Bump the dependencies group across 1 directory with 21 updates #2019

dependabot · 2024-09-23T06:36:33Z

Bumps the dependencies group with 21 updates in the / directory:

Package	From	To
ch.qos.logback:logback-classic	`1.5.6`	`1.5.8`
com.google.guava:guava	`33.2.1-jre`	`33.3.0-jre`
commons-io:commons-io	`2.16.1`	`2.17.0`
de.fraunhofer.iosb.ilt:Configurable	`0.35`	`0.36`
org.apache.commons:commons-lang3	`3.15.0`	`3.17.0`
org.jooq:jooq	`3.19.10`	`3.19.11`
org.jooq:jooq-codegen	`3.19.10`	`3.19.11`
org.jooq:jooq-meta	`3.19.10`	`3.19.11`
org.junit:junit-bom	`5.10.3`	`5.11.0`
org.junit.platform:junit-platform-suite	`1.10.3`	`1.11.0`
org.keycloak:keycloak-servlet-filter-adapter	`24.0.5`	`25.0.3`
org.liquibase:liquibase-core	`4.29.1`	`4.29.2`
org.postgresql:postgresql	`42.7.3`	`42.7.4`
org.slf4j:jul-to-slf4j	`2.0.13`	`2.0.16`
org.slf4j:slf4j-api	`2.0.13`	`2.0.16`
org.apache.maven.plugins:maven-dependency-plugin	`3.7.1`	`3.8.0`
org.codehaus.mojo:exec-maven-plugin	`3.3.0`	`3.4.1`
org.owasp:dependency-check-maven	`10.0.3`	`10.0.4`
org.apache.maven.plugins:maven-surefire-plugin	`3.3.1`	`3.5.0`
org.apache.maven.plugins:maven-javadoc-plugin	`3.8.0`	`3.10.0`
org.apache.maven.plugins:maven-gpg-plugin	`3.2.4`	`3.2.6`

Updates ch.qos.logback:logback-classic from 1.5.6 to 1.5.8

Commits

92e1a5e prepare release 1.5.8
76d8dd8 Update README.md, comment out CI action results
d7e0d59 Merge branch 'master' of github.com:qos-ch/logback
fe3bf9d os.name property is expected to be Mac OS X on Apple computers
9806273 Update README.md
c45f110 check for Mac OS X
00c6f5e what is the os.name
7d03a42 update actions/setup
edacb3b skip email sent termination test on MacOs
3b5d041 allow more time for timetout
Additional commits viewable in compare view

Updates com.google.guava:guava from 33.2.1-jre to 33.3.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.3.0

Maven
<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.3.0-jre</version>
  
  <version>33.3.0-android</version>
</dependency>
Jar files

33.3.0-jre.jar

33.3.0-android.jar

Guava requires one runtime dependency, which you can download here:

failureaccess-1.0.1.jar

Javadoc

33.3.0-jre

33.3.0-android

JDiff

33.3.0-jre vs. 33.2.1-jre

33.3.0-android vs. 33.2.1-android

33.3.0-android vs. 33.3.0-jre

Changelog

base: Removed @Beta from the Duration overload of Suppliers.memoizeWithExpiration. (76fca99db95ce9c8e55bb9c37fd0e44ef0451a80)

cache: Added CacheBuilder Duration overloads to guava-android. (a5f9bcafd6)

collect: Removed @Beta from the guava-android Collector APIs. (c86c09dc3d)

collect: Added ImmutableMultimap.builderWithExpectedKeys and ImmutableMultimap.Builder.expectedValuesPerKey. (c3d5b17dc2)

graph: Improved Graphs.hasCycle to avoid causing StackOverflowError for long paths. (63734b9dfc)

net: Added text/markdown to MediaType. (2466a099ae)

net: Deprecated HttpHeaders constant for Sec-Ch-UA-Form-Factor in favor of Sec-Ch-UA-Form-Factors to follow the latest spec. (b310b7e1ee)

testing: Changed some test libraries to throw AssertionError (instead of the more specific AssertionFailedError) in some cases. (fdfbed1985)

Commits

See full diff in compare view

Updates commons-io:commons-io from 2.16.1 to 2.17.0

Updates de.fraunhofer.iosb.ilt:Configurable from 0.35 to 0.36

Changelog

Sourced from de.fraunhofer.iosb.ilt:Configurable's changelog.

Release Version 0.36

Updates

Items in List editors now have a button to move them up in the list.

fixed NPE if EdOptsBool#dfltIsNull is used

[FX] Moved list-add button to the left

Updated dependencies.

