SB-53416 - Handle 2021-2023 Dependabot Updates for Streaming Maven Plugin #44
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…r Cloud Software Group
…ugin Updated: - plexus-archiver -> 4.8 - apache-commons-compress -> 1.21 - apache-maven-core -> 3.6.0 Removed line referencing deleted plexus archiver method.
…ugin Upgrade Maven core to match Studio, and to a version with plexus-cipher.
…ugin Specific packages updated for this ticket: - plexus-archiver -> 4.8 - apache-commons-compress -> 1.21 - guava-android -> 30.0 Also updated most other packages which were behind versions. Removed line referencing deleted plexus archiver method. Could Not upgrade the following packages at this time due to them causing significant test/build failures (Which I could not resolve). - maven-artifact-transfer (local test issues) - maven-model (local test issues) - maven-core (local test issues) - maven-compat (local test issues) - maven-assembly-plugin (local build fail) - maven-dependency-plugin (SBRT build fail) - maven-plugin-plugin (SBRT build fail)
…ugin Took so long to resolve, a new guava vulnerability was discovered :) - guava-android -> 32.0
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
https://jira.tibco.com/browse/SB-53416
Had to remove a line from InstallProductMojo.java, since it referenced a now deprecated/deleted plexus archiver method.