[commons-cli] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now 0445549)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-cli.git at 0445549 Bump github/codeql-action from 2.21.9 to 2.22.2 No new revisions were added by this update.
[commons-cli] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now cf609e2)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-cli.git at cf609e2 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-jcs] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now 7d9f258d)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-jcs.git at 7d9f258d Bump github/codeql-action from 2.21.9 to 2.22.2 No new revisions were added by this update.
[commons-jcs] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 26116f37)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-jcs.git at 26116f37 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-release-plugin] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 03dd897)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-release-plugin.git at 03dd897 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-release-plugin] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now ec3bf48)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-release-plugin.git at ec3bf48 Bump github/codeql-action from 2.21.9 to 2.22.2 No new revisions were added by this update.
[commons-fileupload] 01/01: Basic test for FileUpload-ItemIterator
This is an automated email from the ASF dual-hosted git repository.
solomax pushed a commit to branch item-iterator-test
in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git
commit f3aa89604f13b3eff01ff91893828f906079ef51
Author: Maxim Solodovnik
AuthorDate: Fri Oct 13 16:03:50 2023 +0700
Basic test for FileUpload-ItemIterator
---
.../jakarta/servlet5/JakartaServletFileUploadTest.java | 9 +
1 file changed, 9 insertions(+)
diff --git
a/commons-fileupload2-jakarta-servlet5/src/test/java/org/apache/commons/fileupload2/jakarta/servlet5/JakartaServletFileUploadTest.java
b/commons-fileupload2-jakarta-servlet5/src/test/java/org/apache/commons/fileupload2/jakarta/servlet5/JakartaServletFileUploadTest.java
index 06b8de62..250691b8 100644
---
a/commons-fileupload2-jakarta-servlet5/src/test/java/org/apache/commons/fileupload2/jakarta/servlet5/JakartaServletFileUploadTest.java
+++
b/commons-fileupload2-jakarta-servlet5/src/test/java/org/apache/commons/fileupload2/jakarta/servlet5/JakartaServletFileUploadTest.java
@@ -21,6 +21,7 @@ import static org.junit.jupiter.api.Assertions.assertTrue;
import java.nio.charset.StandardCharsets;
import java.util.List;
+import java.util.concurrent.atomic.AtomicInteger;
import org.apache.commons.fileupload2.core.AbstractFileUploadTest;
import org.apache.commons.fileupload2.core.Constants;
@@ -107,6 +108,14 @@ public class JakartaServletFileUploadTest
assertTrue(mappedParameters.containsKey("multi"));
assertEquals(2, mappedParameters.get("multi").size());
+
+final var itemCount = new AtomicInteger(0);
+// Replace iterator with this one to make test passed
+//upload.getItemIterator(new JakartaMockServletHttpRequest(bytes,
Constants.CONTENT_TYPE)).forEachRemaining(item -> {
+upload.getItemIterator(request).forEachRemaining(item -> {
+itemCount.incrementAndGet();
+});
+assertEquals(4, itemCount.get());
}
@Override
[commons-fileupload] branch item-iterator-test created (now f3aa8960)
This is an automated email from the ASF dual-hosted git repository. solomax pushed a change to branch item-iterator-test in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git at f3aa8960 Basic test for FileUpload-ItemIterator This branch includes the following new commits: new f3aa8960 Basic test for FileUpload-ItemIterator The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference.
[commons-jexl] branch master updated: Remove an unnecessary equals override
This is an automated email from the ASF dual-hosted git repository.
