You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When a project depends on com.github.spotbugs:spotbugs-annotations, it will add the latest JUnit Jupiter BOM to the project classpath. This causes issues for consumers, as adding or bumping spotbugs-annotations will lead to a bump of JUnit, as the BOM ends up in the POM and Gradle module files.
This happens because the BOM is configured to be an implementation dependency (
). It would likely be better to add the BOM exclusively to the testImplementation configurations for all projects, as it really shouldn't be leaked to any production code consumers.
The text was updated successfully, but these errors were encountered:
When a project depends on
com.github.spotbugs:spotbugs-annotations
, it will add the latest JUnit Jupiter BOM to the project classpath. This causes issues for consumers, as adding or bumpingspotbugs-annotations
will lead to a bump of JUnit, as the BOM ends up in the POM and Gradle module files.This happens because the BOM is configured to be an
implementation
dependency (spotbugs/build.gradle
Line 40 in a9ae3aa
testImplementation
configurations for all projects, as it really shouldn't be leaked to any production code consumers.The text was updated successfully, but these errors were encountered: