Bump the dependencies group with 22 updates #1913

dependabot · 2024-04-15T06:41:14Z

Bumps the dependencies group with 22 updates:

Package	From	To
ch.qos.logback:logback-classic	`1.5.3`	`1.5.5`
commons-io:commons-io	`2.15.1`	`2.16.1`
org.jooq:jooq	`3.19.6`	`3.19.7`
org.jooq:jooq-codegen	`3.19.6`	`3.19.7`
org.jooq:jooq-meta	`3.19.6`	`3.19.7`
org.keycloak:keycloak-servlet-filter-adapter	`24.0.1`	`24.0.2`
org.liquibase:liquibase-core	`4.26.0`	`4.27.0`
org.openjfx:javafx-controls	`21.0.2`	`22`
org.openjfx:javafx-fxml	`21.0.2`	`22`
org.openjfx:javafx-graphics	`21.0.2`	`22`
org.slf4j:jul-to-slf4j	`2.0.12`	`2.0.13`
org.slf4j:slf4j-api	`2.0.12`	`2.0.13`
com.googlecode.maven-download-plugin:download-maven-plugin	`1.8.1`	`1.9.0`
io.github.git-commit-id:git-commit-id-maven-plugin	`8.0.1`	`8.0.2`
org.apache.maven.plugins:maven-assembly-plugin	`3.7.0`	`3.7.1`
org.apache.maven.plugins:maven-compiler-plugin	`3.12.1`	`3.13.0`
org.apache.maven.plugins:maven-jar-plugin	`3.3.0`	`3.4.0`
org.owasp:dependency-check-maven	`9.0.10`	`9.1.0`
org.jacoco:jacoco-maven-plugin	`0.8.11`	`0.8.12`
org.apache.maven.plugins:maven-source-plugin	`3.3.0`	`3.3.1`
org.apache.maven.plugins:maven-gpg-plugin	`3.2.0`	`3.2.3`
org.mariadb.jdbc:mariadb-java-client	`3.1.2`	`3.3.3`

Updates ch.qos.logback:logback-classic from 1.5.3 to 1.5.5

Commits

c7c5e89 prepare release 1.5.5
7db8797 upgrade build to slf4j 2.0.13
f9c04d2 test inclusion with conditionals
f32ed30 remove support for metaannotations for NoAutoStart annotation
4476edd Search for @NoAutoStart annotations in ancestor hierarchy, implemented interf...
a649c60 rename IncludeActionTest as IncludeModelHandlerTest
5a41c89 fix IncludeActionTest
af92be4 migrate IncludeAction code to IncludeModelHandler, LOGBACK-1746
b95d2a0 start work on 1.5.5-SNAPSHOT
61140ea fix JaninoEvaluator issue/800, prepare release 1.5.4
Additional commits viewable in compare view

Updates commons-io:commons-io from 2.15.1 to 2.16.1

Updates org.jooq:jooq from 3.19.6 to 3.19.7

Updates org.jooq:jooq-codegen from 3.19.6 to 3.19.7

Updates org.jooq:jooq-meta from 3.19.6 to 3.19.7

Updates org.jooq:jooq-codegen from 3.19.6 to 3.19.7

Updates org.jooq:jooq-meta from 3.19.6 to 3.19.7

Updates org.keycloak:keycloak-servlet-filter-adapter from 24.0.1 to 24.0.2

Updates org.liquibase:liquibase-core from 4.26.0 to 4.27.0

Release notes

Sourced from org.liquibase:liquibase-core's releases.

Liquibase v4.27.0

Liquibase 4.27.0 is a major release

[!IMPORTANT] Liquibase 4.27.0 contains several New Capabilities and Notable Enhancements for Liquibase Pro users: DATABASECHANGELOGHISTORY table, Quality Checks Chains, Rollback Reports

[!NOTE] See the Liquibase 4.27.0 Release Notes for the complete set of release information.

Notable Changes

[PRO]

Liquibase DATABASECHANGELOGHISTORY table: See all changes that have been applied to your database

With the new DatabaseChangeLogHistory (DBCLH) Table, get a complete history of changes made to your database through Liquibase operations, including updates, rollbacks, dropAlls, tags, changelogsyncs, and repeated updates to the same ChangeSet. The DBCLH table is disabled by default, so Users must turn it on to start capturing historical data.