Commits

430896b Release v0.36
c1ce516 Bump the dependencies group across 1 directory with 13 updates
e7e47a6 Moved list-add button to the left
4d0ed33 fixed NPE if EdOptsBool#dfltIsNull is used (#159)
d46635b Items in List editors now have a button to move them up in the list
9cba5e4 Prepare for next development iteration
See full diff in compare view

Updates org.apache.commons:commons-lang3 from 3.15.0 to 3.17.0

Updates org.jooq:jooq from 3.19.10 to 3.19.11

Updates org.jooq:jooq-codegen from 3.19.10 to 3.19.11

Updates org.jooq:jooq-meta from 3.19.10 to 3.19.11

Updates org.jooq:jooq-codegen from 3.19.10 to 3.19.11

Updates org.jooq:jooq-meta from 3.19.10 to 3.19.11

Updates org.junit:junit-bom from 5.10.3 to 5.11.0

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

@pshevche made their first contribution in junit-team/junit5#3427

@rybak made their first contribution in junit-team/junit5#3416

@pixeebot made their first contribution in junit-team/junit5#3491

@shartte made their first contribution in junit-team/junit5#3562

@eliasnogueira made their first contribution in junit-team/junit5#3674

@bigdaz made their first contribution in junit-team/junit5#3668

@gilday made their first contribution in junit-team/junit5#3667

@bjmi made their first contribution in junit-team/junit5#3806

@madalingiurca made their first contribution in junit-team/junit5#3787

@dmlloyd made their first contribution in junit-team/junit5#3820

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

@robinjhector made their first contribution in junit-team/junit5#3345

@jabhatfield made their first contribution in junit-team/junit5#3829

@rfscholte made their first contribution in junit-team/junit5#3909

Full Changelog: junit-team/junit5@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

See Release Notes.

New Contributors

@compf made their first contribution in junit-team/junit5#3867

@SveinKare made their first contribution in junit-team/junit5#3840

@mobounya made their first contribution in junit-team/junit5#3720

@robinjhector made their first contribution in junit-team/junit5#3345

@jabhatfield made their first contribution in junit-team/junit5#3829

Full Changelog: junit-team/junit5@r5.11.0-M2...r5.11.0-RC1

JUnit 5.11.0-M2 = Platform 1.11.0-M2 + Jupiter 5.11.0-M2 + Vintage 5.11.0-M2

See Release Notes.

New Contributors

@bjmi made their first contribution in junit-team/junit5#3806

@madalingiurca made their first contribution in junit-team/junit5#3787

@dmlloyd made their first contribution in junit-team/junit5#3820

Full Changelog: junit-team/junit5@r5.11.0-M1...r5.11.0-M2

JUnit 5.11.0-M1 = Platform 1.11.0-M1 + Jupiter 5.11.0-M1 + Vintage 5.11.0-M1

... (truncated)

Commits

6b8e42b Release 5.11
9430ece Allow potentially unlimited maxCharsPerColumn in Csv{File}Source (#3924)
0b10f86 Polish release notes
4dbd0f9 Let @TempDir fail fast with File annotated element and non-default file s...
57f1ad4 Fix syntax
d78730a Prioritize tasks on critical path of task graph
b6719e2 Remove obsolete directory
d8ec757 Apply Spotless formatting to Gradle script plugins
dae525d Disable caching of some Spotless tasks due to negative avoidance savings
c63d118 Re-enable caching verifyOSGi tasks (issue was fixed in bnd 7.0.0)
Additional commits viewable in compare view

Updates org.junit.platform:junit-platform-suite from 1.10.3 to 1.11.0

Commits

See full diff in compare view

Updates org.keycloak:keycloak-servlet-filter-adapter from 24.0.5 to 25.0.3

Updates org.liquibase:liquibase-core from 4.29.1 to 4.29.2

Release notes

Sourced from org.liquibase:liquibase-core's releases.

Liquibase v4.29.2

Liquibase 4.29.2 is a patch release

[!IMPORTANT] Liquibase 4.29.2 patches minor issues found in Liquibase 4.29.1 release.

[!NOTE] See the Liquibase 4.29.2 Release Notes for the complete set of release information.

Notable Changes

[PRO]

Custom Policy Checks updates: Create and run Python-based checks which fit your specific needs.

Liquibase checks have been opened to the world of Python development! This release fixes some minor issues so you can use your custom Python scripts as policy checks to solve your nuanced and techstack specific conditions for better risk mitigation, compliance, code quality, security, and more.

Learn more https://docs.liquibase.com/custom-policy-checks

Get the Checks extension to enable this capability: https://docs.liquibase.com/pro-extensions

Deprecation Notice

MacOS .dmg Installer to be removed in next release.

This is the final Liquibase release in which the MacOS installer will be shipped. Both the tarball (the liquibase-x.y.z.tar.gz) and the .zip (liquibase-x.y.x.zip) are the preferred replaced options for MacOS users.

Questions or comments? https://www.liquibase.com/contact-us

[PRO] Changelog

💥 Breaking Changes

None

Changes

DAT-18013: optionally suppress Liquibase SQL for *-sql commands in liquibase/liquibase-pro#1877 by @StevenMassaro

DAT-17659: tagDatabase changes in formatted sql files in liquibase/liquibase-pro#1833 by @StevenMassaro

DAT-18310: update CustomCheckDefaultValuesTest to check all parameters in liquibase/liquibase-pro#1887 by @StevenMassaro

Now that report files are enabled by default, suppress them with git in liquibase/liquibase-pro#1886 by @wwillard7800

DAT-17390: global setting for stripComments option in liquibase/liquibase-pro#1879 by @StevenMassaro

DAT-18111: add "Report" word to title of update reports in liquibase/liquibase-pro#1890 by @StevenMassaro

... (truncated)

Changelog

Sourced from org.liquibase:liquibase-core's changelog.

Liquibase 4.29.2 is a patch release

Liquibase 4.29.2 patches minor issues found in Liquibase 4.29.1 release.

Notable Changes

[PRO]

Custom Policy Checks updates: Create and run Python-based checks which fit your specific needs.

Liquibase checks have been opened to the world of Python development! This release fixes some minor issues so you can use your custom Python scripts as policy checks to solve your nuanced and techstack specific conditions for better risk mitigation, compliance, code quality, security, and more.

Learn more https://docs.liquibase.com/custom-policy-checks

Get the Checks extension to enable this capability: https://docs.liquibase.com/pro-extensions

Deprecation Notice

MacOS .dmg Installer to be removed in next release.

This is the final Liquibase release in which the MacOS installer will be shipped. Both the tarball (the liquibase-x.y.z.tar.gz) and the .zip (liquibase-x.y.x.zip) are the preferred replaced options for MacOS users.

Questions or comments? https://www.liquibase.com/contact-us

[PRO] Changelog

Changes

DAT-18013: optionally suppress Liquibase SQL for *-sql commands in liquibase/liquibase-pro#1877 by @StevenMassaro

DAT-17659: tagDatabase changes in formatted sql files in liquibase/liquibase-pro#1833 by @StevenMassaro

DAT-18310: update CustomCheckDefaultValuesTest to check all parameters in liquibase/liquibase-pro#1887 by @StevenMassaro

Now that report files are enabled by default, suppress them with git in liquibase/liquibase-pro#1886 by @wwillard7800

DAT-17390: global setting for stripComments option in liquibase/liquibase-pro#1879 by @StevenMassaro

DAT-18111: add "Report" word to title of update reports in liquibase/liquibase-pro#1890 by @StevenMassaro

DAT-18182: show correct message when license expires on same day in liquibase/liquibase-pro#1885 by @StevenMassaro

DAT-18342: Store Pro License Key in AWS Secrets Manager in liquibase/liquibase-pro#1896 by @sayaliM0412

DAT-18063 Release lock after SQLPLUS timeout error in liquibase/liquibase-pro#1892 by @wwillard7800

DAT-18360: only show expiration date message in checks run if expiration date is not null in liquibase/liquibase-pro#1895 by @StevenMassaro

DAT-18396 - fix scripts resource caching in liquibase/liquibase-pro#1899 by @filipelautert

DAT-18420 Change check that controls database checks to make sure they don't run just because we took a snapshot for a custom check in liquibase/liquibase-pro#1902 by @wwillard7800

DAT-18440 Handle strict mode setting when doing auto rollback in liquibase/liquibase-pro#1909 by @wwillard7800

DAT-18196: add method to LicenseService to allow custom invalid license message in liquibase/liquibase-pro#1917 by @StevenMassaro

DAT-18389 Changing Quality Checks -> Policy Checks in liquibase/liquibase-pro#1906 by @wwillard7800

[OSS] Changelog

Changes

Make Scope ID RNG no longer use SecureRandom (fix #6178 in liquibase/liquibase#6179 by @danielthegray

optionally suppress Liquibase SQL for *-sql commands (DAT-18013) in liquibase/liquibase#6132 by @StevenMassaro

changes in support of globally setting stripComments option (DAT-1739) in liquibase/liquibase#6137 by @StevenMassaro