henrib pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-jexl.git
The following commit(s) were added to refs/heads/master by this push:
new b2023882 Remove an unnecessary equals override
new ef037d74 Merge pull request #202 from csamak/master
b2023882 is described below
commit b20238823a6dc3a01612eeda34fae2a14968e664
Author: Cameron Samak
AuthorDate: Wed Oct 11 21:19:45 2023 +
Remove an unnecessary equals override
to resolve false positive warning about not also overriding hashCode
---
.../org/apache/commons/jexl3/internal/introspection/Permissions.java | 5 -
1 file changed, 5 deletions(-)
diff --git
a/src/main/java/org/apache/commons/jexl3/internal/introspection/Permissions.java
b/src/main/java/org/apache/commons/jexl3/internal/introspection/Permissions.java
index 1de7ca29..692a35e8 100644
---
a/src/main/java/org/apache/commons/jexl3/internal/introspection/Permissions.java
+++
b/src/main/java/org/apache/commons/jexl3/internal/introspection/Permissions.java
@@ -75,11 +75,6 @@ public class Permissions implements JexlPermissions {
boolean isEmpty() { return nojexl.isEmpty(); }
-@Override
-public boolean equals(final Object o) {
-return o == this;
-}
-
NoJexlClass getNoJexl(final Class clazz) {
return nojexl.get(classKey(clazz));
}
[commons-dbutils] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now f6bd672)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-dbutils.git at f6bd672 Bump github/codeql-action from 2.21.9 to 2.22.2 No new revisions were added by this update.
[commons-dbutils] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 8b48306)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-dbutils.git at 8b48306 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-dbutils] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was f6bd672)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-dbutils.git was f6bd672 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-dbutils] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#212)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-dbutils.git The following commit(s) were added to refs/heads/master by this push: new 2ee2651 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#212) 2ee2651 is described below commit 2ee26511e4e024ea273d6cd5391ce259d2d063be Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 06:28:27 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#212) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 3e86656..a3dd070 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-dbutils] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 8b48306)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-dbutils.git was 8b48306 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-dbutils] branch master updated (f31c0a2 -> 623bbc9)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-dbutils.git from f31c0a2 Normalize mvn invocation on GitHub add 623bbc9 Bump github/codeql-action from 2.21.9 to 2.22.2 (#211) No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-release-plugin] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was ec3bf48)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-release-plugin.git was ec3bf48 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-release-plugin] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#207)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-release-plugin.git The following commit(s) were added to refs/heads/master by this push: new 09785c8 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#207) 09785c8 is described below commit 09785c8db5271aca065471d0e48fd521ab08c6b9 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 06:30:44 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#207) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 1da79a6..2bab77a 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-release-plugin] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 03dd897)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-release-plugin.git was 03dd897 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-build-plugin] branch master updated: graalvm: js needs own version; update versions
This is an automated email from the ASF dual-hosted git repository.
sebb pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-build-plugin.git
The following commit(s) were added to refs/heads/master by this push:
new ec346c8 graalvm: js needs own version; update versions
ec346c8 is described below
commit ec346c846a833d9eb57fe831ace3306cfa57d336
Author: Sebb
AuthorDate: Fri Oct 13 11:30:52 2023 +0100
graalvm: js needs own version; update versions
---
pom.xml | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/pom.xml b/pom.xml
index 84a5e5e..9656b78 100644
--- a/pom.xml
+++ b/pom.xml
@@ -268,7 +268,8 @@
-->
-22.3.3
+23.0.1
+23.1.0
true
@@ -292,7 +293,7 @@
org.graalvm.js
js-scriptengine
- ${graalvm.version}
+ ${graalvm.js.version}
[commons-release-plugin] branch master updated (1bd9832 -> 8abd34e)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-release-plugin.git from 1bd9832 Merge branch 'master' of https://gitbox.apache.org/repos/asf/commons-release-plugin.git add 8abd34e Bump github/codeql-action from 2.21.9 to 2.22.2 (#208) No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-jcs] 01/01: Merge pull request #177 from apache/dependabot/github_actions/github/codeql-action-2.22.2