Learn more https://docs.liquibase.com/databasechangeloghistory

Quality Checks Chains: Perform multiple policy evaluations with a single Quality Check

Chain multiple Quality Checks together with logic conditionals (AND, OR, and NOT) for more flexibility to perform multiple evaluations in a single check. Useful to confirm complex best practices or governance issues. Check Chains are run like traditional single-condition existing Quality Checks

Learn more https://docs.liquibase.com/quality-checks

Observability: Rollback Reports: Understand and share the data on the execution of rollback commands

Easily scan and understand a high-level overview of the ChangeSets rolled back. Get a detailed view of both successful and failed rollbacks. Collaborate with your team with shareable report in PDF format

Learn more https://docs.liquibase.com/observability

Breaking Change

(#5584) throw exception if drop all fails (DAT-16718) @StevenMassaro

[PRO] Changelog

DAT-16798: Style rollback reports in liquibase/liquibase-pro#1534 by @abrackx

DAT-16857: record operationOutcome in MDC in liquibase/liquibase-pro#1606 by StevenMassaro

DAT-16853: Chained checks reports in liquibase/liquibase-pro#1580 by @abrackx

DAT-16127 Checks chaining implementation in liquibase/liquibase-pro#1500 by wwillard7800

DAT-16178: database changelog history record-keeping in liquibase/liquibase-pro#1334 by StevenMassaro

DAT-16092 Implemented checkStatus argument for filtering by enabled/disabled status in liquibase/liquibase-pro#1577 by wwillard7800

DAT-17187: Add check rollbacks to runtime metadata in https://github.com/liquibase/liquibase-pro/pull/ by @abrackx

DAT-16920: add path filter option to SqlUserDefinedPatternCheck in liquibase/liquibase-pro#1575 by StevenMassaro

DAT-17072 Added new autoEnableNewChecks option and fix bug with autoUpdate in liquibase/liquibase-pro#1566 by wwillard7800

DAT-16420: add propertySubstitutionEnabled flag to checks run command in liquibase/liquibase-pro#1569 by StevenMassaro

DAT-16845: exclude unnecessary directories/files from built jar in liquibase/liquibase-pro#1565 by StevenMassaro

DAT-15170: add EndDelimiterExistsWhenPatternExists QC in liquibase/liquibase-pro#1517 by StevenMassaro

DAT-16559: Add copy url button to checks run and update reports in liquibase/liquibase-pro#1521 by @abrackx

DAT-16770: Fix table styling in details by check in liquibase/liquibase-pro#1531 by @abrackx

DAT-16683 Implement snapshot filters for snapshotReference command in liquibase/liquibase-pro#1506 by wwillard7800

DAT-15980 Added new CheckRunInTransactionValue rule in liquibase/liquibase-pro#1516 by wwillard7800

DAT-16544 Fix issue with bad SQL generation in liquibase/liquibase-pro#1512 by wwillard7800

... (truncated)

Changelog

Sourced from org.liquibase:liquibase-core's changelog.

Liquibase 4.27.0 is a major release

Liquibase 4.27.0 contains several New Capabilities and Notable Enhancements for Liquibase Pro users: DATABASECHANGELOGHISTORY table, Quality Checks Chains, Rollback Reports See the Liquibase 4.27.0 Release Notes for the complete set of release information.

Notable Changes

[PRO]

Liquibase DATABASECHANGELOGHISTORY table: See all changes that have been applied to your database

With the new DatabaseChangeLogHistory (DBCLH) Table, get a complete history of changes made to your database through Liquibase operations, including updates, rollbacks, dropAlls, tags, changelogsyncs, and repeated updates to the same ChangeSet. The DBCLH table is disabled by default, so Users must turn it on to start capturing historical data.

Learn more https://docs.liquibase.com/databasechangeloghistory

Quality Checks Chains: Perform multiple policy evaluations with a single Quality Check

Chain multiple Quality Checks together with logic conditionals (AND, OR, and NOT) for more flexibility to perform multiple evaluations in a single check. Useful to confirm complex best practices or governance issues. Check Chains are run like traditional single-condition existing Quality Checks

Learn more https://docs.liquibase.com/quality-checks

Observability: Rollback Reports: Understand and share the data on the execution of rollback commands

Easily scan and understand a high-level overview of the ChangeSets rolled back. Get a detailed view of both successful and failed rollbacks. Collaborate with your team with shareable report in PDF format

Learn more https://docs.liquibase.com/observability

Breaking Change

(#5584) throw exception if drop all fails (DAT-16718) @StevenMassaro

[PRO] Changelog

DAT-16798: Style rollback reports in liquibase/liquibase-pro#1534 by @abrackx

DAT-16857: record operationOutcome in MDC in liquibase/liquibase-pro#1606 by StevenMassaro

DAT-16853: Chained checks reports in liquibase/liquibase-pro#1580 by @abrackx

DAT-16127 Checks chaining implementation in liquibase/liquibase-pro#1500 by wwillard7800

DAT-16178: database changelog history record-keeping in liquibase/liquibase-pro#1334 by StevenMassaro

DAT-16092 Implemented checkStatus argument for filtering by enabled/disabled status in liquibase/liquibase-pro#1577 by wwillard7800

DAT-17187: Add check rollbacks to runtime metadata in https://github.com/liquibase/liquibase-pro/pull/ by @abrackx

DAT-16920: add path filter option to SqlUserDefinedPatternCheck in liquibase/liquibase-pro#1575 by StevenMassaro

DAT-17072 Added new autoEnableNewChecks option and fix bug with autoUpdate in liquibase/liquibase-pro#1566 by wwillard7800

