Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the maven group across 1 directory with 7 updates #263

Merged
merged 1 commit into from
Jul 11, 2024
Merged

Bump the maven group across 1 directory with 7 updates #263

merged 1 commit into from
Jul 11, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 10, 2024
edited
Loading

Bumps the maven group with 7 updates in the / directory:

Package From To
com.fasterxml.jackson:jackson-bom 2.16.1 2.17.1
org.eclipse.jetty:jetty-bom 9.4.53.v20231009 9.4.54.v20240208
io.dropwizard.metrics:metrics-core 4.2.25 4.2.26
org.apache.zookeeper:zookeeper 3.9.1 3.9.2
org.slf4j:slf4j-api 2.0.12 2.0.13
org.slf4j:slf4j-simple 2.0.12 2.0.13
com.puppycrawl.tools:checkstyle 10.13.0 10.17.0

Updates com.fasterxml.jackson:jackson-bom from 2.16.1 to 2.17.1

Commits
  • 50ab40a [maven-release-plugin] prepare release jackson-bom-2.17.1
  • 38201de Prepare for 2.17.1 release
  • 4d2e95a Back to snapshot deps
  • 3f7a9ee [maven-release-plugin] prepare for next development iteration
  • 518dce9 [maven-release-plugin] prepare release jackson-bom-2.17.0
  • 09f3f57 Prepare for 2.17.0 release
  • e35f5af Update to 2.17 jackson-parent
  • 8e000a1 Merge branch '2.16' into 2.17
  • 78fc05f Back to snapshot deps
  • 5cc2410 [maven-release-plugin] prepare for next development iteration
  • Additional commits viewable in compare view

Updates org.eclipse.jetty:jetty-bom from 9.4.53.v20231009 to 9.4.54.v20240208

Release notes

Sourced from org.eclipse.jetty:jetty-bom's releases.

9.4.54.v20240208

Security Updates

This release addresses:

  • CVE-2024-22201 - HTTP/2 connection not closed after idle timeout when TCP congested

Sponsored Release

This is a release of the End of Community Support Jetty 9.x series that was sponsored by a support contract from Webtide.com

Changelog

  • #1256 DoSFilter leaks USER_AUTH entries
  • #11259 HTTP/2 connection not closed after idle timeout when TCP congested
  • #11389 Strip default ports on ws/wss scheme uris too
Commits
  • cef3fbd Updating to version 9.4.54.v20240208
  • ede74bf Merge pull request #11389 from jetty/fix/9.4.x/uriutil-append-scheme-host-por...
  • 603907c Allow spec port stripping of 80/443 on websocket too.
  • eef4a91 Updating build script
  • 6b5fb08 Fixing release script for new jetty org
  • 86586df Issue #11259 - HTTP/2 connection not closed after idle timeout when TCP conge...
  • 24bce83 Merge pull request #11257 from jetty/fix/9.4.x/dependency-rollup-2024-jan-8
  • 924ae92 Revert "Bump hazelcast.version from 3.12.12 to 3.12.13"
  • f864afb Merge remote-tracking branch 'origin/dependabot/maven/jetty-9.4.x/io.grpc-grp...
  • c5e4ead Merge remote-tracking branch 'origin/dependabot/maven/jetty-9.4.x/hazelcast.v...
  • Additional commits viewable in compare view

Updates io.dropwizard.metrics:metrics-core from 4.2.25 to 4.2.26

Release notes

Sourced from io.dropwizard.metrics:metrics-core's releases.

v4.2.26

What's Changed

... (truncated)

Commits
  • 560ac4b [maven-release-plugin] prepare release v4.2.26
  • 607e6d1 Fix metrics for InstrumentedEE10Handler (#3928)
  • 9e0bedb Fix Jetty 12.x QueuedThreadPool metrics (#4181)
  • d8599e9 Update dependency com.fasterxml.jackson.core:jackson-databind to v2.12.7.2 (r...
  • b6b5150 Update dependency org.apache.maven.plugins:maven-checkstyle-plugin to v3.4.0 ...
  • 9e58fd9 Update dependency org.checkerframework:checker-qual to v3.44.0 (#4218)
  • f2aabba Update github/codeql-action digest to 2e230e8
  • e801aaf Update jetty12.version to v12.0.10
  • 6030208 Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.7.0 (#4...
  • 273f77e Update dependency org.apache.maven.plugins:maven-shade-plugin to v3.6.0 (#4211)
  • Additional commits viewable in compare view

Updates org.apache.zookeeper:zookeeper from 3.9.1 to 3.9.2

Updates org.slf4j:slf4j-api from 2.0.12 to 2.0.13

Updates org.slf4j:slf4j-simple from 2.0.12 to 2.0.13

Updates org.slf4j:slf4j-simple from 2.0.12 to 2.0.13

Updates com.puppycrawl.tools:checkstyle from 10.13.0 to 10.17.0

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-10.17.0

Checkstyle 10.17.0 - https://checkstyle.org/releasenotes.html#Release_10.17.0

Breaking backward compatibility:

#13758 - ImportOrder: replace Pattern[] with String[] type for properties staticGroups and groups

New:

#14726 - new Check: ConstructorsDeclarationGrouping to check the grouping of overloaded constructors

Bug fixes:

#13012 - Checkstyle fails with "Path contains invalid character" if path to config file contains non-ascii characters #13167 - Null pointer Exception in UnusedLocalVariableCheck #14506 - False positive for UnusedLocalVariable #14825 - WhitespaceAround reports a violation when switch expression is passed as a method argument #13086 - InnerAssignmentCheck failed for one line code in Java 14 switch expression

checkstyle-10.16.0

Checkstyle 10.16.0 - https://checkstyle.org/releasenotes.html#Release_10.16.0

New:

#14620 - LITERAL_CASE token support in RightCurlyCheck

Bug fixes:

... (truncated)

Commits
  • b270384 [maven-release-plugin] prepare release checkstyle-10.17.0
  • da11a8d doc: release notes for 10.17.0
  • 15e0c7e Issue #14877: drop java 14 build
  • 8a4b406 Issue #13012: fix loading with non-ascii symbols in path
  • 96eeed5 Pull #14662: shallowClone in checkstyle-tester with SHA checkout
  • c15242f Issue #13167: Fix NPE in UnusedLocalVariable check
  • 8605dd8 dependency: bump org.gaul:modernizer-maven-plugin from 2.7.0 to 2.9.0
  • c5a873b ---
  • 9d9aad4 ---
  • b861547 Issue #14726: new check: ConstructorsDeclarationGroupingCheck
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
org.eclipse.jetty:jetty-bom [>= 11.a, < 12]

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
Bump the maven group across 1 directory with 7 updates
61e2bab 
Bumps the maven group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) | `2.16.1` | `2.17.1` |
| [org.eclipse.jetty:jetty-bom](https://github.com/eclipse/jetty.project) | `9.4.53.v20231009` | `9.4.54.v20240208` |
| [io.dropwizard.metrics:metrics-core](https://github.com/dropwizard/metrics) | `4.2.25` | `4.2.26` |
| org.apache.zookeeper:zookeeper | `3.9.1` | `3.9.2` |
| org.slf4j:slf4j-api | `2.0.12` | `2.0.13` |
| org.slf4j:slf4j-simple | `2.0.12` | `2.0.13` |
| [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) | `10.13.0` | `10.17.0` |



Updates `com.fasterxml.jackson:jackson-bom` from 2.16.1 to 2.17.1
- [Commits](FasterXML/jackson-bom@jackson-bom-2.16.1...jackson-bom-2.17.1)

Updates `org.eclipse.jetty:jetty-bom` from 9.4.53.v20231009 to 9.4.54.v20240208
- [Release notes](https://github.com/eclipse/jetty.project/releases)
- [Commits](jetty/jetty.project@jetty-9.4.53.v20231009...jetty-9.4.54.v20240208)

Updates `io.dropwizard.metrics:metrics-core` from 4.2.25 to 4.2.26
- [Release notes](https://github.com/dropwizard/metrics/releases)
- [Commits](dropwizard/metrics@v4.2.25...v4.2.26)

Updates `org.apache.zookeeper:zookeeper` from 3.9.1 to 3.9.2

Updates `org.slf4j:slf4j-api` from 2.0.12 to 2.0.13

Updates `org.slf4j:slf4j-simple` from 2.0.12 to 2.0.13

Updates `org.slf4j:slf4j-simple` from 2.0.12 to 2.0.13

Updates `com.puppycrawl.tools:checkstyle` from 10.13.0 to 10.17.0
- [Release notes](https://github.com/checkstyle/checkstyle/releases)
- [Commits](checkstyle/checkstyle@checkstyle-10.13.0...checkstyle-10.17.0)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson:jackson-bom
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: maven
- dependency-name: org.eclipse.jetty:jetty-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven
- dependency-name: io.dropwizard.metrics:metrics-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven
- dependency-name: org.apache.zookeeper:zookeeper
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven
- dependency-name: org.slf4j:slf4j-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven
- dependency-name: org.slf4j:slf4j-simple
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven
- dependency-name: org.slf4j:slf4j-simple
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven
- dependency-name: com.puppycrawl.tools:checkstyle
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: maven
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jun 10, 2024
@ctubbsii ctubbsii merged commit c9477db into main Jul 11, 2024
3 checks passed
@ctubbsii ctubbsii added this to the 1.3.0 milestone Jul 11, 2024
@dependabot dependabot bot deleted the dependabot/maven/maven-cddc768e5b branch July 11, 2024 17:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ctubbsii ctubbsii ctubbsii approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Milestone
1.3.0
Development

Successfully merging this pull request may close these issues.
1 participant
@ctubbsii