[GitHub] [commons-net] dependabot[bot] opened a new pull request, #112: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #112: URL: https://github.com/apache/commons-net/pull/112 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-io] kinow merged pull request #387: Bump apache-rat-plugin from 0.14 to 0.15
kinow merged PR #387: URL: https://github.com/apache/commons-io/pull/387 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] kinow merged pull request #386: Bump junit-bom from 5.9.0 to 5.9.1
kinow merged PR #386: URL: https://github.com/apache/commons-io/pull/386 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] codecov-commenter commented on pull request #388: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #388: URL: https://github.com/apache/commons-io/pull/388#issuecomment-1255676874 # [Codecov](https://codecov.io/gh/apache/commons-io/pull/388?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#388](https://codecov.io/gh/apache/commons-io/pull/388?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (885c258) into [master](https://codecov.io/gh/apache/commons-io/commit/4f3b7101a26431b97f3cbd4b33b6b2ece2f9c18e?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (4f3b710) will **decrease** coverage by `0.05%`. > The diff coverage is `n/a`. ```diff @@ Coverage Diff @@ ## master #388 +/- ## - Coverage 86.15% 86.10% -0.06% + Complexity 3212 3210 -2 Files 215 215 Lines 7490 7490 Branches906 906 - Hits 6453 6449 -4 - Misses 792 794 +2 - Partials245 247 +2 ``` | [Impacted Files](https://codecov.io/gh/apache/commons-io/pull/388?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) | Coverage Δ | | |---|---|---| | [.../main/java/org/apache/commons/io/input/Tailer.java](https://codecov.io/gh/apache/commons-io/pull/388/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvaW8vaW5wdXQvVGFpbGVyLmphdmE=) | `85.57% <0.00%> (-2.00%)` | :arrow_down: | :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] codecov-commenter commented on pull request #387: Bump apache-rat-plugin from 0.14 to 0.15
codecov-commenter commented on PR #387: URL: https://github.com/apache/commons-io/pull/387#issuecomment-1255676676 # [Codecov](https://codecov.io/gh/apache/commons-io/pull/387?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#387](https://codecov.io/gh/apache/commons-io/pull/387?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (df513fe) into [master](https://codecov.io/gh/apache/commons-io/commit/4f3b7101a26431b97f3cbd4b33b6b2ece2f9c18e?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (4f3b710) will **decrease** coverage by `0.02%`. > The diff coverage is `n/a`. ```diff @@ Coverage Diff @@ ## master #387 +/- ## - Coverage 86.15% 86.12% -0.03% Complexity 3212 3212 Files 215 215 Lines 7490 7490 Branches906 906 - Hits 6453 6451 -2 - Misses 792 794 +2 Partials245 245 ``` | [Impacted Files](https://codecov.io/gh/apache/commons-io/pull/387?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) | Coverage Δ | | |---|---|---| | [.../main/java/org/apache/commons/io/input/Tailer.java](https://codecov.io/gh/apache/commons-io/pull/387/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvaW8vaW5wdXQvVGFpbGVyLmphdmE=) | `86.06% <0.00%> (-1.50%)` | :arrow_down: | | [...main/java/org/apache/commons/io/ThreadMonitor.java](https://codecov.io/gh/apache/commons-io/pull/387/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvaW8vVGhyZWFkTW9uaXRvci5qYXZh) | `100.00% <0.00%> (+3.84%)` | :arrow_up: | :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] codecov-commenter commented on pull request #386: Bump junit-bom from 5.9.0 to 5.9.1
codecov-commenter commented on PR #386: URL: https://github.com/apache/commons-io/pull/386#issuecomment-1255676475 # [Codecov](https://codecov.io/gh/apache/commons-io/pull/386?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#386](https://codecov.io/gh/apache/commons-io/pull/386?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (df2ce2f) into [master](https://codecov.io/gh/apache/commons-io/commit/4f3b7101a26431b97f3cbd4b33b6b2ece2f9c18e?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (4f3b710) will **increase** coverage by `0.10%`. > The diff coverage is `n/a`. ```diff @@ Coverage Diff @@ ## master #386 +/- ## + Coverage 86.15% 86.26% +0.10% Complexity 3212 3212 Files 215 215 Lines 7490 7490 Branches906 906 + Hits 6453 6461 +8 + Misses 792 783 -9 - Partials245 246 +1 ``` | [Impacted Files](https://codecov.io/gh/apache/commons-io/pull/386?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) | Coverage Δ | | |---|---|---| | [.../main/java/org/apache/commons/io/input/Tailer.java](https://codecov.io/gh/apache/commons-io/pull/386/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvaW8vaW5wdXQvVGFpbGVyLmphdmE=) | `87.06% <0.00%> (-0.50%)` | :arrow_down: | | [.../apache/commons/io/input/ReadAheadInputStream.java](https://codecov.io/gh/apache/commons-io/pull/386/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvaW8vaW5wdXQvUmVhZEFoZWFkSW5wdXRTdHJlYW0uamF2YQ==) | `73.59% <0.00%> (+5.05%)` | :arrow_up: | :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] codecov-commenter commented on pull request #385: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
codecov-commenter commented on PR #385: URL: https://github.com/apache/commons-io/pull/385#issuecomment-1255675232 # [Codecov](https://codecov.io/gh/apache/commons-io/pull/385?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#385](https://codecov.io/gh/apache/commons-io/pull/385?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (42b97b2) into [master](https://codecov.io/gh/apache/commons-io/commit/4f3b7101a26431b97f3cbd4b33b6b2ece2f9c18e?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (4f3b710) will **decrease** coverage by `0.05%`. > The diff coverage is `n/a`. ```diff @@ Coverage Diff @@ ## master #385 +/- ## - Coverage 86.15% 86.10% -0.06% + Complexity 3212 3210 -2 Files 215 215 Lines 7490 7490 Branches906 906 - Hits 6453 6449 -4 - Misses 792 794 +2 - Partials245 247 +2 ``` | [Impacted Files](https://codecov.io/gh/apache/commons-io/pull/385?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) | Coverage Δ | | |---|---|---| | [.../main/java/org/apache/commons/io/input/Tailer.java](https://codecov.io/gh/apache/commons-io/pull/385/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvaW8vaW5wdXQvVGFpbGVyLmphdmE=) | `85.57% <0.00%> (-2.00%)` | :arrow_down: | :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] dependabot[bot] opened a new pull request, #388: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #388: URL: https://github.com/apache/commons-io/pull/388 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-io] dependabot[bot] opened a new pull request, #387: Bump apache-rat-plugin from 0.14 to 0.15
dependabot[bot] opened a new pull request, #387: URL: https://github.com/apache/commons-io/pull/387 Bumps apache-rat-plugin from 0.14 to 0.15. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.rat:apache-rat-plugin=maven=0.14=0.15)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] dependabot[bot] opened a new pull request, #386: Bump junit-bom from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #386: URL: https://github.com/apache/commons-io/pull/386 Bumps [junit-bom](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-bom's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit:junit-bom=maven=5.9.0=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] dependabot[bot] opened a new pull request, #385: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] opened a new pull request, #385: URL: https://github.com/apache/commons-io/pull/385 Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.2 to 2.0.3. Release notes Sourced from https://github.com/ossf/scorecard-action/releases;>ossf/scorecard-action's releases. v2.0.3 Patch for fix in https://github-redirect.dependabot.com/ossf/scorecard-action/issues/898;>#898 v2.0.2 Fixes https://github-redirect.dependabot.com/ossf/scorecard-action/issues/895;>ossf/scorecard-action#895 v2.0.1 Fix for https://github-redirect.dependabot.com/ossf/scorecard-action/issues/856;>#856 v2.0.0 What's Changed Prepare for a pre-release of the Golang action by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/750;>ossf/scorecard-action#750 :seedling: Bump github/codeql-action from 2.1.12 to 2.1.16 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/751;>ossf/scorecard-action#751 :seedling: Bump debian from 11.3-slim to 11.4-slim by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/749;>ossf/scorecard-action#749 :seedling: Bump step-security/harden-runner from 1.4.3 to 1.4.4 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/646;>ossf/scorecard-action#646 :seedling: Bump actions/setup-go from 3.2.0 to 3.2.1 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/748;>ossf/scorecard-action#748 Fix dependency conflicts in go.mod by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/771;>ossf/scorecard-action#771 Prepare for v2 beta1 release by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/766;>ossf/scorecard-action#766 multi-repo-action: Note that tool is a work-in-progress by https://github.com/naveensrinivasan;>@naveensrinivasan in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/776;>ossf/scorecard-action#776 Fix intermittent failures in CI-Tests by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/778;>ossf/scorecard-action#778 :seedling: Bump sigs.k8s.io/release-utils from 0.7.2 to 0.7.3 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/775;>ossf/scorecard-action#775 :seedling: Bump actions/cache from 3.0.4 to 3.0.5 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/769;>ossf/scorecard-action#769 Update README about the restrictions for scorecard-action:v2 by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/779;>ossf/scorecard-action#779 :seedling: Bump github/codeql-action from 2.1.16 to 2.1.17 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/783;>ossf/scorecard-action#783 Update instructions for Scorecard badge to README by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/785;>ossf/scorecard-action#785 :seedling: Bump debian from f576b80 to a811e62 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/787;>ossf/scorecard-action#787 :seedling: Bump github.com/ossf/scorecard/v4 from 4.4.0 to 4.5.0 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/786;>ossf/scorecard-action#786 :seedling: Bump github/codeql-action from 2.1.17 to 2.1.18 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/788;>ossf/scorecard-action#788 :seedling: Bump actions/cache from 3.0.5 to 3.0.6 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/789;>ossf/scorecard-action#789 Add request application/json request header by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/791;>ossf/scorecard-action#791 Create a new release v2.0.0-alpha.1 by https://github.com/azeemshaikh38;>@azeemshaikh38 in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/803;>ossf/scorecard-action#803 :seedling: Bump actions/cache from 3.0.6 to 3.0.7 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/ossf/scorecard-action/pull/807;>ossf/scorecard-action#807 Olivekl patch 1 by
[GitHub] [commons-configuration] kinow merged pull request #215: Bump slf4j.version from 2.0.1 to 2.0.2
kinow merged PR #215: URL: https://github.com/apache/commons-configuration/pull/215 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] codecov-commenter commented on pull request #215: Bump slf4j.version from 2.0.1 to 2.0.2
codecov-commenter commented on PR #215: URL: https://github.com/apache/commons-configuration/pull/215#issuecomment-1255648993 # [Codecov](https://codecov.io/gh/apache/commons-configuration/pull/215?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#215](https://codecov.io/gh/apache/commons-configuration/pull/215?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (df1292f) into [master](https://codecov.io/gh/apache/commons-configuration/commit/958e79e317b868bf4562854b0dd2a1c457dff2f3?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (958e79e) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #215 +/- ## = Coverage 89.01% 89.01% Complexity 3529 3529 = Files 183 183 Lines 9642 9642 Branches 1196 1196 = Hits 8583 8583 Misses 777 777 Partials282 282 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] kinow merged pull request #238: Bump commons-parent from 53 to 54
kinow merged PR #238: URL: https://github.com/apache/commons-imaging/pull/238 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] garydgregory merged pull request #213: Bump log4j.version from 2.18.0 to 2.19.0
garydgregory merged PR #213: URL: https://github.com/apache/commons-configuration/pull/213 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] dependabot[bot] commented on pull request #209: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #209: URL: https://github.com/apache/commons-configuration/pull/209#issuecomment-1255645261 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] garydgregory closed pull request #209: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #209: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-configuration/pull/209 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] garydgregory commented on pull request #209: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #209: URL: https://github.com/apache/commons-configuration/pull/209#issuecomment-1255645219 Closing: Needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-compress] kinow merged pull request #315: Bump slf4j-api from 2.0.1 to 2.0.2
kinow merged PR #315: URL: https://github.com/apache/commons-compress/pull/315 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] garydgregory merged pull request #134: Bump junit-jupiter from 5.9.0 to 5.9.1
garydgregory merged PR #134: URL: https://github.com/apache/commons-beanutils/pull/134 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-compress] kinow merged pull request #317: Bump junit.version from 5.9.0 to 5.9.1
kinow merged PR #317: URL: https://github.com/apache/commons-compress/pull/317 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] garydgregory merged pull request #135: Bump commons-parent from 53 to 54
garydgregory merged PR #135: URL: https://github.com/apache/commons-beanutils/pull/135 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] garydgregory merged pull request #136: Bump junit-vintage-engine from 5.9.0 to 5.9.1
garydgregory merged PR #136: URL: https://github.com/apache/commons-beanutils/pull/136 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] garydgregory merged pull request #216: Bump commons-parent from 53 to 54
garydgregory merged PR #216: URL: https://github.com/apache/commons-configuration/pull/216 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] garydgregory merged pull request #217: Bump junit-jupiter from 5.9.0 to 5.9.1
garydgregory merged PR #217: URL: https://github.com/apache/commons-configuration/pull/217 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (CSV-296) Delimiter followed by Whitespace then by Quotes Failing with setTrim(true)