Handle reporting of changes which are skipped due to license issues (DAT-17659) in liquibase/liquibase#6114 by @wwillard7800

[DAT-17993] Improve diffChangelog between MSSQL and Oracle in liquibase/liquibase#6094 by @filipelautert

DAT-18250 DevOps :: Clean up branch build not working in liquibase/liquibase#6162 by @jandroav

compare contents of zip file against baseline (DAT-18324) in liquibase/liquibase#6166 by @StevenMassaro

... (truncated)

Commits

fd04dbd Merge pull request #6279 from liquibase/release_4292_changelog
d822676 chore: fix changelog for 4.29.2
e6aa1e6 chore: restore DAT-18398 changes
040b732 Sync dry-run workflows from master
db61d48 Changelog for 4.29.2 + revert snowflake driver + slf4j versions (#6269)
bb50f58 🔧 (release-published.yml): Change the condition for the 'release-docker' job ...
7c963ba chore: restore DAT-18398 changes
7a6015d 🔧 (create-release.yml): update condition to check for boolean false instead o...
35b3ba5 🔧 (create-release.yml): add default value 'master' for branch parameter in on...
57c0ae1 fix release workflows (#6260)
Additional commits viewable in compare view

Updates org.postgresql:postgresql from 42.7.3 to 42.7.4

Release notes

Sourced from org.postgresql:postgresql's releases.

v42.7.4

Changes

Prepare for 42.7.4 release @davecramer (#3359)

fix: remove preDescribe from internalExecuteBatch @vlsi (#2883)

bug report: PgInterval ignores case for represented interval string @vishalvrv9 (#3344)

switch localhost and auth-test around @davecramer (#3343)

Update to 17beta3 @davecramer (#3308)

perf: avoid extra copies when receiving int4 and int2 in PGStream @vishalvrv9 (#3295)

Replace greater to with greater than @japinli (#3315)

Deprecate all PostgreSQL versions older than 9.1 @jorsol (#3335)

use docker v2 which changes docker-compose to docker compose @davecramer (#3339)

docs: clarify binaryTransfer and prepareThreshold @Chris-SP365 (#3338)

Clean up deps licenses, as they are now included in the original JARs @jorsol (#3330)

Update SCRAM dependency to 3.1 and support channel binding @jorsol (#3188)

Update use.md, typo @hginzel (#3314)

Add support for Infinity::numeric values in ResultSet.getObject @mmm444 (#3304)

chore: implement direct SSL ALPN connections @davecramer (#3252)

Ensure order of results for getDouble @davecramer (#3301)

chore: add PostgreSQL 15, 16, and 17beta1 to CI tests @davecramer (#3299)

Test for +/- infinity double values @davecramer (#3294)

perf: replace BufferedOutputStream with unsynchronized PgBufferedOutputStream, allow configuring different Java and SO_SNDBUF buffer sizes @vlsi (#3248)

Fix SSL tests @davecramer (#3260)

Add Korean translation file @SheerazMajeedM (#3276)

fix: support bytea in preferQueryMode=simple @vlsi (#3243)

refactor: merge PgPreparedStatement#setBinaryStream int and long methods @lucifer-Technoking (#3165)

test: test both binaryMode=true,false when creating connections in DatabaseMetaDataTest @vlsi (#3231)

Fixed typos in all source code and documentations @SheerazMajeedM (#3242)

Fix #3234 - Return -1 as update count for stored procedure calls @beikov (#3235)

Fix #3224 - conversion for TIME '24:00' to LocalTime breaks in binary-mode @pmenke-de (#3225)

remove self-hosted runner @davecramer (#3227)

Speed up getDate by parsing bytes instead of String @davecramer (#3141)

fix: support PreparedStatement.setBlob(1, Blob) and PreparedStatement.setClob(1, Clob) for lobs that return -1 for length @vlsi (#3136)

correct download for jre7 @davecramer (#3198)

Docs: Add cancelSignalTimeout in README @imranzaheer612 (#3190)

Document READ_ONLY_MODE in README @ajacob98 (#3175)

validates resultsetParams in PGStatement constructor. uses assertThro… @vishalvrv9 (#3171)

validates resultset parameters @vishalvrv9 (#3167)

bump version to 42.7.4 @davecramer (#3164)

⬆️ Dependencies

fix(deps): update dependency com.github.spotbugs:com.github.spotbugs.gradle.plugin to v6.0.20 @renovate-bot (#3353)

chore(deps): update dependency gradle to v8.10 @renovate-bot (#3354)

fix(deps): update dependency org.roaringbitmap:roaringbitmap to v1.2.1 @renovate-bot (#3358)

chore(deps): update codecov/codecov-action digest to 2439dfc @renovate-bot (#3355)

fix(deps): update dependency com.google.errorprone:error_prone_core to v2.30.0 @renovate-bot (#3356)

... (truncated)

Changelog

Sourced from org.postgresql:postgresql's changelog.

