[GitHub] [commons-validator] garydgregory merged pull request #83: Bump commons-parent from 53 to 54
garydgregory merged PR #83: URL: https://github.com/apache/commons-validator/pull/83 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] codecov-commenter commented on pull request #83: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #83: URL: https://github.com/apache/commons-validator/pull/83#issuecomment-1256784136 # [Codecov](https://codecov.io/gh/apache/commons-validator/pull/83?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report > Merging [#83](https://codecov.io/gh/apache/commons-validator/pull/83?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (4af0eb5) into [master](https://codecov.io/gh/apache/commons-validator/commit/bbab85ab3ecec0ceb6cc378179ae74c6d68e89ca?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (bbab85a) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #83 +/- ## = Coverage 71.90% 71.90% Complexity 1137 1137 = Files63 63 Lines 3157 3157 Branches542 542 = Hits 2270 2270 Misses 693 693 Partials194 194 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] dependabot[bot] opened a new pull request, #83: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #83: URL: https://github.com/apache/commons-validator/pull/83 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory
[jira] [Commented] (POOL-409) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/POOL-409?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17608904#comment-17608904 ] Gary D. Gregory commented on POOL-409: -- [~Tux12Fun] Hm, why not call toString()? It seems to contain the same information. > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: POOL-409 > URL: https://issues.apache.org/jira/browse/POOL-409 > Project: Commons Pool > Issue Type: Improvement >Affects Versions: 2.11.1 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (POOL-409) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/POOL-409?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17608902#comment-17608902 ] Gary D. Gregory commented on POOL-409: -- FTR to be made public: * org.apache.commons.pool2.impl.BaseGenericObjectPool.getStatsString() * org.apache.commons.pool2.impl.GenericKeyedObjectPool.getStatsString() * org.apache.commons.pool2.impl.GenericObjectPool.getStatsString() > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: POOL-409 > URL: https://issues.apache.org/jira/browse/POOL-409 > Project: Commons Pool > Issue Type: Improvement >Affects Versions: 2.11.1 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (DBCP-586) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/DBCP-586?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17608901#comment-17608901 ] Gary D. Gregory commented on DBCP-586: -- FTR to be made public: * org.apache.commons.pool2.impl.BaseGenericObjectPool.getStatsString() * org.apache.commons.pool2.impl.GenericKeyedObjectPool.getStatsString() * org.apache.commons.pool2.impl.GenericObjectPool.getStatsString() > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: DBCP-586 > URL: https://issues.apache.org/jira/browse/DBCP-586 > Project: Commons DBCP > Issue Type: Improvement >Affects Versions: 2.9.0 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [commons-compress] garydgregory commented on pull request #316: Bump commons-parent from 53 to 54
garydgregory commented on PR #316: URL: https://github.com/apache/commons-compress/pull/316#issuecomment-1256615626 I think the tests need to be ported to JUnit 4 or 5. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Resolved] (DBCP-586) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/DBCP-586?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Thomas Freller resolved DBCP-586. - Resolution: Fixed > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: DBCP-586 > URL: https://issues.apache.org/jira/browse/DBCP-586 > Project: Commons DBCP > Issue Type: Improvement >Affects Versions: 2.9.0 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (DBCP-586) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/DBCP-586?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17608893#comment-17608893 ] Thomas Freller commented on DBCP-586: - Oh that's great then we can close this issue and I access the public Method with the way you described 👍 > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: DBCP-586 > URL: https://issues.apache.org/jira/browse/DBCP-586 > Project: Commons DBCP > Issue Type: Improvement >Affects Versions: 2.9.0 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Work logged] (TEXT-216) HTML 5.0 Entities are not supported
[ https://issues.apache.org/jira/browse/TEXT-216?focusedWorklogId=811687&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-811687 ] ASF GitHub Bot logged work on TEXT-216: --- Author: ASF GitHub Bot Created on: 23/Sep/22 19:12 Start Date: 23/Sep/22 19:12 Worklog Time Spent: 10m Work Description: garydgregory commented on PR #312: URL: https://github.com/apache/commons-text/pull/312#issuecomment-1256580580 > @rbunel35, thank you for the PR and apologies for the late reply. > > This looks like useful functionality to me, although I'm slightly concerned about the new size of `EntityArrays`. (If the character maps were accessed by static methods instead of constants, I would recommend using separate private classes to initialize each entity grouping.) Regardless, could you add a unit test that iterates through each HTML5 entity in the official reference and ensures that they are all accounted for and escaped/unescaped correctly? One way to do this would be to convert the JSON reference document into a properties file and load the properties file during the test. I agree about splitting out the large new arrays into a new class. In general, new public and protected elements need to be documented with the Javadoc since tag. Also, we should make as little as possible new or protected to give us maximum flexibility for maintenance. Issue Time Tracking --- Worklog Id: (was: 811687) Time Spent: 0.5h (was: 20m) > HTML 5.0 Entities are not supported > --- > > Key: TEXT-216 > URL: https://issues.apache.org/jira/browse/TEXT-216 > Project: Commons Text > Issue Type: Improvement >Affects Versions: 1.0 >Reporter: Richard Bunel >Priority: Major > Time Spent: 0.5h > Remaining Estimate: 0h > > As noted in > [TEXT-193|https://issues.apache.org/jira/projects/TEXT/issues/TEXT-193] and > probably other tickets, HTML 5.0 entities are not supported. > A nice evolution would be to include them all. > Tentative PR: https://github.com/apache/commons-text/pull/312 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [commons-text] garydgregory commented on pull request #312: TEXT-216: Add HTML5 Entities
