-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the maven-build-plugins group across 1 directory with 9 updates #52
Bump the maven-build-plugins group across 1 directory with 9 updates #52
Conversation
Bumps the maven-build-plugins group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | [org.apache.maven.plugins:maven-enforcer-plugin](https://github.com/apache/maven-enforcer) | `3.4.1` | `3.5.0` | | [org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin) | `3.3.0` | `3.4.1` | | [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) | `3.3.0` | `3.3.1` | | [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.6.3` | `3.7.0` | | [org.apache.maven.plugins:maven-shade-plugin](https://github.com/apache/maven-shade-plugin) | `3.5.2` | `3.6.0` | | [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) | `9.1.0` | `9.2.0` | | [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.11` | `0.8.12` | | [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.2.2` | `3.2.4` | | org.sonatype.plugins:nexus-staging-maven-plugin | `1.6.13` | `1.7.0` | Updates `org.apache.maven.plugins:maven-enforcer-plugin` from 3.4.1 to 3.5.0 - [Release notes](https://github.com/apache/maven-enforcer/releases) - [Commits](apache/maven-enforcer@enforcer-3.4.1...enforcer-3.5.0) Updates `org.apache.maven.plugins:maven-jar-plugin` from 3.3.0 to 3.4.1 - [Release notes](https://github.com/apache/maven-jar-plugin/releases) - [Commits](apache/maven-jar-plugin@maven-jar-plugin-3.3.0...maven-jar-plugin-3.4.1) Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.0 to 3.3.1 - [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.0...maven-source-plugin-3.3.1) Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.6.3 to 3.7.0 - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.6.3...maven-javadoc-plugin-3.7.0) Updates `org.apache.maven.plugins:maven-shade-plugin` from 3.5.2 to 3.6.0 - [Release notes](https://github.com/apache/maven-shade-plugin/releases) - [Commits](apache/maven-shade-plugin@maven-shade-plugin-3.5.2...maven-shade-plugin-3.6.0) Updates `org.owasp:dependency-check-maven` from 9.1.0 to 9.2.0 - [Release notes](https://github.com/jeremylong/DependencyCheck/releases) - [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md) - [Commits](jeremylong/DependencyCheck@v9.1.0...v9.2.0) Updates `org.jacoco:jacoco-maven-plugin` from 0.8.11 to 0.8.12 - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](jacoco/jacoco@v0.8.11...v0.8.12) Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.2.2 to 3.2.4 - [Release notes](https://github.com/apache/maven-gpg-plugin/releases) - [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.2.2...maven-gpg-plugin-3.2.4) Updates `org.sonatype.plugins:nexus-staging-maven-plugin` from 1.6.13 to 1.7.0 --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-enforcer-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-build-plugins - dependency-name: org.apache.maven.plugins:maven-jar-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-build-plugins - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-build-plugins - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-build-plugins - dependency-name: org.apache.maven.plugins:maven-shade-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-build-plugins - dependency-name: org.owasp:dependency-check-maven dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-build-plugins - dependency-name: org.jacoco:jacoco-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-build-plugins - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: maven-build-plugins - dependency-name: org.sonatype.plugins:nexus-staging-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: maven-build-plugins ... Signed-off-by: dependabot[bot] <support@github.com>
Important Review skippedBot user detected. To trigger a single review, invoke the You can disable this status message by setting the Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media? TipsChatThere are 3 ways to chat with CodeRabbit:
Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments. CodeRabbit Commands (invoked as PR comments)
Additionally, you can add CodeRabbit Configration File (
|
@dependabot squash & merge |
Bumps the maven-build-plugins group with 9 updates in the / directory:
3.4.1
3.5.0
3.3.0
3.4.1
3.3.0
3.3.1
3.6.3
3.7.0
3.5.2
3.6.0
9.1.0
9.2.0
0.8.11
0.8.12
3.2.2
3.2.4
1.6.13
1.7.0
Updates
org.apache.maven.plugins:maven-enforcer-plugin
from 3.4.1 to 3.5.0Release notes
Sourced from org.apache.maven.plugins:maven-enforcer-plugin's releases.
Commits
21b31b5
[maven-release-plugin] prepare release enforcer-3.5.0e6cd6e9
Remove unused dependency (#316)29d1c0d
[MENFORCER-497] Require Maven 3.6.3+80e6626
[MENFORCER-503] Pass context to ProfileActivator - fix NPE in Maven 3.9.75c7d0bc
[MENFORCER-494] Allow banning dynamic versions in whole tree (#294)e687c46
[MENFORCER-501] Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#311)6665083
[MENFORCER-501] Bump commons-codec:commons-codec from 1.16.1 to 1.17.0 (#312)3eb6343
Bump project version to 3.5.0-SNAPSHOT1cf5c5f
[MENFORCER-504] Bump org.apache.maven:maven-parent from 41 to 42 (#314)a24b557
Manage ignore artifacts for dependabot in PRUpdates
org.apache.maven.plugins:maven-jar-plugin
from 3.3.0 to 3.4.1Release notes
Sourced from org.apache.maven.plugins:maven-jar-plugin's releases.