[42.7.4] (2024-08-22 08:00:00 -0400)

Added

chore: SCRAM dependency to 3.1 and support channel binding [PR #3188](pgjdbc/pgjdbc#3188)

chore: Add PostgreSQL 15, 16, and 17beta1 to CI tests [PR #3299](pgjdbc/pgjdbc#3299)

test: Update to 17beta3 [PR #3308](pgjdbc/pgjdbc#3308)

chore: Implement direct SSL ALPN connections [PR #3252](pgjdbc/pgjdbc#3252)

translation: Add Korean translation file [PR #3276](pgjdbc/pgjdbc#3276)

Fixed

fix: PgInterval ignores case for represented interval string [PR #3344](pgjdbc/pgjdbc#3344)

perf: Avoid extra copies when receiving int4 and int2 in PGStream [PR #3295](pgjdbc/pgjdbc#3295)

fix: Add support for Infinity::numeric values in ResultSet.getObject [PR #3304](pgjdbc/pgjdbc#3304)

fix: Ensure order of results for getDouble [PR #3301](pgjdbc/pgjdbc#3301)

perf: Replace BufferedOutputStream with unsynchronized PgBufferedOutputStream, allow configuring different Java and SO_SNDBUF buffer sizes [PR #3248](pgjdbc/pgjdbc#3248)

fix: Fix SSL tests [PR #3260](pgjdbc/pgjdbc#3260)

fix: Support bytea in preferQueryMode=simple [PR #3243](pgjdbc/pgjdbc#3243)

fix: Fix #3234 - Return -1 as update count for stored procedure calls [PR #3235](pgjdbc/pgjdbc#3235)

fix: Fix #3224 - conversion for TIME '24:00' to LocalTime breaks in binary-mode [PR #3225](pgjdbc/pgjdbc#3225)

perf: Speed up getDate by parsing bytes instead of String [PR #3141](pgjdbc/pgjdbc#3141)

fix: support PreparedStatement.setBlob(1, Blob) and PreparedStatement.setClob(1, Clob) for lobs that return -1 for length [PR #3136](pgjdbc/pgjdbc#3136)

fix: Validates resultset Params in PGStatement constructor. uses assertThro… [PR #3171](pgjdbc/pgjdbc#3171)

fix: Validates resultset parameters [PR #3167](pgjdbc/pgjdbc#3167)

docs: Replace greater to with greater than [PR #3315](pgjdbc/pgjdbc#3315)

docs: Clarify binaryTransfer and prepareThreshold [PR #3338](pgjdbc/pgjdbc#3338)

docs: use.md, typo [PR #3314](pgjdbc/pgjdbc#3314)

test: Use docker v2 which changes docker-compose to docker compose #3339

refactor: Merge PgPreparedStatement#setBinaryStream int and long methods [PR #3165](pgjdbc/pgjdbc#3165)

test: Test both binaryMode=true,false when creating connections in DatabaseMetaDataTest [PR #3231](pgjdbc/pgjdbc#3231)

docs: Fixed typos in all source code and documentations [PR #3242](pgjdbc/pgjdbc#3242)

chore: Remove self-hosted runner [PR #3227](pgjdbc/pgjdbc#3227)

docs: Add cancelSignalTimeout in README [PR #3190](pgjdbc/pgjdbc#3190)

docs: Document READ_ONLY_MODE in README [PR #3175](pgjdbc/pgjdbc#3175)

test: Test for +/- infinity double values [PR #3294](pgjdbc/pgjdbc#3294)

test: Switch localhost and auth-test around for test-gss [PR #3343](pgjdbc/pgjdbc#3343)

fix: remove preDescribe from internalExecuteBatch [PR #2883](pgjdbc/pgjdbc#2883)

Deprecated

test: Deprecate all PostgreSQL versions older than 9.1 [PR #3335](pgjdbc/pgjdbc#3335)

Commits

a23fa70 Prepare for 42.7.4 release (#3359)
d232e60 fix: remove preDescribe from internalExecuteBatch
257653b Rename release.yml to release-notes.yml
64a18d6 Create release.yml
84bdec6 fix(deps): update dependency com.github.spotbugs:com.github.spotbugs.gradle.p...
89182c1 chore(deps): update dependency gradle to v8.10
1f68373 fix(deps): update dependency org.roaringbitmap:roaringbitmap to v1.2.1
f1c8707 chore(deps): update codecov/codecov-action digest to 2439dfc
ba1513e fix(deps): update dependency com.google.errorprone:error_prone_core to v2.30.0
6abdb5f fix(deps): update dependency spotbugs to v4.8.6
Additional commits viewable in compare view

