Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: Maven plugins and vulnerability fix #32

Merged
merged 2 commits into from
Oct 21, 2024
Merged

fix: Maven plugins and vulnerability fix #32

merged 2 commits into from
Oct 21, 2024

Conversation

pflynn-virtru
Copy link
Member

@pflynn-virtru pflynn-virtru commented Oct 21, 2024
edited
Loading

vulnerability fix GHSA-pfh2-hfmq-phg5, Score: 5.3

Included Maven plugins for generating source JARs, Javadoc JARs, and checksum files across multiple project POMs. Also added a new protobuf Java dependency and updated project URLs in the main POM. These changes enhance build reproducibility and artifact verification.

@pflynn-virtru
Add Maven plugins for source, Javadoc, and checksums
36f7778 
Included Maven plugins for generating source JARs, Javadoc JARs, and checksum files across multiple project POMs. Also added a new protobuf Java dependency and updated project URLs in the main POM. These changes enhance build reproducibility and artifact verification.
@pflynn-virtru pflynn-virtru requested review from a team as code owners October 21, 2024 16:20
@pflynn-virtru pflynn-virtru changed the title chore: Maven plugins for source, Javadoc, and checksums fix: Maven plugins for source, Javadoc, and checksums Oct 21, 2024
@pflynn-virtru pflynn-virtru changed the title fix: Maven plugins for source, Javadoc, and checksums fix: Maven plugins and vulnerability fix Oct 21, 2024
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Oct 21, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

ttschampel
ttschampel approved these changes Oct 21, 2024
View reviewed changes
Copy link
Member

@ttschampel ttschampel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You may be able to just define these in the parent pom and have them propagate down, but looks good to me

@pflynn-virtru pflynn-virtru merged commit fda54ff into main Oct 21, 2024
5 checks passed
@pflynn-virtru pflynn-virtru deleted the chore/javadoc branch October 21, 2024 19:12
@opentdf-automation opentdf-automation bot mentioned this pull request Oct 21, 2024
Merged
pflynn-virtru pushed a commit that referenced this pull request Oct 21, 2024
@opentdf-automation
chore(main): release 0.6.0 (#33)
e5b57fb 
🤖 I have created a release *beep* *boop*
---


<details><summary>0.6.0</summary>

## [0.6.0](v0.5.0...v0.6.0)
(2024-10-21)


### Bug Fixes

* Maven plugins and vulnerability fix
([#32](#32))
([fda54ff](fda54ff))
</details>

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).

Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ttschampel ttschampel ttschampel approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@pflynn-virtru @ttschampel