garydgregory commented on PR #312: URL: https://github.com/apache/commons-text/pull/312#issuecomment-1256580580 > @rbunel35, thank you for the PR and apologies for the late reply. > > This looks like useful functionality to me, although I'm slightly concerned about the new size of `EntityArrays`. (If the character maps were accessed by static methods instead of constants, I would recommend using separate private classes to initialize each entity grouping.) Regardless, could you add a unit test that iterates through each HTML5 entity in the official reference and ensures that they are all accounted for and escaped/unescaped correctly? One way to do this would be to convert the JSON reference document into a properties file and load the properties file during the test. I agree about splitting out the large new arrays into a new class. In general, new public and protected elements need to be documented with the Javadoc since tag. Also, we should make as little as possible new or protected to give us maximum flexibility for maintenance. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-rdf] dependabot[bot] closed pull request #87: Bump jaxb-runtime from 2.3.6 to 4.0.0
dependabot[bot] closed pull request #87: Bump jaxb-runtime from 2.3.6 to 4.0.0 URL: https://github.com/apache/commons-rdf/pull/87 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-rdf] dependabot[bot] commented on pull request #87: Bump jaxb-runtime from 2.3.6 to 4.0.0
dependabot[bot] commented on PR #87: URL: https://github.com/apache/commons-rdf/pull/87#issuecomment-1256577930 Superseded by #91. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-rdf] dependabot[bot] opened a new pull request, #91: Bump jaxb-runtime from 2.3.6 to 4.0.1
dependabot[bot] opened a new pull request, #91: URL: https://github.com/apache/commons-rdf/pull/91 Bumps jaxb-runtime from 2.3.6 to 4.0.1. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.glassfish.jaxb:jaxb-runtime&package-manager=maven&previous-version=2.3.6&new-version=4.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-compress] garydgregory commented on pull request #316: Bump commons-parent from 53 to 54
garydgregory commented on PR #316: URL: https://github.com/apache/commons-compress/pull/316#issuecomment-1256575310 @dependabot rebase -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] dependabot[bot] opened a new pull request, #303: Bump spotbugs from 4.7.1 to 4.7.2
dependabot[bot] opened a new pull request, #303: URL: https://github.com/apache/commons-vfs/pull/303 Bumps [spotbugs](https://github.com/spotbugs/spotbugs) from 4.7.1 to 4.7.2. Release notes Sourced from https://github.com/spotbugs/spotbugs/releases";>spotbugs's releases. SpotBugs 4.7.2 CHANGELOG Fixed Bumped gson from 2.9.0 to 2.9.1 (https://github-redirect.dependabot.com/spotbugs/spotbugs/pull/2136";>#2136) Bump up SLF4J API to 2.0.0 Bump up logback to 1.4.0 Bump up log4j2 binding to 2.18.0 Bump up Saxon-HE to 11.4 (https://github-redirect.dependabot.com/spotbugs/spotbugs/pull/2160";>#2160) Fixed InvalidInputException in Eclipse while bug reporting (https://github-redirect.dependabot.com/spotbugs/spotbugs/issues/2134";>#2134) https://github.com/iloveeclipse";>@iloveeclipse Bug SA_FIELD_SELF_ASSIGNMENT is now reported from nested classes as well (https://github-redirect.dependabot.com/spotbugs/spotbugs/issues/2142";>#2142) https://github.com/baloghadamsoftware";>@baloghadamsoftware Avoid warning on use of security manager on Java 17 and newer. (https://github-redirect.dependabot.com/spotbugs/spotbugs/issues/1579";>#1579) https://github.com/raphw";>@raphw Fixed false positives EI_EXPOSE_REP thrown in case of fields initialized by the of or copyOf method of a List, Map or Set (https://github-redirect.dependabot.com/spotbugs/spotbugs/issues/1771";>#1771) https://github.com/baloghadamsoftware";>@baloghadamsoftware Fixed CFGBuilderException thrown when dup_x2 is used to swap the reference and wide-value (double, long) in the stack (https://github-redirect.dependabot.com/spotbugs/spotbugs/pull/2146";>#2146) https://github.com/KengoTODA";>@KengoTODA CHECKSUM file checksum (sha256) spotbugs-4.7.2-javadoc.jar a40e94961c8b99e020aacfa7012cce4e818eac6fb8effa678e20177814113248 spotbugs-4.7.2-sources.jar fca5bab29e0373944cbb07e3329ce1c0c18133885f558fb25e3bc2ebba6a7018 spotbugs-4.7.2.tgz f02a023d03b0fde70038ccb4bc8d4a964a504262d13024a97b14d9070f7d4d96 spotbugs-4.7.2.zip 3974d90eb70aad26bb647e0bbaae810c7cf927587e28ce939c2b6531414afe7d spotbugs-annotations-4.7.2-javadoc.jar b8e9f92e17a62766f86b82442a07b0f57ff4f919796e944a6e2a5bacc76e4399 spotbugs-annotations-4.7.2-sources.jar b338136e3e82d585348cde58a8fe3a678e16f51a35c31c1463e05fefef557aad spotbugs-annotations.jar e2b4c654b2d7897490cf1f22a009ac677be4c92bfc493a0dedb5706f5e489839 spotbugs-ant-4.7.2-javadoc.jar 632af1c4043b35eab37318eed7ab30163a124248b4467fb30cbd0f2f24de spotbugs-ant-4.7.2-sources.jar ce7cfbed848ccb0e3765cec6b9c60c458699aa51f60ad9216cf89dbf38d8d793 spotbugs-ant.jar b866a2a89a03b49e60b5f27e0f5987eb8c12c2d2aefc6e9ddcbcdae345c765db spotbugs.jar df5205f4d87ed53ff5b847c6aedc55d605966c0f8f9820d9c6be5ba517b09bcd test-harness-4.7.2-javadoc.jar 1486f4f4be29dc24a19ad95b809b42d08f34ec9c68abfd43c5fe44d6087d8845 test-harness-4.7.2-sources.jar 7efb06093ea5f6f330a7bd76b894f396d6cb45fcefc01a3743b07910dc29 test-harness-4.7.2.jar 50b4a72c668ea7d29bf1234b4aa380df903374216f68b0a87f7ca28d4fa225f3 test-harness-core-4.7.2-javadoc.jar f10c5bbe98b2666ea775cc5c0a9a94e99b116706d75254d079741ff410dbdd33 test-harness-core-4.7.2-sources.jar f8aab3c5cdd456d6b6d632e9fc65897e657447a2e925b6b3f61bd2d15c22cb24 test-harness-core-4.7.2.jar 7165f7f45a6e82e8a6d6a0a4033b6473b310c14f645cb62ebc2fbc6ce5338350 test-harness-jupiter-4.7.2-javadoc.jar 1bdd8c97fbef6009945e30821ba26f722d1d037c33d780f75d922e30c900ef04 test-harness-jupiter-4.7.2-sources.jar 210353a57016e26b1a654d936a15f039613fa1ac532d485c1b1d03902f6c6315 test-harness-jupiter-4.7.2.jar 18095fec31b85981ecaafdef86ca9ae1e9588e1b9bc6d209f82829cf9d0c13f4 Changelog Sourced from https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md";>spotbugs's changelog. 4.7.2 - 2022-09-02 Fixed Bumped gson from 2.9.0 to 2.9.1 (https://github-redirect.dependabot.com/spotbugs/spotbugs/pull/2136";>#2136) Bump up SLF4J API to 2.0.0 Bump up logback to 1.4.0 Bump up log4j2 binding to 2.18.0 Bump up Saxon-HE to 11.4 (https://github-redirect.dependabot.com/spotbugs/spotbugs/pull/2160";>#2160) Fixed InvalidInputException in Eclipse while bug reporting (https://github-redirect.dependabot.com/spotbugs/spotbugs/issues/2134";>#2134) Bug SA_FIELD_SELF_ASSIGNMENT is now reported from nested classes as well (https://github-redirect.dependabot.com/spotbugs/spotbugs/issues/2142";>#2142) Avoid warning on use of security manager on Java 17 and newer. (https://github-redirect.dependabot.com/spotbugs/spotbugs/issues/1579";>#1579) Fixed false positives EI_EXPOSE_REP thrown in case of fields initialized by the of or c
[GitHub] [commons-vfs] garydgregory merged pull request #302: Bump commons-parent from 53 to 54
garydgregory merged PR #302: URL: https://github.com/apache/commons-vfs/pull/302 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] garydgregory merged pull request #388: Bump commons-parent from 53 to 54
garydgregory merged PR #388: URL: https://github.com/apache/commons-io/pull/388 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] dependabot[bot] opened a new pull request, #302: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #302: URL: https://github.com/apache/commons-vfs/pull/302 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory.
