[PR] Bump cxf.zipkin-reporter.version from 2.16.5 to 2.17.0 [cxf]
dependabot[bot] opened a new pull request, #1577: URL: https://github.com/apache/cxf/pull/1577 Bumps `cxf.zipkin-reporter.version` from 2.16.5 to 2.17.0. Updates `io.zipkin.reporter2:zipkin-reporter-brave` from 2.16.5 to 2.17.0 Release notes Sourced from https://github.com/openzipkin/zipkin-reporter-java/releases";>io.zipkin.reporter2:zipkin-reporter-brave's releases. Zipkin Reporter 2.17.0 Zipkin Reporter v2.17.0 updates default versions of dependencies so that CVE scanners like https://aquasecurity.github.io/trivy/latest/";>trivy pass by default. Details below for the interested. For example, trivy is now clean. $ trivy -q --skip-files "**/src/it/*/pom.xml" repo https://github.com/openzipkin/zipkin-reporter-java In order to do this, and based on user demand, we had to change some default practice in our senders (the transport plug-in for sending spans to a zipkin compatible endpoint). Here is a summary of each and how versions are handled. https://github.com/openzipkin/zipkin-reporter-java/tree/master/activemq-client";>activemq-client - Note that the recently released 6.x version is not compatible with 5.x due to package import change from javax.jms to jakarta.jms. Raise an issue if you need a later client as it will require a copy of the entire module to resolve. https://github.com/openzipkin/zipkin-reporter-java/tree/master/amqp-client";>amqp-client (rabbitmq) - The 4.x version is no longer maintained, so we set a 5.x version and test the old one. https://github.com/openzipkin/zipkin-reporter-java/tree/master/kafka";>kafka - the kafka-clients driver has not had any known compatibility problems, so we've left it as-is. https://github.com/openzipkin/zipkin-reporter-java/tree/master/libthrift";>libthrift (scribe) - libthrift (used for the deprecated scribe transport) has never released a 1.0 version, so occasionally causes revlocks. https://github.com/zhfeng";>@zhfeng noticed this in apache camel, as updating past the 4 year old 0.13 was impossible to work around. Luckily versions after that seem compatible with each other. https://github.com/openzipkin/zipkin-reporter-java/tree/master/okhttp3";>okhttp3 - The 3.x version is no longer maintained, so we set a 4.x version and test the old one. Thanks https://github.com/evantorrie";>@evantorrie for explaining why this is important and https://github.com/shakuzen";>@shakuzen for helping in the discussion. While not end-user affecting, we have also https://github.com/openrewrite/rewrite-docs/blob/master/running-recipes/popular-recipe-guides/migrate-from-junit-4-to-junit-5.md";>migrated from JUnit 4 to JUnit 5, thanks to OpenRewrite recipes from https://github.com/TeamModerne";>@TeamModerne. Also, we use docker images to test all messaging transports. This ensures compatibility with upstream in transparent ways, and also removes classpath conflicts from java-based messaging transports such as ActiveMQ and Kafka. Thanks a lot to https://github.com/anuraaga";>@anuraaga for copious support work on this release, as well. Full Changelog: https://github.com/openzipkin/zipkin-reporter-java/compare/2.16.5...2.17.0";>https://github.com/openzipkin/zipkin-reporter-java/compare/2.16.5...2.17.0 Note: To pass Trivy at the moment, we have to skip old versions used only for compatibility testing. There is a https://redirect.github.com/openzipkin/zipkin-reporter-java/issues/228";>discussion about making this default. Changelog Sourced from https://github.com/openzipkin/zipkin-reporter-java/blob/master/RELEASE.md";>io.zipkin.reporter2:zipkin-reporter-brave's changelog. OpenZipkin Release Process This repo uses semantic versions. Please keep this in mind when choosing version numbers. Alert others you are releasing There should be no commits made to master while the release is in progress (about 10 minutes). Before you start a release, alert others on https://gitter.im/openzipkin/zipkin";>gitter so that they don't accidentally merge anything. If they do, and the build fails because of that, you'll have to recreate the release tag described below. Push a git tag The trigger format is release-MAJOR.MINOR.PATCH, ex git tag release-1.18.1 && git push origin release-1.18.1. Wait for CI The release-MAJOR.MINOR.PATCH tag triggers https://github.com/openzipkin/zipkin-reporter-java/blob/master/build-bin/maven/maven_release";>https://github.com/openzipkin/zipkin-reporter-java/blob/master/build-bin/maven/maven_release, which creates commits, MAJOR.MINOR.PATCH tag, and increments the version (maven-release-plugin). The MAJOR.MINOR.PATCH tag triggers https://github.com/openzipkin/zipkin-reporter-java/blob/master/build-bin/deploy";>https://github.com/openzipkin/zipkin-reporter-java/blob/master/build-bin/deploy, which does the following: Publishes jars to https://oss.sonatype.org/content/
