-
Notifications
You must be signed in to change notification settings - Fork 260
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Dependabot May 2023 #7680
Merged
Merged
Dependabot May 2023 #7680
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the jackson group with 2 updates: [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) and com.fasterxml.jackson.datatype:jackson-datatype-jdk8. Updates `com.fasterxml.jackson.core:jackson-databind` from 2.14.2 to 2.15.0 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `com.fasterxml.jackson.datatype:jackson-datatype-jdk8` from 2.14.2 to 2.15.0 --- updated-dependencies: - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: com.fasterxml.jackson.datatype:jackson-datatype-jdk8 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps the spring group with 17 updates: org.springframework.boot, [org.springframework.boot:spring-boot-autoconfigure](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-web](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-validation](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-test](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-test](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-security](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-data-redis](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-actuator](https://github.com/spring-projects/spring-boot), [org.springframework.boot:spring-boot-starter-oauth2-resource-server](https://github.com/spring-projects/spring-boot), [org.springframework.security:spring-security-config](https://github.com/spring-projects/spring-security), [org.springframework.security:spring-security-core](https://github.com/spring-projects/spring-security), [org.springframework.security:spring-security-ldap](https://github.com/spring-projects/spring-security), [org.springframework.security:spring-security-web](https://github.com/spring-projects/spring-security), [org.springframework.security:spring-security-oauth2-jose](https://github.com/spring-projects/spring-security) and org.springdoc:springdoc-openapi-starter-webmvc-ui. Updates `org.springframework.boot` from 2.7.10 to 2.7.11 Updates `org.springframework.boot:spring-boot-autoconfigure` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-starter-web` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-starter-validation` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-test` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-starter-test` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-starter-security` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-starter-data-redis` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-starter-actuator` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.boot:spring-boot-starter-oauth2-resource-server` from 3.0.5 to 3.0.6 - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.0.5...v3.0.6) Updates `org.springframework.security:spring-security-config` from 6.0.2 to 6.0.3 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.0.2...6.0.3) Updates `org.springframework.security:spring-security-core` from 6.0.2 to 6.0.3 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.0.2...6.0.3) Updates `org.springframework.security:spring-security-ldap` from 6.0.2 to 6.0.3 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.0.2...6.0.3) Updates `org.springframework.security:spring-security-web` from 6.0.2 to 6.0.3 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.0.2...6.0.3) Updates `org.springframework.security:spring-security-oauth2-jose` from 6.0.2 to 6.0.3 - [Release notes](https://github.com/spring-projects/spring-security/releases) - [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc) - [Commits](spring-projects/spring-security@6.0.2...6.0.3) Updates `org.springdoc:springdoc-openapi-starter-webmvc-ui` from 2.0.4 to 2.1.0 --- updated-dependencies: - dependency-name: org.springframework.boot dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-autoconfigure dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-web dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-validation dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-test dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-test dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-security dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-data-redis dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-actuator dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.boot:spring-boot-starter-oauth2-resource-server dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-config dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-core dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-ldap dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-web dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework.security:spring-security-oauth2-jose dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springdoc:springdoc-openapi-starter-webmvc-ui dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps dev.jacomet.logging-capabilities from 0.11.0 to 0.11.1. --- updated-dependencies: - dependency-name: dev.jacomet.logging-capabilities dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [com.google.protobuf:protobuf-java](https://github.com/protocolbuffers/protobuf) from 3.22.2 to 3.23.0. - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/generate_changelog.py) - [Commits](protocolbuffers/protobuf@v3.22.2...v3.23.0) --- updated-dependencies: - dependency-name: com.google.protobuf:protobuf-java dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [io.github.classgraph:classgraph](https://github.com/classgraph/classgraph) from 4.8.157 to 4.8.158. - [Release