DAT-16420: add propertySubstitutionEnabled flag to checks run command in liquibase/liquibase-pro#1569 by StevenMassaro

DAT-16845: exclude unnecessary directories/files from built jar in liquibase/liquibase-pro#1565 by StevenMassaro

DAT-15170: add EndDelimiterExistsWhenPatternExists QC in liquibase/liquibase-pro#1517 by StevenMassaro

DAT-16559: Add copy url button to checks run and update reports in liquibase/liquibase-pro#1521 by @abrackx

DAT-16770: Fix table styling in details by check in liquibase/liquibase-pro#1531 by @abrackx

DAT-16683 Implement snapshot filters for snapshotReference command in liquibase/liquibase-pro#1506 by wwillard7800

DAT-15980 Added new CheckRunInTransactionValue rule in liquibase/liquibase-pro#1516 by wwillard7800

DAT-16544 Fix issue with bad SQL generation in liquibase/liquibase-pro#1512 by wwillard7800

DAT-14830: warn if running checks bulk-set without arguments in liquibase/liquibase-pro#1592 by StevenMassaro

DAT-16105: improve interactive prompting through Powershell ISE in liquibase/liquibase-pro#1581 by StevenMassaro

DAT-16765: throw exception when using init copy on non-s3 paths in liquibase/liquibase-pro#1539 by StevenMassaro

PD-3246: init copy --source/--target descriptions in liquibase/liquibase-pro#946 by adrian-velonis1

DAT-16271: properly handle creating procedure with no args and external name in liquibase/liquibase-pro#1494 by StevenMassaro

DAT-16567 Handle logFormat when set in a flow file in liquibase/liquibase-pro#1522 by wwillard7800

DAT-16306: wrap INITCOND of Postgres aggregate functions in single quotes in liquibase/liquibase-pro#1502 by StevenMassaro

... (truncated)

Commits

9c8fb14 chore: updated changelog + xsds for 4.27.0 (#5731)
d224b5b [DAT-16135] add new scope flag for modifyChangeSet flow (#5707)
f9e57fe Add force option to dropAll DAT-16418 (#5692)
7b4ac21 DAT-16798: Add new parameters to rollback report (#5630)
a9de072 Handle empty or null schema for CreateView with replace option DAT-16446 (#5695)
29bef7f record operationOutcome in MDC (DAT-16857) (#5702)
9b2c666 use HelpUtil where possible (DAT-16569) (#5696)
2060779 add ignore property to includeAll XSD (DAT-14921) (#5686)
14288cf Add CustomChangeChecksum interface (#5649)
6f50035 FIX: SimpleSQLGrammar quote parsing regression (#5700)
Additional commits viewable in compare view

Updates org.openjfx:javafx-controls from 21.0.2 to 22

Updates org.openjfx:javafx-fxml from 21.0.2 to 22

Updates org.openjfx:javafx-graphics from 21.0.2 to 22

Updates org.openjfx:javafx-fxml from 21.0.2 to 22

Updates org.openjfx:javafx-graphics from 21.0.2 to 22

Updates org.slf4j:jul-to-slf4j from 2.0.12 to 2.0.13

Updates org.slf4j:slf4j-api from 2.0.12 to 2.0.13

Updates com.googlecode.maven-download-plugin:download-maven-plugin from 1.8.1 to 1.9.0

Release notes

Sourced from com.googlecode.maven-download-plugin:download-maven-plugin's releases.

Support include/exclude when unpacking

What's Changed

Add the support for includes and excludes in unarchiving by @smaarn in maven-download-plugin/maven-download-plugin#265

Fix proxy support without authentication in wget by @errodrigues in maven-download-plugin/maven-download-plugin#266

#268 Fix broken file selector by @longtimeago in maven-download-plugin/maven-download-plugin#269

New Contributors

@smaarn made their first contribution in maven-download-plugin/maven-download-plugin#265

@errodrigues made their first contribution in maven-download-plugin/maven-download-plugin#266

Full Changelog: download-maven-plugin/download-maven-plugin@1.8.1...1.9.0

Commits

314b53f Release 1.9.0
c33f978 #268 Fix broken file selector (#269)
ac7eedc Fix github action which didn't run ITs :/
5c030bb Prefix uri.getHost() with uri.getScheme() + "://" in method createRemoteRepos...
9cec6d4 Add the support for includes and excludes in unarchiving (#265)
c233d03 bump to 1.8.2-SNAPSHOT
See full diff in compare view

Updates io.github.git-commit-id:git-commit-id-maven-plugin from 8.0.1 to 8.0.2

Release notes

Sourced from io.github.git-commit-id:git-commit-id-maven-plugin's releases.