Re: [PR] Bump cxf.micrometer-tracing.version from 1.0.12 to 1.2.1 [cxf]
dependabot[bot] commented on PR #1574: URL: https://github.com/apache/cxf/pull/1574#issuecomment-1857198475 OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump cxf.micrometer-tracing.version from 1.0.12 to 1.2.1 [cxf]
reta closed pull request #1574: Bump cxf.micrometer-tracing.version from 1.0.12 to 1.2.1 URL: https://github.com/apache/cxf/pull/1574 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump cxf.micrometer-tracing.version from 1.0.12 to 1.2.1 [cxf]
reta commented on PR #1574: URL: https://github.com/apache/cxf/pull/1574#issuecomment-1857198444 Will be addressed by https://issues.apache.org/jira/browse/CXF-8671 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump com.sun.istack:istack-commons-tools from 3.0.11 to 4.2.0 [cxf]
dependabot[bot] opened a new pull request, #1576: URL: https://github.com/apache/cxf/pull/1576 Bumps com.sun.istack:istack-commons-tools from 3.0.11 to 4.2.0. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.sun.istack:istack-commons-tools&package-manager=maven&previous-version=3.0.11&new-version=4.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump com.puppycrawl.tools:checkstyle from 10.12.5 to 10.12.6 [cxf]
dependabot[bot] opened a new pull request, #1575: URL: https://github.com/apache/cxf/pull/1575 Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) from 10.12.5 to 10.12.6. Release notes Sourced from https://github.com/checkstyle/checkstyle/releases";>com.puppycrawl.tools:checkstyle's releases. checkstyle-10.12.6 Checkstyle 10.12.6 - https://checkstyle.org/releasenotes.html#Release_10.12.6";>https://checkstyle.org/releasenotes.html#Release_10.12.6 Bug fixes: https://redirect.github.com/checkstyle/checkstyle/issues/14064";>#14064 - Regexp: violation pointing to line 0 while other Checks count first line as 1 Commits https://github.com/checkstyle/checkstyle/commit/1c969f770365d3f0e1449b07fef8a25627fc";>1c96955 [maven-release-plugin] prepare release checkstyle-10.12.6 https://github.com/checkstyle/checkstyle/commit/8e9dae4c2a73a2bffce1c8e8fe73f1e2cc172ce8";>8e9dae4 doc: release notes for 10.12.6 https://github.com/checkstyle/checkstyle/commit/fc93aefd3bbf362a2164c52b82a86eeb0f4b31d4";>fc93aef dependency: bump org.eclipse.jdt:org.eclipse.jdt.annotation https://github.com/checkstyle/checkstyle/commit/d9637c32b83b375be8925c98fa38967b78ea3cce";>d9637c3 dependency: bump com.google.truth:truth from 1.1.3 to 1.1.5 https://github.com/checkstyle/checkstyle/commit/38c26b4ef6c56071ce449bb4cd29ee18c8d71c19";>38c26b4 dependency: bump de.thetaphi:forbiddenapis from 3.4 to 3.6 https://github.com/checkstyle/checkstyle/commit/49070995b69c834ba81d4de168730dbe8a8a1702";>4907099 dependency: bump org.junit-pioneer:junit-pioneer from 2.0.1 to 2.2.0 https://github.com/checkstyle/checkstyle/commit/7e0c0e79c874596994153e206d0dd08d98e9673d";>7e0c0e7 dependency: bump org.eclipse.jgit:org.eclipse.jgit https://github.com/checkstyle/checkstyle/commit/858fec85660ec96b98a2239a61d52b43b5a49033";>858fec8 infra: update eclipse version as old version is not available any more https://github.com/checkstyle/checkstyle/commit/fce9b02899773e14beb657cede6d01623c01701f";>fce9b02 dependency: bump checkerframework.version from 3.27.0 to 3.41.0 https://github.com/checkstyle/checkstyle/commit/c21ab8f4d396c1df7895d92a7e0ba37d4ff30ee6";>c21ab8f minor: attempt to fix CI failure due to presense/absense of some html tags Additional commits viewable in https://github.com/checkstyle/checkstyle/compare/checkstyle-10.12.5...checkstyle-10.12.6";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.puppycrawl.tools:checkstyle&package-manager=maven&previous-version=10.12.5&new-version=10.12.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump cxf.micrometer-tracing.version from 1.0.12 to 1.2.1 [cxf]