[GitHub] [commons-vfs] dependabot[bot] commented on pull request #301: Bump slf4j-simple from 1.7.26 to 2.0.2
dependabot[bot] commented on PR #301: URL: https://github.com/apache/commons-vfs/pull/301#issuecomment-1256547195 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] garydgregory closed pull request #301: Bump slf4j-simple from 1.7.26 to 2.0.2
garydgregory closed pull request #301: Bump slf4j-simple from 1.7.26 to 2.0.2 URL: https://github.com/apache/commons-vfs/pull/301 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] garydgregory commented on pull request #301: Bump slf4j-simple from 1.7.26 to 2.0.2
garydgregory commented on PR #301: URL: https://github.com/apache/commons-vfs/pull/301#issuecomment-1256547158 Close this PR to let Dpendabot open a PR for commons-parent (limit 5) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] garydgregory commented on pull request #388: Bump commons-parent from 53 to 54
garydgregory commented on PR #388: URL: https://github.com/apache/commons-io/pull/388#issuecomment-1256544201 @dependabot rebase -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-exec] garydgregory merged pull request #64: Bump commons-parent from 53 to 54
garydgregory merged PR #64: URL: https://github.com/apache/commons-exec/pull/64 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-exec] garydgregory commented on a diff in pull request #61: [Javadoc] CommandLine.toCleanExecutable(final String dirtyExecutable) IllegalArgumentException
garydgregory commented on code in PR #61: URL: https://github.com/apache/commons-exec/pull/61#discussion_r978954072 ## src/main/java/org/apache/commons/exec/CommandLine.java: ## @@ -398,6 +398,7 @@ private static String[] translateCommandline(final String toProcess) { * * @param dirtyExecutable the executable * @return the platform-specific executable string + * @throws IllegalArgumentException If dirtyExecutable is null or empty Review Comment: Hello @ArdenL-Liu Thank you for your PR. You might as well update the other Javadoc instances in this class where IllegalArgumentException is thrown but not documented, especially since we seem to document some but not all cases. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-exec] garydgregory commented on pull request #64: Bump commons-parent from 53 to 54
garydgregory commented on PR #64: URL: https://github.com/apache/commons-exec/pull/64#issuecomment-1256523621 @dependabot rebase. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] garydgregory commented on pull request #388: Bump commons-parent from 53 to 54
garydgregory commented on PR #388: URL: https://github.com/apache/commons-io/pull/388#issuecomment-1256465400 @dependabot rebase -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-net] garydgregory merged pull request #112: Bump commons-parent from 53 to 54
garydgregory merged PR #112: URL: https://github.com/apache/commons-net/pull/112 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-release-plugin] garydgregory merged pull request #137: Bump commons-parent from 53 to 54
garydgregory merged PR #137: URL: https://github.com/apache/commons-release-plugin/pull/137 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] dependabot[bot] commented on pull request #262: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #262: URL: https://github.com/apache/commons-csv/pull/262#issuecomment-1256432980 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] garydgregory closed pull request #262: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #262: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-csv/pull/262 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] garydgregory commented on pull request #262: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #262: URL: https://github.com/apache/commons-csv/pull/262#issuecomment-1256432941 Closing: needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (DBCP-586) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/DBCP-586?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17608843#comment-17608843 ] Gary D. Gregory commented on DBCP-586: -- Still not needed IMO, if {{org.apache.commons.pool2.impl.BaseGenericObjectPool.getStatsString()}} is public, you can just say {{BasicDataSource.getConnectionPool().getStatsString()}}. There is no need to crowd the API just to delegate a method call. > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: DBCP-586 > URL: https://issues.apache.org/jira/browse/DBCP-586 > Project: Commons DBCP > Issue Type: Improvement >Affects Versions: 2.9.0 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [commons-io] dependabot[bot] commented on pull request #385: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #385: URL: https://github.com/apache/commons-io/pull/385#issuecomment-1256426810 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] garydgregory closed pull request #385: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #385: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-io/pull/385 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] garydgregory commented on pull request #385: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #385: URL: https://github.com/apache/commons-io/pull/385#issuecomment-1256426772 Close: Needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-text] garydgregory merged pull request #341: Interpolation Defaults
garydgregory merged PR #341: URL: https://github.com/apache/commons-text/pull/341 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] dependabot[bot] commented on pull request #82: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #82: URL: https://github.com/apache/commons-validator/pull/82#issuecomment-1256408556 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] garydgregory closed pull request #82: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #82: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-validator/pull/82 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] garydgregory commented on pull request #82: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #82: URL: https://github.com/apache/commons-validator/pull/82#issuecomment-1256408512 Closing: Needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-email] dependabot[bot] commented on pull request #90: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #90: URL: https://github.com/apache/commons-email/pull/90#issuecomment-1256407178 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbutils] garydgregory merged pull request #139: Bump commons-parent from 53 to 54
garydgregory merged PR #139: URL: https://github.com/apache/commons-dbutils/pull/139 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-email] garydgregory closed pull request #90: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #90: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-email/pull/90 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-email] garydgregory commented on pull request #90: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #90: URL: https://github.com/apache/commons-email/pull/90#issuecomment-1256407128 Closing: Needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-daemon] garydgregory merged pull request #53: Bump spotbugs-maven-plugin from 4.7.1.1 to 4.7.2.0
garydgregory merged PR #53: URL: https://github.com/apache/commons-daemon/pull/53 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-daemon] garydgregory closed pull request #54: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #54: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-daemon/pull/54 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-daemon] dependabot[bot] commented on pull request #54: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #54: URL: https://github.com/apache/commons-daemon/pull/54#issuecomment-1256405035 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-daemon] garydgregory commented on pull request #54: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #54: URL: https://github.com/apache/commons-daemon/pull/54#issuecomment-1256404984 Closing: Needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-daemon] dependabot[bot] opened a new pull request, #55: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #55: URL: https://github.com/apache/commons-daemon/pull/55 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory.
