries and tools.

  • Fix for Bug#114800 (Bug#36576596), Wrong code by an old patch.

  • Fix for Bug#114846 (Bug#36574322), Auto-closeable X dev session. Thanks to Daniel Kec for his contribution.

  • Fix for Bug#114989 (Bug#36612566), Setting null value in setClientInfo throws an NPE.

  • WL#16376, Set 'caching_sha2_password' as default fallback authentication plugin.

  • WL#16342, Update MySQL error codes mapping.

... (truncated)

Commits
  • cf2917e Update for CONTRIBUTING and README files, and new file SECURITY.md.
  • cc462a6 WL#16490, OpenID Connect authentication support - documentation review.
  • f545ee7 Update for GPL license book.
  • 9af2df7 Fix for Bug#116114 (Bug#37067812), Connector/J is writing incorrect values wh...
  • 03dedd7 Fix for Bug#96623 (Bug#30221117), batch update with rewriteBatchedStatements&...
  • 5530fb9 Fix for Bug#114705 (Bug#36539680), Contribution: make trustStorePassword be n...
  • c3c536a Fix for Bug#84117 (Bug#25247468), includeThreadNamesAsStatementComment ignore...
  • 288db53 Fix for Bug#101054 (Bug#32544786), Batched Query > maxAllowedPacket size caus...
  • 1b317cf Fix for Bug#108415 (Bug#34579258), NullPointerException in AbstractQuery::sto...
  • 5a27bc4 Fix for Bug#115265 (Bug#36843227), Second stored procedure call with cacheCal...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the build-dependencies group with 7 updates
a8261f0 
Bumps the build-dependencies group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [org.asciidoctor:asciidoctorj-pdf](https://github.com/asciidoctor/asciidoctorj-pdf) | `2.3.18` | `2.3.19` |
| [org.apache.maven.plugins:maven-project-info-reports-plugin](https://github.com/apache/maven-project-info-reports-plugin) | `3.7.0` | `3.8.0` |
| [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) | `10.0.4` | `11.0.0` |
| [org.junit:junit-bom](https://github.com/junit-team/junit5) | `5.11.2` | `5.11.3` |
| [org.mockito:mockito-junit-jupiter](https://github.com/mockito/mockito) | `5.14.1` | `5.14.2` |
| [org.mockito:mockito-core](https://github.com/mockito/mockito) | `5.14.1` | `5.14.2` |
| [com.mysql:mysql-connector-j](https://github.com/mysql/mysql-connector-j) | `9.0.0` | `9.1.0` |


Updates `org.asciidoctor:asciidoctorj-pdf` from 2.3.18 to 2.3.19
- [Release notes](https://github.com/asciidoctor/asciidoctorj-pdf/releases)
- [Changelog](https://github.com/asciidoctor/asciidoctorj-pdf/blob/main/CHANGELOG.adoc)
- [Commits](asciidoctor/asciidoctorj-pdf@v2.3.18...v2.3.19)

Updates `org.apache.maven.plugins:maven-project-info-reports-plugin` from 3.7.0 to 3.8.0
- [Commits](apache/maven-project-info-reports-plugin@maven-project-info-reports-plugin-3.7.0...maven-project-info-reports-plugin-3.8.0)

Updates `org.owasp:dependency-check-maven` from 10.0.4 to 11.0.0
- [Release notes](https://github.com/jeremylong/DependencyCheck/releases)
- [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md)
- [Commits](jeremylong/DependencyCheck@v10.0.4...v11.0.0)

Updates `org.junit:junit-bom` from 5.11.2 to 5.11.3
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](junit-team/junit5@r5.11.2...r5.11.3)

Updates `org.mockito:mockito-junit-jupiter` from 5.14.1 to 5.14.2
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](mockito/mockito@v5.14.1...v5.14.2)

Updates `org.mockito:mockito-core` from 5.14.1 to 5.14.2
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](mockito/mockito@v5.14.1...v5.14.2)

Updates `org.mockito:mockito-core` from 5.14.1 to 5.14.2
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](mockito/mockito@v5.14.1...v5.14.2)

Updates `com.mysql:mysql-connector-j` from 9.0.0 to 9.1.0
- [Changelog](https://github.com/mysql/mysql-connector-j/blob/release/9.x/CHANGES)
- [Commits](mysql/mysql-connector-j@9.0.0...9.1.0)

---
updated-dependencies:
- dependency-name: org.asciidoctor:asciidoctorj-pdf
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build-dependencies
- dependency-name: org.apache.maven.plugins:maven-project-info-reports-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: build-dependencies
- dependency-name: org.owasp:dependency-check-maven
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: build-dependencies
- dependency-name: org.junit:junit-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build-dependencies
- dependency-name: org.mockito:mockito-junit-jupiter
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build-dependencies
- dependency-name: org.mockito:mockito-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build-dependencies
- dependency-name: org.mockito:mockito-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build-dependencies
- dependency-name: com.mysql:mysql-connector-j
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: build-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Oct 22, 2024
@marko-bekhta marko-bekhta merged commit 3776083 into main Oct 22, 2024
7 checks passed
@dependabot dependabot bot deleted the dependabot/maven/build-dependencies-7aeebcab27 branch October 22, 2024 09:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@marko-bekhta marko-bekhta marko-bekhta approved these changes

Assignees

@marko-bekhta marko-bekhta

Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@marko-bekhta