dependabot[bot] opened a new pull request, #1574: URL: https://github.com/apache/cxf/pull/1574 Bumps `cxf.micrometer-tracing.version` from 1.0.12 to 1.2.1. Updates `io.micrometer:micrometer-tracing-bridge-brave` from 1.0.12 to 1.2.1 Release notes Sourced from https://github.com/micrometer-metrics/tracing/releases";>io.micrometer:micrometer-tracing-bridge-brave's releases. 1.2.1 :lady_beetle: Bug Fixes Zero value wall times cause backend failures when spans are uploaded https://redirect.github.com/micrometer-metrics/tracing/issues/488";>#488 :hammer: Dependency Upgrades Bump io.micrometer:micrometer-bom from 1.12.0 to 1.12.1 https://redirect.github.com/micrometer-metrics/tracing/pull/491";>#491 Bump org.aspectj:aspectjweaver from 1.9.20.1 to 1.9.21 https://redirect.github.com/micrometer-metrics/tracing/pull/490";>#490 Bump com.netflix.nebula:nebula-release-plugin from 18.0.6 to 18.0.8 https://redirect.github.com/micrometer-metrics/tracing/pull/482";>#482 Bump com.netflix.nebula:nebula-release-plugin from 18.0.6 to 18.0.7 https://redirect.github.com/micrometer-metrics/tracing/pull/480";>#480 Bump com.netflix.nebula:nebula-release-plugin from 18.0.4 to 18.0.6 https://redirect.github.com/micrometer-metrics/tracing/pull/476";>#476 Bump ch.qos.logback:logback-classic from 1.4.11 to 1.4.14 https://redirect.github.com/micrometer-metrics/tracing/pull/464";>#464 Bump testcontainers from 1.19.2 to 1.19.3 https://redirect.github.com/micrometer-metrics/tracing/pull/453";>#453 Bump spring from 5.3.30 to 5.3.31 https://redirect.github.com/micrometer-metrics/tracing/pull/448";>#448 Bump io.spring.javaformat:spring-javaformat-checkstyle from 0.0.39 to 0.0.40 https://redirect.github.com/micrometer-metrics/tracing/pull/447";>#447 Bump io.spring.javaformat:spring-javaformat-gradle-plugin from 0.0.39 to 0.0.40 https://redirect.github.com/micrometer-metrics/tracing/pull/446";>#446 Bump io.projectreactor:reactor-bom from 2022.0.12 to 2022.0.13 https://redirect.github.com/micrometer-metrics/tracing/pull/432";>#432 Bump testcontainers from 1.19.1 to 1.19.2 https://redirect.github.com/micrometer-metrics/tracing/pull/431";>#431 :memo: Tasks Test for https://redirect.github.com/micrometer-metrics/tracing/issues/363";>#363 https://redirect.github.com/micrometer-metrics/tracing/issues/397";>#397 :heart: Contributors Thank you to all the contributors who worked on this release: https://github.com/chemicL";>@chemicL and https://github.com/ttddyy";>@ttddyy 1.2.0 :star: New Features Make SpanTagAnnotationHandler optional https://redirect.github.com/micrometer-metrics/tracing/pull/374";>#374 Move to io.opentelemetry.semconv:opentelemetry-semconv https://redirect.github.com/micrometer-metrics/tracing/issues/343";>#343 Deprecate for removal HTTP instrumentation abstractions https://redirect.github.com/micrometer-metrics/tracing/issues/370";>#370 Allow setting timestamp of an event on a span https://redirect.github.com/micrometer-metrics/tracing/issues/334";>#334 Add getDuration method to FinishedSpan https://redirect.github.com/micrometer-metrics/tracing/pull/265";>#265 :hammer: Dependency Upgrades Bump org.junit:junit-bom from 5.10.0 to 5.10.1 https://redirect.github.com/micrometer-metrics/tracing/pull/424";>#424 Bump mockito from 5.6.0 to 5.7.0 https://redirect.github.com/micrometer-metrics/tracing/pull/422";>#422 Bump com.wavefront:wavefront-sdk-java from 3.4.2 to 3.4.3 https://redirect.github.com/micrometer-metrics/tracing/pull/419";>#419 Bump org.apache.logging.log4j:log4j-core from 2.20.0 to 2.21.1 https://redirect.github.com/micrometer-metrics/tracing/pull/418";>#418 Bump context-propagation to 1.1.0 and micrometer to 1.12.0 https://redirect.github.com/micrometer-metrics/tracing/issues/408";>#408 Bump io.opentelemetry.instrumentation:opentelemetry-instrumentation-api-semconv from 1.30.0-alpha to 1.31.0-alpha https://redirect.github.com/micrometer-metrics/tracing/pull/405";>#405 Bump com.wavefront:wavefront-sdk-java from 3.4.1 to 3.4.2 https://redirect.github.com/micrometer-metrics/tracing/pull/404";>#404 Bump io.projectreactor:reactor-bom from 2022.0.11 to 2022.0.12 https://redirect.github.com/micrometer-metrics/tracing/pull/400";>#400 ... (truncated) Commits https://github.com/micrometer-metrics/tracing/commit/77749811751333297b3010b9be3af803e11006de";>7774981 Bump io.micrometer:micrometer-bom from 1.12.0 to 1.12.1 (https://redirect.github.com/micrometer-metrics/tracing/issues/491";>#491) https://github.com/micrometer-metrics/tracing/commit/5013fafe7e2cb0382f3beedd912174f8f15e47d2";>5013faf Bump org.aspectj:aspectjweaver from 1.9.20.1 to 1.9.21 (https://redirect.github.com/micrometer-metrics/tracing/issues/490";>#490) https://github.com/micrometer-metrics/tracing/commit/b48fde9396b93d9b909ca7b04cde06763b246a8d";>b48fde9
Re: [PR] Bump cxf.spring.version from 6.0.15 to 6.1.2 [cxf]
dependabot[bot] commented on PR #1572: URL: https://github.com/apache/cxf/pull/1572#issuecomment-1857195061 OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.ws.rs:jakarta.ws.rs-api from 3.0.0 to 3.1.0 [cxf]
dependabot[bot] commented on PR #1571: URL: https://github.com/apache/cxf/pull/1571#issuecomment-1857194977 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.ws.rs:jakarta.ws.rs-api from 3.0.0 to 3.1.0 [cxf]