[jira] [Commented] (EXEC-46) Process.waitFor should clear interrupt status when throwing InterruptedException
[ https://issues.apache.org/jira/browse/EXEC-46?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17608777#comment-17608777 ] Guillaume Alvarez commented on EXEC-46: --- The original JVM issue was closed in Java7: https://bugs.java.com/bugdatabase/view_bug.do?bug_id=6420270 > Process.waitFor should clear interrupt status when throwing > InterruptedException > > > Key: EXEC-46 > URL: https://issues.apache.org/jira/browse/EXEC-46 > Project: Commons Exec > Issue Type: Improvement > Environment: any >Reporter: nir >Assignee: Siegfried Goeschl >Priority: Minor > Fix For: 1.1 > > > Taken from - http://kylecartmell.com/?p=9 > By convention, methods that throw InterruptedException reset the thread > interrupt flag. > Unfortunately Process.waitFor didn't get that memo. (See Sun bug 6420270 - > http://bugs.sun.com/view_bug.do?bug_id=6420270). > This is especially entertaining when a thread invokes multiple processes > consecutively and calls waitFor for each of them; > After one call to waitFor is interrupted, future calls to waitFor from the > same thread will immediately throw InterruptedException until the interrupt > flag is cleared. > Process.waitFor should always be called from a try block whether > InterruptedException is caught or not, with a corresponding finally block > that calls Thread.interrupted to clear the interrupt flag. > So maybe the code in DefaultExecutor.executeInternal() method should change: > int exitValue = Executor.INVALID_EXITVALUE; > try { > exitValue = process.waitFor(); > } catch (InterruptedException e) { > process.destroy(); > } > Maybe there is a need to add > Thread.interrupted() > to the catch/finally block -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [commons-jexl] dependabot[bot] commented on pull request #120: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #120: URL: https://github.com/apache/commons-jexl/pull/120#issuecomment-1256258504 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-jexl] garydgregory merged pull request #121: Bump commons-parent from 53 to 54
garydgregory merged PR #121: URL: https://github.com/apache/commons-jexl/pull/121 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-jexl] garydgregory closed pull request #120: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #120: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-jexl/pull/120 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-jexl] garydgregory commented on pull request #120: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #120: URL: https://github.com/apache/commons-jexl/pull/120#issuecomment-1256258400 Needs Apache Infra -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-crypto] garydgregory merged pull request #182: Bump commons-parent from 53 to 54
garydgregory merged PR #182: URL: https://github.com/apache/commons-crypto/pull/182 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-crypto] garydgregory merged pull request #183: Bump junit-bom from 5.9.0 to 5.9.1
garydgregory merged PR #183: URL: https://github.com/apache/commons-crypto/pull/183 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-parent] garydgregory merged pull request #148: Bump github/codeql-action from 2.1.23 to 2.1.25
garydgregory merged PR #148: URL: https://github.com/apache/commons-parent/pull/148 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-parent] dependabot[bot] commented on pull request #149: Bump spdx-maven-plugin from 0.5.5 to 0.6.0
dependabot[bot] commented on PR #149: URL: https://github.com/apache/commons-parent/pull/149#issuecomment-1256251084 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-parent] garydgregory closed pull request #149: Bump spdx-maven-plugin from 0.5.5 to 0.6.0
garydgregory closed pull request #149: Bump spdx-maven-plugin from 0.5.5 to 0.6.0 URL: https://github.com/apache/commons-parent/pull/149 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-parent] garydgregory commented on pull request #149: Bump spdx-maven-plugin from 0.5.5 to 0.6.0
garydgregory commented on PR #149: URL: https://github.com/apache/commons-parent/pull/149#issuecomment-1256250982 Closing: Waiting for a release to pick up https://github.com/spdx/spdx-maven-plugin/issues/53 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] kinow merged pull request #264: Bump commons-parent from 53 to 54
kinow merged PR #264: URL: https://github.com/apache/commons-csv/pull/264 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-release-plugin] kinow merged pull request #136: Bump junit-vintage-engine from 5.9.0 to 5.9.1
kinow merged PR #136: URL: https://github.com/apache/commons-release-plugin/pull/136 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-logging] kinow merged pull request #106: Bump commons-parent from 53 to 54
kinow merged PR #106: URL: https://github.com/apache/commons-logging/pull/106 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] kinow merged pull request #263: Bump junit-jupiter from 5.9.0 to 5.9.1
kinow merged PR #263: URL: https://github.com/apache/commons-csv/pull/263 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] codecov-commenter commented on pull request #264: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #264: URL: https://github.com/apache/commons-csv/pull/264#issuecomment-1256137811 # [Codecov](https://codecov.io/gh/apache/commons-csv/pull/264?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report > Merging [#264](https://codecov.io/gh/apache/commons-csv/pull/264?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (1bf0908) into [master](https://codecov.io/gh/apache/commons-csv/commit/4ed942fc8c345ebacf85bdb289e072ead7b36c03?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (4ed942f) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #264 +/- ## = Coverage 97.34% 97.34% Complexity 535 535 = Files11 11 Lines 1169 1169 Branches205 205 = Hits 1138 1138 Misses 18 18 Partials 13 13 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] codecov-commenter commented on pull request #263: Bump junit-jupiter from 5.9.0 to 5.9.1
codecov-commenter commented on PR #263: URL: https://github.com/apache/commons-csv/pull/263#issuecomment-1256129505 # [Codecov](https://codecov.io/gh/apache/commons-csv/pull/263?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report > Merging [#263](https://codecov.io/gh/apache/commons-csv/pull/263?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (6b6ae25) into [master](https://codecov.io/gh/apache/commons-csv/commit/4ed942fc8c345ebacf85bdb289e072ead7b36c03?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (4ed942f) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #263 +/- ## = Coverage 97.34% 97.34% Complexity 535 535 = Files11 11 Lines 1169 1169 Branches205 205 = Hits 1138 1138 Misses 18 18 Partials 13 13 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] dependabot[bot] opened a new pull request, #264: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #264: URL: https://github.com/apache/commons-csv/pull/264 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory.
[GitHub] [commons-csv] dependabot[bot] opened a new pull request, #263: Bump junit-jupiter from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #263: URL: https://github.com/apache/commons-csv/pull/263 Bumps [junit-jupiter](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases";>junit-jupiter's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/";>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be";>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a";>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3";>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761";>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d";>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6";>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94";>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e";>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a";>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f";>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit.jupiter:junit-jupiter&package-manager=maven&previous-version=5.9.0&new-version=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-jexl] dependabot[bot] opened a new pull request, #121: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #121: URL: https://github.com/apache/commons-jexl/pull/121 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory.