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-jcs.git commit 5c1432ad0c184e194de1f867b999dc7a8ee9d830 Merge: 2fa18237 7d9f258d Author: Gary Gregory AuthorDate: Fri Oct 13 06:31:17 2023 -0400 Merge pull request #177 from apache/dependabot/github_actions/github/codeql-action-2.22.2 Bump github/codeql-action from 2.21.9 to 2.22.2 .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-jcs] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 7d9f258d)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-jcs.git was 7d9f258d Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-jcs] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 26116f37)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-jcs.git was 26116f37 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-cli] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#201)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-cli.git The following commit(s) were added to refs/heads/master by this push: new b8c6ad8 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#201) b8c6ad8 is described below commit b8c6ad80de18d304ab711c0191e197d21ffa3132 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 06:32:15 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#201) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 574ff50..999ecdd 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-jcs] branch master updated (2fa18237 -> 5c1432ad)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-jcs.git from 2fa18237 Normalize mvn invocation on GitHub add 7d9f258d Bump github/codeql-action from 2.21.9 to 2.22.2 new 5c1432ad Merge pull request #177 from apache/dependabot/github_actions/github/codeql-action-2.22.2 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-jcs] branch master updated (5c1432ad -> c0c75a7d)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-jcs.git from 5c1432ad Merge pull request #177 from apache/dependabot/github_actions/github/codeql-action-2.22.2 add 26116f37 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 new c0c75a7d Merge pull request #178 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-jcs] 01/01: Merge pull request #178 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-jcs.git commit c0c75a7dea78f7eba005fa9d4590b6699db95e5b Merge: 5c1432ad 26116f37 Author: Gary Gregory AuthorDate: Fri Oct 13 06:31:34 2023 -0400 Merge pull request #178 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-cli] branch master updated (83a7ff0 -> 1ca21d3)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-cli.git from 83a7ff0 Normalize mvn invocation on GitHub add 1ca21d3 Bump github/codeql-action from 2.21.9 to 2.22.2 (#200) No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-cli] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 0445549)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-cli.git was 0445549 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-cli] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was cf609e2)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-cli.git was cf609e2 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-build-plugin] branch master updated (ec346c8 -> 86f69f6)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-build-plugin.git from ec346c8 graalvm: js needs own version; update versions add 86f69f6 Bump github/codeql-action from 2.21.9 to 2.22.2 (#187) No new revisions were added by this update. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-build-plugin] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 872703d)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-build-plugin.git was 872703d Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-build-plugin] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was c07cd9b)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-build-plugin.git was c07cd9b Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-compress] branch master updated (430a1626 -> 93014e05)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-compress.git from 430a1626 Normalize mvn invocation on GitHub add 93014e05 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#424) No new revisions were added by this update. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-compress] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 7a13018c)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-compress.git was 7a13018c Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-compress] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 0e788e15)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-compress.git was 0e788e15 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-digester] branch master updated (9745793b -> 2d2196d2)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-digester.git from 9745793b Merge pull request #99 from apache/dependabot/github_actions/github/codeql-action-2.22.2 add d706937b Bump ossf/scorecard-action from 2.2.0 to 2.3.0 new 2d2196d2 Merge pull request #98 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-digester] 01/01: Merge pull request #98 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-digester.git commit 2d2196d22d5f0fa7d32575872da30485ac395500 Merge: 9745793b d706937b Author: Gary Gregory AuthorDate: Fri Oct 13 06:34:20 2023 -0400 Merge pull request #98 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-digester] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was d706937b)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-digester.git was d706937b Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-dbcp] branch master updated: Bump github/codeql-action from 2.21.9 to 2.22.2 (#315)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-dbcp.git
The following commit(s) were added to refs/heads/master by this push:
new b19f20f8 Bump github/codeql-action from 2.21.9 to 2.22.2 (#315)
b19f20f8 is described below
commit b19f20f89ea2605697fb16987b8f6a3135d05fa6
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Oct 13 06:34:52 2023 -0400
Bump github/codeql-action from 2.21.9 to 2.22.2 (#315)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
2.21.9 to 2.22.2.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/ddccb873888234080b77e9bc2d4764d5ccaaccf9...d90b8d79de6dc1f58e83a1499aa58d6c93dc28de)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 6 +++---
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 15295d94..e9145be2 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -57,7 +57,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@ddccb873888234080b77e9bc2d4764d5ccaaccf9
# v2.21.9
+ uses: github/codeql-action/init@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de
# v2.22.2
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -68,7 +68,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually
(see below)
- name: Autobuild
- uses:
github/codeql-action/autobuild@ddccb873888234080b77e9bc2d4764d5ccaaccf9 #
v2.21.9
+ uses:
github/codeql-action/autobuild@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de #
v2.22.2
# âšī¸ Command-line programs to run using the OS shell.
# đ https://git.io/JvXDl
@@ -82,4 +82,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@ddccb873888234080b77e9bc2d4764d5ccaaccf9 # v2.21.9
+ uses:
github/codeql-action/analyze@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de # v2.22.2
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 77792228..3e866567 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@ddccb873888234080b77e9bc2d4764d5ccaaccf9#
2.21.9
+uses:
github/codeql-action/upload-sarif@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de#
2.22.2
with:
sarif_file: results.sarif
[commons-dbcp] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 4578636e)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-dbcp.git was 4578636e Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-dbcp] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#314)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-dbcp.git The following commit(s) were added to refs/heads/master by this push: new e253df3b Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#314) e253df3b is described below commit e253df3b6911197820b8796da4b60101ec594911 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 06:35:06 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#314) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 3e866567..a3dd070c 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-build-plugin] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#186)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-build-plugin.git The following commit(s) were added to refs/heads/master by this push: new 2ef856a Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#186) 2ef856a is described below commit 2ef856a56df8261b7a8110caeb1c9f4c9b651f77 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 06:33:02 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#186) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 574ff50..999ecdd 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-compress] branch master updated: Bump github/codeql-action from 2.21.9 to 2.22.2 (#425)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-compress.git
The following commit(s) were added to refs/heads/master by this push:
new 741fe15c Bump github/codeql-action from 2.21.9 to 2.22.2 (#425)
741fe15c is described below
commit 741fe15c8e37cd51febd54d93c91dd5179744374
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Oct 13 06:33:41 2023 -0400
Bump github/codeql-action from 2.21.9 to 2.22.2 (#425)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
2.21.9 to 2.22.2.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/ddccb873888234080b77e9bc2d4764d5ccaaccf9...d90b8d79de6dc1f58e83a1499aa58d6c93dc28de)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 4 ++--
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 9fb394b5..06ac390c 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -63,7 +63,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@ddccb873888234080b77e9bc2d4764d5ccaaccf9
# v2.21.9
+ uses: github/codeql-action/init@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de
# v2.22.2
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -91,4 +91,4 @@ jobs:
mvn clean package -ntp -f "pom.xml" -B -V -e -Dfindbugs.skip
-Dcheckstyle.skip -Dpmd.skip=true -Dspotbugs.skip -Denforcer.skip
-Dmaven.javadoc.skip -DskipTests -Dmaven.test.skip.exec -Dlicense.skip=true
-Drat.skip=true -Dspotless.check.skip=true
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@ddccb873888234080b77e9bc2d4764d5ccaaccf9 # v2.21.9
+ uses:
github/codeql-action/analyze@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de # v2.22.2
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 3fed..a3dd070c 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@ddccb873888234080b77e9bc2d4764d5ccaaccf9#
2.21.9
+uses:
github/codeql-action/upload-sarif@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de#
2.22.2
with:
sarif_file: results.sarif
[commons-jci] branch master updated (a75450c -> 28bb561)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-jci.git from a75450c Normalize mvn invocation on GitHub add 25adcb7 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 add 28bb561 Merge pull request #63 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 No new revisions were added by this update. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-digester] branch master updated (cb80a722 -> 9745793b)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-digester.git from cb80a722 Normalize mvn invocation on GitHub add 631a4bd2 Bump github/codeql-action from 2.21.9 to 2.22.2 add 9745793b Merge pull request #99 from apache/dependabot/github_actions/github/codeql-action-2.22.2 No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-digester] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 631a4bd2)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-digester.git was 631a4bd2 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-dbcp] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 91f53de1)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-dbcp.git was 91f53de1 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-jci] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 25adcb7)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-jci.git was 25adcb7 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-jci] 01/01: Merge pull request #62 from apache/dependabot/github_actions/github/codeql-action-2.22.2