Version 8.0.2 is finally there and includes various bug-fixes and improvements :-)

New Features / Bug-Fixes:

The main key-aspects that have been improved or being worked on are the following:

bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.1 to 4.0.2

bump org.mockito:mockito-core from 5.10.0 to 5.11.0

#718/#721: replace junit:junit:4.13.2:test with org.junit.jupiter:junit-jupiter-*:5.10.2:test

#717/#720: update org.sonatype.plexus:plexus-build-api:0.0.7 to org.codehaus.plexus:plexus-build-api:1.2.0

bump org.apache.maven.plugins:maven-gpg-plugin from 3.1.0 to 3.2.0

bump org.apache.maven.plugins:maven-assembly-plugin from 3.6.0 to 3.7.0

#717: Update maven-plugin-api.version from 3.9.2 to 3.9.6

Getting the latest release

The plugin is available from Maven Central (see here), so you don't have to configure any additional repositories to use this plugin. All you need to do is to configure it inside your project as dependency:
<dependency>
    <groupId>io.github.git-commit-id</groupId>
    <artifactId>git-commit-id-maven-plugin</artifactId>
    <version>8.0.2</version>
</dependency>
Getting the latest snapshot (build automatically)

If you can't wait for the next release, you can also get the latest snapshot version from sonatype, that is being deployed automatically by github actions:
<pluginRepositories>
    <pluginRepository>
        <id>sonatype-snapshots</id>
        <name>Sonatype Snapshots</name>
         <url>https://s01.oss.sonatype.org/content/repositories/snapshots/</url>
    </pluginRepository>
</pluginRepositories>
Even though the github actions will only deploy a new snapshot once all tests have finished, it is recommended to rely on the released and more stable version.

Known Issues / Limitations:

This plugin is unfortunately not working with Heroku which is due to the fact how Heroku works. In summary Heroku does not copy over the .git-repository but in order to determine the git properties this plugin relies on the fact that it has access to the git-repository. A somewhat workaround to get some information is outlined in ktoso/maven-git-commit-id-plugin#279

Using maven's plugin prefix resolution (e.g. mvn com.test.plugins:myPlugin:myMojo) might result in unresolved properties even with <injectAllReactorProjects>true</injectAllReactorProjects>. Please refer to git-commit-id/maven-git-commit-id-plugin#287 or git-commit-id/maven-git-commit-id-plugin#413 for details and potential workarounds

Reporting Problems

If you find any problem with this plugin, feel free to report it here

Commits

a653500 [maven-release-plugin] prepare release v8.0.2
a47df92 Merge pull request #721 from git-commit-id/718
2abe48d Merge remote-tracking branch 'origin/master' into 718
95deae6 git-commit-id/git-commit-id-maven-plugin#718: repla...
2b06e3f Merge pull request #706 from git-commit-id/dependabot/maven/org.mockito-mocki...
d7524f5 Bump org.mockito:mockito-core from 5.10.0 to 5.11.0
f7048fc git-commit-id/git-commit-id-maven-plugin#717: updat...
f257625 tell the versions-update-plugin to ignore alpha and M versions
78e192a add groupId to be more explicit and hopefully dependabot can update the depen...
02fac6f git-commit-id/git-commit-id-maven-plugin#717: Updat...
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-assembly-plugin from 3.7.0 to 3.7.1

Release notes

Sourced from org.apache.maven.plugins:maven-assembly-plugin's releases.

3.7.1

Release Notes - Maven Assembly Plugin - Version 3.7.1

What's Changed

[MASSEMBLY-1023] Bump org.apache.maven.shared:maven-filtering from 3.3.1 to 3.3.2 by @dependabot in apache/maven-assembly-plugin#192

[MASSEMBLY-1024] Bump org.apache.commons:commons-compress from 1.25.0 to 1.26.1 by @dependabot in apache/maven-assembly-plugin#191

[MASSEMBLY-1025] Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2 by @dependabot in apache/maven-assembly-plugin#195

[MASSEMBLY-1022] Unresolved artifacts should be not processed by @slawekjaranowski in apache/maven-assembly-plugin#194

Full Changelog: apache/maven-assembly-plugin@maven-assembly-plugin-3.7.0...maven-assembly-plugin-3.7.1

Commits

0afbb3e [maven-release-plugin] prepare release maven-assembly-plugin-3.7.1
74e858a [MASSEMBLY-1022] Unresolved artifacts should be not processed
cb56382 [MASSEMBLY-1025] Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2...
86bbed0 [MASSEMBLY-1024] Bump org.apache.commons:commons-compress from 1.25.0 to 1.26...
bdcc4d0 [MASSEMBLY-1023] Bump org.apache.maven.shared:maven-filtering from 3.3.1 to 3...
74fe92e [maven-release-plugin] prepare for next development iteration
See full diff in compare view

Updates org.apache.maven.plugins:maven-compiler-plugin from 3.12.1 to 3.13.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.13.0

🚀 New features and improvements

[MCOMPILER-574] - Propagate cause of exception in AbstractCompilerMojo (#232) @slawekjaranowski

[MCOMPILER-582] - Automatic detection of release option for JDK < 9 (#228) @slawekjaranowski

[MCOMPILER-583] - Require Maven 3.6.3 (#229) @slawekjaranowski

[MCOMPILER-577] - Rename parameter "forceJavacCompilerUse" (#225) @kwin

[MCOMPILER-570] - Add links to javac documentation of JDK17 (#224) @kwin

[MCOMPILER-576] - Deprecate parameter "compilerVersion" (#223) @kwin

📦 Dependency updates

[MCOMPILER-575] - Bump plexusCompilerVersion from 2.14.2 to 2.15.0 (#227) @dependabot

Bump apache/maven-gh-actions-shared from 3 to 4 (#226) @dependabot

📝 Documentation updates

[MCOMPILER-548] - JDK 21 throws annotations processing warning that can not be turned off (#200) @hgschmie

👻 Maintenance

[MCOMPILER-584] - Refresh page - Using Non-Javac Compilers (#231) @slawekjaranowski

[MCOMPILER-585] - Refresh plugins versions in ITs (#230) @slawekjaranowski

subject verb agreement (#221) @elharo

Commits

a1415aa [maven-release-plugin] prepare release maven-compiler-plugin-3.13.0
b2b9196 [MCOMPILER-574] Propagate cause of exception in AbstractCompilerMojo
6d2ce5a [MCOMPILER-584] Refresh page - Using Non-Javac Compilers
eebad60 [MCOMPILER-585] Refresh plugins versions in ITs
ceacf68 [MCOMPILER-582] Automatic detection of release option for JDK < 9
110293f [MCOMPILER-583] Require Maven 3.6.3
90131df [MCOMPILER-575] Bump plexusCompilerVersion from 2.14.2 to 2.15.0 (#227)
74cfc72 [MCOMPILER-548] JDK 21 throws annotations processing warning that can not be ...
f85aa27 Bump apache/maven-gh-actions-shared from 3 to 4
d59ef49 extract Maven 3.3.1 specific method call
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-jar-plugin from 3.3.0 to 3.4.0

Release notes

Sourced from org.apache.maven.plugins:maven-jar-plugin's releases.

3.4.0

🚀 New features and improvements

[MJAR-296] - Allow including files excluded by default. (#67) @redzi

[MJAR-302] - Require Maven 3.6.3 (#77) @slawekjaranowski

[MJAR-292] - Detect MRJAR and add Multi-Release manifest entry (#57) @jorsol

🐛 Bug Fixes

[MJAR-62] - Set Build-Jdk according to used toolchain (#73) @slawekjaranowski

📦 Dependency updates

[MJAR-306] - Use properties for plugins versions in LifecycleMapping (#82) @slawekjaranowski

Bump org.junit:junit-bom from 5.10.1 to 5.10.2 (#74) @dependabot

[MJAR-298] - Update Maven-Archiver to 3.6.2 (#78) @slawekjaranowski

Bump apache/maven-gh-actions-shared from 2 to 4 (#72) @dependabot

Bump commons-io:commons-io from 2.14.0 to 2.15.1 (#68) @dependabot

[MJAR-297] - Update Parent to 40 (#64) @jorsol

[MJAR-298] - Update Maven-Archiver to 3.6.1 (#65) @jorsol

[MJAR-293] - Update Parent to 39 (#59) @jorsol

👻 Maintenance

[MJAR-304] - Refresh download page (#80) @slawekjaranowski

[MJAR-303] - Cleanup declared dependencies (#79) @slawekjaranowski

Remove dependency on plexus (#63) @elharo

Commits

992f44a [maven-release-plugin] prepare release maven-jar-plugin-3.4.0
5e31b99 [MJAR-296] Allow including files excluded by default. (#67)
ddfb635 [MJAR-306] Use properties for plugins versions in LifecycleMapping
aeffa39 [MJAR-304] Refresh download page
ee85d59 [MJAR-303] Cleanup declared dependencies
845c120 Bump org.junit:junit-bom from 5.10.1 to 5.10.2
8dd0d3f [MJAR-298] Update Maven-Archiver to 3.6.2
1b958d1 [MJAR-302] Require Maven 3.6.3
fa4330f [MJAR-62] Set Build-Jdk according to used toolchain
adf1c76 Bump apache/maven-gh-actions-shared from 2 to 4
Additional commits viewable in compare view

Updates org.owasp:dependency-check-maven from 9.0.10 to 9.1.0

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 9.1.0

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 9.1.0 (2024-03-31)

feat: Add v2 support for maven_install.json (#6528)

build(deps): bump open-vulnerability-client (#6554)

resolves update issues due to CVSS Metrics 4.0

build(deps): bump jackson.version from 2.16.0 to 2.16.1 (#6353)

build(deps): bump org.jsoup:jsoup from 1.16.2 to 1.17.2 (#6362)

build(deps): bump golang from 1.21.5-alpine to 1.22.1-alpine (#6506)

See the full listing of changes.