notes](https://github.com/classgraph/classgraph/releases) - [Commits](classgraph/classgraph@classgraph-4.8.157...classgraph-4.8.158) --- updated-dependencies: - dependency-name: io.github.classgraph:classgraph dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [io.micrometer:micrometer-registry-prometheus](https://github.com/micrometer-metrics/micrometer) from 1.10.6 to 1.11.0. - [Release notes](https://github.com/micrometer-metrics/micrometer/releases) - [Commits](micrometer-metrics/micrometer@v1.10.6...v1.11.0) --- updated-dependencies: - dependency-name: io.micrometer:micrometer-registry-prometheus dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps library/alpine from 3.17.3 to 3.18.0. --- updated-dependencies: - dependency-name: library/alpine dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [net.openhft:chronicle-bom](https://github.com/OpenHFT/OpenHFT) from 2.24ea50 to 2.24ea55. - [Release notes](https://github.com/OpenHFT/OpenHFT/releases) - [Commits](https://github.com/OpenHFT/OpenHFT/commits) --- updated-dependencies: - dependency-name: net.openhft:chronicle-bom dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [io.openlineage:openlineage-java](https://github.com/OpenLineage/OpenLineage) from 0.21.1 to 0.24.0. - [Release notes](https://github.com/OpenLineage/OpenLineage/releases) - [Changelog](https://github.com/OpenLineage/OpenLineage/blob/main/CHANGELOG.md) - [Commits](OpenLineage/OpenLineage@0.21.1...0.24.0) --- updated-dependencies: - dependency-name: io.openlineage:openlineage-java dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [com.google.crypto.tink:tink](https://github.com/tink-crypto/tink-java) from 1.8.0 to 1.9.0. - [Release notes](https://github.com/tink-crypto/tink-java/releases) - [Commits](tink-crypto/tink-java@v1.8.0...v1.9.0) --- updated-dependencies: - dependency-name: com.google.crypto.tink:tink dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps com.autonomousapps.dependency-analysis from 1.19.0 to 1.20.0. --- updated-dependencies: - dependency-name: com.autonomousapps.dependency-analysis dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [io.lettuce:lettuce-core](https://github.com/lettuce-io/lettuce-core) from 6.2.3.RELEASE to 6.2.4.RELEASE. - [Release notes](https://github.com/lettuce-io/lettuce-core/releases) - [Changelog](https://github.com/lettuce-io/lettuce-core/blob/6.2.4.RELEASE/RELEASE-NOTES.md) - [Commits](redis/lettuce@6.2.3.RELEASE...6.2.4.RELEASE) --- updated-dependencies: - dependency-name: io.lettuce:lettuce-core dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps `junitjupiterVersion` from 5.9.2 to 5.9.3. Updates `org.junit.jupiter:junit-jupiter` from 5.9.2 to 5.9.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.9.2...r5.9.3) Updates `org.junit.jupiter:junit-jupiter-api` from 5.9.2 to 5.9.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.9.2...r5.9.3) Updates `org.junit.jupiter:junit-jupiter-engine` from 5.9.2 to 5.9.3 - [Release notes](https://github.com/junit-team/junit5/releases) - [Commits](junit-team/junit5@r5.9.2...r5.9.3) --- updated-dependencies: - dependency-name: org.junit.jupiter:junit-jupiter dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.junit.jupiter:junit-jupiter-api dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.junit.jupiter:junit-jupiter-engine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps `nettyVersion` from 4.1.91.Final to 4.1.92.Final. Updates `io.netty:netty-handler` from 4.1.91.Final to 4.1.92.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.91.Final...netty-4.1.92.Final) Updates `io.netty:netty-common` from 4.1.91.Final to 4.1.92.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.91.Final...netty-4.1.92.Final) Updates `io.netty:netty-buffer` from 4.1.91.Final to 4.1.92.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.91.Final...netty-4.1.92.Final) Updates `io.netty:netty-codec` from 4.1.91.Final to 4.1.92.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.91.Final...netty-4.1.92.Final) Updates `io.netty:netty-all` from 4.1.91.Final to 4.1.92.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.91.Final...netty-4.1.92.Final) Updates `io.netty:netty-transport` from 4.1.91.Final to 4.1.92.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.91.Final...netty-4.1.92.Final) Updates `io.netty:netty-resolver` from 4.1.91.Final to 4.1.92.Final - [Release notes](https://github.com/netty/netty/releases) - [Commits](netty/netty@netty-4.1.91.Final...netty-4.1.92.Final) --- updated-dependencies: - dependency-name: io.netty:netty-handler dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-common dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-buffer dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-codec dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-all dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-transport dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: io.netty:netty-resolver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
Bumps [lycheeverse/lychee-action](https://github.com/lycheeverse/lychee-action) from 1.5.4 to 1.7.0. - [Release notes](https://github.com/lycheeverse/lychee-action/releases) - [Commits](lycheeverse/lychee-action@v1.5.4...v1.7.0) --- updated-dependencies: - dependency-name: lycheeverse/lychee-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Nigel Jones <[email protected]>
…astic update Signed-off-by: Nigel Jones <[email protected]>
Signed-off-by: Nigel Jones <[email protected]>
Signed-off-by: Nigel Jones <[email protected]>
Signed-off-by: Nigel Jones <[email protected]>
Signed-off-by: Nigel Jones <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Dependabot updates from May 2023