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-jci.git commit f7aaab204657246561d8fd50e9fddea5bb3898fc Merge: 28bb561 a4a8b77 Author: Gary Gregory AuthorDate: Fri Oct 13 06:36:14 2023 -0400 Merge pull request #62 from apache/dependabot/github_actions/github/codeql-action-2.22.2 Bump github/codeql-action from 2.21.9 to 2.22.2 .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-net] branch master updated (8f0eaa2f -> 9b4ddc2b)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-net.git from 8f0eaa2f Normalize mvn invocation on GitHub add 8da99d33 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 add 9b4ddc2b Merge pull request #189 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 No new revisions were added by this update. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-net] branch master updated (9b4ddc2b -> 7c2ee9de)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-net.git from 9b4ddc2b Merge pull request #189 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 add 4bb4c341 Bump github/codeql-action from 2.21.9 to 2.22.2 new 7c2ee9de Merge pull request #190 from apache/dependabot/github_actions/github/codeql-action-2.22.2 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-net] 01/01: Merge pull request #190 from apache/dependabot/github_actions/github/codeql-action-2.22.2
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-net.git commit 7c2ee9decf2b9c11bc3d4b6216e61a99953b1691 Merge: 9b4ddc2b 4bb4c341 Author: Gary Gregory AuthorDate: Fri Oct 13 06:37:10 2023 -0400 Merge pull request #190 from apache/dependabot/github_actions/github/codeql-action-2.22.2 Bump github/codeql-action from 2.21.9 to 2.22.2 .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-jci] branch master updated (28bb561 -> f7aaab2)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-jci.git from 28bb561 Merge pull request #63 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 add a4a8b77 Bump github/codeql-action from 2.21.9 to 2.22.2 new f7aaab2 Merge pull request #62 from apache/dependabot/github_actions/github/codeql-action-2.22.2 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-jci] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was a4a8b77)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-jci.git was a4a8b77 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-net] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 8da99d33)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-net.git was 8da99d33 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-net] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 4bb4c341)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-net.git was 4bb4c341 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-logging] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now 2f64585)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-logging.git at 2f64585 Bump github/codeql-action from 2.21.9 to 2.22.2 No new revisions were added by this update.
[commons-logging] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 6aa81fd)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-logging.git at 6aa81fd Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-bsf] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now eb68490)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-bsf.git at eb68490 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-parent] branch dependabot/maven/com.github.spotbugs-spotbugs-4.8.0 created (now 5cadca2)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/com.github.spotbugs-spotbugs-4.8.0 in repository https://gitbox.apache.org/repos/asf/commons-parent.git at 5cadca2 Bump com.github.spotbugs:spotbugs from 4.7.3 to 4.8.0 No new revisions were added by this update.
[commons-skin] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now fd55257)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-skin.git at fd55257 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-skin] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now 24df164)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-skin.git at 24df164 Bump github/codeql-action from 2.22.0 to 2.22.2 No new revisions were added by this update.
[commons-vfs] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now d1d8012a)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-vfs.git at d1d8012a Bump github/codeql-action from 2.22.0 to 2.22.2 No new revisions were added by this update.
[commons-vfs] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 6928180f)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-vfs.git at 6928180f Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-crypto] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now a67a5ad)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-crypto.git at a67a5ad Bump github/codeql-action from 2.22.0 to 2.22.2 No new revisions were added by this update.
[commons-crypto] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now e6389dc)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-crypto.git at e6389dc Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-crypto] branch master updated (30e6ab8 -> 71278de)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-crypto.git from 30e6ab8 Normalize mvn invocation on GitHub add 71278de Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#254) No new revisions were added by this update. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-crypto] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was e6389dc)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-crypto.git was e6389dc Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-crypto] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was a67a5ad)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-crypto.git was a67a5ad Bump github/codeql-action from 2.22.0 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-vfs] branch master updated: Bump github/codeql-action from 2.22.0 to 2.22.2 (#436)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-vfs.git
The following commit(s) were added to refs/heads/master by this push:
new a06614c0 Bump github/codeql-action from 2.22.0 to 2.22.2 (#436)
a06614c0 is described below
commit a06614c0577bbed6b565b94d745853fd085ccc46
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Oct 13 07:34:34 2023 -0400
Bump github/codeql-action from 2.22.0 to 2.22.2 (#436)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
2.22.0 to 2.22.2.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/2cb752a87e96af96708ab57187ab6372ee1973ab...d90b8d79de6dc1f58e83a1499aa58d6c93dc28de)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 6 +++---
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index afbf2a72..e9145be2 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -57,7 +57,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@2cb752a87e96af96708ab57187ab6372ee1973ab
# v2.22.0
+ uses: github/codeql-action/init@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de
# v2.22.2
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -68,7 +68,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually
(see below)
- name: Autobuild
- uses:
github/codeql-action/autobuild@2cb752a87e96af96708ab57187ab6372ee1973ab #
v2.22.0
+ uses:
github/codeql-action/autobuild@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de #
v2.22.2
# âšī¸ Command-line programs to run using the OS shell.
# đ https://git.io/JvXDl
@@ -82,4 +82,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@2cb752a87e96af96708ab57187ab6372ee1973ab # v2.22.0
+ uses:
github/codeql-action/analyze@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de # v2.22.2
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 51867b5a..3e866567 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@2cb752a87e96af96708ab57187ab6372ee1973ab#
2.22.0
+uses:
github/codeql-action/upload-sarif@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de#
2.22.2
with:
sarif_file: results.sarif
[commons-vfs] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was d1d8012a)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-vfs.git was d1d8012a Bump github/codeql-action from 2.22.0 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-crypto] branch master updated: Bump github/codeql-action from 2.22.0 to 2.22.2 (#253)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-crypto.git
The following commit(s) were added to refs/heads/master by this push:
new 86e72db Bump github/codeql-action from 2.22.0 to 2.22.2 (#253)
86e72db is described below
commit 86e72db934160e3df7a88191294fe2604b668414
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Oct 13 07:33:03 2023 -0400
Bump github/codeql-action from 2.22.0 to 2.22.2 (#253)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
2.22.0 to 2.22.2.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/2cb752a87e96af96708ab57187ab6372ee1973ab...d90b8d79de6dc1f58e83a1499aa58d6c93dc28de)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 4 ++--
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index f701139..133c129 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -74,7 +74,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@2cb752a87e96af96708ab57187ab6372ee1973ab
# v2.22.0
+ uses: github/codeql-action/init@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de
# v2.22.2
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -101,4 +101,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@2cb752a87e96af96708ab57187ab6372ee1973ab # v2.22.0
+ uses:
github/codeql-action/analyze@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de # v2.22.2
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 9df1b14..a0b20a8 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -66,6 +66,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@2cb752a87e96af96708ab57187ab6372ee1973ab#
2.22.0
+uses:
github/codeql-action/upload-sarif@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de#
2.22.2
with:
sarif_file: results.sarif
[commons-vfs] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#437)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-vfs.git The following commit(s) were added to refs/heads/master by this push: new cb416ebb Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#437) cb416ebb is described below commit cb416ebb1b1546ea5db4e9ec804fcb252bc64c5e Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 07:34:59 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#437) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 3e866567..a3dd070c 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-vfs] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 6928180f)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-vfs.git was 6928180f Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-skin] branch master updated (de13c90 -> 9214fbe)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-skin.git from de13c90 Normalize mvn invocation on GitHub add 24df164 Bump github/codeql-action from 2.22.0 to 2.22.2 add 9214fbe Merge pull request #87 from apache/dependabot/github_actions/github/codeql-action-2.22.2 No new revisions were added by this update. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-skin] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 24df164)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-skin.git was 24df164 Bump github/codeql-action from 2.22.0 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-bsf] branch master updated (cce10f0 -> 6bc8fe6)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-bsf.git from cce10f0 Merge pull request #103 from apache/dependabot/github_actions/actions/checkout-4.1.0 add eb68490 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 new 6bc8fe6 Merge pull request #104 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-bsf] 01/01: Merge pull request #104 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-bsf.git commit 6bc8fe6367595c964fe962d1a1c80d4ec367dcc8 Merge: cce10f0 eb68490 Author: Gary Gregory AuthorDate: Fri Oct 13 07:37:30 2023 -0400 Merge pull request #104 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.0 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[commons-bsf] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was eb68490)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-bsf.git was eb68490 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-logging] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was 2f64585)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-logging.git was 2f64585 Bump github/codeql-action from 2.21.9 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-logging] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#170)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-logging.git The following commit(s) were added to refs/heads/master by this push: new 93e901d Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#170) 93e901d is described below commit 93e901d0af01612c91a676f67446feac4b3207c2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 07:38:46 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#170) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 574ff50..999ecdd 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-logging] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 6aa81fd)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-logging.git was 6aa81fd Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-logging] branch master updated (01428a7 -> 4a6ce70)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-logging.git from 01428a7 Normalize mvn invocation on GitHub add 4a6ce70 Bump github/codeql-action from 2.21.9 to 2.22.2 (#169) No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
[commons-parent] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 2efba9f)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-parent.git at 2efba9f Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-parent] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now c8e4a35)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-parent.git at c8e4a35 Bump github/codeql-action from 2.22.0 to 2.22.2 No new revisions were added by this update.
[commons-parent] branch master updated: Bump github/codeql-action from 2.22.0 to 2.22.2 (#319)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-parent.git The following commit(s) were added to refs/heads/master by this push: new 7d4a5c3 Bump github/codeql-action from 2.22.0 to 2.22.2 (#319) 7d4a5c3 is described below commit 7d4a5c3a8375b3bbe989716c376f5d939b741593 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 08:15:29 2023 -0400 Bump github/codeql-action from 2.22.0 to 2.22.2 (#319) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.0 to 2.22.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/2cb752a87e96af96708ab57187ab6372ee1973ab...d90b8d79de6dc1f58e83a1499aa58d6c93dc28de) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 9a861c5..574ff50 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -64,6 +64,6 @@ jobs: retention-days: 5 - name: "Upload to code-scanning" -uses: github/codeql-action/upload-sarif@2cb752a87e96af96708ab57187ab6372ee1973ab# 2.22.0 +uses: github/codeql-action/upload-sarif@d90b8d79de6dc1f58e83a1499aa58d6c93dc28de# 2.22.2 with: sarif_file: results.sarif
[commons-parent] branch dependabot/github_actions/github/codeql-action-2.22.2 deleted (was c8e4a35)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-parent.git was c8e4a35 Bump github/codeql-action from 2.22.0 to 2.22.2 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-parent] branch master updated: Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#318)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-parent.git The following commit(s) were added to refs/heads/master by this push: new 187a26c Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#318) 187a26c is described below commit 187a26cfd04301e417077d11d045566ef00ce5c2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 08:15:43 2023 -0400 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#318) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 574ff50..999ecdd 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -45,7 +45,7 @@ jobs: persist-credentials: false - name: "Run analysis" -uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # 2.2.0 +uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # 2.3.0 with: results_file: results.sarif results_format: sarif
[commons-parent] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 deleted (was 2efba9f)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-parent.git was 2efba9f Bump ossf/scorecard-action from 2.2.0 to 2.3.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-parent] branch master updated: Bump com.github.spotbugs:spotbugs from 4.7.3 to 4.8.0 (#317)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-parent.git The following commit(s) were added to refs/heads/master by this push: new 9d75579 Bump com.github.spotbugs:spotbugs from 4.7.3 to 4.8.0 (#317) 9d75579 is described below commit 9d7557970d686a103cff586891334e1c80ef3248 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Oct 13 08:15:58 2023 -0400 Bump com.github.spotbugs:spotbugs from 4.7.3 to 4.8.0 (#317) Bumps [com.github.spotbugs:spotbugs](https://github.com/spotbugs/spotbugs) from 4.7.3 to 4.8.0. - [Release notes](https://github.com/spotbugs/spotbugs/releases) - [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md) - [Commits](https://github.com/spotbugs/spotbugs/compare/4.7.3...4.8.0) --- updated-dependencies: - dependency-name: com.github.spotbugs:spotbugs dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index c5e6de2..23da4d8 100644 --- a/pom.xml +++ b/pom.xml @@ -205,7 +205,7 @@ --> 3.12.1 4.7.3.6 -4.7.3 +4.8.0 3.1.2 3.1.2 3.5.3
[commons-parent] branch dependabot/maven/com.github.spotbugs-spotbugs-4.8.0 deleted (was 5cadca2)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/maven/com.github.spotbugs-spotbugs-4.8.0 in repository https://gitbox.apache.org/repos/asf/commons-parent.git was 5cadca2 Bump com.github.spotbugs:spotbugs from 4.7.3 to 4.8.0 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
[commons-pool] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 0d6a722c)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-pool.git at 0d6a722c Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-pool] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now 8d4923f1)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-pool.git at 8d4923f1 Bump github/codeql-action from 2.22.0 to 2.22.2 No new revisions were added by this update.