reta commented on PR #1571: URL: https://github.com/apache/cxf/pull/1571#issuecomment-1857194945 Will be addressed by https://issues.apache.org/jira/browse/CXF-8671 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.ws.rs:jakarta.ws.rs-api from 3.0.0 to 3.1.0 [cxf]
reta closed pull request #1571: Bump jakarta.ws.rs:jakarta.ws.rs-api from 3.0.0 to 3.1.0 URL: https://github.com/apache/cxf/pull/1571 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump cxf.micrometer.version from 1.10.13 to 1.12.1 [cxf]
dependabot[bot] commented on PR #1570: URL: https://github.com/apache/cxf/pull/1570#issuecomment-1857194796 OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump cxf.micrometer.version from 1.10.13 to 1.12.1 [cxf]
reta commented on PR #1570: URL: https://github.com/apache/cxf/pull/1570#issuecomment-1857194771 Will be addressed by https://issues.apache.org/jira/browse/CXF-8671 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump cxf.spring.version from 6.0.15 to 6.1.2 [cxf]
reta closed pull request #1572: Bump cxf.spring.version from 6.0.15 to 6.1.2 URL: https://github.com/apache/cxf/pull/1572 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump cxf.spring.version from 6.0.15 to 6.1.2 [cxf]
reta commented on PR #1572: URL: https://github.com/apache/cxf/pull/1572#issuecomment-1857195025 Will be addressed by https://issues.apache.org/jira/browse/CXF-8671 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump cxf.micrometer.version from 1.10.13 to 1.12.1 [cxf]
reta closed pull request #1570: Bump cxf.micrometer.version from 1.10.13 to 1.12.1 URL: https://github.com/apache/cxf/pull/1570 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.2.2 to 3.2.3 [cxf]
dependabot[bot] opened a new pull request, #1573: URL: https://github.com/apache/cxf/pull/1573 Bumps [org.apache.maven.plugins:maven-surefire-report-plugin](https://github.com/apache/maven-surefire) from 3.2.2 to 3.2.3. Commits https://github.com/apache/maven-surefire/commit/ac9e574a9444cc825b09bae66f30155eb028da92";>ac9e574 [maven-release-plugin] prepare release surefire-3.2.3 https://github.com/apache/maven-surefire/commit/2d6cbc63cb8f0dc34e3556e0c5a629129d2e7d91";>2d6cbc6 [SUREFIRE-2220] SurefireForkChannel#getForkNodeConnectionString() returns inv... https://github.com/apache/maven-surefire/commit/05322d992778dd33e2f2e41661a2e66ef7539a68";>05322d9 [SUREFIRE-2212] OutOfMemoryError raised when parsing files with huge stderr/s... https://github.com/apache/maven-surefire/commit/55ccd06a027f1693557c2a3ec3690ac91dcc59ba";>55ccd06 [SUREFIRE-2211] additionalClasspathElement with UNC path not working with Mav... https://github.com/apache/maven-surefire/commit/aa864f4532282100667bf3d81dc7cbd460845408";>aa864f4 [SUREFIRE-2216] Upgrade plugins and components (in ITs) https://github.com/apache/maven-surefire/commit/6662e07f5957d0fa4d12dc3e331be8f93cf355f8";>6662e07 [SUREFIRE-2215] Upgrade to Parent 41 https://github.com/apache/maven-surefire/commit/f5b73ab3d18baa4baf244b2526d854574e51f87e";>f5b73ab [SUREFIRE-2214] Uprade to HtmlUnit 3.8.0 https://github.com/apache/maven-surefire/commit/47c5816ae6d3e596d13a3253e214939f3a479b1f";>47c5816 [SUREFIRE-2210] - Restore ordering of additional class path elements https://github.com/apache/maven-surefire/commit/9b7ecf141f4686c094219038272c28fecccffa30";>9b7ecf1 [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/maven-surefire/compare/surefire-3.2.2...surefire-3.2.3";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-surefire-report-plugin&package-manager=maven&previous-version=3.2.2&new-version=3.2.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump cxf.spring.version from 6.0.15 to 6.1.2 [cxf]
dependabot[bot] opened a new pull request, #1572: URL: https://github.com/apache/cxf/pull/1572 Bumps `cxf.spring.version` from 6.0.15 to 6.1.2. Updates `org.springframework:spring-tx` from 6.0.15 to 6.1.2 Release notes Sourced from https://github.com/spring-projects/spring-framework/releases";>org.springframework:spring-tx's releases. v6.1.2 :star: New Features Optimize ContentCachingRequestWrapper allocation for known request size https://redirect.github.com/spring-projects/spring-framework/issues/31834";>#31834 Inherit parent context in coRouter DSL https://redirect.github.com/spring-projects/spring-framework/issues/31831";>#31831 Declare isStatic and releaseTarget as default methods on TargetSource https://redirect.github.com/spring-projects/spring-framework/issues/31820";>#31820 Delegation support for JDBC 4.3 ConnectionBuilder and ShardingKeyBuilder https://redirect.github.com/spring-projects/spring-framework/issues/31795";>#31795 Support for a read-only DataSource in LazyConnectionDataSourceProxy