Commits

e0b9397 build: prepare release v9.1.0
3f1b558 docs: prepare release 9.1.0
c364269 build(deps): bump jackson.version from 2.16.0 to 2.16.1 (#6353)
d2c04b5 build(deps): bump org.jsoup:jsoup from 1.16.2 to 1.17.2 (#6362)
e8c4ca3 build(deps): bump open-vulnerability-client (#6554)
2e6a231 build(deps): bump golang from 1.21.5-alpine to 1.22.1-alpine (#6506)
0e183da build(deps): bump actions/setup-java from 3 to 4 (#6172)
42adde4 fix: typo (#6526)
f60c867 feat: Add v2 support for maven_install.json (#6528)
a6a8f21 Merge pull request #1 from nutshelllabs/ef/add-maven-install-v2-support
Additional commits viewable in compare view

Updates org.jacoco:jacoco-maven-plugin from 0.8.11 to 0.8.12

Release notes

Sourced from org.jacoco:jacoco-maven-plugin's releases.

0.8.12

New Features

JaCoCo now officially supports Java 22 (GitHub #1596).

Experimental support for Java 23 class files (GitHub #1553).

Fixed bugs

Branches added by the Kotlin compiler for functions with default arguments and having more than 32 parameters are filtered out during generation of report (GitHub #1556).

Branch added by the Kotlin compiler version 1.5.0 and above for reading from lateinit property is filtered out during generation of report (GitHub #1568).

Non-functional Changes

JaCoCo now depends on ASM 9.7 (GitHub #1600).

Commits

dbfb6f2 Prepare release 0.8.12
a50585b Upgrade maven-plugin-plugin to 3.6.4 (#1604)
fd63cc5 Configure labels that Dependabot assigns to PRs (#1603)
03a5333 Add configuration for Dependabot to simplify updates of ASM (#1601)
40ff9fb Upgrade ASM to 9.7 (#1600)
9077178 Happy birthday Java 22! (#1596)
7edd1b5 Bump actions/setup-java from 4.1.0 to 4.2.1 (#1594)
e50b547 Upgrade ECJ to 3.37.0 (#1590)
a1144d0 Upgrade maven-site-plugin to 3.12.1 (#1586)
04b0141 Bump actions/setup-java from 4.0.0 to 4.1.0 (#1587)
Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1

Commits

f80596e [maven-release-plugin] prepare release maven-source-plugin-3.3.1
7626998 Bump apache/maven-gh-actions-shared from 3 to 4
83c963c Bump org.apache.maven.plugins:maven-plugins from 39 to 41 (#18)
40ae495 Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.1 (#20)
073462b Bump org.apache.maven:maven-archiver from 3.6.0 to 3.6.1 (#21)
0b1c823 Fix typos in AbstractSourceJarMojo exception
099c65a [MSOURCES-142] Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (...
1edeea4 [MSOURCES-139] Fix typo in AbstractSourceJarMojo exception
436966e [maven-release-plugin] prepare for next development iteration
See full diff in compare view

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.0 to 3.2.3

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.3

Release Notes - Maven GPG Plugin - Version 3.2.3

[MGPG-123][MGPG-124] - Dependency upgrades (#93) @cstamas

[MGPG-120] - New mojo sign-deployed (#88) @cstamas

[MGPG-121] - Return the workaround for pseudo security (#90) @cstamas

[MGPG-117] - Improve passphrase handling (#86) @cstamas

[MGPG-116] - Up max key file size to 64K (#85) @cstamas

📦 Dependency updates

... (truncated)

Commits

89b91a4 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.3
fc2efa3 [MGPG-123][MGPG-124] Dependency upgrades (#93)
50222d3 [MGPG-120] New mojo sign-deployed (#88)
a6c3a09 [MGPG-122] Bump org.apache.maven.plugins:maven-invoker-plugin from 3.6.0 to 3...
78f5e37 [MGPG-121] Return the workaround for pseudo security (#90)
582df74 [MGPG-117] Improve passphrase handling (#86)
0adc6b8 [MGPG-118] Bump commons-io:commons-io from 2.15.1 to 2.16.0 (#87)
ef57091 [MGPG-116] Up max key file size to 64K (#85)
944be4e [maven-release-plugin] prepare for next development iteration
ab97064 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.2
Additional commits viewable in compare view

Updates org.mariadb.jdbc:mariadb-java-client from 3.1.2 to 3.3.3

Release notes

Sourced from org.mariadb.jdbc:mariadb-java-client's releases.

