dependabot[bot] opened a new pull request #51: URL: https://github.com/apache/maven-assembly-plugin/pull/51
Bumps [jdom](https://github.com:/hunterhacker/jdom) from 1.1.3 to 2.0.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hunterhacker/jdom/blob/master/CHANGES.txt">jdom's changelog</a>.</em></p> <blockquote> <p>!!! This file is no longer maintained. Please see the GitHub Commits !!! <a href="https://github.com/hunterhacker/jdom/commits/master">https://github.com/hunterhacker/jdom/commits/master</a></p> <ul> <li> <ul> <li> <ul> <li> <ul> <li> <ul> <li> <ul> <li>JDOM 1.1.1 (tag: jdom_1_1_1) from JDOM 1.1 * * * * * *</li> </ul> </li> </ul> </li> </ul> </li> </ul> </li> </ul> </li> </ul> <p>Fixed a synchronization issue in the Namespace class that could cause a hang when doing concurrent builds.</p> <p>Added output support for Unicode surrogate pairs.</p> <p>Added a new flag on SAXBuilder named setFastReconfigure() which, when set, can speed reconfiguration by skipping repeated attempts to set features that are determined not to be present on a parser. Useful when doing many builds per second.</p> <p>Updated the provided Jaxen library from a modified Jaxen 1.0 to the latest which is Jaxen 1.1.1.</p> <p>Added reflection code in the error reporting system to support Android's Dalvik VM which doesn't have the java.rmi.* classes.</p> <ul> <li> <ul> <li> <ul> <li> <ul> <li> <ul> <li> <ul> <li>JDOM 1.1 (tag: jdom_1_1) from JDOM 1.0 * * * * * *</li> </ul> </li> </ul> </li> </ul> </li> </ul> </li> </ul> </li> </ul> <p>Added an additional constructor to JDOMSource with an EntityResolver which is passed to the internal DocumentReader allowing the SAXOutputter to properly resolve DTDs.</p> <p>Added a forceNamespaceAware property to DOMOutputter which specifies you want a DOM constructed with namespaces even if the source JDOM document has no namespaces.</p> <p>Added support for attribute "INF" and "-INF" values, to indicate positive and negative infinity, as XML Schema allows.</p> <p>Moved isXMLWhitespace() method from private in XMLOutputter to public in Verifier.</p> <p>Clarified XMLOutputter behavior with newlines and indents: setIndent(" ") means newlines and " " indents setIndent("") means newlines and "" indents setIndent(null) means no newlines and no indents</p> <p>Added set/getIgnoringBoundaryWhitespace() methods and features to SAXBuilder and SAXHandler.</p> <p>Added a setFactory() method on XSLTransformer to control the object types built by the transform.</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hunterhacker/jdom/commit/003f12ca4ffdc639fc99f7e6d0deb708cec2581f"><code>003f12c</code></a> Revert change for jdom jar name</li> <li><a href="https://github.com/hunterhacker/jdom/commit/9e96cc48ea35b904d75185bb05773f6fecf8a601"><code>9e96cc4</code></a> Indicate the Namespace class is thread-safe</li> <li><a href="https://github.com/hunterhacker/jdom/commit/5203035fe4f1c5021fcf343d83e0464ba3ca6f44"><code>5203035</code></a> Fixes <a href="https://github.com:/hunterhacker/jdom/issues/84">#84</a> - Message for IllegalArgumentException in re-declare of default nam...</li> <li><a href="https://github.com/hunterhacker/jdom/commit/b52d5eae5aa826fa38ccd5cebab42b6c01787691"><code>b52d5ea</code></a> Accommodate new maven artifactID... change name of jars from jdom-x.y.z to jd...</li> <li><a href="https://github.com/hunterhacker/jdom/commit/3839aad3bb0d437cbfe17aaad5f1d63569780d4d"><code>3839aad</code></a> Fixes <a href="https://github.com:/hunterhacker/jdom/issues/82">#82</a> - multiple active FilterLists need to resynchronize on remove()</li> <li><a href="https://github.com/hunterhacker/jdom/commit/01c0d6747d3b73651c6dfb2366c8bbb85970d8ae"><code>01c0d67</code></a> Fixes <a href="https://github.com:/hunterhacker/jdom/issues/75">#75</a> - Android Compatibility.</li> <li><a href="https://github.com/hunterhacker/jdom/commit/c2c34d6b3d5935306d4c743e9044b1cc3c094024"><code>c2c34d6</code></a> Issue <a href="https://github.com:/hunterhacker/jdom/issues/75">#75</a> - change Resource paths to be absolute.</li> <li><a href="https://github.com/hunterhacker/jdom/commit/a5a1a75f1bac4163b7bd3008fc7a5aa3031bda78"><code>a5a1a75</code></a> Issue <a href="https://github.com:/hunterhacker/jdom/issues/75">#75</a> - Do not do bulk memory test for StringBin, it causes OOM on heap s...</li> <li><a href="https://github.com/hunterhacker/jdom/commit/94ea066c6c13b1eb1e4b04c129d08872f89590d2"><code>94ea066</code></a> Issue <a href="https://github.com:/hunterhacker/jdom/issues/75">#75</a> - Create URLs at runtime, not class construct time. This fixes a br...</li> <li><a href="https://github.com/hunterhacker/jdom/commit/f19206d3bc5edbb8b5a1ad827345cbf714e27c89"><code>f19206d</code></a> Issue <a href="https://github.com:/hunterhacker/jdom/issues/75">#75</a> - Android's e.printStackTrace() is not useful because there is no a...</li> <li>Additional commits viewable in <a href="https://github.com:/hunterhacker/jdom/compare/jdom-1.1.3...JDOM-2.0.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.jdom:jdom&package-manager=maven&previous-version=1.1.3&new-version=2.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@maven.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org