https://redirect.github.com/spring-projects/spring-framework/issues/31785";>#31785 Add MySQLIdentityColumnMaxValueIncrementer https://redirect.github.com/spring-projects/spring-framework/pull/31784";>#31784 Introduce overloaded MockPart constructor that accepts the Content-Type https://redirect.github.com/spring-projects/spring-framework/pull/31757";>#31757 Introduce toString(Charset) in FastByteArrayOutputStream https://redirect.github.com/spring-projects/spring-framework/pull/31737";>#31737 Avoid byte array copy in getContentAsString https://redirect.github.com/spring-projects/spring-framework/pull/31731";>#31731 Improve "active" metrics handling in WebClient observations https://redirect.github.com/spring-projects/spring-framework/issues/31702";>#31702 Make ResourceArrayPropertyEditor supports comma delimited location patterns https://redirect.github.com/spring-projects/spring-framework/pull/31700";>#31700 Consistently log exceptions from TestExecutionListeners at WARN level https://redirect.github.com/spring-projects/spring-framework/issues/31688";>#31688 Document need for -parameters flag in exception messages https://redirect.github.com/spring-projects/spring-framework/issues/31675";>#31675 Improve @RegisterReflectionForBinding for enums https://redirect.github.com/spring-projects/spring-framework/issues/31570";>#31570 Support direct shard database operation routing in Spring JDBC https://redirect.github.com/spring-projects/spring-framework/pull/31506";>#31506 Log test aborted/skipped exceptions at INFO level in the TestContext framework https://redirect.github.com/spring-projects/spring-framework/issues/31479";>#31479 Avoid double proxying for @Resource @Lazy fallback autowiring https://redirect.github.com/spring-projects/spring-framework/issues/31447";>#31447 Add support for tuning the code generation for bean property values https://redirect.github.com/spring-projects/spring-framework/issues/31427";>#31427 Avoid race condition in ConcurrentReferenceHashMap https://redirect.github.com/spring-projects/spring-framework/issues/31008";>#31008 Allow functional bean registration to set bean order (equivalent to @Order) https://redirect.github.com/spring-projects/spring-framework/issues/30849";>#30849 Allow AOT generated classes to be excluded from code analyzer tools https://redirect.github.com/spring-projects/spring-framework/issues/30824";>#30824 Error page does not utilize forwarded prefix https://redirect.github.com/spring-projects/spring-framework/issues/30828";>#30828 Fix SimpleJdbcCall named parameter binding for Sybase ASE https://redirect.github.com/spring-projects/spring-framework/pull/30231";>#30231 DefaultWebClient ignores baseUrl when setting URI_TEMPLATE_ATTRIBUTE https://redirect.github.com/spring-projects/spring-framework/issues/30027";>#30027 Avoid eager checkDefaultConnectionProperties call in LazyConnectionDataSourceProxy https://redirect.github.com/spring-projects/spring-framework/issues/29931";>#29931 Allow TransactionAwareDataSourceProxy to eagerly fetch the connection https://redirect.github.com/spring-projects/spring-framework/pull/29423";>#29423 Extract common value generator out of BeanDefinitionPropertyValueCodeGenerator https://redirect.github.com/spring-projects/spring-framework/issues/28999";>#28999 PostgresCallMetaDataProvider should detect current schema as indicated by the JDBC Connection https://redirect.github.com/spring-projects/spring-framework/issues/28723";>#28723 Implement setMaxTextMessageSize and setMaxBinaryMessageSize in JettyWebSocketSession https://redirect.github.com/spring-projects/spring-framework/issues/28325";>#28325 Optimize cache used in AutowiredAnnotationBeanPostProcessor https://redirect.github.com/spring-projects/spring-framework/issues/28293";>#28293 @Async aspect should clear cached executors when different
[PR] Bump jakarta.ws.rs:jakarta.ws.rs-api from 3.0.0 to 3.1.0 [cxf]
dependabot[bot] opened a new pull request, #1571: URL: https://github.com/apache/cxf/pull/1571 Bumps [jakarta.ws.rs:jakarta.ws.rs-api](https://github.com/eclipse-ee4j/jaxrs-api) from 3.0.0 to 3.1.0. Changelog Sourced from https://github.com/jakartaee/rest/blob/master/jaxrs-tck-docs/JAXRSTCK3.1-ReleaseNotes.html";>jakarta.ws.rs:jakarta.ws.rs-api's changelog. ... (truncated) Commits https://github.com/jakartaee/rest/commit/779683825b78996e5e35b8a7cbfa1f21dc0cf705";>7796838 disable test replaceQueryTest4 : issue1106 (https://redirect.github.com/eclipse-ee4j/jaxrs-api/issues/1107";>#1107) https://github.com/jakartaee/rest/commit/cdbc48b3b51d928751934f36d5f22f0b075c65cf";>cdbc48b add dependencies to run tck independently (https://redirect.github.com/eclipse-ee4j/jaxrs-api/issues/1102";>#1102) https://github.com/jakartaee/rest/commit/fdcd30c4926393f28b66966769a619fa40e7c173";>fdcd30c Removed unnecessary workarond for ephemerial port (https://redirect.github.com/eclipse-ee4j/jaxrs-api/issues/1103";>#1103) https://github.com/jakartaee/rest/commit/61bb9593306f0d323d5f08b4c19b7bf0d37f7879";>61bb959 Merge pull request https://redirect.github.com/eclipse-ee4j/jaxrs-api/issues/1097";>#1097 from jamezp/tck-fixes https://github.com/jakartaee/rest/commit/0057e64bcd59e196d1c7dd7f1efc4ffb1fd01d11";>0057e64 Split executions of server tests & se tests (https://redirect.github.com/eclipse-ee4j/jaxrs-api/issues/1100";>#1100) https://github.com/jakartaee/rest/commit/0ec66975132e58a69ac31814b2e62ff5d4fe";>0ec6697 Applications are required to have a public no-arg constructor. The EchoApplic... https://github.com/jakartaee/rest/commit/38f6c4b36d50c061b4134131b88be7021038755a";>38f6c4b Moved IsThrowingMatcherTest into ee.jakarta.tck namespace https://github.com/jakartaee/rest/commit/266b613158efeddf41de95927b2e2cb528d9007d";>266b613 TCK test for spec clarification (https://redirect.github.com/eclipse-ee4j/jaxrs-api/issues/1089";>#1089): Client MUST throw most specific su... https://github.com/jakartaee/rest/commit/bea3c62c531da26d74291a5bfdcebd55c953fdb2";>bea3c62 Spec Clarification: Client MUST throw most specific subclass of WebApplicat... https://github.com/jakartaee/rest/commit/b2337e876b49a43b2b812db3eef00049f19d8910";>b2337e8 Maven profile jaxrs.jerseytck.build Additional commits viewable in https://github.com/eclipse-ee4j/jaxrs-api/compare/3.0.0...3.1.0";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jakarta.ws.rs:jakarta.ws.rs-api&package-manager=maven&previous-version=3.0.0&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump cxf.micrometer.version from 1.10.13 to 1.12.1 [cxf]
dependabot[bot] opened a new pull request, #1570: URL: https://github.com/apache/cxf/pull/1570 Bumps `cxf.micrometer.version` from 1.10.13 to 1.12.1. Updates `io.micrometer:micrometer-core` from 1.10.13 to 1.12.1 Release notes Sourced from https://github.com/micrometer-metrics/micrometer/releases";>io.micrometer:micrometer-core's releases. 1.12.1 :lady_beetle: Bug Fixes Duplicate publishing of data if registry closes within one step https://redirect.github.com/micrometer-metrics/micrometer/issues/4357";>#4357 :hammer: Dependency Upgrades Bump com.gradle.enterprise from 3.15.1 to 3.16 https://redirect.github.com/micrometer-metrics/micrometer/issues/4481";>#4481 Bump com.tngtech.archunit:archunit-junit5 from 1.2.0 to 1.2.1 https://redirect.github.com/micrometer-metrics/micrometer/pull/4472";>#4472 Bump com.netflix.spectator:spectator-reg-atlas from 1.7.3 to 1.7.4 https://redirect.github.com/micrometer-metrics/micrometer/pull/4471";>#4471 Bump com.amazonaws:aws-java-sdk-cloudwatch from 1.12.593 to 1.12.608 https://redirect.github.com/micrometer-metrics/micrometer/pull/4468";>#4468 Bump com.netflix.nebula:nebula-release-plugin from 18.0.4 to 18.0.8 https://redirect.github.com/micrometer-metrics/micrometer/pull/4466";>#4466 Bump software.amazon.awssdk:cloudwatch from 2.21.27 to 2.21.41 https://redirect.github.com/micrometer-metrics/micrometer/pull/4459";>#4459 Bump org.apache.httpcomponents.client5:httpclient5 from 5.2.1 to 5.2.3 https://redirect.github.com/micrometer-metrics/micrometer/pull/4434";>#4434 Bump com.github.charithe:kafka-junit from 4.2.7 to 4.2.10 https://redirect.github.com/micrometer-metrics/micrometer/pull/4433";>#4433 Bump org.apache.maven:maven-resolver-provider from 3.9.5 to 3.9.6 https://redirect.github.com/micrometer-metrics/micrometer/pull/4431";>#4431 Bump com.signalfx.public:signalfx-java from 1.0.36 to 1.0.37 https://redirect.github.com/micrometer-metrics/micrometer/pull/4430";>#4430 Bump testcontainers from 1.19.2 to 1.19.3 https://redirect.github.com/micrometer-metrics/micrometer/pull/4428";>#4428 Bump ch.qos.logback:logback-classic from 1.2.12 to 1.2.13 https://redirect.github.com/micrometer-metrics/micrometer/pull/4427";>#4427 Bump maven-resolver from 1.9.16 to 1.9.18 https://redirect.github.com/micrometer-metrics/micrometer/pull/4426";>#4426 Bump com.netflix.spectator:spectator-reg-atlas from 1.7.2 to 1.7.3 https://redirect.github.com/micrometer-metrics/micrometer/pull/4401";>#4401 Bump software.amazon.awssdk:cloudwatch from 2.21.26 to 2.21.27 https://redirect.github.com/micrometer-metrics/micrometer/pull/4399";>#4399 Bump io.projectreactor:reactor-bom from 2022.0.12 to 2022.0.13 https://redirect.github.com/micrometer-metrics/micrometer/pull/4389";>#4389 Bump software.amazon.awssdk:cloudwatch from 2.21.20 to 2.21.26 https://redirect.github.com/micrometer-metrics/micrometer/pull/4385";>#4385 Bump spring from 5.3.30 to 5.3.31 https://redirect.github.com/micrometer-metrics/micrometer/pull/4384";>#4384 Bump com.amazonaws:aws-java-sdk-cloudwatch from 1.12.586 to 1.12.592 https://redirect.github.com/micrometer-metrics/micrometer/pull/4376";>#4376 Bump uk.org.webcompere:system-stubs-jupiter from 2.1.4 to 2.1.5 https://redirect.github.com/micrometer-metrics/micrometer/pull/4371";>#4371 Bump spring-javaformat from 0.0.39 to 0.0.40 https://redirect.github.com/micrometer-metrics/micrometer/pull/4369";>#4369 Bump testcontainers from 1.19.1 to 1.19.2 https://redirect.github.com/micrometer-metrics/micrometer/pull/4366";>#4366 Bump org.apache.tomcat.embed:tomcat-embed-core from 8.5.95 to 8.5.96 https://redirect.github.com/micrometer-metrics/micrometer/pull/4361";>#4361 :memo: Tasks Sync ModifiedClassPathClassLoader from Spring Boot https://redirect.github.com/micrometer-metrics/micrometer/pull/4402";>#4402 :heart: Contributors Thank you to all the contributors who worked on this release: https://github.com/izeye";>@izeye and https://github.com/lenin-jaganathan";>@lenin-jaganathan 1.12.0 :star: New Features Support Jetty 12 in JettyConnectionMetrics https://redirect.github.com/micrometer-metrics/micrometer/issues/4324";>#4324 Support generational ZGC https://redirect.github.com/micrometer-metrics/micrometer/issues/4258";>#4258 Remove native-image.properties from micrometer-core https://redirect.github.com/micrometer-metrics/micrometer/issues/4245";>#4245 Add Observation instrumentation for Jakarta JMS https://redirect.github.com/micrometer-metrics/micrometer/pull/4007";>#4007 Move Jakarta JMS instrumentation to micrometer-jakarta9 https://redirect.github.com/micrometer-metrics/micrometer/pull/4201";>#4201 Add shortcut to assign dynamic tags to Meters https://redirect.github.com/micrometer-metrics/micrometer/issues/535";>#535 ... (truncated) Commits https://github.com/micrometer-metrics/micro
Re: [PR] Bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.2.2 to 3.2.3 [cxf-xjc-utils]
reta merged PR #100: URL: https://github.com/apache/cxf-xjc-utils/pull/100 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugins:maven-dependency-plugin from 3.5.0 to 3.6.1 [cxf-xjc-utils]
reta merged PR #101: URL: https://github.com/apache/cxf-xjc-utils/pull/101 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-dependency-plugin from 3.5.0 to 3.6.1 [cxf-xjc-utils]
dependabot[bot] opened a new pull request, #101: URL: https://github.com/apache/cxf-xjc-utils/pull/101 Bumps [org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin) from 3.5.0 to 3.6.1. Commits https://github.com/apache/maven-dependency-plugin/commit/4d18cfbae02624cb8572b47442e1492ba6e9894c";>4d18cfb [maven-release-plugin] prepare release maven-dependency-plugin-3.6.1 https://github.com/apache/maven-dependency-plugin/commit/34348ecee0a3588037287df2cad9269e10975c40";>34348ec [MNG-6847] Use diamond operator https://github.com/apache/maven-dependency-plugin/commit/00620832a3c6ba3d17c7ec0382c7eecdaa510ebf";>0062083 [MDEP-883] - Upgrade maven-plugin parent to 40 https://github.com/apache/maven-dependency-plugin/commit/c6973dae1d79192d5cfaae6e32b14663164342a2";>c6973da [MDEP-832] - Remove commons-collections-4 https://github.com/apache/maven-dependency-plugin/commit/0243c410d504303e25465f7c5d39790d1c272684";>0243c41 Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 https://github.com/apache/maven-dependency-plugin/commit/4ed696e06d03486a17d9604d46697fc6b357b8ef";>4ed696e Add Javadoc 'author' tag to prevent dangling contributor name https://github.com/apache/maven-dependency-plugin/commit/3c877fb861f82b777f12ddf436ab50859f90d766";>3c877fb MDEP-875 prevent possible NPE https://github.com/apache/maven-dependency-plugin/commit/9e479d4bb277b1899bd024af5288b1a65cf243c0";>9e479d4 [MDEP-872] update commons-io to 2.13.0 (https://redirect.github.com/apache/maven-dependency-plugin/issues/326";>#326) https://github.com/apache/maven-dependency-plugin/commit/03bc34e843e61eb0def19397043461ca480293bd";>03bc34e Tighten language (https://redirect.github.com/apache/maven-dependency-plugin/issues/327";>#327) https://github.com/apache/maven-dependency-plugin/commit/694655dd1a634144cf50c9e9963ba2c68b582acf";>694655d MDEP-868 update maven-shared-utils to 3.4.2 (https://redirect.github.com/apache/maven-dependency-plugin/issues/322";>#322) Additional commits viewable in https://github.com/apache/maven-dependency-plugin/compare/maven-dependency-plugin-3.5.0...maven-dependency-plugin-3.6.1";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-dependency-plugin&package-manager=maven&previous-version=3.5.0&new-version=3.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.2.2 to 3.2.3 [cxf-xjc-utils]