MariaDB Connector/Java 3.3.3

3.3.3 (Feb 2024)

Full Changelog

Bugs Fixed

CONJ-1050 regression in 3.x.y: nonparameterized batch "INSERT INTO products( name ) VALUES ( 'aaaa' )" fails

CONJ-1150 Error using PrepareStatement.setURL with null url

CONJ-1152 Improve message when reaching socket timeout during connection initial commands

MariaDB Connector/Java 3.3.2

3.3.2 (Dec 2023)

Full Changelog

Bugs Fixed

CONJ-1117 new option returnMultiValuesGeneratedIds for connector 2.x compatibility, so getGeneratedKeys() return all ids of multi-value inserts

CONJ-1140 regression caussing ClassCastException on DatabaseMetaData when use with option defaultFetchSi...
Description has been truncated

Bumps the dependencies group with 22 updates: | Package | From | To | | --- | --- | --- | | [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) | `1.5.3` | `1.5.5` | | commons-io:commons-io | `2.15.1` | `2.16.1` | | org.jooq:jooq | `3.19.6` | `3.19.7` | | org.jooq:jooq-codegen | `3.19.6` | `3.19.7` | | org.jooq:jooq-meta | `3.19.6` | `3.19.7` | | org.keycloak:keycloak-servlet-filter-adapter | `24.0.1` | `24.0.2` | | [org.liquibase:liquibase-core](https://github.com/liquibase/liquibase) | `4.26.0` | `4.27.0` | | org.openjfx:javafx-controls | `21.0.2` | `22` | | org.openjfx:javafx-fxml | `21.0.2` | `22` | | org.openjfx:javafx-graphics | `21.0.2` | `22` | | org.slf4j:jul-to-slf4j | `2.0.12` | `2.0.13` | | org.slf4j:slf4j-api | `2.0.12` | `2.0.13` | | [com.googlecode.maven-download-plugin:download-maven-plugin](https://github.com/maven-download-plugin/maven-download-plugin) | `1.8.1` | `1.9.0` | | [io.github.git-commit-id:git-commit-id-maven-plugin](https://github.com/git-commit-id/git-commit-id-maven-plugin) | `8.0.1` | `8.0.2` | | [org.apache.maven.plugins:maven-assembly-plugin](https://github.com/apache/maven-assembly-plugin) | `3.7.0` | `3.7.1` | | [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) | `3.12.1` | `3.13.0` | | [org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin) | `3.3.0` | `3.4.0` | | [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) | `9.0.10` | `9.1.0` | | [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) | `0.8.11` | `0.8.12` | | [org.apache.maven.plugins:maven-source-plugin](https://github.com/apache/maven-source-plugin) | `3.3.0` | `3.3.1` | | [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.2.0` | `3.2.3` | | [org.mariadb.jdbc:mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j) | `3.1.2` | `3.3.3` | Updates `ch.qos.logback:logback-classic` from 1.5.3 to 1.5.5 - [Commits](qos-ch/logback@v_1.5.3...v_1.5.5) Updates `commons-io:commons-io` from 2.15.1 to 2.16.1 Updates `org.jooq:jooq` from 3.19.6 to 3.19.7 Updates `org.jooq:jooq-codegen` from 3.19.6 to 3.19.7 Updates `org.jooq:jooq-meta` from 3.19.6 to 3.19.7 Updates `org.jooq:jooq-codegen` from 3.19.6 to 3.19.7 Updates `org.jooq:jooq-meta` from 3.19.6 to 3.19.7 Updates `org.keycloak:keycloak-servlet-filter-adapter` from 24.0.1 to 24.0.2 Updates `org.liquibase:liquibase-core` from 4.26.0 to 4.27.0 - [Release notes](https://github.com/liquibase/liquibase/releases) - [Changelog](https://github.com/liquibase/liquibase/blob/master/changelog.txt) - [Commits](liquibase/liquibase@v4.26.0...v4.27.0) Updates `org.openjfx:javafx-controls` from 21.0.2 to 22 Updates `org.openjfx:javafx-fxml` from 21.0.2 to 22 Updates `org.openjfx:javafx-graphics` from 21.0.2 to 22 Updates `org.openjfx:javafx-fxml` from 21.0.2 to 22 Updates `org.openjfx:javafx-graphics` from 21.0.2 to 22 Updates `org.slf4j:jul-to-slf4j` from 2.0.12 to 2.0.13 Updates `org.slf4j:slf4j-api` from 2.0.12 to 2.0.13 Updates `org.slf4j:slf4j-api` from 2.0.12 to 2.0.13 Updates `com.googlecode.maven-download-plugin:download-maven-plugin` from 1.8.1 to 1.9.0 - [Release notes](https://github.com/maven-download-plugin/maven-download-plugin/releases) - [Commits](download-maven-plugin/download-maven-plugin@1.8.1...1.9.0) Updates `io.github.git-commit-id:git-commit-id-maven-plugin` from 8.0.1 to 8.0.2 - [Release notes](https://github.com/git-commit-id/git-commit-id-maven-plugin/releases) - [Commits](git-commit-id/git-commit-id-maven-plugin@v8.0.1...v8.0.2) Updates `org.apache.maven.plugins:maven-assembly-plugin` from 3.7.0 to 3.7.1 - [Release notes](https://github.com/apache/maven-assembly-plugin/releases) - [Commits](apache/maven-assembly-plugin@maven-assembly-plugin-3.7.0...maven-assembly-plugin-3.7.1) Updates `org.apache.maven.plugins:maven-compiler-plugin` from 3.12.1 to 3.13.0 - [Release notes](https://github.com/apache/maven-compiler-plugin/releases) - [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.12.1...maven-compiler-plugin-3.13.0) Updates `org.apache.maven.plugins:maven-jar-plugin` from 3.3.0 to 3.4.0 - [Release notes](https://github.com/apache/maven-jar-plugin/releases) - [Commits](apache/maven-jar-plugin@maven-jar-plugin-3.3.0...maven-jar-plugin-3.4.0) Updates `org.owasp:dependency-check-maven` from 9.0.10 to 9.1.0 - [Release notes](https://github.com/jeremylong/DependencyCheck/releases) - [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md) - [Commits](jeremylong/DependencyCheck@v9.0.10...v9.1.0) Updates `org.jacoco:jacoco-maven-plugin` from 0.8.11 to 0.8.12 - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](jacoco/jacoco@v0.8.11...v0.8.12) Updates `org.apache.maven.plugins:maven-source-plugin` from 3.3.0 to 3.3.1 - [Commits](apache/maven-source-plugin@maven-source-plugin-3.3.0...maven-source-plugin-3.3.1) Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.2.0 to 3.2.3 - [Release notes](https://github.com/apache/maven-gpg-plugin/releases) - [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.2.0...maven-gpg-plugin-3.2.3) Updates `org.mariadb.jdbc:mariadb-java-client` from 3.1.2 to 3.3.3 - [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases) - [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/master/CHANGELOG.md) - [Commits](mariadb-corporation/mariadb-connector-j@3.1.2...3.3.3) --- updated-dependencies: - dependency-name: ch.qos.logback:logback-classic dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: commons-io:commons-io dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.jooq:jooq dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-codegen dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-meta dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-codegen dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.jooq:jooq-meta dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.keycloak:keycloak-servlet-filter-adapter dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.liquibase:liquibase-core dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.openjfx:javafx-controls dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.openjfx:javafx-fxml dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.openjfx:javafx-graphics dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.openjfx:javafx-fxml dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.openjfx:javafx-graphics dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: org.slf4j:jul-to-slf4j dependency-type: direct:development update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: com.googlecode.maven-download-plugin:download-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: io.github.git-commit-id:git-commit-id-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-assembly-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-compiler-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-jar-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.owasp:dependency-check-maven dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: org.jacoco:jacoco-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: org.mariadb.jdbc:mariadb-java-client dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-04-22T06:13:51Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Apr 15, 2024