[ https://issues.apache.org/jira/browse/CSV-296?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17608438#comment-17608438 ] Angus C commented on CSV-296: - Use setIgnoreSurroundingSpaces(true) > Delimiter followed by Whitespace then by Quotes Failing with setTrim(true) > -- > > Key: CSV-296 > URL: https://issues.apache.org/jira/browse/CSV-296 > Project: Commons CSV > Issue Type: Bug > Components: Parser >Affects Versions: 1.8, 1.9.0 > Environment: +{*}macOS{*}:+ > {code:java} > > uname -a > Darwin Senzing-MacBook-Pro.local 21.4.0 Darwin Kernel Version 21.4.0: Fri Mar > 18 00:45:05 PDT 2022; root:xnu-8020.101.4~15/RELEASE_X86_64 x86_64 {code} > {code:java} > > java -version > openjdk version "11.0.14" 2022-01-18 > OpenJDK Runtime Environment Temurin-11.0.14+9 (build 11.0.14+9) > OpenJDK 64-Bit Server VM Temurin-11.0.14+9 (build 11.0.14+9, mixed mode) > {code} > {+}*Linux*{+}: > {code:java} > > uname -a > Linux lnxdev 5.4.0-109-generic #123-Ubuntu SMP Fri Apr 8 09:10:54 UTC 2022 > x86_64 x86_64 x86_64 GNU/Linux {code} > {code:java} > > java -version > openjdk version "11.0.11" 2021-04-20 > OpenJDK Runtime Environment AdoptOpenJDK-11.0.11+9 (build 11.0.11+9) > OpenJDK 64-Bit Server VM AdoptOpenJDK-11.0.11+9 (build 11.0.11+9, mixed > mode){code} >Reporter: Barry M. Caceres >Priority: Major > Attachments: csvfail.zip > > > I have my CSVFormat initialized such that *{{withTrim(true)}}* has been set > {_}(see attached ZIP file){_}: > {code:java} > CSVFormat csvFormat = CSVFormat.DEFAULT.withFirstRecordAsHeader() > .withIgnoreEmptyLines(true).withTrim(true);{code} > > However, a quoted string that begins after a delimiter followed by preceding > whitespace is not properly parsed. For example: > {code:java} > GIVEN_NAME,SURNAME,ADDRESS,PHONE_NUMBER > "Joe", "Schmoe","101 Main Street; Las Vegas, NV 89101","702-555-1212" > "John","Doe", "201 First Street; Las Vegas, NV 89102", "702-555-1313" > "Jane","Doe","301 Second Street; Las Vegas, NV 89103","702-555-1414" > {code} > > * Notice the whitespace preceding {color:#0747a6}*{{"Schmoe"}}*{color} on > the first record? This leads to the actual value containing the quotation > marks instead of them being stripped off. > * The whitespace preceding {color:#0747a6}*{{"201 First Street; Las Vegas, > NV 89102"}}*{color} on the second record leads to it to being parsed as two > values: {color:#0747a6}*{{"201 First Street; Las Vegas}}*{color} and {*}{{NV > 89102"}}{*}. > * The third record is the only one that parses as expected. > I believe that this is because the trimming is done *after* the value is > being parsed rather than consuming the whitespace following the delimiter > during parsing. Either that, or the check for a quoted string is occurring > *before* the whitespace is being consumed. > > *NOTE:* I have attached a ZIP file that easily reproduces the problem with > the CSV file given above. > To build the attached project use Apache Maven and then execute using using > Java 11: > {code:java} > > unzip csvfail.zip > > cd csvfail > > mvn package > > java -jar target/csv-fail-1.0-SNAPSHOT.jar{code} -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [commons-configuration] dependabot[bot] opened a new pull request, #217: Bump junit-jupiter from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #217: URL: https://github.com/apache/commons-configuration/pull/217 Bumps [junit-jupiter](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit.jupiter:junit-jupiter=maven=5.9.0=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] dependabot[bot] opened a new pull request, #216: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #216: URL: https://github.com/apache/commons-configuration/pull/216 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-configuration] dependabot[bot] closed pull request #199: Bump javacc-maven-plugin from 2.6 to 3.0.0
dependabot[bot] closed pull request #199: Bump javacc-maven-plugin from 2.6 to 3.0.0 URL: https://github.com/apache/commons-configuration/pull/199 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] dependabot[bot] opened a new pull request, #215: Bump slf4j.version from 2.0.1 to 2.0.2
dependabot[bot] opened a new pull request, #215: URL: https://github.com/apache/commons-configuration/pull/215 Bumps `slf4j.version` from 2.0.1 to 2.0.2. Updates `slf4j-api` from 2.0.1 to 2.0.2 Commits https://github.com/qos-ch/slf4j/commit/0645c18cafbad8dfcebf2d57926cba496c8ab055;>0645c18 prepare release 2.0.2 https://github.com/qos-ch/slf4j/commit/894b1890a077a966f8be147e9fac2ad92a610e69;>894b189 fix SLF4J-563 https://github.com/qos-ch/slf4j/commit/7c1d86e21e7260093bbef5647cd554e09d64f68b;>7c1d86e start work on 2.0.2-SNAPSHOT See full diff in https://github.com/qos-ch/slf4j/compare/v_2.0.1...v_2.0.2;>compare view Updates `slf4j-ext` from 2.0.1 to 2.0.2 Commits https://github.com/qos-ch/slf4j/commit/0645c18cafbad8dfcebf2d57926cba496c8ab055;>0645c18 prepare release 2.0.2 https://github.com/qos-ch/slf4j/commit/894b1890a077a966f8be147e9fac2ad92a610e69;>894b189 fix SLF4J-563 https://github.com/qos-ch/slf4j/commit/7c1d86e21e7260093bbef5647cd554e09d64f68b;>7c1d86e start work on 2.0.2-SNAPSHOT See full diff in https://github.com/qos-ch/slf4j/compare/v_2.0.1...v_2.0.2;>compare view Updates `slf4j-log4j12` from 2.0.1 to 2.0.2 Commits https://github.com/qos-ch/slf4j/commit/0645c18cafbad8dfcebf2d57926cba496c8ab055;>0645c18 prepare release 2.0.2 https://github.com/qos-ch/slf4j/commit/894b1890a077a966f8be147e9fac2ad92a610e69;>894b189 fix SLF4J-563 https://github.com/qos-ch/slf4j/commit/7c1d86e21e7260093bbef5647cd554e09d64f68b;>7c1d86e start work on 2.0.2-SNAPSHOT See full diff in https://github.com/qos-ch/slf4j/compare/v_2.0.1...v_2.0.2;>compare view Updates `slf4j-nop` from 2.0.1 to 2.0.2 Commits https://github.com/qos-ch/slf4j/commit/0645c18cafbad8dfcebf2d57926cba496c8ab055;>0645c18 prepare release 2.0.2 https://github.com/qos-ch/slf4j/commit/894b1890a077a966f8be147e9fac2ad92a610e69;>894b189 fix SLF4J-563 https://github.com/qos-ch/slf4j/commit/7c1d86e21e7260093bbef5647cd554e09d64f68b;>7c1d86e start work on 2.0.2-SNAPSHOT See full diff in https://github.com/qos-ch/slf4j/compare/v_2.0.1...v_2.0.2;>compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] dependabot[bot] opened a new pull request, #213: Bump log4j.version from 2.18.0 to 2.19.0
dependabot[bot] opened a new pull request, #213: URL: https://github.com/apache/commons-configuration/pull/213 Bumps `log4j.version` from 2.18.0 to 2.19.0. Updates `log4j-1.2-api` from 2.18.0 to 2.19.0 Updates `log4j-core` from 2.18.0 to 2.19.0 Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] dependabot[bot] commented on pull request #199: Bump javacc-maven-plugin from 2.6 to 3.0.0
dependabot[bot] commented on PR #199: URL: https://github.com/apache/commons-configuration/pull/199#issuecomment-1255566892 Superseded by #214. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-configuration] dependabot[bot] opened a new pull request, #214: Bump javacc-maven-plugin from 2.6 to 3.0.1
dependabot[bot] opened a new pull request, #214: URL: https://github.com/apache/commons-configuration/pull/214 Bumps [javacc-maven-plugin](https://github.com/mojohaus/javacc-maven-plugin) from 2.6 to 3.0.1. Release notes Sourced from https://github.com/mojohaus/javacc-maven-plugin/releases;>javacc-maven-plugin's releases. 3.0.1 Bug Fixes Do not overwrite javacc defaults (https://github-redirect.dependabot.com/mojohaus/javacc-maven-plugin/pull/27;>#27) https://github.com/cesarb;>@cesarb Dependency updates Bump mojo-parent from 69 to 70 (https://github-redirect.dependabot.com/mojohaus/javacc-maven-plugin/pull/29;>#29) https://github.com/dependabot;>@dependabot Bump junit from 4.13.1 to 4.13.2 (https://github-redirect.dependabot.com/mojohaus/javacc-maven-plugin/pull/28;>#28) https://github.com/dependabot;>@dependabot Bump maven-plugin-annotations from 3.4 to 3.6.4 (https://github-redirect.dependabot.com/mojohaus/javacc-maven-plugin/pull/31;>#31) https://github.com/dependabot;>@dependabot Bump maven-reporting-api from 2.0.4 to 3.1.1 (https://github-redirect.dependabot.com/mojohaus/javacc-maven-plugin/pull/20;>#20) https://github.com/dependabot;>@dependabot Bump release-drafter/release-drafter from 5.20.0 to 5.20.1 (https://github-redirect.dependabot.com/mojohaus/javacc-maven-plugin/pull/26;>#26) https://github.com/dependabot;>@dependabot Commits https://github.com/mojohaus/javacc-maven-plugin/commit/62b8f08109f6a084dd0116f4a1ef64ca8b2f4a82;>62b8f08 [maven-release-plugin] prepare release javacc-maven-plugin-3.0.1 https://github.com/mojohaus/javacc-maven-plugin/commit/284906f5a7487f46fdc3f25a08882ed19641c229;>284906f Do not overwrite javacc defaults (https://github-redirect.dependabot.com/mojohaus/javacc-maven-plugin/issues/27;>#27) https://github.com/mojohaus/javacc-maven-plugin/commit/32373efcee11f7931fc4963a4db3534fc10dc6a2;>32373ef Bump mojo-parent from 69 to 70 https://github.com/mojohaus/javacc-maven-plugin/commit/8c300f461d8b95668a8c3666881d7b12a81f5cbb;>8c300f4 Bump junit from 4.13.1 to 4.13.2 https://github.com/mojohaus/javacc-maven-plugin/commit/d4df05327a11550ea06c671e4195f2c8f90a9c21;>d4df053 Bump maven-plugin-annotations from 3.4 to 3.6.4 https://github.com/mojohaus/javacc-maven-plugin/commit/6d6cb991fd9334e35444cb7dfc157f1663aa27b6;>6d6cb99 Bump maven-reporting-api from 2.0.4 to 3.1.1 https://github.com/mojohaus/javacc-maven-plugin/commit/1508beb4fadb05b46486f62e49fbad3f6ab5f20d;>1508beb Bump release-drafter/release-drafter from 5.20.0 to 5.20.1 https://github.com/mojohaus/javacc-maven-plugin/commit/ce9feb77204737b392ddd741c2c8d65d361648fc;>ce9feb7 [maven-release-plugin] prepare for next development iteration https://github.com/mojohaus/javacc-maven-plugin/commit/afb5c51af1acee8510f3ba634eaa4497310613b2;>afb5c51 [maven-release-plugin] prepare release javacc-maven-plugin-3.0.0 https://github.com/mojohaus/javacc-maven-plugin/commit/720379c073d77320a18369718f101d029c97e265;>720379c fix link Additional commits viewable in https://github.com/mojohaus/javacc-maven-plugin/compare/javacc-maven-plugin-2.6...javacc-maven-plugin-3.0.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.codehaus.mojo:javacc-maven-plugin=maven=2.6=3.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop
[GitHub] [commons-compress] dependabot[bot] opened a new pull request, #317: Bump junit.version from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #317: URL: https://github.com/apache/commons-compress/pull/317 Bumps `junit.version` from 5.9.0 to 5.9.1. Updates `junit-jupiter-api` from 5.9.0 to 5.9.1 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter-api's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view Updates `junit-jupiter-params` from 5.9.0 to 5.9.1 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter-params's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view Updates `junit-vintage-engine` from 5.9.0 to 5.9.1 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-vintage-engine's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux
[GitHub] [commons-compress] dependabot[bot] opened a new pull request, #316: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #316: URL: https://github.com/apache/commons-compress/pull/316 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-compress] dependabot[bot] opened a new pull request, #315: Bump slf4j-api from 2.0.1 to 2.0.2
dependabot[bot] opened a new pull request, #315: URL: https://github.com/apache/commons-compress/pull/315 Bumps [slf4j-api](https://github.com/qos-ch/slf4j) from 2.0.1 to 2.0.2. Commits https://github.com/qos-ch/slf4j/commit/0645c18cafbad8dfcebf2d57926cba496c8ab055;>0645c18 prepare release 2.0.2 https://github.com/qos-ch/slf4j/commit/894b1890a077a966f8be147e9fac2ad92a610e69;>894b189 fix SLF4J-563 https://github.com/qos-ch/slf4j/commit/7c1d86e21e7260093bbef5647cd554e09d64f68b;>7c1d86e start work on 2.0.2-SNAPSHOT See full diff in https://github.com/qos-ch/slf4j/compare/v_2.0.1...v_2.0.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.slf4j:slf4j-api=maven=2.0.1=2.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] garydgregory merged pull request #339: Bump commons-parent from 53 to 54
garydgregory merged PR #339: URL: https://github.com/apache/commons-collections/pull/339 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] garydgregory merged pull request #338: Bump commons.junit.version from 5.9.0 to 5.9.1
garydgregory merged PR #338: URL: https://github.com/apache/commons-collections/pull/338 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (POOL-409) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/POOL-409?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17608407#comment-17608407 ] Gary D. Gregory commented on POOL-409: -- So this boils down to making BaseGenericObjectPool#getStatsString() public. > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: POOL-409 > URL: https://issues.apache.org/jira/browse/POOL-409 > Project: Commons Pool > Issue Type: Improvement >Affects Versions: 2.11.1 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (DBCP-586) BasicDataSource should support GenericObjectPool->getStatsString()
[ https://issues.apache.org/jira/browse/DBCP-586?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17608405#comment-17608405 ] Gary D. Gregory commented on DBCP-586: -- I don't think this ticket belongs in DBCP if it concerns the POOL API. > BasicDataSource should support GenericObjectPool->getStatsString() > -- > > Key: DBCP-586 > URL: https://issues.apache.org/jira/browse/DBCP-586 > Project: Commons DBCP > Issue Type: Improvement >Affects Versions: 2.9.0 >Reporter: Thomas Freller >Priority: Major > Labels: improvement > Original Estimate: 2h > Remaining Estimate: 2h > > Hello, > I'm developing a Application that is running on a default JRE without an > Webserver/JMX. > For optimizing Database connections it would be very useful if i could access > > BasicDataSource->GenericObjectPool->{*}getStatsString(){*} > > I don't see any reason why this Method is protected and not public in > GenericObjectPool. > Then BasicDataSource shoud provide a method getStatsString() or the values > that represent the statistic data. > > If there is any other easy way to access this data within my Java Code I'll > implement this if you could give me an example how to get this working > easily. I don't want do configure any jmx stuff. > > > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (VALIDATOR-483) DomainValidator conversion to ASCII uses an obsoleted standard
[ https://issues.apache.org/jira/browse/VALIDATOR-483?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17608404#comment-17608404 ] Gary D. Gregory commented on VALIDATOR-483: --- Thinking about compatibility, this would look like a new feature and could be documented as such. > DomainValidator conversion to ASCII uses an obsoleted standard > -- > > Key: VALIDATOR-483 > URL: https://issues.apache.org/jira/browse/VALIDATOR-483 > Project: Commons Validator > Issue Type: Bug > Components: Routines > Environment: Java openjdk 11 on Linux >Reporter: Julien Bernard >Priority: Major > > DomainValidator uses java.net.IDN for its conversion to ASCII which is based > on RFC3490 (IDNA 2003) that is obsoleted by RFC 5891 (IDNA 2008). > An external library such as ICU4J may be used for an IDNA 2008 compliant > conversion: > {code:java} > int flags = IDNA.CHECK_BIDI >| IDNA.CHECK_CONTEXTJ >| IDNA.CHECK_CONTEXTO >| IDNA.NONTRANSITIONAL_TO_ASCII >| IDNA.USE_STD3_RULES; > IDNA idna = IDNA.getUTS46Instance(flags); > IDNA.Info info = new IDNA.Info(); > StringBuilder domainAscii = new StringBuilder(); > idna.nameToASCII(domain, domainAscii, info); > // check error with info.hasErrors() {code} > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (VALIDATOR-483) DomainValidator conversion to ASCII uses an obsoleted standard
[ https://issues.apache.org/jira/browse/VALIDATOR-483?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17608403#comment-17608403 ] Julien Bernard commented on VALIDATOR-483: -- Thank you [~ggregory], This answers my concern about whether such PR would have a chance to be accepted and gives useful information on how this should be achieved. > DomainValidator conversion to ASCII uses an obsoleted standard > -- > > Key: VALIDATOR-483 > URL: https://issues.apache.org/jira/browse/VALIDATOR-483 > Project: Commons Validator > Issue Type: Bug > Components: Routines > Environment: Java openjdk 11 on Linux >Reporter: Julien Bernard >Priority: Major > > DomainValidator uses java.net.IDN for its conversion to ASCII which is based > on RFC3490 (IDNA 2003) that is obsoleted by RFC 5891 (IDNA 2008). > An external library such as ICU4J may be used for an IDNA 2008 compliant > conversion: > {code:java} > int flags = IDNA.CHECK_BIDI >| IDNA.CHECK_CONTEXTJ >| IDNA.CHECK_CONTEXTO >| IDNA.NONTRANSITIONAL_TO_ASCII >| IDNA.USE_STD3_RULES; > IDNA idna = IDNA.getUTS46Instance(flags); > IDNA.Info info = new IDNA.Info(); > StringBuilder domainAscii = new StringBuilder(); > idna.nameToASCII(domain, domainAscii, info); > // check error with info.hasErrors() {code} > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[GitHub] [commons-lang] garydgregory commented on pull request #953: Handle error messages with special characters.
garydgregory commented on PR #953: URL: https://github.com/apache/commons-lang/pull/953#issuecomment-1255446932 Right, before the end of the year for certain, much before that I hope. I have a couple of other releases to push through first. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] codecov-commenter commented on pull request #135: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #135: URL: https://github.com/apache/commons-beanutils/pull/135#issuecomment-1255435777 # [Codecov](https://codecov.io/gh/apache/commons-beanutils/pull/135?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#135](https://codecov.io/gh/apache/commons-beanutils/pull/135?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (9f51c9e) into [master](https://codecov.io/gh/apache/commons-beanutils/commit/1edc9de96ca8b52364bf087092c823433a64f6b0?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (1edc9de) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #135 +/- ## = Coverage 64.57% 64.57% Complexity 1555 1555 = Files 105 105 Lines 5796 5796 Branches 1060 1060 = Hits 3743 3743 Misses 1607 1607 Partials446 446 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] codecov-commenter commented on pull request #339: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #339: URL: https://github.com/apache/commons-collections/pull/339#issuecomment-1255432566 # [Codecov](https://codecov.io/gh/apache/commons-collections/pull/339?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#339](https://codecov.io/gh/apache/commons-collections/pull/339?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (b4c9600) into [master](https://codecov.io/gh/apache/commons-collections/commit/42ce1e9d0e2e1e4296babd2ad4d8e2abffdfb5e5?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (42ce1e9) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #339 +/- ## = Coverage 85.98% 85.98% Complexity 4671 4671 = Files 289 289 Lines 1344513445 Branches 1977 1977 = Hits 1156111561 Misses 1323 1323 Partials561 561 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] codecov-commenter commented on pull request #134: Bump junit-jupiter from 5.9.0 to 5.9.1
codecov-commenter commented on PR #134: URL: https://github.com/apache/commons-beanutils/pull/134#issuecomment-1255429714 # [Codecov](https://codecov.io/gh/apache/commons-beanutils/pull/134?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#134](https://codecov.io/gh/apache/commons-beanutils/pull/134?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (5e62bd4) into [master](https://codecov.io/gh/apache/commons-beanutils/commit/1edc9de96ca8b52364bf087092c823433a64f6b0?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (1edc9de) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #134 +/- ## = Coverage 64.57% 64.57% Complexity 1555 1555 = Files 105 105 Lines 5796 5796 Branches 1060 1060 = Hits 3743 3743 Misses 1607 1607 Partials446 446 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] codecov-commenter commented on pull request #338: Bump commons.junit.version from 5.9.0 to 5.9.1
codecov-commenter commented on PR #338: URL: https://github.com/apache/commons-collections/pull/338#issuecomment-1255421610 # [Codecov](https://codecov.io/gh/apache/commons-collections/pull/338?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#338](https://codecov.io/gh/apache/commons-collections/pull/338?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (37348dc) into [master](https://codecov.io/gh/apache/commons-collections/commit/42ce1e9d0e2e1e4296babd2ad4d8e2abffdfb5e5?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (42ce1e9) will **decrease** coverage by `0.05%`. > The diff coverage is `n/a`. ```diff @@ Coverage Diff @@ ## master #338 +/- ## - Coverage 85.98% 85.93% -0.06% + Complexity 4671 4669 -2 Files 289 289 Lines 1344513445 Branches 1977 1977 - Hits 1156111554 -7 - Misses 1323 1327 +4 - Partials561 564 +3 ``` | [Impacted Files](https://codecov.io/gh/apache/commons-collections/pull/338?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) | Coverage Δ | | |---|---|---| | [...commons/collections4/map/AbstractReferenceMap.java](https://codecov.io/gh/apache/commons-collections/pull/338/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvY29sbGVjdGlvbnM0L21hcC9BYnN0cmFjdFJlZmVyZW5jZU1hcC5qYXZh) | `88.88% <0.00%> (-2.60%)` | :arrow_down: | :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] dependabot[bot] opened a new pull request, #339: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #339: URL: https://github.com/apache/commons-collections/pull/339 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-beanutils] dependabot[bot] opened a new pull request, #136: Bump junit-vintage-engine from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #136: URL: https://github.com/apache/commons-beanutils/pull/136 Bumps [junit-vintage-engine](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-vintage-engine's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit.vintage:junit-vintage-engine=maven=5.9.0=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] dependabot[bot] opened a new pull request, #135: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #135: URL: https://github.com/apache/commons-beanutils/pull/135 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-beanutils] dependabot[bot] opened a new pull request, #134: Bump junit-jupiter from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #134: URL: https://github.com/apache/commons-beanutils/pull/134 Bumps [junit-jupiter](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit.jupiter:junit-jupiter=maven=5.9.0=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] dependabot[bot] opened a new pull request, #338: Bump commons.junit.version from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #338: URL: https://github.com/apache/commons-collections/pull/338 Bumps `commons.junit.version` from 5.9.0 to 5.9.1. Updates `junit-jupiter-api` from 5.9.0 to 5.9.1 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter-api's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view Updates `junit-jupiter-engine` from 5.9.0 to 5.9.1 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter-engine's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view Updates `junit-jupiter-params` from 5.9.0 to 5.9.1 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter-params's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux
[GitHub] [commons-cli] garydgregory merged pull request #128: Bump commons-parent from 53 to 54
garydgregory merged PR #128: URL: https://github.com/apache/commons-cli/pull/128 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-codec] garydgregory merged pull request #148: Bump junit-bom from 5.9.0 to 5.9.1
garydgregory merged PR #148: URL: https://github.com/apache/commons-codec/pull/148 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-codec] garydgregory merged pull request #147: Bump commons-parent from 53 to 54
garydgregory merged PR #147: URL: https://github.com/apache/commons-codec/pull/147 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-fileupload] dependabot[bot] closed pull request #143: Bump commons-parent from 52 to 53
dependabot[bot] closed pull request #143: Bump commons-parent from 52 to 53 URL: https://github.com/apache/commons-fileupload/pull/143 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-fileupload] dependabot[bot] commented on pull request #143: Bump commons-parent from 52 to 53
dependabot[bot] commented on PR #143: URL: https://github.com/apache/commons-fileupload/pull/143#issuecomment-1255373652 Superseded by #167. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-fileupload] dependabot[bot] opened a new pull request, #167: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #167: URL: https://github.com/apache/commons-fileupload/pull/167 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-cli] dependabot[bot] opened a new pull request, #128: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #128: URL: https://github.com/apache/commons-cli/pull/128 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-cli] dependabot[bot] commented on pull request #127: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #127: URL: https://github.com/apache/commons-cli/pull/127#issuecomment-1255342912 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-cli] garydgregory closed pull request #127: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #127: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-cli/pull/127 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-cli] garydgregory commented on pull request #127: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #127: URL: https://github.com/apache/commons-cli/pull/127#issuecomment-1255342857 Closing: Needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbcp] garydgregory merged pull request #219: Bump commons-parent from 53 to 54