Commits
8b29adc
[maven-release-plugin] prepare release maven-jar-plugin-3.4.1325b299
[MJAR-308] Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (#85)52111cc
[MJAR-307] Wrong version of commons-io cause a ClassNotFound o.a.commons.io.f...902d4c5
[maven-release-plugin] prepare for next development iteration992f44a
[maven-release-plugin] prepare release maven-jar-plugin-3.4.05e31b99
[MJAR-296] Allow including files excluded by default. (#67)ddfb635
[MJAR-306] Use properties for plugins versions in LifecycleMappingaeffa39
[MJAR-304] Refresh download pageee85d59
[MJAR-303] Cleanup declared dependencies845c120
Bump org.junit:junit-bom from 5.10.1 to 5.10.2Updates
org.apache.maven.plugins:maven-source-plugin
from 3.3.0 to 3.3.1Commits
f80596e
[maven-release-plugin] prepare release maven-source-plugin-3.3.17626998
Bump apache/maven-gh-actions-shared from 3 to 483c963c
Bump org.apache.maven.plugins:maven-plugins from 39 to 41 (#18)40ae495
Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.1 (#20)073462b
Bump org.apache.maven:maven-archiver from 3.6.0 to 3.6.1 (#21)0b1c823
Fix typos in AbstractSourceJarMojo exception099c65a
[MSOURCES-142] Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (...1edeea4
[MSOURCES-139] Fix typo in AbstractSourceJarMojo exception436966e
[maven-release-plugin] prepare for next development iterationUpdates
org.apache.maven.plugins:maven-javadoc-plugin
from 3.6.3 to 3.7.0Commits
2c28b8d
[maven-release-plugin] prepare release maven-javadoc-plugin-3.7.05530d68
[MJAVADOC-793] java.lang.NullPointerException: Cannot invoke "String.length()...08cf68e
Revert "Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2"6446822
Bump org.apache.maven.shared:maven-invoker from 3.2.0 to 3.3.049c93ad
Bump org.assertj:assertj-core from 3.25.3 to 3.26.04e72048
[MJAVADOC-795] Upgrade to Parent 42 and Maven 3.6.3b55dd96
Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.277ad410
Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0c21568a
Bump commons-io:commons-io from 2.16.0 to 2.16.1ded56a9
Exclude JDK 8 - temurin, adopt-openj9 on macosUpdates
org.apache.maven.plugins:maven-shade-plugin
from 3.5.2 to 3.6.0Commits
9a572e2
[maven-release-plugin] prepare release maven-shade-plugin-3.6.0ade2e35
[MSHADE-428] Prevent null value in array of transformers (#229)b573b8c
[MSHADE-478] Extra JARs feature (#228)199ffae
Drop the cruft (#225)912a81d
Bump maven-gh-actions-shared to v480e4420
[maven-release-plugin] prepare for next development iteration19618cd
[maven-release-plugin] prepare release maven-shade-plugin-3.5.3faf233e
[MSHADE-472] upgrade parent POM7de9ae7
[MSHADE-471] deal with DST58d8cfe
[MSHADE-470] Bump asmVersion from 9.6 to 9.7 (#218)Updates
org.owasp:dependency-check-maven
from 9.1.0 to 9.2.0Release notes
Sourced from org.owasp:dependency-check-maven's releases.
Changelog
Sourced from org.owasp:dependency-check-maven's changelog.
Commits
192b4cd
build: prepare release v9.2.0e50e20d
docs: update changelog5ce66cf
build(deps): bump org.apache.maven.plugin-tools:maven-plugin-annotations from...61edfd1
docs: update logo per intellj (#6660)8b1746e
build(deps): bump com.github.spotbugs:spotbugs-annotations from 4.8.4 to 4.8....754dec1
build(deps): bump maven-plugin-plugin (#6646)969bc27
build(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from ...57b916a
build(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.4.0 to 4...9c9c466
build(deps): bump commons-codec:commons-codec from 1.16.1 to 1.17.0 (#6633)e26096d
build(deps): bump commons-cli:commons-cli from 1.6.0 to 1.7.0 (#6629)Updates
org.jacoco:jacoco-maven-plugin
from 0.8.11 to 0.8.12Release notes
Sourced from org.jacoco:jacoco-maven-plugin's releases.
Commits
dbfb6f2
Prepare release 0.8.12a50585b
Upgrade maven-plugin-plugin to 3.6.4 (#1604)fd63cc5
Configure labels that Dependabot assigns to PRs (#1603)03a5333
Add configuration for Dependabot to simplify updates of ASM (#1601)40ff9fb
Upgrade ASM to 9.7 (#1600)9077178
Happy birthday Java 22! (#1596)7edd1b5
Bump actions/setup-java from 4.1.0 to 4.2.1 (#1594)e50b547
Upgrade ECJ to 3.37.0 (#1590)a1144d0
Upgrade maven-site-plugin to 3.12.1 (#1586)04b0141
Bump actions/setup-java from 4.0.0 to 4.1.0 (#1587)Updates
org.apache.maven.plugins:maven-gpg-plugin
from 3.2.2 to 3.2.4Release notes
Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.
... (truncated)
Commits
789149e
[maven-release-plugin] prepare release maven-gpg-plugin-3.2.4893aedc
[MGPG-125] Fix "bestPractices" (#95)b6f0324
[MGPG-126] Bump commons-io:commons-io from 2.16.0 to 2.16.1 (#94)3c5878b
[maven-release-plugin] prepare for next development iteration89b91a4
[maven-release-plugin] prepare release maven-gpg-plugin-3.2.3fc2efa3
[MGPG-123][MGPG-124] Dependency upgrades (#93)50222d3
[MGPG-120] New mojo sign-deployed (#88)a6c3a09
[MGPG-122] Bump org.apache.maven.plugins:maven-invoker-plugin from 3.6.0 to 3...78f5e37
[MGPG-121] Return the workaround for pseudo security (#90)582df74
[MGPG-117] Improve passphrase handling (#86)Updates
org.sonatype.plugins:nexus-staging-maven-plugin
from 1.6.13 to 1.7.0Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions