Dependabot April 2023 #7612
Merged
Dependabot April 2023 #7612
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps org.apache.commons:commons-configuration2 from 2.8.0 to 2.9.0. --- updated-dependencies: - dependency-name: org.apache.commons:commons-configuration2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [net.openhft:chronicle-bom](https://github.com/OpenHFT/OpenHFT) from 2.24ea45 to 2.24ea46. - [Release notes](https://github.com/OpenHFT/OpenHFT/releases) - [Commits](https://github.com/OpenHFT/OpenHFT/commits) --- updated-dependencies: - dependency-name: net.openhft:chronicle-bom dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps org.apache.cassandra:cassandra-all from 4.1.0 to 4.1.1. --- updated-dependencies: - dependency-name: org.apache.cassandra:cassandra-all dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps org.springframework.boot from 2.7.9 to 2.7.10. --- updated-dependencies: - dependency-name: org.springframework.boot dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [io.micrometer:micrometer-registry-prometheus](https://github.com/micrometer-metrics/micrometer) from 1.10.4 to 1.10.5. - [Release notes](https://github.com/micrometer-metrics/micrometer/releases) - [Commits](micrometer-metrics/micrometer@v1.10.4...v1.10.5) --- updated-dependencies: - dependency-name: io.micrometer:micrometer-registry-prometheus dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps com.github.johnrengelman.shadow from 7.1.2 to 8.1.1. --- updated-dependencies: - dependency-name: com.github.johnrengelman.shadow dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps io.freefair.lombok from 6.6.3 to 8.0.1. --- updated-dependencies: - dependency-name: io.freefair.lombok dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps `elasticsearchVersion` from 8.6.2 to 8.7.0. Updates `org.elasticsearch:elasticsearch` from 8.6.2 to 8.7.0 - [Release notes](https://github.com/elastic/elasticsearch/releases) - [Changelog](https://github.com/elastic/elasticsearch/blob/main/CHANGELOG.md) - [Commits](elastic/elasticsearch@v8.6.2...v8.7.0) Updates `org.elasticsearch.client:elasticsearch-rest-client` from 8.6.2 to 8.7.0 - [Release notes](https://github.com/elastic/elasticsearch/releases) - [Changelog](https://github.com/elastic/elasticsearch/blob/main/CHANGELOG.md) - [Commits](elastic/elasticsearch@v8.6.2...v8.7.0) Updates `co.elastic.clients:elasticsearch-java` from 8.6.2 to 8.7.0 - [Release notes](https://github.com/elastic/elasticsearch-java/releases) - [Changelog](https://github.com/elastic/elasticsearch-java/blob/main/CHANGELOG.md) - [Commits](elastic/elasticsearch-java@v8.6.2...v8.7.0) --- updated-dependencies: - dependency-name: org.elasticsearch:elasticsearch dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: org.elasticsearch.client:elasticsearch-rest-client dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: co.elastic.clients:elasticsearch-java dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps `swaggerVersion` from 2.2.8 to 2.2.9. Updates `io.swagger.core.v3:swagger-annotations` from 2.2.8 to 2.2.9 Updates `io.swagger.core.v3:swagger-annotations-jakarta` from 2.2.8 to 2.2.9 --- updated-dependencies: - dependency-name: io.swagger.core.v3:swagger-annotations dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.swagger.core.v3:swagger-annotations-jakarta dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps `nettyVersion` from 4.1.89.Final to 4.1.90.Final. Updates `io.netty:netty-handler` from 4.1.89.Final to 4.1.90.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.89.Final...netty-4.1.90.Final) Updates `io.netty:netty-common` from 4.1.89.Final to 4.1.90.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.89.Final...netty-4.1.90.Final) Updates `io.netty:netty-buffer` from 4.1.89.Final to 4.1.90.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.89.Final...netty-4.1.90.Final) Updates `io.netty:netty-codec` from 4.1.89.Final to 4.1.90.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.89.Final...netty-4.1.90.Final) Updates `io.netty:netty-all` from 4.1.89.Final to 4.1.90.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.89.Final...netty-4.1.90.Final) Updates `io.netty:netty-transport` from 4.1.89.Final to 4.1.90.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.89.Final...netty-4.1.90.Final) Updates `io.netty:netty-resolver` from 4.1.89.Final to 4.1.90.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.89.Final...netty-4.1.90.Final) --- updated-dependencies: - dependency-name: io.netty:netty-handler dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-common dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-buffer dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-codec dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-all dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-transport dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-resolver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [joda-time:joda-time](https://github.com/JodaOrg/joda-time) from 2.12.2 to 2.12.5. - [Release notes](https://github.com/JodaOrg/joda-time/releases) - [Changelog](https://github.com/JodaOrg/joda-time/blob/main/RELEASE-NOTES.txt) - [Commits](JodaOrg/joda-time@2.12.2...v2.12.5) --- updated-dependencies: - dependency-name: joda-time:joda-time dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps `springbootVersion` from 3.0.4 to 3.0.5. Updates `org.springframework.boot:spring-boot-autoconfigure` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-starter-web` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-starter-validation` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-test` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-starter-test` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-starter-security` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-starter-data-redis` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-starter-actuator` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) Updates `org.springframework.boot:spring-boot-starter-oauth2-resource-server` from 3.0.4 to 3.0.5 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.4...v3.0.5) --- updated-dependencies: - dependency-name: org.springframework.boot:spring-boot-autoconfigure dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-web dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-validation dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-test dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-test dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-security dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-data-redis dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-actuator dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-oauth2-resource-server dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.2 to 2.1.3. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](ossf/scorecard-action@e38b190...80e868c) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [actions/stale](https://github.com/actions/stale) from 7 to 8. - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](actions/stale@v7...v8) --- updated-dependencies: - dependency-name: actions/stale dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps library/alpine from 3.17.1 to 3.17.3. --- updated-dependencies: - dependency-name: library/alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Dependabot updates April 2023