Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Bump the gradle-version-updates group across 1 directory with 3 updates #2633

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 28, 2024
Merged

Bump the gradle-version-updates group across 1 directory with 3 updates #2633

merged 1 commit into from
Aug 28, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 26, 2024

Bumps the gradle-version-updates group with 3 updates in the /hooks/persistence-defectdojo/hook directory: org.junit:junit-bom, org.springframework:spring-web and io.freefair.lombok.

Updates org.junit:junit-bom from 5.10.3 to 5.11.0

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

Full Changelog: junit-team/junit5@r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

See Release Notes.

New Contributors

Full Changelog: junit-team/junit5@r5.11.0-M2...r5.11.0-RC1

JUnit 5.11.0-M2 = Platform 1.11.0-M2 + Jupiter 5.11.0-M2 + Vintage 5.11.0-M2

See Release Notes.

New Contributors

Full Changelog: junit-team/junit5@r5.11.0-M1...r5.11.0-M2

JUnit 5.11.0-M1 = Platform 1.11.0-M1 + Jupiter 5.11.0-M1 + Vintage 5.11.0-M1

... (truncated)

Commits
  • 6b8e42b Release 5.11
  • 9430ece Allow potentially unlimited maxCharsPerColumn in Csv{File}Source (#3924)
  • 0b10f86 Polish release notes
  • 4dbd0f9 Let @TempDir fail fast with File annotated element and non-default file s...
  • 57f1ad4 Fix syntax
  • d78730a Prioritize tasks on critical path of task graph
  • b6719e2 Remove obsolete directory
  • d8ec757 Apply Spotless formatting to Gradle script plugins
  • dae525d Disable caching of some Spotless tasks due to negative avoidance savings
  • c63d118 Re-enable caching verifyOSGi tasks (issue was fixed in bnd 7.0.0)
  • Additional commits viewable in compare view

Updates org.springframework:spring-web from 6.1.11 to 6.1.12

Release notes

Sourced from org.springframework:spring-web's releases.

v6.1.12

⭐ New Features

  • Efficient handling of conditional HTTP requests #33372
  • LocaleEditor cannot parse language tag with script like zh-Hans #33348
  • Reinstate qualifier support for legacy JSR-330 @javax.inject.Named annotation #33345
  • SimpleAsyncTaskScheduler stops accepting new tasks when isShutdown #33336

🐞 Bug Fixes

  • Fix incorrect weak ETag validation #33374
  • Avoid CacheAspectSupport#findInCaches falling through to the reactiveCachingHandler #33371
  • ScheduledAnnotationReactiveSupport starts the observation before it is opened #33349
  • RestClient observation flags error for UnknownContentTypeException twice #33347
  • RestClient instrumentation unnecessarily calls stop on a closed observation #33346
  • SimpleEvaluationContext does not enforce read-only semantics #33319
  • SpEL wraps primitive array in Object[] when invoking varargs method #33317
  • SpEL no longer supports lists for varargs invocations #33315
  • SpEL Indexer silently ignores failure to set property as index #33310
  • AOT-generated code produces deprecation warnings when using a deprecated class for autowiring #33295
  • @Scheduled method in test class not supported anymore #33286
  • AOT-generated code produces deprecation warnings when referencing a nested class of a deprecated class #33273
  • Jaxb2XmlEncoder does not support JAXBElement subtypes #33258
  • ShallowEtagHeaderFilter throws a NumberFormatException for responses bigger than 2Gb #33256
  • RequestPredicates fail with UnsupportedOperationException with a custom servlet path #33251
  • Missing observation for @JmsListener response messages #33221
  • ConversionService cannot convert primitive array to Object[] #33212
  • Spring coroutines AOP is not compatible with @Cacheable #33210
  • PathMatchingResourcePatternResolver#convertClassLoaderURL drops URLStreamHandler in version 6.1.x #33199
  • SpEL cannot invoke varargs MethodHandle function with a primitive array #33198
  • Trim last allowed origin when parsing comma-delimited string #33181
  • Multipart files not deleted after upload is finished with async request #33161
  • JaxbContextContainer does not define the ClassLoader to use to retrieve the JAXBContext to use #33158
  • Memory Leak in WebFlux application handling HTTP Multipart #33094
  • Support invoking bridged suspending functions in AopUtils #33045

📔 Documentation

  • Fix typo in the bean validation section of the reference manual #33354
  • Fix syntax error in RestClient documentation #33350
  • Add Kotlin example for expectAll() #33341
  • Javadoc of ReactorResourceFactory#setConnectionProviderSupplier wrongly states it can be ignored #33338
  • Improve EnableCaching & CachingConfigurer Javadoc #33288
  • Code sample has wrong reference to configurePathMatching #33277
  • Document that NoOpResponseErrorHandler is to be used with the RestTemplate #33276
  • Stop referring to Oracle STRUCT and ARRAY as they are deprecated #33248
  • Update links in reference manual #33245

🔨 Dependency Upgrades

... (truncated)

Commits
  • 3476425 Release v6.1.12
  • bb17ad8 Efficient ETag parsing
  • 63486bf Upgrade to Tomcat 10.1.28, Jetty 12.0.12, Netty 4.1.112, Undertow 2.3.15
  • d0bff58 Polishing
  • 8be5010 LocaleEditor supports BCP 47 language tags as well
  • 86761cd Upgrade to Reactor 2023.0.9
  • 07cdef4 Upgrade to Micrometer 1.12.9
  • e74406a Introduce withAssignmentDisabled() option for SimpleEvaluationContext
  • fe4fd00 Polishing contribution
  • 1703b71 Fix incorrect weak ETag assertion
  • Additional commits viewable in compare view

Updates io.freefair.lombok from 8.7.1 to 8.10

Release notes

Sourced from io.freefair.lombok's releases.

8.10

What's Changed

New Contributors

Full Changelog: freefair/gradle-plugins@8.7.1...8.10

Commits
  • 408edb7 Merge pull request #1170 from freefair/dependabot/gradle/examples/com.github....
  • 41868e0 Merge pull request #1140 from tylerbertrand/caching-updates
  • 03f6210 Merge pull request #1172 from freefair/dependabot/gradle/examples/org.junit-j...
  • 942b14c Merge pull request #1168 from freefair/dependabot/gradle/org.apache.commons-c...
  • b78c34e Improve build-cache support
  • 48d2723 Improve build-cache support
  • 08494cb Improve build-cache support
  • 48672d4 Update LombokConfig.getInputPaths input property to use relative paths instea...
  • f7e3960 Update LombokConfig.getConfigFiles input property to use relative path normal...
  • ee4e183 Update to Gradle 8.10
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Aug 26, 2024
@netlify Netlify
Copy link

netlify bot commented Aug 26, 2024
edited
Loading

Deploy Preview for docs-securecodebox canceled.

Name Link
🔨 Latest commit 1076f55
🔍 Latest deploy log https://app.netlify.com/sites/docs-securecodebox/deploys/66cf1f08183376000860fd8b

@dependabot @Weltraumschaf
Bump the gradle-version-updates group across 1 directory with 3 updates
1076f55 
Bumps the gradle-version-updates group with 3 updates in the /hooks/persistence-defectdojo/hook directory: [org.junit:junit-bom](https://github.com/junit-team/junit5), [org.springframework:spring-web](https://github.com/spring-projects/spring-framework) and [io.freefair.lombok](https://github.com/freefair/gradle-plugins).


Updates `org.junit:junit-bom` from 5.10.3 to 5.11.0
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](junit-team/junit5@r5.10.3...r5.11.0)

Updates `org.springframework:spring-web` from 6.1.11 to 6.1.12
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v6.1.11...v6.1.12)

Updates `io.freefair.lombok` from 8.7.1 to 8.10
- [Release notes](https://github.com/freefair/gradle-plugins/releases)
- [Commits](freefair/gradle-plugins@8.7.1...8.10)

---
updated-dependencies:
- dependency-name: org.junit:junit-bom
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gradle-version-updates
- dependency-name: org.springframework:spring-web
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: io.freefair.lombok
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gradle-version-updates
...

Signed-off-by: dependabot[bot] <[email protected]>
@Weltraumschaf Weltraumschaf force-pushed the dependabot/gradle/hooks/persistence-defectdojo/hook/gradle-version-updates-d07d626885 branch from b359987 to 1076f55 Compare August 28, 2024 12:58
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

@github-actions GitHub Actions
Copy link

github-actions bot commented Aug 28, 2024
edited
Loading

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ GROOVY npm-groovy-lint 1 0 5.28s

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security

@Weltraumschaf Weltraumschaf merged commit e54cb0d into main Aug 28, 2024
54 checks passed
@Weltraumschaf Weltraumschaf deleted the dependabot/gradle/hooks/persistence-defectdojo/hook/gradle-version-updates-d07d626885 branch August 28, 2024 14:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Weltraumschaf Weltraumschaf Weltraumschaf approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
secureCodeBox v4
Archived in project
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Weltraumschaf