[GitHub] [commons-jexl] dependabot[bot] opened a new pull request, #120: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] opened a new pull request, #120: URL: https://github.com/apache/commons-jexl/pull/120 Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.2 to 2.0.3. Release notes Sourced from https://github.com/ossf/scorecard-action/releases";>ossf/scorecard-action's releases. v2.0.3 Patch for fix in https://github-redirect.dependabot.com/ossf/scorecard-action/issues/898";>#898 v2.0.2 Fixes https://github-redirect.dependabot.com/ossf/scorecard-action/issues/895";>ossf/scorecard-action#895 v2.0.1 Fix for https://github-redirect.dependabot.com/ossf/scorecard-action/issues/856";>#856 v2.0.0 What's Changed 🌱 Prepare for a pre-release of the Golang action by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/750";>ossf/scorecard-action#750 :seedling: Bump github/codeql-action from 2.1.12 to 2.1.16 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/751";>ossf/scorecard-action#751 :seedling: Bump debian from 11.3-slim to 11.4-slim by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/749";>ossf/scorecard-action#749 :seedling: Bump step-security/harden-runner from 1.4.3 to 1.4.4 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/646";>ossf/scorecard-action#646 :seedling: Bump actions/setup-go from 3.2.0 to 3.2.1 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/748";>ossf/scorecard-action#748 🐛 Fix dependency conflicts in go.mod by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/771";>ossf/scorecard-action#771 🌱 Prepare for v2 beta1 release by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/766";>ossf/scorecard-action#766 multi-repo-action: Note that tool is a work-in-progress by https://github.com/naveensrinivasan";>@naveensrinivasan in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/776";>ossf/scorecard-action#776 🐛 Fix intermittent failures in CI-Tests by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/778";>ossf/scorecard-action#778 :seedling: Bump sigs.k8s.io/release-utils from 0.7.2 to 0.7.3 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/775";>ossf/scorecard-action#775 :seedling: Bump actions/cache from 3.0.4 to 3.0.5 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/769";>ossf/scorecard-action#769 📖 Update README about the restrictions for scorecard-action:v2 by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/779";>ossf/scorecard-action#779 :seedling: Bump github/codeql-action from 2.1.16 to 2.1.17 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/783";>ossf/scorecard-action#783 📖 Update instructions for Scorecard badge to README by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/785";>ossf/scorecard-action#785 :seedling: Bump debian from f576b80 to a811e62 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/787";>ossf/scorecard-action#787 :seedling: Bump github.com/ossf/scorecard/v4 from 4.4.0 to 4.5.0 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/786";>ossf/scorecard-action#786 :seedling: Bump github/codeql-action from 2.1.17 to 2.1.18 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/788";>ossf/scorecard-action#788 :seedling: Bump actions/cache from 3.0.5 to 3.0.6 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/789";>ossf/scorecard-action#789 🐛 Add request application/json request header by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/791";>ossf/scorecard-action#791 Create a new release v2.0.0-alpha.1 by https://github.com/azeemshaikh38";>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/803";>ossf/scorecard-action#803 :seedling: Bump actions/cache from 3.0.6 to 3.0.7 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/807";>os
[GitHub] [commons-crypto] codecov-commenter commented on pull request #183: Bump junit-bom from 5.9.0 to 5.9.1
codecov-commenter commented on PR #183: URL: https://github.com/apache/commons-crypto/pull/183#issuecomment-1256121917 # [Codecov](https://codecov.io/gh/apache/commons-crypto/pull/183?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report > Merging [#183](https://codecov.io/gh/apache/commons-crypto/pull/183?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (b5e6b61) into [master](https://codecov.io/gh/apache/commons-crypto/commit/552ce85a591831c7c55f28d698cda79c728c035c?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (552ce85) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #183 +/- ## = Coverage 73.09% 73.09% Complexity 433 433 = Files35 35 Lines 1877 1877 Branches187 187 = Hits 1372 1372 Misses 389 389 Partials116 116 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] aherbert commented on pull request #336: Fix flaky test failure in SynchronizedBagTest#testCollectionToArray2
aherbert commented on PR #336: URL: https://github.com/apache/commons-collections/pull/336#issuecomment-1256113733 @Partha-SUST16 I updated the test for unordered arrays in commit c35d8c6fd1ae28680c9912acf031173db389b80c. Matching the length and then matching items in a Set will not detect a count mismatch of duplicates. This test now explicitly matches each item once and only once. Please raise another PR if you find any more issues. Thanks for the contribution. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] asfgit closed pull request #336: Fix flaky test failure in SynchronizedBagTest#testCollectionToArray2
asfgit closed pull request #336: Fix flaky test failure in SynchronizedBagTest#testCollectionToArray2 URL: https://github.com/apache/commons-collections/pull/336 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-skin] dependabot[bot] opened a new pull request, #5: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #5: URL: https://github.com/apache/commons-skin/pull/5 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-skin] dependabot[bot] opened a new pull request, #4: Bump github/codeql-action from 2.1.23 to 2.1.25
dependabot[bot] opened a new pull request, #4: URL: https://github.com/apache/commons-skin/pull/4 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.23 to 2.1.25. Changelog Sourced from https://github.com/github/codeql-action/blob/main/CHANGELOG.md";>github/codeql-action's changelog. CodeQL Action Changelog [UNRELEASED] No user facing changes. 2.1.25 - 21 Sep 2022 We will soon be rolling out a feature of the CodeQL Action that stores some information used to make future runs faster in the GitHub Actions cache. Initially, this will only be enabled on JavaScript repositories, but we plan to add more languages to this soon. The new feature can be disabled by passing the trap-caching: false option to your workflow's init step, for example if you are already using the GitHub Actions cache for a different purpose and are near the storage limit for it. Add support for Python automatic dependency installation with Poetry 1.2 https://github-redirect.dependabot.com/github/codeql-action/pull/1258";>#1258. 2.1.24 - 16 Sep 2022 No user facing changes. 2.1.23 - 14 Sep 2022 Allow CodeQL packs to be downloaded from GitHub Enterprise Server instances, using the new registries input for the init action. https://github-redirect.dependabot.com/github/codeql-action/pull/1221";>#1221 Update default CodeQL bundle version to 2.10.5. https://github-redirect.dependabot.com/github/codeql-action/pull/1240";>#1240 2.1.22 - 01 Sep 2022 Downloading CodeQL packs has been moved to the init step. Previously, CodeQL packs were downloaded during the analyze step. https://github-redirect.dependabot.com/github/codeql-action/pull/1218";>#1218 Update default CodeQL bundle version to 2.10.4. https://github-redirect.dependabot.com/github/codeql-action/pull/1224";>#1224 The newly released https://python-poetry.org/blog/announcing-poetry-1.2.0";>Poetry 1.2 is not yet supported. In the most common case where the CodeQL Action is automatically installing Python dependencies, it will continue to install and use Poetry 1.1 on its own. However, in certain cases such as with self-hosted runners, you may need to ensure Poetry 1.1 is installed yourself. 