Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Bump com.google.errorprone:error_prone_core from 2.34.0 to 2.35.1 (#204)
Bumps [com.google.errorprone:error_prone_core](https://github.com/google/error-prone) from 2.34.0 to 2.35.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/google/error-prone/releases">com.google.errorprone:error_prone_core's releases</a>.</em></p> <blockquote> <h2>Error Prone 2.35.1</h2> <p>Error Prone's dependency on protobuf has been downgraded to 3.25.5 for this release.</p> <p>Version 3.25.5 of protobuf still fixes CVE-2024-7254. This release is provided for users who aren't ready to update to 4.x, see also <a href="https://redirect.github.com/google/error-prone/issues/4584">#4584</a> and <a href="https://redirect.github.com/google/error-prone/issues/4634">#4634</a>. Future versions of Error Prone will upgrade back to protobuf 4.x.</p> <p>Full changelog: <a href="https://github.com/google/error-prone/compare/v2.35.0...v2.35.1">https://github.com/google/error-prone/compare/v2.35.0...v2.35.1</a></p> <h2>Error Prone 2.35.0</h2> <p>Changes:</p> <ul> <li>Fix handling of <code>\s</code> before the trailing delimiter in <a href="https://errorprone.info/bugpattern/MisleadingEscapedSpace"><code>MisleadingEscapedSpace</code></a></li> <li><a href="https://errorprone.info/bugpattern/TimeUnitMismatch"><code>TimeUnitMismatch</code></a> improvements: handle binary trees, consider trees like <code>fooSeconds * 1000</code> to have units of millis</li> </ul> <p>New checks:</p> <ul> <li><a href="https://errorprone.info/bugpattern/JavaDurationGetSecondsToToSeconds"><code>JavaDurationGetSecondsToToSeconds</code></a>: Prefer <code>duration.toSeconds()</code> over <code>duration.getSeconds()</code></li> </ul> <p>Full changelog: <a href="https://github.com/google/error-prone/compare/v2.34.0...v2.35.0">https://github.com/google/error-prone/compare/v2.34.0...v2.35.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/google/error-prone/commit/0e06cc234b45625ca136ce1e47d096280df3ddd1"><code>0e06cc2</code></a> Release Error Prone 2.35.1</li> <li><a href="https://github.com/google/error-prone/commit/db6c890a54835e5ea618b73b79bbe362d6051d3f"><code>db6c890</code></a> Downgrade protobuf version to 3.25.5</li> <li><a href="https://github.com/google/error-prone/commit/ed6b121f2b24f9706d0ae3db4a1e7eb60e1e6c4e"><code>ed6b121</code></a> Add a repro test for broken behavior inlining the parameter value into the fu...</li> <li><a href="https://github.com/google/error-prone/commit/a931fa36b0c2f48e2f149c4a4144dd11089161d0"><code>a931fa3</code></a> Remove <code>DoNotUseRuleChain</code> from JavaCodeClarity.</li> <li><a href="https://github.com/google/error-prone/commit/ec2983b8b16bf3a4a2e8282c37f87db06eed8b3a"><code>ec2983b</code></a> <code>compileUnsafe</code> -> <code>compile</code> for compile-time-constant expressions.</li> <li><a href="https://github.com/google/error-prone/commit/2ce963284ef612ee0a8ad734e94f022ef9738a72"><code>2ce9632</code></a> Strip the quotation marks from the source code when reconstructing the literal.</li> <li><a href="https://github.com/google/error-prone/commit/99a0d9d18ab5886e57c73c859dd15b26568ceb04"><code>99a0d9d</code></a> TimeUnitMismatch: handle BinaryTrees.</li> <li><a href="https://github.com/google/error-prone/commit/60c5f763bd1889d1b84e4a0174518444b58c717d"><code>60c5f76</code></a> TimeUnitMismatch: consider trees like <code>fooSeconds * 1000</code> to have units of `m...</li> <li><a href="https://github.com/google/error-prone/commit/427b51da87b15e9fdd852e2e8e542cde172b6a2c"><code>427b51d</code></a> GetSeconds to ToSeconds error prone</li> <li>See full diff in <a href="https://github.com/google/error-prone/compare/v2.34.0...v2.35.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- Loading branch information
1 parent
61357db
commit 8bb6417