dependabot[bot] opened a new pull request, #100: URL: https://github.com/apache/cxf-xjc-utils/pull/100 Bumps [org.apache.maven.plugins:maven-surefire-report-plugin](https://github.com/apache/maven-surefire) from 3.2.2 to 3.2.3. Commits https://github.com/apache/maven-surefire/commit/ac9e574a9444cc825b09bae66f30155eb028da92";>ac9e574 [maven-release-plugin] prepare release surefire-3.2.3 https://github.com/apache/maven-surefire/commit/2d6cbc63cb8f0dc34e3556e0c5a629129d2e7d91";>2d6cbc6 [SUREFIRE-2220] SurefireForkChannel#getForkNodeConnectionString() returns inv... https://github.com/apache/maven-surefire/commit/05322d992778dd33e2f2e41661a2e66ef7539a68";>05322d9 [SUREFIRE-2212] OutOfMemoryError raised when parsing files with huge stderr/s... https://github.com/apache/maven-surefire/commit/55ccd06a027f1693557c2a3ec3690ac91dcc59ba";>55ccd06 [SUREFIRE-2211] additionalClasspathElement with UNC path not working with Mav... https://github.com/apache/maven-surefire/commit/aa864f4532282100667bf3d81dc7cbd460845408";>aa864f4 [SUREFIRE-2216] Upgrade plugins and components (in ITs) https://github.com/apache/maven-surefire/commit/6662e07f5957d0fa4d12dc3e331be8f93cf355f8";>6662e07 [SUREFIRE-2215] Upgrade to Parent 41 https://github.com/apache/maven-surefire/commit/f5b73ab3d18baa4baf244b2526d854574e51f87e";>f5b73ab [SUREFIRE-2214] Uprade to HtmlUnit 3.8.0 https://github.com/apache/maven-surefire/commit/47c5816ae6d3e596d13a3253e214939f3a479b1f";>47c5816 [SUREFIRE-2210] - Restore ordering of additional class path elements https://github.com/apache/maven-surefire/commit/9b7ecf141f4686c094219038272c28fecccffa30";>9b7ecf1 [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/maven-surefire/compare/surefire-3.2.2...surefire-3.2.3";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-surefire-report-plugin&package-manager=maven&previous-version=3.2.2&new-version=3.2.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] only load the lifecycle, bus and event once to make test faster [cxf]
reta merged PR #1563: URL: https://github.com/apache/cxf/pull/1563 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] only load the lifecycle, bus and event once to make test faster [cxf]
reta commented on PR #1563: URL: https://github.com/apache/cxf/pull/1563#issuecomment-1856630854 Thank you for contribution @TestBoost ! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugins:maven-clean-plugin from 3.2.0 to 3.3.2 [cxf]
reta merged PR #1569: URL: https://github.com/apache/cxf/pull/1569 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.json.bind:jakarta.json.bind-api from 2.0.0 to 3.0.0 [cxf]
dependabot[bot] commented on PR #1565: URL: https://github.com/apache/cxf/pull/1565#issuecomment-1855964672 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.json.bind:jakarta.json.bind-api from 2.0.0 to 3.0.0 [cxf]
reta commented on PR #1565: URL: https://github.com/apache/cxf/pull/1565#issuecomment-1855964569 Will be addressed by https://issues.apache.org/jira/browse/CXF-8671 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.json.bind:jakarta.json.bind-api from 2.0.0 to 3.0.0 [cxf]
reta closed pull request #1565: Bump jakarta.json.bind:jakarta.json.bind-api from 2.0.0 to 3.0.0 URL: https://github.com/apache/cxf/pull/1565 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.persistence:jakarta.persistence-api from 3.0.0 to 3.1.0 [cxf]
dependabot[bot] commented on PR #1567: URL: https://github.com/apache/cxf/pull/1567#issuecomment-1855963931 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.persistence:jakarta.persistence-api from 3.0.0 to 3.1.0 [cxf]
reta commented on PR #1567: URL: https://github.com/apache/cxf/pull/1567#issuecomment-1855963847 Will be addressed by https://issues.apache.org/jira/browse/CXF-8671 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump jakarta.persistence:jakarta.persistence-api from 3.0.0 to 3.1.0 [cxf]
reta closed pull request #1567: Bump jakarta.persistence:jakarta.persistence-api from 3.0.0 to 3.1.0 URL: https://github.com/apache/cxf/pull/1567 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump com.sun.xml.ws:jaxws-rt from 3.0.2 to 4.0.2 [cxf]
reta merged PR #1568: URL: https://github.com/apache/cxf/pull/1568 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.2 to 3.2.3 [cxf-build-utils]
reta merged PR #61: URL: https://github.com/apache/cxf-build-utils/pull/61 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.2 to 3.2.3 [cxf]
reta merged PR #1566: URL: https://github.com/apache/cxf/pull/1566 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org