2.1.21 - 25 Aug 2022 Improve error messages when the code scanning configuration file includes an invalid queries block or an invalid query-filters block. https://github-redirect.dependabot.com/github/codeql-action/pull/1208";>#1208 Fix a bug where Go build tracing could fail on Windows. https://github-redirect.dependabot.com/github/codeql-action/pull/1209";>#1209 2.1.20 - 22 Aug 2022 No user facing changes. 2.1.19 - 17 Aug 2022 Add the ability to filter queries from a code scanning run by using the query-filters option in the code scanning configuration file. https://github-redirect.dependabot.com/github/codeql-action/pull/1098";>#1098 In debug mode, debug artifacts are now uploaded even if a step in the Actions workflow fails. https://github-redirect.dependabot.com/github/codeql-action/pull/1159";>#1159 Update default CodeQL bundle version to 2.10.3. https://github-redirect.dependabot.com/github/codeql-action/pull/1178";>#1178 The combination of python2 and Pipenv is no longer supported. https://github-redirect.dependabot.com/github/codeql-action/pull/1181";>#1181 2.1.18 - 03 Aug 2022 Update default CodeQL bundle version to 2.10.2. https://github-redirect.dependabot.com/github/codeql-action/pull/1156";>#1156 2.1.17 - 28 Jul 2022 Update default CodeQL bundle version to 2.10.1. https://github-redirect.dependabot.com/github/codeql-action/pull/1143";>#1143 ... (truncated) Commits https://github.com/github/codeql-action/commit/86f3159a697a097a813ad9bfa0002412d97690a4";>86f3159 Merge pull request https://github-redirect.dependabot.com/github/codeql-action/issues/1261";>#1261 from github/update-v2.1.25-ff5ca122 https://github.com/github/codeql-action/commit/d1e2e02bee04071d46c2f6ccd3fbf3073f898cc6";>d1e2e02 Update changelog for v2.1.25 https://github.com/github/codeql-action/commit/ff5ca122eda1e2e13c4180dbfb1bb11d7f5cc139";>ff5ca12 Merge pull request https://github-redirect.dependabot.com/github/codeql-action/issues/1257";>#1257 from github/rasmuswl/fix-ubuntu22.04-venv-creation https://github.com/github/codeql-action/commit/32ca2cf500269f3c253386e63fb24f1ca7de5164";>32ca2cf Apply suggestions from code review https://github.com/github/codeql-action/commit/b2fc1e178e0d4698fbfe13a3dacbd46e1f0dbe23";>b2fc1e1 python-setup: Disable python2 tests on ubuntu-22.04 https://github.com/github/codeql-action/commit/8a893ddf189a2414cad54a3cdc31c8db322b2b27";>8a893dd python-setup: Flush even more https://github.com/github/codeql-action/commit/93ba53f2de80a13ee5ef48ee7a6f68de121da298";>93ba53f add missing spaces https://github.com/github/codeql-action/commit/1
[GitHub] [commons-crypto] codecov-commenter commented on pull request #181: Bump jaxb-impl from 2.3.6 to 4.0.1
codecov-commenter commented on PR #181: URL: https://github.com/apache/commons-crypto/pull/181#issuecomment-1256083896 # [Codecov](https://codecov.io/gh/apache/commons-crypto/pull/181?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report > Merging [#181](https://codecov.io/gh/apache/commons-crypto/pull/181?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (afe93a1) into [master](https://codecov.io/gh/apache/commons-crypto/commit/552ce85a591831c7c55f28d698cda79c728c035c?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (552ce85) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #181 +/- ## = Coverage 73.09% 73.09% Complexity 433 433 = Files35 35 Lines 1877 1877 Branches187 187 = Hits 1372 1372 Misses 389 389 Partials116 116 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] dependabot[bot] closed pull request #299: Bump slf4j-simple from 1.7.26 to 2.0.1
dependabot[bot] closed pull request #299: Bump slf4j-simple from 1.7.26 to 2.0.1 URL: https://github.com/apache/commons-vfs/pull/299 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] dependabot[bot] commented on pull request #299: Bump slf4j-simple from 1.7.26 to 2.0.1
dependabot[bot] commented on PR #299: URL: https://github.com/apache/commons-vfs/pull/299#issuecomment-1256076832 Superseded by #301. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] dependabot[bot] opened a new pull request, #301: Bump slf4j-simple from 1.7.26 to 2.0.2
dependabot[bot] opened a new pull request, #301: URL: https://github.com/apache/commons-vfs/pull/301 Bumps [slf4j-simple](https://github.com/qos-ch/slf4j) from 1.7.26 to 2.0.2. Commits https://github.com/qos-ch/slf4j/commit/0645c18cafbad8dfcebf2d57926cba496c8ab055";>0645c18 prepare release 2.0.2 https://github.com/qos-ch/slf4j/commit/894b1890a077a966f8be147e9fac2ad92a610e69";>894b189 fix SLF4J-563 https://github.com/qos-ch/slf4j/commit/7c1d86e21e7260093bbef5647cd554e09d64f68b";>7c1d86e start work on 2.0.2-SNAPSHOT https://github.com/qos-ch/slf4j/commit/9752442b6e6db0749915dc40e80437dc97cd772d";>9752442 prepare release 2.0.1 https://github.com/qos-ch/slf4j/commit/c0f7f16bfb2cdbcf38df6039219ee3f57c99117e";>c0f7f16 minor javadoc change https://github.com/qos-ch/slf4j/commit/1148b9852997376ab865cfc5e448fee0675cabbd";>1148b98 Merge branch 'master' of github.com:qos-ch/slf4j https://github.com/qos-ch/slf4j/commit/593f89f85af8d181f0727315224f37fe0aa5fdcb";>593f89f fix SLF4J SLF4J-560 https://github.com/qos-ch/slf4j/commit/03deea9f77c354ccd59c578808cff689299ba5eb";>03deea9 Merge pull request https://github-redirect.dependabot.com/qos-ch/slf4j/issues/302";>#302 from coheigea/coheigea/reload4j_1.2.22 https://github.com/qos-ch/slf4j/commit/c9d5cc1257be51d837bf8e3f10f94eb18d1390bb";>c9d5cc1 Update reload4j to 1.2.22 https://github.com/qos-ch/slf4j/commit/bae56f544b0c30cedb265729f3c6cce72fa79f10";>bae56f5 Merge pull request https://github-redirect.dependabot.com/qos-ch/slf4j/issues/294";>#294 from marcwrobel/fix-typos Additional commits viewable in https://github.com/qos-ch/slf4j/compare/v_1.7.26...v_2.0.2";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.slf4j:slf4j-simple&package-manager=maven&previous-version=1.7.26&new-version=2.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-crypto] dependabot[bot] opened a new pull request, #183: Bump junit-bom from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #183: URL: https://github.com/apache/commons-crypto/pull/183 Bumps [junit-bom](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases";>junit-bom's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/";>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be";>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a";>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3";>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761";>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d";>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6";>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94";>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e";>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a";>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f";>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit:junit-bom&package-manager=maven&previous-version=5.9.0&new-version=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-crypto] dependabot[bot] opened a new pull request, #182: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #182: URL: https://github.com/apache/commons-crypto/pull/182 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory.