Updates org.slf4j:jul-to-slf4j from 2.0.13 to 2.0.16

Updates org.slf4j:slf4j-api from 2.0.13 to 2.0.16

Updates org.apache.maven.plugins:maven-dependency-plugin from 3.7.1 to 3.8.0

Commits

75814c7 [maven-release-plugin] prepare release maven-dependency-plugin-3.8.0
50397c4 [MDEP-903] Upgrade to Doxia 2.0.0 Milestone Stack
1115ecb Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0
5288cec Bump org.apache.maven.plugins:maven-plugins from 42 to 43
ea4d8e2 Bump jettyVersion from 9.4.54.v20240208 to 9.4.55.v20240627
2d0b82a Bump org.codehaus.plexus:plexus-io from 3.4.2 to 3.5.0
86b7772 (doc) Remove repeated word
94e1caf Bump org.jsoup:jsoup from 1.17.2 to 1.18.1
06b4273 Bump org.assertj:assertj-core from 3.26.0 to 3.26.3
71cee33 Remove outdated invoker conditions
Additional commits viewable in compare view

Updates org.codehaus.mojo:exec-maven-plugin from 3.3.0 to 3.4.1

Release notes

Sourced from org.codehaus.mojo:exec-maven-plugin's releases.

3.4.1

🐛 Bug Fixes

Environment variable Path should be used as case-insensitive (#442) @slawekjaranowski

fix: NPE because declared MavenSession field hides field of superclass (#439) @sebthom

📦 Dependency updates

Bump org.codehaus.mojo:mojo-parent from 84 to 85 (#441) @dependabot

👻 Maintenance

Remove redundant spotless configuration (#440) @slawekjaranowski

🔧 Build

Use Maven4 enabled with GH Action (#443) @slawekjaranowski

Use shared release drafter GH Action (#444) @slawekjaranowski

3.4.0

🚀 New features and improvements

Allow <includePluginDependencies> to be specified for the exec:exec goal (#432) @sebthom

🐛 Bug Fixes

Do not get UPPERCASE env vars (#427) @wheezil

📦 Dependency updates

Bump org.codehaus.mojo:mojo-parent from 82 to 84 (#434) @dependabot

Bump org.codehaus.plexus:plexus-xml from 3.0.0 to 3.0.1 (#431) @dependabot

👻 Maintenance

Remove Log4j 1.2.x from ITs (#437) @slawekjaranowski

🔧 Build

Use Maven 3.9.7 and 4.0.0-beta-3 (#433) @slawekjaranowski

Commits

7b0be2c [maven-release-plugin] prepare release 3.4.1
5ac4f80 Environment variable Path should be used as case-insensitive
cfb3a9f Use Maven4 enabled with GH Action
d0ded48 Use shared release drafter GH Action
4c22954 Bump org.codehaus.mojo:mojo-parent from 84 to 85
a8c4f94 fix: NPE because declared MavenSession field hides field of superclass
a2b735f Remove redundant spotless configuration
8e0e83c [maven-release-plugin] prepare for next development iteration
6c4996f [maven-release-plugin] prepare release 3.4.0
c7ad671 Remove Log4j 1.2.x from ITs
Additional commits viewable in compare view

Updates org.owasp:dependency-check-maven from 10.0.3 to 10.0.4

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 10.0.4

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 10.0.4 (2024-09-01)

build(deps): exclude unused dependency (#6916)

fix: improve regex (#6917)

fix: correctly handle null values in cpeMatch (#6915)

fix(site): Update Fluido skin to resolve broken fork-me-on-github image (#6914)

fix: do not report over 100% download complete (#6899)

fix: Correct spelling of occurring in NvdApiDataSource.java (#6883)

fix: skip blank lines in requirements.txt (#6867)

fix: correct percentage calculation (#6868)

docs: remove old recommendation (#6860)

See the full listing of changes.

Commits

5120cbd build: prepare release v10.0.4
05df233 docs: release notes for 10.0.4
a3a74bc build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 t...
67c9d9e build(deps): bump golang from 1.22.6-alpine to 1.23.0-alpine (#6893)
1bc85e2 build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin
2fe67ed build(deps): bump commons-codec:commons-codec from 1.17.0 to 1.17.1 (#6900)
e835fad build(deps): exclude unused dependency (#6916)
ccc151a fix: improve regex (#6917)
e090d40 chore: additional tests (#6918)
b4339ce fix: correctly handle null values in cpeMatch (#6915)
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.3.1 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.0

What's Changed

[SUREFIRE-2256] Upgrade to Parent 43 by @michael-o in apache/maven-surefire#770

Bump org.apache.commons:commons-compress from 1.27.0 to 1.27.1 by @dependabot in apache/maven-surefire#771

[SUREFIRE-2228] Upgrade to Doxia 2.0.0 Milestone Stack by @michael-o in apache/maven-surefire#629

Full Changelog: apache/maven-surefire@surefire-3.4.0...surefire-3.5.0

3.4.0

... (truncated)

Commits

c78365f [maven-release-plugin] prepare release surefire-3.5.0
05e4681 [SUREFIRE-2227] Dynamically calculate xrefTestLocation
f1a419a [SUREFIRE-2228] Upgrade to Doxia 2.0.0 Milestone Stack
5e14d4f [SUREFIRE-2161] Align Mojo class names and output names
c0784ab Bump org.apache.commons:commons-compress from 1.27.0 to 1.27.1

Bumps the dependencies group with 21 updates in the / directory: | Package | From | To | | --- | --- | --- | | [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.6` | `1.5.8` | | [com.google.guava:guava](https://github.com/google/guava) | `33.2.1-jre` | `33.3.0-jre` | | commons-io:commons-io | `2.16.1` | `2.17.0` | | [de.fraunhofer.iosb.ilt:Configurable](https://github.com/FraunhoferIOSB/Configurable) | `0.35` | `0.36` | | org.apache.commons:commons-lang3 | `3.15.0` | `3.17.0` | | org.jooq:jooq | `3.19.10` | `3.19.11` | | org.jooq:jooq-codegen | `3.19.10` | `3.19.11` | | org.jooq:jooq-meta | `3.19.10` | `3.19.11` | | [org.junit:junit-bom](https://github.com/junit-team/junit5) | `5.10.3` | `5.11.0` | | [org.junit.platform:junit-platform-suite](https://github.com/junit-team/junit5) | `1.10.3` | `1.11.0` | | org.keycloak:keycloak-servlet-filter-adapter | `24.0.5` | `25.0.3` | | [org.liquibase:liquibase-core](https://github.com/liquibase/liquibase) | `4.29.1` | `4.29.2` | | [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) | `42.7.3` | `42.7.4` | | org.slf4j:jul-to-slf4j | `2.0.13` | `2.0.16` | | org.slf4j:slf4j-api | `2.0.13` | `2.0.16` | | [org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin) | `3.7.1` | `3.8.0` | | [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) | `3.3.0` | `3.4.1` | | [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) | `10.0.3` | `10.0.4` | | [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.3.1` | `3.5.0` | | [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) | `3.8.0` | `3.10.0` | | [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.2.4` | `3.2.6` | Updates `ch.qos.logback:logback-classic` from 1.5.6 to 1.5.8 - [Commits](qos-ch/logback@v_1.5.6...v_1.5.8) Updates `com.google.guava:guava` from 33.2.1-jre to 33.3.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `commons-io:commons-io` from 2.16.1 to 2.17.0 Updates `de.fraunhofer.iosb.ilt:Configurable` from 0.35 to 0.36 - [Changelog](https://github.com/FraunhoferIOSB/Configurable/blob/master/CHANGELOG.md) - [Commits](FraunhoferIOSB/Configurable@v0.35...v0.36) Updates `org.apache.commons:commons-lang3` from 3.15.0 to 3.17.0 Updates `org.jooq:jooq` from 3.19.10 to 3.19.11 Updates `org.jooq:jooq-codegen` from 3.19.10 to 3.19.11 Updates `org.jooq:jooq-meta` from 3.19.10 to 3.19.11 Updates `org.jooq:jooq-codegen` from 3.19.10 to 3.19.11 Updates `org.jooq:jooq-meta` from 3.19.10 to 3.19.11 Updates `org.junit:junit-bom` from 5.10.3 to 5.11.0 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.10.3...r5.11.0) Updates `org.junit.platform:junit-platform-suite` from 1.10.3 to 1.11.0 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](https://github.com/junit-team/junit5/commits) Updates `org.keycloak:keycloak-servlet-filter-adapter` from 24.0.5 to 25.0.3 Updates `org.liquibase:liquibase-core` from 4.29.1 to 4.29.2 - [Release notes](https://github.com/liquibase/liquibase/releases) - [Changelog](https://github.com/liquibase/liquibase/blob/master/changelog.txt) - [Commits](liquibase/liquibase@v4.29.1...v4.29.2) Updates `org.postgresql:postgresql` from 42.7.3 to 42.7.4 - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](pgjdbc/pgjdbc@REL42.7.3...REL42.7.4) Updates `org.slf4j:jul-to-slf4j` from 2.0.13 to 2.0.16 Updates `org.slf4j:slf4j-api` from 2.0.13 to 2.0.16 Updates `org.slf4j:slf4j-api` from 2.0.13 to 2.0.16 Updates `org.apache.maven.plugins:maven-dependency-plugin` from 3.7.1 to 3.8.0 - [Release notes](https://github.com/apache/maven-dependency-plugin/releases) - [Commits](apache/maven-dependency-plugin@maven-dependency-plugin-3.7.1...maven-dependency-plugin-3.8.0) Updates `org.codehaus.mojo:exec-maven-plugin` from 3.3.0 to 3.4.1 - [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases) - [Commits](mojohaus/exec-maven-plugin@3.3.0...3.4.1) Updates `org.owasp:dependency-check-maven` from 10.0.3 to 10.0.4 - [Release notes](https://github.com/jeremylong/DependencyCheck/releases) - [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md) - [Commits](jeremylong/DependencyCheck@v10.0.3...v10.0.4) Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.3.1 to 3.5.0 - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-3.3.1...surefire-3.5.0) Updates `org.apache.maven.plugins:maven-javadoc-plugin` from 3.8.0 to 3.10.0 - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.8.0...maven-javadoc-plugin-3.10.0) Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.2.4 to 3.2.6 - [Release notes](https://github.com/apache/maven-gpg-plugin/releases) - [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.2.4...maven-gpg-plugin-3.2.6) --- updated-dependencies: - dependency-name: ch.qos.logback:logback-classic dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.google.guava:guava dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: commons-io:commons-io dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: de.fraunhofer.iosb.ilt:Configurable dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.commons:commons-lang3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.jooq:jooq dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-codegen dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-meta dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-codegen dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-meta dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.junit:junit-bom dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.junit.platform:junit-platform-suite dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.keycloak:keycloak-servlet-filter-adapter dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.liquibase:liquibase-core dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.postgresql:postgresql dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.slf4j:jul-to-slf4j dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-dependency-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.codehaus.mojo:exec-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.owasp:dependency-check-maven dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-09-30T06:58:25Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Sep 23, 2024