garydgregory merged PR #219: URL: https://github.com/apache/commons-dbcp/pull/219 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-codec] dependabot[bot] opened a new pull request, #148: Bump junit-bom from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #148: URL: https://github.com/apache/commons-codec/pull/148 Bumps [junit-bom](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-bom's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit:junit-bom=maven=5.9.0=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-codec] dependabot[bot] opened a new pull request, #147: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #147: URL: https://github.com/apache/commons-codec/pull/147 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-dbcp] garydgregory merged pull request #218: Bump junit-jupiter from 5.9.0 to 5.9.1
garydgregory merged PR #218: URL: https://github.com/apache/commons-dbcp/pull/218 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-pool] garydgregory merged pull request #173: Bump commons-parent from 53 to 54
garydgregory merged PR #173: URL: https://github.com/apache/commons-pool/pull/173 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] codecov-commenter commented on pull request #238: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #238: URL: https://github.com/apache/commons-imaging/pull/238#issuecomment-1255314469 # [Codecov](https://codecov.io/gh/apache/commons-imaging/pull/238?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#238](https://codecov.io/gh/apache/commons-imaging/pull/238?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (61ac09b) into [master](https://codecov.io/gh/apache/commons-imaging/commit/7c3356eea670dd1348577bd6b141d2a24959663d?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (7c3356e) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #238 +/- ## = Coverage 70.72% 70.72% Complexity 3366 3366 = Files 332 332 Lines 1699716997 Branches 2674 2674 = Hits 1202112021 Misses 3927 3927 Partials 1049 1049 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] dependabot[bot] commented on pull request #220: Bump commons-parent from 52 to 53
dependabot[bot] commented on PR #220: URL: https://github.com/apache/commons-imaging/pull/220#issuecomment-1255308647 Superseded by #238. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] dependabot[bot] closed pull request #220: Bump commons-parent from 52 to 53
dependabot[bot] closed pull request #220: Bump commons-parent from 52 to 53 URL: https://github.com/apache/commons-imaging/pull/220 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] dependabot[bot] opened a new pull request, #238: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #238: URL: https://github.com/apache/commons-imaging/pull/238 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-exec] dependabot[bot] opened a new pull request, #64: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #64: URL: https://github.com/apache/commons-exec/pull/64 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-dbcp] codecov-commenter commented on pull request #220: Bump slf4j-simple from 1.7.36 to 2.0.2
codecov-commenter commented on PR #220: URL: https://github.com/apache/commons-dbcp/pull/220#issuecomment-1255238687 # [Codecov](https://codecov.io/gh/apache/commons-dbcp/pull/220?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#220](https://codecov.io/gh/apache/commons-dbcp/pull/220?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (cb156fa) into [master](https://codecov.io/gh/apache/commons-dbcp/commit/52201fa2b16f1b42f7d9ea72d861a9f6ff3fbb7e?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (52201fa) will **not change** coverage. > The diff coverage is `n/a`. ```diff @@Coverage Diff@@ ## master #220 +/- ## = Coverage 59.73% 59.73% Complexity 1783 1783 = Files57 57 Lines 7415 7415 Branches421 421 = Hits 4429 4429 Misses 2769 2769 Partials217 217 ``` :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbcp] codecov-commenter commented on pull request #219: Bump commons-parent from 53 to 54
codecov-commenter commented on PR #219: URL: https://github.com/apache/commons-dbcp/pull/219#issuecomment-1255231479 # [Codecov](https://codecov.io/gh/apache/commons-dbcp/pull/219?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#219](https://codecov.io/gh/apache/commons-dbcp/pull/219?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (9496c53) into [master](https://codecov.io/gh/apache/commons-dbcp/commit/52201fa2b16f1b42f7d9ea72d861a9f6ff3fbb7e?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (52201fa) will **decrease** coverage by `0.02%`. > The diff coverage is `n/a`. ```diff @@ Coverage Diff @@ ## master #219 +/- ## - Coverage 59.73% 59.70% -0.03% Complexity 1783 1783 Files57 57 Lines 7415 7415 Branches421 421 - Hits 4429 4427 -2 - Misses 2769 2771 +2 Partials217 217 ``` | [Impacted Files](https://codecov.io/gh/apache/commons-dbcp/pull/219?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) | Coverage Δ | | |---|---|---| | [...ache/commons/dbcp2/managed/TransactionContext.java](https://codecov.io/gh/apache/commons-dbcp/pull/219/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvZGJjcDIvbWFuYWdlZC9UcmFuc2FjdGlvbkNvbnRleHQuamF2YQ==) | `72.22% <0.00%> (-3.71%)` | :arrow_down: | :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] Partha-SUST16 commented on pull request #336: Fix flaky test failure in SynchronizedBagTest#testCollectionToArray2
Partha-SUST16 commented on PR #336: URL: https://github.com/apache/commons-collections/pull/336#issuecomment-1255220754 Hello @aherbert, I have updated the pull request with the file change you mentioned. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-compress] dependabot[bot] commented on pull request #313: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #313: URL: https://github.com/apache/commons-compress/pull/313#issuecomment-1255197974 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-compress] garydgregory closed pull request #313: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #313: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-compress/pull/313 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-compress] garydgregory commented on pull request #313: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #313: URL: https://github.com/apache/commons-compress/pull/313#issuecomment-1255197908 Closing: Needs Apache Infra. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-codec] dependabot[bot] commented on pull request #146: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #146: URL: https://github.com/apache/commons-codec/pull/146#issuecomment-1255197335 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-codec] garydgregory closed pull request #146: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #146: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-codec/pull/146 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-codec] garydgregory commented on pull request #146: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #146: URL: https://github.com/apache/commons-codec/pull/146#issuecomment-1255197296 Closing: Needs Apache Infra approval. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbcp] dependabot[bot] closed pull request #217: Bump slf4j-simple from 1.7.36 to 2.0.1
dependabot[bot] closed pull request #217: Bump slf4j-simple from 1.7.36 to 2.0.1 URL: https://github.com/apache/commons-dbcp/pull/217 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbcp] dependabot[bot] commented on pull request #217: Bump slf4j-simple from 1.7.36 to 2.0.1
dependabot[bot] commented on PR #217: URL: https://github.com/apache/commons-dbcp/pull/217#issuecomment-1255185957 Superseded by #220. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbcp] dependabot[bot] opened a new pull request, #220: Bump slf4j-simple from 1.7.36 to 2.0.2