[jira] [Commented] (DBCP-586) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/DBCP-586?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17608700#comment-17608700 ] Thomas Freller commented on DBCP-586: - This Ticket is to get a method in the BasicDataSource to have access to the GenericObjectPool->getStatsString() ** if this is public in the Pool ** > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: DBCP-586 > URL: https://issues.apache.org/jira/browse/DBCP-586 > Project: Commons DBCP > Issue Type: Improvement >Affects Versions: 2.9.0 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [commons-crypto] dependabot[bot] closed pull request #162: Bump jaxb-impl from 2.3.6 to 4.0.0
dependabot[bot] closed pull request #162: Bump jaxb-impl from 2.3.6 to 4.0.0 URL: https://github.com/apache/commons-crypto/pull/162 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-crypto] dependabot[bot] commented on pull request #162: Bump jaxb-impl from 2.3.6 to 4.0.0
dependabot[bot] commented on PR #162: URL: https://github.com/apache/commons-crypto/pull/162#issuecomment-1256074551 Superseded by #181. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-bsf] dependabot[bot] closed pull request #42: Bump commons-parent from 52 to 53
dependabot[bot] closed pull request #42: Bump commons-parent from 52 to 53 URL: https://github.com/apache/commons-bsf/pull/42 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-bsf] dependabot[bot] commented on pull request #42: Bump commons-parent from 52 to 53
dependabot[bot] commented on PR #42: URL: https://github.com/apache/commons-bsf/pull/42#issuecomment-1256074835 Superseded by #55. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-bsf] dependabot[bot] opened a new pull request, #55: Bump commons-parent from 52 to 54
dependabot[bot] opened a new pull request, #55: URL: https://github.com/apache/commons-bsf/pull/55 Bumps [commons-parent](https://github.com/apache/commons-parent) from 52 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-crypto] dependabot[bot] opened a new pull request, #181: Bump jaxb-impl from 2.3.6 to 4.0.1
dependabot[bot] opened a new pull request, #181: URL: https://github.com/apache/commons-crypto/pull/181 Bumps jaxb-impl from 2.3.6 to 4.0.1. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.sun.xml.bind:jaxb-impl&package-manager=maven&previous-version=2.3.6&new-version=4.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-parent] dependabot[bot] opened a new pull request, #149: Bump spdx-maven-plugin from 0.5.5 to 0.6.0
dependabot[bot] opened a new pull request, #149: URL: https://github.com/apache/commons-parent/pull/149 Bumps [spdx-maven-plugin](https://github.com/goneall/spdx-maven-plugin) from 0.5.5 to 0.6.0. Release notes Sourced from https://github.com/goneall/spdx-maven-plugin/releases";>spdx-maven-plugin's releases. Release 0.6.0 of the SPDX Maven Plugin What's Changed Major upgrade to use the new https://github.com/spdx/spdx-java-library";>SPDX Java Library Use groupId and artifactId for naming SPDX files by https://github.com/joschi";>@joschi in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/44";>spdx/spdx-maven-plugin#44 Update github workflow to only run Sonar when key exists by https://github.com/goneall";>@goneall in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/45";>spdx/spdx-maven-plugin#45 Update plugin to version 2.3 of the SPDX spec by https://github.com/goneall";>@goneall in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/47";>spdx/spdx-maven-plugin#47 Add support for JSON output by https://github.com/goneall";>@goneall in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/48";>spdx/spdx-maven-plugin#48 Fix external document refs by https://github.com/goneall";>@goneall in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/49";>spdx/spdx-maven-plugin#49 default licenseInformationInFile to concludedLicenseInFile by https://github.com/goneall";>@goneall in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/50";>spdx/spdx-maven-plugin#50 Refactor file type mapping by https://github.com/goneall";>@goneall in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/51";>spdx/spdx-maven-plugin#51 New Contributors https://github.com/joschi";>@joschi made their first contribution in https://github-redirect.dependabot.com/spdx/spdx-maven-plugin/pull/44";>spdx/spdx-maven-plugin#44 Full Changelog: https://github.com/spdx/spdx-maven-plugin/compare/v0.5.5...v0.6.0";>https://github.com/spdx/spdx-maven-plugin/compare/v0.5.5...v0.6.0 Note: there were for bugs identified in SonarCloud for this release - it is very unlikely these bugs would cause issues for the release. Fixes for the bugs have been updated on the master branch. Commits https://github.com/spdx/spdx-maven-plugin/commit/2a7a9ade87de0a7400293503b961f74bcfcfae3e";>2a7a9ad Bump version for release https://github.com/spdx/spdx-maven-plugin/commit/a01bbde96630904743c5e2a1255c76ff2fa7e725";>a01bbde Merge pull request https://github-redirect.dependabot.com/goneall/spdx-maven-plugin/issues/51";>#51 from spdx/issue5 https://github.com/spdx/spdx-maven-plugin/commit/7e1afafd905251b686826e3d9140271c567819b6";>7e1afaf Refactor file type mapping https://github.com/spdx/spdx-maven-plugin/commit/d7e70049048fdf0bd70d88485feac2c693cb9738";>d7e7004 Merge pull request https://github-redirect.dependabot.com/goneall/spdx-maven-plugin/issues/50";>#50 from spdx/issue9 https://github.com/spdx/spdx-maven-plugin/commit/9b19aca069a3d80e8ba04f516490b3dbe889fa65";>9b19aca default licenseInformationInFile to concludedLicenseInFile https://github.com/spdx/spdx-maven-plugin/commit/dcb5b83adcd7f148789b56ab34f8f992287d1782";>dcb5b83 Merge pull request https://github-redirect.dependabot.com/goneall/spdx-maven-plugin/issues/49";>#49 from spdx/issue28 https://github.com/spdx/spdx-maven-plugin/commit/8749315a40d6a1b346ae0e0dadeaaa4f1e99353b";>8749315 Fix external document refs https://github.com/spdx/spdx-maven-plugin/commit/796418ef149d2d2745facdfbf6ffc6be608e9495";>796418e Merge pull request https://github-redirect.dependabot.com/goneall/spdx-maven-plugin/issues/48";>#48 from spdx/json https://github.com/spdx/spdx-maven-plugin/commit/5f5cebac4f60d9e192ff3a7e79aabb30dd7acaa0";>5f5ceba Add support for JSON output https://github.com/spdx/spdx-maven-plugin/commit/ed0155ab04263f47e729e4a2cdda43fb5e1a6a73";>ed0155a Merge pull request https://github-redirect.dependabot.com/goneall/spdx-maven-plugin/issues/47";>#47 from spdx/v23 Additional commits viewable in https://github.com/goneall/spdx-maven-plugin/compare/v0.5.5...v0.6.0";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.spdx:spdx-maven-plugin&package-manager=maven&previous-version=0.5.5&new-version=0.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trig
[GitHub] [commons-parent] dependabot[bot] opened a new pull request, #148: Bump github/codeql-action from 2.1.23 to 2.1.25
dependabot[bot] opened a new pull request, #148: URL: https://github.com/apache/commons-parent/pull/148 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.23 to 2.1.25. Changelog Sourced from https://github.com/github/codeql-action/blob/main/CHANGELOG.md";>github/codeql-action's changelog. CodeQL Action Changelog [UNRELEASED] No user facing changes. 2.1.25 - 21 Sep 2022 We will soon be rolling out a feature of the CodeQL Action that stores some information used to make future runs faster in the GitHub Actions cache. Initially, this will only be enabled on JavaScript repositories, but we plan to add more languages to this soon. The new feature can be disabled by passing the trap-caching: false option to your workflow's init step, for example if you are already using the GitHub Actions cache for a different purpose and are near the storage limit for it. Add support for Python automatic dependency installation with Poetry 1.2 https://github-redirect.dependabot.com/github/codeql-action/pull/1258";>#1258. 2.1.24 - 16 Sep 2022 No user facing changes. 2.1.23 - 14 Sep 2022 Allow CodeQL packs to be downloaded from GitHub Enterprise Server instances, using the new registries input for the init action. https://github-redirect.dependabot.com/github/codeql-action/pull/1221";>#1221 Update default CodeQL bundle version to 2.10.5. https://github-redirect.dependabot.com/github/codeql-action/pull/1240";>#1240 2.1.22 - 01 Sep 2022 Downloading CodeQL packs has been moved to the init step. Previously, CodeQL packs were downloaded during the analyze step. https://github-redirect.dependabot.com/github/codeql-action/pull/1218";>#1218 Update default CodeQL bundle version to 2.10.4. https://github-redirect.dependabot.com/github/codeql-action/pull/1224";>#1224 The newly released https://python-poetry.org/blog/announcing-poetry-1.2.0";>Poetry 1.2 is not yet supported. In the most common case where the CodeQL Action is automatically installing Python dependencies, it will continue to install and use Poetry 1.1 on its own. However, in certain cases such as with self-hosted runners, you may need to ensure Poetry 1.1 is installed yourself. 