dependabot bot closed this Sep 30, 2024

dependabot bot deleted the dependabot/maven/v2.3.x/dependencies-7f46324192 branch September 30, 2024 06:58

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the dependencies group across 1 directory with 21 updates #2019

Bump the dependencies group across 1 directory with 21 updates #2019

dependabot bot commented on behalf of github Sep 23, 2024 •

edited

Loading

dependabot bot commented on behalf of github Sep 30, 2024

Bump the dependencies group across 1 directory with 21 updates #2019

Bump the dependencies group across 1 directory with 21 updates #2019

Conversation

dependabot bot commented on behalf of github Sep 23, 2024 • edited Loading

33.3.0

Maven

Jar files

Javadoc

JDiff

Changelog

Release Version 0.36

New Contributors

New Contributors

New Contributors

Liquibase v4.29.2

Liquibase 4.29.2 is a patch release

Notable Changes

[PRO]

Custom Policy Checks updates: Create and run Python-based checks which fit your specific needs.

Deprecation Notice

MacOS .dmg Installer to be removed in next release.

[PRO] Changelog

💥 Breaking Changes

Changes

Liquibase 4.29.2 is a patch release

Notable Changes

[PRO]

Custom Policy Checks updates: Create and run Python-based checks which fit your specific needs.

Deprecation Notice

MacOS .dmg Installer to be removed in next release.

[PRO] Changelog

Changes

[OSS] Changelog

Changes

v42.7.4

Changes

⬆️ Dependencies

[42.7.4] (2024-08-22 08:00:00 -0400)

Added

Fixed

Deprecated

3.4.1

🐛 Bug Fixes

📦 Dependency updates

👻 Maintenance

🔧 Build

3.4.0

🚀 New features and improvements

🐛 Bug Fixes

📦 Dependency updates

👻 Maintenance

🔧 Build

Version 10.0.4

Version 10.0.4 (2024-09-01)

3.5.0

What's Changed

3.4.0

dependabot bot commented on behalf of github Sep 30, 2024

dependabot bot commented on behalf of github Sep 23, 2024 •

edited

Loading