[commons-parent] branch master updated (9d75579 -> ff6bafa)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-parent.git from 9d75579 Bump com.github.spotbugs:spotbugs from 4.7.3 to 4.8.0 (#317) add ff6bafa Bump com.github.spotbugs:spotbugs from 4.7.3 to 4.8.0 #317 No new revisions were added by this update. Summary of changes: src/changes/changes.xml | 3 +++ 1 file changed, 3 insertions(+)
[commons-collections] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now ec777b031)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-collections.git at ec777b031 Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-collections] branch dependabot/maven/com.google.guava-guava-testlib-32.1.3-jre created (now 4794c6202)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/com.google.guava-guava-testlib-32.1.3-jre in repository https://gitbox.apache.org/repos/asf/commons-collections.git at 4794c6202 Bump com.google.guava:guava-testlib from 32.1.2-jre to 32.1.3-jre No new revisions were added by this update.
[commons-csv] branch dependabot/github_actions/github/codeql-action-2.22.2 created (now 31eb6b31)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-2.22.2 in repository https://gitbox.apache.org/repos/asf/commons-csv.git at 31eb6b31 Bump github/codeql-action from 2.22.0 to 2.22.2 No new revisions were added by this update.
[commons-csv] branch dependabot/github_actions/ossf/scorecard-action-2.3.0 created (now 234a3a6d)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/ossf/scorecard-action-2.3.0 in repository https://gitbox.apache.org/repos/asf/commons-csv.git at 234a3a6d Bump ossf/scorecard-action from 2.2.0 to 2.3.0 No new revisions were added by this update.
[commons-net] branch master updated: Javadoc
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-net.git
The following commit(s) were added to refs/heads/master by this push:
new ab266245 Javadoc
ab266245 is described below
commit ab2662453bb523bce3070972f38fb9fa09cb2acb
Author: Gary Gregory
AuthorDate: Fri Oct 13 08:39:27 2023 -0400
Javadoc
---
.../org/apache/commons/net/ftp/NoProtocolSslConfigurationProxy.java | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git
a/src/test/java/org/apache/commons/net/ftp/NoProtocolSslConfigurationProxy.java
b/src/test/java/org/apache/commons/net/ftp/NoProtocolSslConfigurationProxy.java
index 73d2e998..8d8042e0 100644
---
a/src/test/java/org/apache/commons/net/ftp/NoProtocolSslConfigurationProxy.java
+++
b/src/test/java/org/apache/commons/net/ftp/NoProtocolSslConfigurationProxy.java
@@ -26,8 +26,9 @@ import org.apache.ftpserver.ssl.ClientAuth;
import org.apache.ftpserver.ssl.SslConfiguration;
/**
- * See:
- * https://issues.apache.org/jira/browse/FTPSERVER-491";>
+ * Tests FTPSERVER-491.
+ *
+ * See https://issues.apache.org/jira/browse/FTPSERVER-491";>
* https://issues.apache.org/jira/browse/FTPSERVER-491
*/
public class NoProtocolSslConfigurationProxy implements SslConfiguration {