dependabot[bot] opened a new pull request, #220: URL: https://github.com/apache/commons-dbcp/pull/220 Bumps [slf4j-simple](https://github.com/qos-ch/slf4j) from 1.7.36 to 2.0.2. Commits https://github.com/qos-ch/slf4j/commit/0645c18cafbad8dfcebf2d57926cba496c8ab055;>0645c18 prepare release 2.0.2 https://github.com/qos-ch/slf4j/commit/894b1890a077a966f8be147e9fac2ad92a610e69;>894b189 fix SLF4J-563 https://github.com/qos-ch/slf4j/commit/7c1d86e21e7260093bbef5647cd554e09d64f68b;>7c1d86e start work on 2.0.2-SNAPSHOT https://github.com/qos-ch/slf4j/commit/9752442b6e6db0749915dc40e80437dc97cd772d;>9752442 prepare release 2.0.1 https://github.com/qos-ch/slf4j/commit/c0f7f16bfb2cdbcf38df6039219ee3f57c99117e;>c0f7f16 minor javadoc change https://github.com/qos-ch/slf4j/commit/1148b9852997376ab865cfc5e448fee0675cabbd;>1148b98 Merge branch 'master' of github.com:qos-ch/slf4j https://github.com/qos-ch/slf4j/commit/593f89f85af8d181f0727315224f37fe0aa5fdcb;>593f89f fix SLF4J SLF4J-560 https://github.com/qos-ch/slf4j/commit/03deea9f77c354ccd59c578808cff689299ba5eb;>03deea9 Merge pull request https://github-redirect.dependabot.com/qos-ch/slf4j/issues/302;>#302 from coheigea/coheigea/reload4j_1.2.22 https://github.com/qos-ch/slf4j/commit/c9d5cc1257be51d837bf8e3f10f94eb18d1390bb;>c9d5cc1 Update reload4j to 1.2.22 https://github.com/qos-ch/slf4j/commit/bae56f544b0c30cedb265729f3c6cce72fa79f10;>bae56f5 Merge pull request https://github-redirect.dependabot.com/qos-ch/slf4j/issues/294;>#294 from marcwrobel/fix-typos Additional commits viewable in https://github.com/qos-ch/slf4j/compare/v_1.7.36...v_2.0.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.slf4j:slf4j-simple=maven=1.7.36=2.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbcp] dependabot[bot] opened a new pull request, #219: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #219: URL: https://github.com/apache/commons-dbcp/pull/219 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-dbcp] dependabot[bot] opened a new pull request, #218: Bump junit-jupiter from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #218: URL: https://github.com/apache/commons-dbcp/pull/218 Bumps [junit-jupiter](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit.jupiter:junit-jupiter=maven=5.9.0=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-pool] garydgregory merged pull request #172: Bump junit-bom from 5.9.0 to 5.9.1
garydgregory merged PR #172: URL: https://github.com/apache/commons-pool/pull/172 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-pool] codecov-commenter commented on pull request #172: Bump junit-bom from 5.9.0 to 5.9.1
codecov-commenter commented on PR #172: URL: https://github.com/apache/commons-pool/pull/172#issuecomment-1255168026 # [Codecov](https://codecov.io/gh/apache/commons-pool/pull/172?src=pr=h1_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) Report > Merging [#172](https://codecov.io/gh/apache/commons-pool/pull/172?src=pr=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (7ad0fcd) into [master](https://codecov.io/gh/apache/commons-pool/commit/41ab9ce11707cdd3bd77effcd8d83daec8958d18?el=desc_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) (41ab9ce) will **increase** coverage by `0.13%`. > The diff coverage is `n/a`. ```diff @@ Coverage Diff @@ ## master #172 +/- ## + Coverage 81.93% 82.06% +0.13% Complexity 762 762 Files42 42 Lines 3066 3066 Branches309 309 + Hits 2512 2516 +4 + Misses 448 444 -4 Partials106 106 ``` | [Impacted Files](https://codecov.io/gh/apache/commons-pool/pull/172?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) | Coverage Δ | | |---|---|---| | [...a/org/apache/commons/pool2/impl/EvictionTimer.java](https://codecov.io/gh/apache/commons-pool/pull/172/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvcG9vbDIvaW1wbC9FdmljdGlvblRpbWVyLmphdmE=) | `84.37% <0.00%> (-1.57%)` | :arrow_down: | | [...ache/commons/pool2/impl/BaseGenericObjectPool.java](https://codecov.io/gh/apache/commons-pool/pull/172/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvcG9vbDIvaW1wbC9CYXNlR2VuZXJpY09iamVjdFBvb2wuamF2YQ==) | `88.78% <0.00%> (-0.48%)` | :arrow_down: | | [...g/apache/commons/pool2/impl/GenericObjectPool.java](https://codecov.io/gh/apache/commons-pool/pull/172/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvcG9vbDIvaW1wbC9HZW5lcmljT2JqZWN0UG9vbC5qYXZh) | `85.41% <0.00%> (+0.26%)` | :arrow_up: | | [...che/commons/pool2/impl/GenericKeyedObjectPool.java](https://codecov.io/gh/apache/commons-pool/pull/172/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvcG9vbDIvaW1wbC9HZW5lcmljS2V5ZWRPYmplY3RQb29sLmphdmE=) | `84.54% <0.00%> (+0.52%)` | :arrow_up: | | [...apache/commons/pool2/impl/DefaultPooledObject.java](https://codecov.io/gh/apache/commons-pool/pull/172/diff?src=pr=tree_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation#diff-c3JjL21haW4vamF2YS9vcmcvYXBhY2hlL2NvbW1vbnMvcG9vbDIvaW1wbC9EZWZhdWx0UG9vbGVkT2JqZWN0LmphdmE=) | `87.64% <0.00%> (+3.37%)` | :arrow_up: | :mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral_source=github_content=comment_campaign=pr+comments_term=The+Apache+Software+Foundation) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-lang] aherbert commented on pull request #953: Handle error messages with special characters.
aherbert commented on PR #953: URL: https://github.com/apache/commons-lang/pull/953#issuecomment-1255165118 @stawirej I am not sure of the release schedule. There are a lot of fixes in lang 3.13-SNAPSHOT so a release may be done within a few months. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-collections] aherbert commented on a diff in pull request #336: Fix flaky test failure in SynchronizedBagTest#testCollectionToArray2
aherbert commented on code in PR #336: URL: https://github.com/apache/commons-collections/pull/336#discussion_r977763819 ## src/test/java/org/apache/commons/collections4/collection/AbstractCollectionTest.java: ## @@ -136,6 +143,18 @@ // These fields are used by reset() and verify(), and any test // method that tests a modification. +/** + * Flag to indicate the collection makes no ordering guarantees for the iterator. If this is not used + * then the behaviour is assumed to be ordered and the output order of the iterator is matched by + * the toArray method. + */ +protected static final int UNORDERED = 0x1; + +/** + * Flag to indicate the collection makes ordering guarantees for the iterator. This is used by the default + * implementation of {@link #getIterationBehaviour()} + */ +protected static final int ORDERED = 0x0; Review Comment: I do not think we need this. If something is not UNORDERED then it can be assumed it is ordered. ## src/test/java/org/apache/commons/collections4/collection/AbstractCollectionTest.java: ## @@ -1095,9 +1124,15 @@ public void testCollectionToArray2() { array = getCollection().toArray(new Object[0]); a = getCollection().toArray(); -assertEquals("toArrays should be equal", - Arrays.asList(array), Arrays.asList(a)); +if((getIterationBehaviour() & UNORDERED) != 0) { Review Comment: Note there is a second assertion on line 1154 using assertEquals with two lists. This should also be changed to use a hashset if unordered. ## src/test/java/org/apache/commons/collections4/bag/SynchronizedBagTest.java: ## @@ -46,6 +46,10 @@ public String getCompatibilityVersion() { return "4"; } +@Override +protected int getIterationBehaviour(){ +return UNORDERED; +} Review Comment: Add an empty line after this method. ## src/test/java/org/apache/commons/collections4/collection/AbstractCollectionTest.java: ## @@ -487,6 +506,16 @@ public Object[] getOtherNonNullStringElements() { }; } +/** + * Return a flag specifying the iteration behaviour of the collection. + * This is used to change the assertions used by specific tests. + * Default implementation returns {@link #ORDERED} as iteration behaviour + * @return the iteration behaviour + */ +protected int getIterationBehaviour(){ +return ORDERED; Review Comment: Just return 0 for the default behaviour ## src/test/java/org/apache/commons/collections4/collection/AbstractCollectionTest.java: ## @@ -70,6 +70,13 @@ * {@link #isFailFastSupported()} * * + * Indicate Collection Iteration behaviour + * + * Override these if your collection makes no ordering guarantees for the iterator Review Comment: Requires a `` tag before `Override`. Looking at the rest of the javadoc the paragraphs are not closed. So the `` on line 74 should change to a ``. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-pool] dependabot[bot] opened a new pull request, #173: Bump commons-parent from 53 to 54