dependabot bot closed this Apr 22, 2024

dependabot bot deleted the dependabot/maven/v2.x/dependencies-2b667e18db branch April 22, 2024 06:13

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the dependencies group with 22 updates #1913

Bump the dependencies group with 22 updates #1913

dependabot bot commented on behalf of github Apr 15, 2024 •

edited

Loading

dependabot bot commented on behalf of github Apr 22, 2024

Bump the dependencies group with 22 updates #1913

Bump the dependencies group with 22 updates #1913

Conversation

dependabot bot commented on behalf of github Apr 15, 2024 • edited Loading

Liquibase v4.27.0

Liquibase 4.27.0 is a major release

Notable Changes

[PRO]

Liquibase DATABASECHANGELOGHISTORY table: See all changes that have been applied to your database

Quality Checks Chains: Perform multiple policy evaluations with a single Quality Check

Observability: Rollback Reports: Understand and share the data on the execution of rollback commands

Breaking Change

[PRO] Changelog

Liquibase 4.27.0 is a major release

Notable Changes

[PRO]

Liquibase DATABASECHANGELOGHISTORY table: See all changes that have been applied to your database

Quality Checks Chains: Perform multiple policy evaluations with a single Quality Check

Observability: Rollback Reports: Understand and share the data on the execution of rollback commands

Breaking Change

[PRO] Changelog

Support include/exclude when unpacking

What's Changed

New Contributors

New Features / Bug-Fixes:

Getting the latest release

Getting the latest snapshot (build automatically)

Known Issues / Limitations:

Reporting Problems

3.7.1

Release Notes - Maven Assembly Plugin - Version 3.7.1

What's Changed

3.13.0

🚀 New features and improvements

📦 Dependency updates

📝 Documentation updates

👻 Maintenance

3.4.0

🚀 New features and improvements

🐛 Bug Fixes

📦 Dependency updates

👻 Maintenance

Version 9.1.0

Version 9.1.0 (2024-03-31)

0.8.12

New Features

Fixed bugs

Non-functional Changes

3.2.3

📦 Dependency updates

MariaDB Connector/Java 3.3.3

3.3.3 (Feb 2024)

Bugs Fixed

MariaDB Connector/Java 3.3.2

3.3.2 (Dec 2023)

Bugs Fixed

dependabot bot commented on behalf of github Apr 22, 2024

dependabot bot commented on behalf of github Apr 15, 2024 •

edited

Loading