[jira] [Commented] (OMID-221) Bump junit from 4.13 to 4.13.1

Istvan Toth (Jira) Mon, 25 Apr 2022 00:33:11 -0700


    [ 
https://issues.apache.org/jira/browse/OMID-221?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17527357#comment-17527357
 ]


Istvan Toth commented on OMID-221:
----------------------------------

Bumps [junit](https://github.com/junit-team/junit4) from 4.13 to 4.13.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a 
href="https://github.com/junit-team/junit4/releases";>junit's 
releases</a>.</em></p>
<blockquote>
<h2>JUnit 4.13.1</h2>
<p>Please refer to the <a 
href="https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.1.md";>release
 notes</a> for details.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a 
href="https://github.com/junit-team/junit4/blob/main/doc/ReleaseNotes4.13.1.md";>junit's
 changelog</a>.</em></p>
<blockquote>
<h2>Summary of changes in version 4.13.1</h2>
<h1>Rules</h1>
<h3>Security fix: <code>TemporaryFolder</code> now limits access to temporary 
folders on Java 1.7 or later</h3>
<p>A local information disclosure vulnerability in <code>TemporaryFolder</code> 
has been fixed. See the published <a 
href="https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp";>security
 advisory</a> for details.</p>
<h1>Test Runners</h1>
<h3>[Pull request <a 
href="https://github-redirect.dependabot.com/junit-team/junit4/issues/1669";>#1669</a>:](<a
 
href="https://github-redirect.dependabot.com/junit-team/junit/pull/1669";>junit-team/junit#1669</a>)
 Make <code>FrameworkField</code> constructor public</h3>
<p>Prior to this change, custom runners could make <code>FrameworkMethod</code> 
instances, but not <code>FrameworkField</code> instances. This small change 
allows for both now, because <code>FrameworkField</code>'s constructor has been 
promoted from package-private to public.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a 
href="https://github.com/junit-team/junit4/commit/1b683f4ec07bcfa40149f086d32240f805487e66";><code>1b683f4</code></a>
 [maven-release-plugin] prepare release r4.13.1</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/ce6ce3aadc070db2902698fe0d3dc6729cd631f2";><code>ce6ce3a</code></a>
 Draft 4.13.1 release notes</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/c29dd8239d6b353e699397eb090a1fd27411fa24";><code>c29dd82</code></a>
 Change version to 4.13.1-SNAPSHOT</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/1d174861f0b64f97ab0722bb324a760bfb02f567";><code>1d17486</code></a>
 Add a link to assertThrows in exception testing</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/543905df72ff10364b94dda27552efebf3dd04e9";><code>543905d</code></a>
 Use separate line for annotation in Javadoc</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/510e906b391e7e46a346e1c852416dc7be934944";><code>510e906</code></a>
 Add sub headlines to class Javadoc</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/610155b8c22138329f0723eec22521627dbc52ae";><code>610155b</code></a>
 Merge pull request from GHSA-269g-pwp5-87pp</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/b6cfd1e3d736cc2106242a8be799615b472c7fec";><code>b6cfd1e</code></a>
 Explicitly wrap float parameter for consistency (<a 
href="https://github-redirect.dependabot.com/junit-team/junit4/issues/1671";>#1671</a>)</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/a5d205c7956dbed302b3bb5ecde5ba4299f0b646";><code>a5d205c</code></a>
 Fix GitHub link in FAQ (<a 
href="https://github-redirect.dependabot.com/junit-team/junit4/issues/1672";>#1672</a>)</li>
<li><a 
href="https://github.com/junit-team/junit4/commit/3a5c6b4d08f408c8ca6a8e0bae71a9bc5a8f97e8";><code>3a5c6b4</code></a>
 Deprecated since jdk9 replacing constructor instance of Double and Float (<a 
href="https://github-redirect.dependabot.com/junit-team/junit4/issues/1660";>#1660</a>)</li>
<li>Additional commits viewable in <a 
href="https://github.com/junit-team/junit4/compare/r4.13...r4.13.1";>compare 
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility 
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=junit:junit&package-manager=maven&previous-version=4.13&new-version=4.13.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter 
it yourself. You can also trigger a rebase manually by commenting `@dependabot 
rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have 
been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI 
passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block 
automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You 
can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop 
Dependabot creating any more for this major version (unless you reopen the PR 
or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop 
Dependabot creating any more for this minor version (unless you reopen the PR 
or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot 
creating any more for this dependency (unless you reopen the PR or upgrade to 
it yourself)
- `@dependabot use these labels` will set the current labels as the default for 
future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the 
default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the 
default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the 
default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the [Security 
Alerts page](https://github.com/apache/phoenix-omid/network/alerts).

</details>

> Bump junit from 4.13 to 4.13.1
> ------------------------------
>
>                 Key: OMID-221
>                 URL: https://issues.apache.org/jira/browse/OMID-221
>             Project: Phoenix Omid
>          Issue Type: Improvement
>    Affects Versions: 1.0.2
>            Reporter: Istvan Toth
>            Assignee: Istvan Toth
>            Priority: Major
>
> Tracking Jira for the GitHub dependabot PR



--
This message was sent by Atlassian Jira
(v8.20.7#820007)

[jira] [Commented] (OMID-221) Bump junit from 4.13 to 4.13.1

Reply via email to