dependabot[bot] opened a new pull request, #173: URL: https://github.com/apache/commons-pool/pull/173 Bumps [commons-parent](https://github.com/apache/commons-parent) from 53 to 54. Changelog Sourced from https://github.com/apache/commons-parent/blob/master/RELEASE-NOTES.txt;>commons-parent's changelog. Apache Commons Parent 54 RELEASE NOTES The Apache Commons Parent team is pleased to announce the release of Apache Commons Parent 54. The Apache Commons Parent POM provides common settings for all Apache Commons components. Version 54: SBOMs, drop JDepend, replace FindBugs with SpotBugs, dependency bumps. Changes in this version include: New features: o Add .vscode/* to RAT excludes. o Add property commons.javadoc18.java.link. Thanks to Dependabot. o Add JUnit BOM to dependency management. o Add CycloneDX SBOM generation https://github-redirect.dependabot.com/apache/commons-parent/issues/122;>#122. Thanks to Steve Springett. o Add SPDX SBOM generation. Thanks to Gary Gregory. Changes: o Bump actions/cache from 3 to 3.0.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/118;>#118. Thanks to Gary Gregory, Dependabot. o Bump actions/checkout from 3 to 3.0.2. Thanks to Gary Gregory. o Bump actions/setup-java from 2 to 3. Thanks to Gary Gregory. o Bump apache from 24 to 27 https://github-redirect.dependabot.com/apache/commons-parent/issues/112;>#112, https://github-redirect.dependabot.com/apache/commons-parent/issues/127;>#127. Thanks to Dependabot. o Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/105;>#105. Thanks to Dependabot. o Bump jacoco-maven-plugin from 0.8.7 to 0.8.8. Thanks to Gary Gregory. o Bump spotbugs from 4.5.3 to 4.7.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/120;>#120, https://github-redirect.dependabot.com/apache/commons-parent/issues/143;>#143. Thanks to Gary Gregory, Dependabot. o Bump spotbugs-maven-plugin from 4.5.3.0 to 4.7.2.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/129;>#129, https://github-redirect.dependabot.com/apache/commons-parent/issues/142;>#142. Thanks to Gary Gregory, Dependabot. o Bump maven-project-info-reports-plugin from 3.2.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/107;>#107, https://github-redirect.dependabot.com/apache/commons-parent/issues/128;>#128. Thanks to Dependabot. o Bump maven-site-plugin from 3.11.0 to 3.12.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/108;>#108, https://github-redirect.dependabot.com/apache/commons-parent/issues/132;>#132. Fix [WARNING] An issue has occurred with apache-rat-plugin:0.14:rat report, skipping LinkageError org.apache.rat.mp.RatReportMojo.generate(Lorg/codehaus/doxia/sink/Sink;Ljava/util/Locale;)V, Thanks to Dependabot. o Bump maven-bundle-plugin from 5.1.4 to 5.1.8, https://github-redirect.dependabot.com/apache/commons-parent/issues/111;>#111, https://github-redirect.dependabot.com/apache/commons-parent/issues/126;>#126, https://github-redirect.dependabot.com/apache/commons-parent/issues/133;>#133. Thanks to Gary Gregory, Dependabot. o Bump net.sourceforge.pmd:pmd-* from 6.44.0 to 6.49.0, https://github-redirect.dependabot.com/apache/commons-parent/issues/138;>#138. Thanks to Gary Gregory, Dependabot. o Bump maven-jxr-plugin from 3.1.1 to 3.3.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/110;>#110, https://github-redirect.dependabot.com/apache/commons-parent/issues/136;>#136. Thanks to Dependabot. o Bump maven-javadoc-plugin from 3.3.2 to 3.4.1 https://github-redirect.dependabot.com/apache/commons-parent/issues/114;>#114. Thanks to Dependabot, Gary Gregory. o Bump apache-rat from 0.13 to 0.15. Thanks to Gary Gregory. o Bump biz.aQute.bndlib from 6.2.0 to 6.3.1. Thanks to Gary Gregory. o Bump maven-pmd-plugin from 3.16.0 to 3.19.0 https://github-redirect.dependabot.com/apache/commons-parent/issues/141;>#141. Thanks to Gary Gregory, Dependabot. o Bump maven-enforcer-plugin from 3.0.0 to 3.1.0. Thanks to Gary Gregory. o Bump org.apache.maven.wagon:wagon-ssh 3.5.1 to 3.5.2. Thanks to Gary Gregory. o Bump maven-assembly-plugin from 3.3.0 to 3.4.2 https://github-redirect.dependabot.com/apache/commons-parent/issues/123;>#123. Thanks to Dependabot, Gary Gregory. o
[GitHub] [commons-pool] dependabot[bot] opened a new pull request, #172: Bump junit-bom from 5.9.0 to 5.9.1
dependabot[bot] opened a new pull request, #172: URL: https://github.com/apache/commons-pool/pull/172 Bumps [junit-bom](https://github.com/junit-team/junit5) from 5.9.0 to 5.9.1. Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-bom's releases. JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1 See http://junit.org/junit5/docs/5.9.1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/732a5400f80c8f446daa8b43eaa4b41b3da929be;>732a540 Release 5.9.1 https://github.com/junit-team/junit5/commit/88bf48d54534b90f74b64b7060f3d09205c9ff9a;>88bf48d Prepare release notes for 5.9.1 https://github.com/junit-team/junit5/commit/d75e34d20f3b9c297b6c38a679888a676f0b92a3;>d75e34d Update scope for 5.9.1 https://github.com/junit-team/junit5/commit/9823f7329a97b4ca6d0922b1c62b6526d615f761;>9823f73 Link to all 5.9 milestone pages https://github.com/junit-team/junit5/commit/76719bb085c1e395824af8d941ed40b9ac359d1d;>76719bb Increase timeout for GraalVM test https://github.com/junit-team/junit5/commit/2a809848e56c7d26b3dbd964a1d99e37ca61acc6;>2a80984 Install GraalVM for main CI build on Linux https://github.com/junit-team/junit5/commit/79f47f51aa8880c78ceeb04e8c837b28d73a2b94;>79f47f5 Refactor OpenTestReportGeneratingListener to work in native images https://github.com/junit-team/junit5/commit/7229385d5edc7f2b78363f8bd0026a86c53bc44e;>7229385 Add failing integration test for execution on GraalVM native image https://github.com/junit-team/junit5/commit/343170f314221ac8d91fea52617234058abfc39a;>343170f Fix running tests in documentation from IntelliJ IDEA https://github.com/junit-team/junit5/commit/352d06b3b27d5f1921dda1876c2dedb6f4f6b70f;>352d06b Attempt to stabilize test on Windows Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.junit:junit-bom=maven=5.9.0=5.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-lang] stawirej commented on pull request #953: Handle error messages with special characters.
stawirej commented on PR #953: URL: https://github.com/apache/commons-lang/pull/953#issuecomment-1255053677 @aherbert Thank you for your help! When do you plan to release it? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-bcel] garydgregory merged pull request #148: Bump commons-parent from 53 to 54
garydgregory merged PR #148: URL: https://github.com/apache/commons-bcel/pull/148 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-lang] garydgregory merged pull request #955: Bump junit-bom from 5.9.0 to 5.9.1
garydgregory merged PR #955: URL: https://github.com/apache/commons-lang/pull/955 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] garydgregory merged pull request #131: Bump maven-pmd-plugin from 3.18.0 to 3.19.0
garydgregory merged PR #131: URL: https://github.com/apache/commons-beanutils/pull/131 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-lang] garydgregory merged pull request #954: Bump commons-parent from 53 to 54
garydgregory merged PR #954: URL: https://github.com/apache/commons-lang/pull/954 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] garydgregory closed pull request #133: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory closed pull request #133: Bump ossf/scorecard-action from 1.1.2 to 2.0.3 URL: https://github.com/apache/commons-beanutils/pull/133 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] dependabot[bot] commented on pull request #133: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
dependabot[bot] commented on PR #133: URL: https://github.com/apache/commons-beanutils/pull/133#issuecomment-1254959602 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-beanutils] garydgregory commented on pull request #133: Bump ossf/scorecard-action from 1.1.2 to 2.0.3
garydgregory commented on PR #133: URL: https://github.com/apache/commons-beanutils/pull/133#issuecomment-1254959555 Closing: Needs Apache Infra approval -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org