Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Bump the gradle-version-updates group across 1 directory with 9 updates #2739

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump the gradle-version-updates group across 1 directory with 9 updates #2739

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 4, 2024

Bumps the gradle-version-updates group with 9 updates in the /hooks/persistence-defectdojo/hook directory:

Package From To
org.junit:junit-bom 5.11.2 5.11.3
io.securecodebox:defectdojo-client 2.0.1 3.0.0
org.springframework:spring-web 6.1.13 6.1.14
com.fasterxml.jackson.core:jackson-core 2.18.0 2.18.1
com.fasterxml.jackson.core:jackson-annotations 2.18.0 2.18.1
com.fasterxml.jackson.core:jackson-databind 2.18.0 2.18.1
com.fasterxml.jackson.datatype:jackson-datatype-jsr310 2.18.0 2.18.1
org.mockito:mockito-core 5.14.1 5.14.2
org.mockito:mockito-junit-jupiter 5.14.1 5.14.2

Updates org.junit:junit-bom from 5.11.2 to 5.11.3

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.11.3 = Platform 1.11.3 + Jupiter 5.11.3 + Vintage 5.11.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.11.2...r5.11.3

Commits
  • b20991e Release 5.11.3
  • e57b508 Finalize 5.11.3 release notes
  • fb1254c Allow repeating ExtendWith annotation on fields and parameters
  • a3192bd Fix package name comparison on Java 8 (#4077)
  • fcb7b01 Remove useless Order annotation
  • 57dfcb5 Allow repeating @…Source annotations when used as meta annotations
  • 09cd8b3 Add ArchUnit test for consistency of repeatable annotations
  • fa46a92 Hard-wrap at 90 characters
  • 8f45eea Find repeatable @⁠ExtendWith meta-annotations on fields again
  • b451122 Introduce release notes for 5.11.3
  • Additional commits viewable in compare view

Updates io.securecodebox:defectdojo-client from 2.0.1 to 3.0.0

Release notes

Sourced from io.securecodebox:defectdojo-client's releases.

defectdojo-client-3.0.0

What's Changed

Full Changelog: secureCodeBox/defectdojo-client-java@defectdojo-client-2.0.0...defectdojo-client-3.0.0

Commits
  • ffb9520 [maven-release-plugin] prepare release defectdojo-client-3.0.0
  • c2daf60 #127 Also Handle HTTP Client Exception for All Other HTTP Methods
  • 3856a3f #127 Use Parameterized Log to Prevent Performance Penalties
  • 7c4ced7 #127 Improve Error Handling for Failed DefectDojo API Requests
  • 8d888bd Update Maven Plugins
  • 680317b Update Maven Dependencies
  • 4c532fa Add Missing Interface Doc and Null Checks
  • 8109543 Update plugins
  • b0e2442 Update dependencies
  • aa701b0 Move Public API to top of Class
  • Additional commits viewable in compare view

Updates org.springframework:spring-web from 6.1.13 to 6.1.14

Release notes

Sourced from org.springframework:spring-web's releases.

v6.1.14

⭐ New Features

  • Use Locale.ROOT for locale neutral, case insensitive comparisons #33708
  • Improve checks for relative paths in static resource handling #33689
  • CorsUtils.isCorsRequest throws unhandled IllegalArgumentException and returns 500 Internal Server Error on malfomed Origin header #33682
  • Skip processing of Java annotations in QualifierAnnotationAutowireCandidateResolver #33580
  • Include argument name in MethodArgumentTypeMismatchException error message #33573
  • Preserve coroutine context in WebClientExtensions #33548
  • Blocking call detected in ConcurrentReferenceHashMap by BlockHound #33450
  • Warning message about bean post-processing and eager injection may suggest the wrong cause #33184

🐞 Bug Fixes

  • DelegatingFilterProxy Causes Pinned Virtual Threads #33656
  • Potential NPE from MethodParameter.getMethod() check in KotlinDelegate.hasDefaultValue() #33609
  • Missing native image hints for JDK proxies created by JMS connection factories #33590
  • AotTestExecutionListener should not be invoked for a @DisabledInAotMode test class #33589
  • Use encoded resource path instead of input path validation in spring-webflux #33568
  • org.springframework.util.ResourceUtils#toRelativeURL drops custom URLStreamHandler #33561
  • Current observation not in scope during WebClient ExchangeFilterFunction execution #33559
  • ZoneIdEditor throws wrong exception type for TypeConverterSupport #33545
  • MimeMessageHelper addInline with ByteArrayResource fail with null filename #33527
  • @Cacheable throws NullPointerException when RuntimeException is thrown inside annotated code #33492
  • Path variable values missing in RedirectView when PathPattern are used #33422
  • Reactive HttpComponentsClientHttpResponse ignores Expires cookie attribute #33157

📔 Documentation

  • Update fallback.adoc #33721
  • Update scheduling.adoc #33703
  • Fix link in testing/support-jdbc.adoc #33686
  • Adapt Javadoc note about log level of BeanPostProcessorChecker #33617
  • Reference the spring-framework-petclinic repository wich uses AspectJ #33539

🔨 Dependency Upgrades

  • Upgrade to Apache HttpClient 5.4 #33587
  • Upgrade to Apache HttpCore Reactive 5.3 #33588
  • Upgrade to Awaitility 4.2.2 #33604
  • Upgrade to Micrometer 1.12.11 #33647
  • Upgrade to Reactor 2023.0.11 #33637

❤️ Contributors

Thank you to all the contributors who worked on this release:

@​arey, @​asibross, @​boulce, @​drdpov, @​hosamaly, @​ilya40umov, @​izeye, and @​junhyeongkim2

Commits
  • ac5c8ad Release v6.1.14
  • fde7116 Consistently skip processing of plain Java annotations
  • 0a64591 Add checkstyle rule for toLowerCase/toUpperCase
  • 5302e7a Update fallback.adoc
  • cad02c1 Update Antora Spring UI to v0.4.17
  • c765d03 Use Locale.ROOT consistently for toLower/toUpperCase
  • 11d4272 Use Locale.ROOT consistently for toLower/toUpperCase
  • 23656ae Use Locale.ROOT consistently for toLower/toUpperCase
  • feb6a5f Polishing
  • a228eb8 Upgrade to Reactor 2023.0.11
  • Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-core from 2.18.0 to 2.18.1

Commits
  • 0c1aff4 [maven-release-plugin] prepare release jackson-core-2.18.1
  • aaa23d0 Prepare for 2.18.1 release
  • 79ecea4 Update release notes
  • 1e7119b use fastdoubleparser 1.0.90 (#1353)
  • 047e631 Merge branch '2.17' into 2.18
  • 7db88c1 Fix infinite loop due to integer overflow when reading large strings (#1352)
  • cbedab7 Fix #1351: Improved Javadocs for StreamWriteFeature.USE_FAST_DOUBLE_WRITER
  • 686dd45 Tiny test fix (for manually run test)
  • 2b6e05c Back to snapshot dep
  • 54c7d70 [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Updates com.fasterxml.jackson.core:jackson-annotations from 2.18.0 to 2.18.1

Commits

Updates com.fasterxml.jackson.core:jackson-databind from 2.18.0 to 2.18.1

Commits

Updates com.fasterxml.jackson.datatype:jackson-datatype-jsr310 from 2.18.0 to 2.18.1

Updates org.mockito:mockito-core from 5.14.1 to 5.14.2

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.14.2

Changelog generated by Shipkit Changelog Gradle Plugin

5.14.2

Commits
  • 7834859 Update nexusPublishing to use project.group(#3470)
  • 297d147 Bump org.jetbrains.kotlin:kotlin-stdlib from 2.0.20 to 2.0.21 (#3468)
  • 6a72b10 Bump bytebuddy from 1.15.3 to 1.15.4 (#3467)
  • 68ca2f8 Bump biz.aQute.bnd:biz.aQute.bnd.gradle from 6.4.0 to 7.0.0 (#3136)
  • 147c599 Bump junit-jupiter from 5.11.1 to 5.11.2 (#3461)
  • 9942641 Avoid attach warning if Byte Buddy is configured for command-line attach. (#3...
  • 560d855 Removes deprecated and now unused gradle/root/gradle-fix.gradle
  • 1c0b04b Rename extension modules with mockito- prefix (#3460)
  • ab32438 Move core sources to mockito-core
  • 61dcd83 Switch gradleEnterprise to develocity
  • Additional commits viewable in compare view

Updates org.mockito:mockito-junit-jupiter from 5.14.1 to 5.14.2

Release notes

Sourced from org.mockito:mockito-junit-jupiter's releases.

v5.14.2

Changelog generated by Shipkit Changelog Gradle Plugin

5.14.2

Commits
  • 7834859 Update nexusPublishing to use project.group(#3470)
  • 297d147 Bump org.jetbrains.kotlin:kotlin-stdlib from 2.0.20 to 2.0.21 (#3468)
  • 6a72b10 Bump bytebuddy from 1.15.3 to 1.15.4 (#3467)
  • 68ca2f8 Bump biz.aQute.bnd:biz.aQute.bnd.gradle from 6.4.0 to 7.0.0 (#3136)
  • 147c599 Bump junit-jupiter from 5.11.1 to 5.11.2 (#3461)
  • 9942641 Avoid attach warning if Byte Buddy is configured for command-line attach. (#3...
  • 560d855 Removes deprecated and now unused gradle/root/gradle-fix.gradle
  • 1c0b04b Rename extension modules with mockito- prefix (#3460)
  • ab32438 Move core sources to mockito-core
  • 61dcd83 Switch gradleEnterprise to develocity
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the gradle-version-updates group across 1 directory with 9 updates
4d8a023 
Bumps the gradle-version-updates group with 9 updates in the /hooks/persistence-defectdojo/hook directory:

| Package | From | To |
| --- | --- | --- |
| [org.junit:junit-bom](https://github.com/junit-team/junit5) | `5.11.2` | `5.11.3` |
| [io.securecodebox:defectdojo-client](https://github.com/secureCodeBox/defectdojo-client-java) | `2.0.1` | `3.0.0` |
| [org.springframework:spring-web](https://github.com/spring-projects/spring-framework) | `6.1.13` | `6.1.14` |
| [com.fasterxml.jackson.core:jackson-core](https://github.com/FasterXML/jackson-core) | `2.18.0` | `2.18.1` |
| [com.fasterxml.jackson.core:jackson-annotations](https://github.com/FasterXML/jackson) | `2.18.0` | `2.18.1` |
| [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.18.0` | `2.18.1` |
| com.fasterxml.jackson.datatype:jackson-datatype-jsr310 | `2.18.0` | `2.18.1` |
| [org.mockito:mockito-core](https://github.com/mockito/mockito) | `5.14.1` | `5.14.2` |
| [org.mockito:mockito-junit-jupiter](https://github.com/mockito/mockito) | `5.14.1` | `5.14.2` |



Updates `org.junit:junit-bom` from 5.11.2 to 5.11.3
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](junit-team/junit5@r5.11.2...r5.11.3)

Updates `io.securecodebox:defectdojo-client` from 2.0.1 to 3.0.0
- [Release notes](https://github.com/secureCodeBox/defectdojo-client-java/releases)
- [Changelog](https://github.com/secureCodeBox/defectdojo-client-java/blob/main/docs/release.md)
- [Commits](secureCodeBox/defectdojo-client-java@defectdojo-client-2.0.1...defectdojo-client-3.0.0)

Updates `org.springframework:spring-web` from 6.1.13 to 6.1.14
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](spring-projects/spring-framework@v6.1.13...v6.1.14)

Updates `com.fasterxml.jackson.core:jackson-core` from 2.18.0 to 2.18.1
- [Commits](FasterXML/jackson-core@jackson-core-2.18.0...jackson-core-2.18.1)

Updates `com.fasterxml.jackson.core:jackson-annotations` from 2.18.0 to 2.18.1
- [Commits](https://github.com/FasterXML/jackson/commits)

Updates `com.fasterxml.jackson.core:jackson-databind` from 2.18.0 to 2.18.1
- [Commits](https://github.com/FasterXML/jackson/commits)

Updates `com.fasterxml.jackson.datatype:jackson-datatype-jsr310` from 2.18.0 to 2.18.1

Updates `org.mockito:mockito-core` from 5.14.1 to 5.14.2
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](mockito/mockito@v5.14.1...v5.14.2)

Updates `org.mockito:mockito-junit-jupiter` from 5.14.1 to 5.14.2
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](mockito/mockito@v5.14.1...v5.14.2)

---
updated-dependencies:
- dependency-name: org.junit:junit-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: io.securecodebox:defectdojo-client
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gradle-version-updates
- dependency-name: org.springframework:spring-web
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: com.fasterxml.jackson.core:jackson-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: com.fasterxml.jackson.core:jackson-annotations
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: com.fasterxml.jackson.core:jackson-databind
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: com.fasterxml.jackson.datatype:jackson-datatype-jsr310
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: org.mockito:mockito-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
- dependency-name: org.mockito:mockito-junit-jupiter
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gradle-version-updates
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Nov 4, 2024
@netlify Netlify
Copy link

netlify bot commented Nov 4, 2024
edited
Loading

Deploy Preview for docs-securecodebox canceled.

Name Link
🔨 Latest commit 4d8a023
🔍 Latest deploy log https://app.netlify.com/sites/docs-securecodebox/deploys/672890b55ca766000885ef75

@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Nov 4, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

@Weltraumschaf
Copy link
Member

io.securecodebox:defectdojo-client 3.0.0 is broken. Fixed by #2745

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 8, 2024

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot bot deleted the dependabot/gradle/hooks/persistence-defectdojo/hook/gradle-version-updates-e77b8561ee branch November 8, 2024 13:29
@Weltraumschaf Weltraumschaf restored the dependabot/gradle/hooks/persistence-defectdojo/hook/gradle-version-updates-e77b8561ee branch November 8, 2024 13:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
secureCodeBox v4
Archived in project
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Weltraumschaf