2.1.21 - 25 Aug 2022 Improve error messages when the code scanning configuration file includes an invalid queries block or an invalid query-filters block. https://github-redirect.dependabot.com/github/codeql-action/pull/1208";>#1208 Fix a bug where Go build tracing could fail on Windows. https://github-redirect.dependabot.com/github/codeql-action/pull/1209";>#1209 2.1.20 - 22 Aug 2022 No user facing changes. 2.1.19 - 17 Aug 2022 Add the ability to filter queries from a code scanning run by using the query-filters option in the code scanning configuration file. https://github-redirect.dependabot.com/github/codeql-action/pull/1098";>#1098 In debug mode, debug artifacts are now uploaded even if a step in the Actions workflow fails. https://github-redirect.dependabot.com/github/codeql-action/pull/1159";>#1159 Update default CodeQL bundle version to 2.10.3. https://github-redirect.dependabot.com/github/codeql-action/pull/1178";>#1178 The combination of python2 and Pipenv is no longer supported. https://github-redirect.dependabot.com/github/codeql-action/pull/1181";>#1181 2.1.18 - 03 Aug 2022 Update default CodeQL bundle version to 2.10.2. https://github-redirect.dependabot.com/github/codeql-action/pull/1156";>#1156 2.1.17 - 28 Jul 2022 Update default CodeQL bundle version to 2.10.1. https://github-redirect.dependabot.com/github/codeql-action/pull/1143";>#1143 ... (truncated) Commits https://github.com/github/codeql-action/commit/86f3159a697a097a813ad9bfa0002412d97690a4";>86f3159 Merge pull request https://github-redirect.dependabot.com/github/codeql-action/issues/1261";>#1261 from github/update-v2.1.25-ff5ca122 https://github.com/github/codeql-action/commit/d1e2e02bee04071d46c2f6ccd3fbf3073f898cc6";>d1e2e02 Update changelog for v2.1.25 https://github.com/github/codeql-action/commit/ff5ca122eda1e2e13c4180dbfb1bb11d7f5cc139";>ff5ca12 Merge pull request https://github-redirect.dependabot.com/github/codeql-action/issues/1257";>#1257 from github/rasmuswl/fix-ubuntu22.04-venv-creation https://github.com/github/codeql-action/commit/32ca2cf500269f3c253386e63fb24f1ca7de5164";>32ca2cf Apply suggestions from code review https://github.com/github/codeql-action/commit/b2fc1e178e0d4698fbfe13a3dacbd46e1f0dbe23";>b2fc1e1 python-setup: Disable python2 tests on ubuntu-22.04 https://github.com/github/codeql-action/commit/8a893ddf189a2414cad54a3cdc31c8db322b2b27";>8a893dd python-setup: Flush even more https://github.com/github/codeql-action/commit/93ba53f2de80a13ee5ef48ee7a6f68de121da298";>93ba53f add missing spaces https://github.com/github/codeql-action/co
[GitHub] [commons-collections] Partha-SUST16 commented on pull request #336: Fix flaky test failure in SynchronizedBagTest#testCollectionToArray2
Partha-SUST16 commented on PR #336: URL: https://github.com/apache/commons-collections/pull/336#issuecomment-1256069956 Sorry for not checking this earlier. Updated the code with spacing fix and now all checks have passed @aherbert -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] aherbert commented on pull request #336: Fix flaky test failure in SynchronizedBagTest#testCollectionToArray2
aherbert commented on PR #336: URL: https://github.com/apache/commons-collections/pull/336#issuecomment-1256031485 This looks fine. However you have a checkstyle issue to correct. Please see the CI build failure for JDK 11. You can run the build locally to test using the default maven goal: `mvn` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-logging] dependabot[bot] opened a new pull request, #106: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #106: URL: https://github.com/apache/commons-logging/pull/106 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory
[GitHub] [commons-dbutils] codecov-commenter commented on pull request #139: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #139: URL: https://github.com/apache/commons-dbutils/pull/139#issuecomment-1255968017 # [Codecov](https://codecov.io/gh/apache/commons-dbutils/pull/139?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report > Merging [#139](https://codecov.io/gh/apache/commons-dbutils/pull/139?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (c53703b) into [master](https://codecov.io/gh/apache/commons-dbutils/commit/2135a0b4612061d1a47324a7f7032150d8c55f88?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (2135a0b) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #139 +/- ## = Coverage 61.99% 61.99% Complexity 404 404 = Files39 39 Lines 1463 1463 Branches122 122 = Hits907 907 Misses 503 503 Partials 53 53 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbutils] dependabot[bot] opened a new pull request, #139: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #139: URL: https://github.com/apache/commons-dbutils/pull/139 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory
[GitHub] [commons-release-plugin] codecov-commenter commented on pull request #136: Bump junit-vintage-engine from 5.9.0 to 5.9.1
codecov-commenter commented on PR #136: URL: https://github.com/apache/commons-release-plugin/pull/136#issuecomment-1255912607 # [Codecov](https://codecov.io/gh/apache/commons-release-plugin/pull/136?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report > Merging [#136](https://codecov.io/gh/apache/commons-release-plugin/pull/136?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (ab5df77) into [master](https://codecov.io/gh/apache/commons-release-plugin/commit/52cdf43886cb5e5fe46b489abd01820d5c115d89?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (52cdf43) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #136 +/- ## = Coverage 67.06% 67.06% Complexity 55 55 = Files 77 Lines 419 419 Branches 41 41 = Hits281 281 Misses 113 113 Partials 25 25 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-release-plugin] dependabot[bot] opened a new pull request, #137: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #137: URL: https://github.com/apache/commons-release-plugin/pull/137 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary
[GitHub] [commons-release-plugin] dependabot[bot] opened a new pull request, #136: Bump junit-vintage-engine from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #136: URL: https://github.com/apache/commons-release-plugin/pull/136 Bumps [junit-vintage-engine](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases";>junit-vintage-engine's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/";>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be";>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a";>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3";>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761";>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d";>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6";>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94";>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e";>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a";>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f";>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit.vintage:junit-vintage-engine&package-manager=maven&previous-version=5.9.0&new-version=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-jcs] dependabot[bot] opened a new pull request, #109: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #109: URL: https://github.com/apache/commons-jcs/pull/109 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt";>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122";>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118";>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112";>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127";>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105";>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120";>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143";>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129";>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142";>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107";>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128";>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108";>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132";>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111";>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126";>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133";>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138";>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110";>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136";>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114";>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141";>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123";>#123. Thanks to Dependabot, Gary Gregory.
[GitHub] [commons-jcs] dependabot[bot] opened a new pull request, #108: Bump log4j-core from 2.18.0 to 2.19.0
dependabot[bot] opened a new pull request, #108: URL: https://github.com/apache/commons-jcs/pull/108 Bumps log4j-core from 2.18.0 to 2.19.0. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.logging.log4j:log4j-core&package-manager=maven&previous-version=2.18.0&new-version=2.19.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org