jetty.project icon indicating copy to clipboard operation
jetty.project copied to clipboard

Published 20 hours ago verified publisher icon jetty

[9.4.x] Bump the dev-dependencies group with 26 updates

Open dependabot[bot] opened this issue 1 year ago • 1 comments
trafficstars

Bumps the dev-dependencies group with 26 updates:

Package From To
org.codehaus.plexus:plexus-xml 4.0.3 4.0.4
org.apache.maven.plugin-tools:maven-plugin-tools-api 3.12.0 3.13.1
org.apache.maven.plugin-tools:maven-plugin-annotations 3.12.0 3.13.1
org.testcontainers:testcontainers-bom 1.19.7 1.19.8
org.testcontainers:mariadb 1.19.7 1.19.8
org.apache.commons:commons-compress 1.26.1 1.26.2
com.fasterxml.jackson.core:jackson-core 2.17.0 2.17.1
com.fasterxml.jackson.core:jackson-databind 2.17.0 2.17.1
com.fasterxml.jackson.core:jackson-annotations 2.17.0 2.17.1
org.wildfly.security:wildfly-elytron 2.2.5.Final 2.2.6.Final
com.google.guava:guava 33.1.0-jre 33.2.1-jre
com.google.errorprone:error_prone_annotations 2.27.0 2.28.0
com.google.errorprone:error_prone_core 2.27.0 2.28.0
io.grpc:grpc-core 1.63.0 1.64.0
org.apache.maven.plugins:maven-enforcer-plugin 3.4.1 3.5.0
com.mycila:license-maven-plugin 4.3 4.5
org.codehaus.mojo:build-helper-maven-plugin 3.5.0 3.6.0
org.apache.maven.plugins:maven-invoker-plugin 3.6.1 3.7.0
org.apache.maven.plugins:maven-plugin-plugin 3.12.0 3.13.1
org.apache.maven.plugins:maven-shade-plugin 3.5.3 3.6.0
org.codehaus.mojo:exec-maven-plugin 3.2.0 3.3.0
com.github.spotbugs:spotbugs-maven-plugin 4.8.4.0 4.8.5.0
org.springframework:spring-beans 5.3.34 5.3.36
com.google.code.gson:gson 2.10.1 2.11.0
com.google.cloud:google-cloud-datastore 2.19.1 2.20.0
org.mariadb.jdbc:mariadb-java-client 3.3.3 3.4.0

Updates org.codehaus.plexus:plexus-xml from 4.0.3 to 4.0.4

Release notes

Sourced from org.codehaus.plexus:plexus-xml's releases.

4.0.4

🐛 Bug Fixes

📦 Dependency updates

Commits
  • f25521b [maven-release-plugin] prepare release plexus-xml-4.0.4
  • 43dbdca Allow nulls for write elements in MXSerializer
  • 6bccd34 Bump org.codehaus.plexus:plexus from 17 to 18 (#39)
  • d84cafe Bump org.codehaus.plexus:plexus from 16 to 17 (#35)
  • e0a1841 Bump org.codehaus.plexus:plexus-utils from 4.0.0 to 4.0.1 (#37)
  • 4ee6e63 ---
  • d56dbc9 Config release-drafter on master
  • b97a574 Fix release-drafter config
  • 14d3067 Fix release-drafter config
  • 1977a0b Fix release-drafter config
  • Additional commits viewable in compare view

Updates org.apache.maven.plugin-tools:maven-plugin-tools-api from 3.12.0 to 3.13.1

Release notes

Sourced from org.apache.maven.plugin-tools:maven-plugin-tools-api's releases.

3.13.0

Release Notes - Maven Plugin Tools - Version 3.13.0

Bug

  • [MPLUGIN-517] - GoalRenderer renderParameterDetails() renders in wrong order
  • [MPLUGIN-521] - Nested types not properly extracted cause exception while generating Javadoc URLs

Improvement

Dependency upgrade

  • [MPLUGIN-516] - Upgrade asmVersion from 9.6 to 9.7
  • [MPLUGIN-519] - Update to Parent POM 42, prerequisite 3.6.3
Commits
  • 7098c96 [maven-release-plugin] prepare release maven-plugin-tools-3.13.1
  • 2144feb ---
  • 441b5f5 Bump org.assertj:assertj-core from 3.25.3 to 3.26.0
  • ca6a073 [MPLUGIN-526] Clean up dependencies reported by dependencies:analyze
  • 993425c [maven-release-plugin] prepare for next development iteration
  • 7a9ba2a [maven-release-plugin] prepare release maven-plugin-tools-3.13.0
  • 789315b [MPLUGIN-521] Nested types not properly extracted cause exception while gener...
  • 1fa1805 [MPLUGIN-519][MPLUGIN-520] Parent POM 42, prerequisite of 3.6.3, get rid of m...
  • e746d9c [MPLUGIN-517] GoalRenderer renderParameterDetails() renders in wrong order
  • af234c6 [MPLUGIN-516] Bump asmVersion from 9.6 to 9.7
  • Additional commits viewable in compare view

Updates org.apache.maven.plugin-tools:maven-plugin-annotations from 3.12.0 to 3.13.1

Release notes

Sourced from org.apache.maven.plugin-tools:maven-plugin-annotations's releases.

3.13.0

Release Notes - Maven Plugin Tools - Version 3.13.0

Bug

  • [MPLUGIN-517] - GoalRenderer renderParameterDetails() renders in wrong order
  • [MPLUGIN-521] - Nested types not properly extracted cause exception while generating Javadoc URLs

Improvement

Dependency upgrade

  • [MPLUGIN-516] - Upgrade asmVersion from 9.6 to 9.7
  • [MPLUGIN-519] - Update to Parent POM 42, prerequisite 3.6.3
Commits
  • 7098c96 [maven-release-plugin] prepare release maven-plugin-tools-3.13.1
  • 2144feb ---
  • 441b5f5 Bump org.assertj:assertj-core from 3.25.3 to 3.26.0
  • ca6a073 [MPLUGIN-526] Clean up dependencies reported by dependencies:analyze
  • 993425c [maven-release-plugin] prepare for next development iteration
  • 7a9ba2a [maven-release-plugin] prepare release maven-plugin-tools-3.13.0
  • 789315b [MPLUGIN-521] Nested types not properly extracted cause exception while gener...
  • 1fa1805 [MPLUGIN-519][MPLUGIN-520] Parent POM 42, prerequisite of 3.6.3, get rid of m...
  • e746d9c [MPLUGIN-517] GoalRenderer renderParameterDetails() renders in wrong order
  • af234c6 [MPLUGIN-516] Bump asmVersion from 9.6 to 9.7
  • Additional commits viewable in compare view

Updates org.apache.maven.plugin-tools:maven-plugin-annotations from 3.12.0 to 3.13.1

Release notes

Sourced from org.apache.maven.plugin-tools:maven-plugin-annotations's releases.

3.13.0

Release Notes - Maven Plugin Tools - Version 3.13.0

Bug

  • [MPLUGIN-517] - GoalRenderer renderParameterDetails() renders in wrong order
  • [MPLUGIN-521] - Nested types not properly extracted cause exception while generating Javadoc URLs

Improvement

Dependency upgrade

  • [MPLUGIN-516] - Upgrade asmVersion from 9.6 to 9.7
  • [MPLUGIN-519] - Update to Parent POM 42, prerequisite 3.6.3
Commits
  • 7098c96 [maven-release-plugin] prepare release maven-plugin-tools-3.13.1
  • 2144feb ---
  • 441b5f5 Bump org.assertj:assertj-core from 3.25.3 to 3.26.0
  • ca6a073 [MPLUGIN-526] Clean up dependencies reported by dependencies:analyze
  • 993425c [maven-release-plugin] prepare for next development iteration
  • 7a9ba2a [maven-release-plugin] prepare release maven-plugin-tools-3.13.0
  • 789315b [MPLUGIN-521] Nested types not properly extracted cause exception while gener...
  • 1fa1805 [MPLUGIN-519][MPLUGIN-520] Parent POM 42, prerequisite of 3.6.3, get rid of m...
  • e746d9c [MPLUGIN-517] GoalRenderer renderParameterDetails() renders in wrong order
  • af234c6 [MPLUGIN-516] Bump asmVersion from 9.6 to 9.7
  • Additional commits viewable in compare view

Updates org.testcontainers:testcontainers-bom from 1.19.7 to 1.19.8

Release notes

Sourced from org.testcontainers:testcontainers-bom's releases.

1.19.8

Testcontainers for Java 1.19.8

🚀 Features & Enhancements

🐛 Bug Fixes

📖 Documentation

🧹 Housekeeping

📦 Dependency updates

Commits

Updates org.testcontainers:mariadb from 1.19.7 to 1.19.8

Release notes

Sourced from org.testcontainers:mariadb's releases.

1.19.8

Testcontainers for Java 1.19.8

🚀 Features & Enhancements

🐛 Bug Fixes

📖 Documentation

🧹 Housekeeping

📦 Dependency updates

Commits

Updates org.apache.commons:commons-compress from 1.26.1 to 1.26.2

Updates com.fasterxml.jackson.core:jackson-core from 2.17.0 to 2.17.1

Commits
  • cba40f1 [maven-release-plugin] prepare release jackson-core-2.17.1
  • d33c4b5 Prepare for 2.17.1 release
  • 2a4a6dc Fix #1256: revert #1117, default recycler pool again threadLocalPool() (for...
  • 7e57e5b Update branch designation for CI
  • 4b8d399 Part of #1260: write a manually run concurrency test to tease out problem wit...
  • 33c4260 Fixes #1262: Add diagnostic method pooledCount() in RecyclerPool (#1263)
  • c73bde2 Fix NumberInput.looksLikeValidNumber() implementation (#1241)
  • 1c656ae ...
  • 11e3bd7 update(tests): migrate remaining JUnit 4 code in core to JUnit 5 (#1248)
  • fff79ea update(tests): migrate JUnit 4 code to JUnit 5 in core.base64 to core.sym (#1...
  • Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-databind from 2.17.0 to 2.17.1

Commits

Updates com.fasterxml.jackson.core:jackson-annotations from 2.17.0 to 2.17.1

Commits

Updates org.wildfly.security:wildfly-elytron from 2.2.5.Final to 2.2.6.Final

Commits
  • b1c8ae6 [ELY-2766] Release WildFly Elytron 2.2.6.Final
  • efbc9bc Merge pull request #2133 from fjuma/ELY-2752
  • 13da686 [ELY-2752] Ensure it's possible to make use of a custom principal-attribute v...
  • 367fb48 Merge pull request #2136 from fjuma/ELY-2340-2.2.x
  • 5aba217 [ELY-2340] Add the ability to allow query params in redirect URIs via a new s...
  • 949c04e [ELY-2340] Move some test methods to OidcBaseTest
  • 2755d4b [ELY-2340] Rename an OIDC test method
  • 73a1023 Merge branch '1.x' into 2.2.x
  • 863a101 Merge branch '1.15.x' into 1.x
  • a0addbe [ELY-2751] Perform API check against 1.15.24.Final
  • Additional commits viewable in compare view

Updates com.google.guava:guava from 33.1.0-jre to 33.2.1-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.2.1

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.2.1-jre</version>
  <!-- or, for Android: -->
  <version>33.2.1-android</version>
</dependency>

Jar files

Guava requires one runtime dependency, which you can download here:

Javadoc

JDiff

Changelog

  • net: Changed InetAddress-String conversion methods to preserve the IPv6 scope ID if present. The scope ID can be necessary for IPv6-capable devices with multiple network interfaces. However, preserving it can also lead to problems for callers that rely on the returned values not to include the scope ID:
    • Callers might compensate for the old behavior of the methods by appending the scope ID to a returned string themselves. If so, you can update your code to stop doing so at the same time as you upgrade Guava. Of, if your code might run against multiple versions of Guava, you can check whether Guava has included a scope ID before you add one yourself.
    • Callers might pass the returned string to another system that does not understand scope IDs. If so, you can strip the scope ID off, whether by truncating the string form at a % character (leaving behind any trailing ] character in the case of forUriString) or by replacing the returned InetAddress with a new instance constructed by calling InetAddress.getByAddress(addr).
    • java.net.InetAddress validates any provided scope ID against the interfaces available on the machine. As a result, methods in InetAddresses may now fail if the scope ID fails validation.
      • Notable cases in which this may happen include:
        • if the code runs in an Android app without networking permission
        • if code passes InetAddress instances or strings across devices
      • If this is not the behavior that you want, then you can strip off the scope ID from the input string before passing it to Guava, as discussed above. (3f61870ac6)

33.2.0

Android users: Please test recent Guava versions

If you know of Guava Android users who have not yet upgraded to at least release 33.0.0, please encourage them to upgrade, preferably to today's release, 33.2.0. These releases have begun adding Java 8+ APIs to guava-android. While we don't anticipate problems, we do anticipate that any unexpected problems could force a disruptive rollback. To minimize any disruption, we'd like to catch any such problems early.

Please let us know of any problems you encounter.

Maven

... (truncated)

Commits

Updates com.google.errorprone:error_prone_annotations from 2.27.0 to 2.28.0

Release notes

Sourced from com.google.errorprone:error_prone_annotations's releases.

Error Prone 2.28.0

Error Prone nows supports the latest JDK 23 EA builds (#4412, #4415).

Closed issues:

  • Improved errors for invalid check severities (#4306).
  • Fix a crash with nested instanceof patterns (#4349).
  • Fix a crash in JUnitIncompatibleType (#4377).
  • In ObjectEqualsForPrimitives, don't suggest replacing equal with == for floating-point values (#4392).

New checks:

Full Changelog: https://github.com/google/error-prone/compare/v2.27.1...v2.28.0

Error Prone 2.27.1

This release contains all of the changes in 2.27.0, plus a bug fix to ClassInitializationDeadlock (google/error-prone#4378)

Full Changelog: https://github.com/google/error-prone/compare/v2.27.0...v2.27.1

Commits
  • c71fd4e Release Error Prone 2.28.0
  • 32997f7 Bugfix assignment switch analysis in StatementSwitchToExpressionSwitch: if an...
  • 2dde254 Update references to javadoc APIs after the introduction of Markdown doc comm...
  • 5fef6e0 Yet another JUnitIncompatibleType crash fix.
  • c2df1b6 Refactor comment handling in tokenization to use a new ErrorProneComment clas...
  • 3fff610 Update hamcrest to v2.2
  • 6f265dd Add a disabled regression test for an UnusedVariable bug
  • 5eded87 Add an Error Prone check that reimplements javac sunapi warnings
  • 9e0fbf7 Prepare for a change to the return type of JCCompilationUnit#getImports in ...
  • 13be411 Handle null != CONST_CASE in YodaCondition
  • Additional commits viewable in compare view

Updates com.google.errorprone:error_prone_core from 2.27.0 to 2.28.0

Release notes

Sourced from com.google.errorprone:error_prone_core's releases.

Error Prone 2.28.0

Error Prone nows supports the latest JDK 23 EA builds (#4412, #4415).

Closed issues:

  • Improved errors for invalid check severities (#4306).
  • Fix a crash with nested instanceof patterns (#4349).
  • Fix a crash in JUnitIncompatibleType (#4377).
  • In ObjectEqualsForPrimitives, don't suggest replacing equal with == for floating-point values (#4392).

New checks:

Full Changelog: https://github.com/google/error-prone/compare/v2.27.1...v2.28.0

Error Prone 2.27.1

This release contains all of the changes in 2.27.0, plus a bug fix to ClassInitializationDeadlock (google/error-prone#4378)

Full Changelog: https://github.com/google/error-prone/compare/v2.27.0...v2.27.1

Commits
  • c71fd4e Release Error Prone 2.28.0
  • 32997f7 Bugfix assignment switch analysis in StatementSwitchToExpressionSwitch: if an...
  • 2dde254 Update references to javadoc APIs after the introduction of Markdown doc comm...
  • 5fef6e0 Yet another JUnitIncompatibleType crash fix.
  • c2df1b6 Refactor comment handling in tokenization to use a new ErrorProneComment clas...
  • 3fff610 Update hamcrest to v2.2
  • 6f265dd Add a disabled regression test for an UnusedVariable bug
  • 5eded87 Add an Error Prone check that reimplements javac sunapi warnings
  • 9e0fbf7 Prepare for a change to the return type of JCCompilationUnit#getImports in ...
  • 13be411 Handle null != CONST_CASE in YodaCondition
  • Additional commits viewable in compare view

Updates io.grpc:grpc-core from 1.63.0 to 1.64.0

Release notes

Sourced from io.grpc:grpc-core's releases.

v1.64.0

API Changes

  • compiler: the option jakarta_omit was renamed @generated=omit (#11086) (8a21afcc9)

New Features

  • New API LoadBalancer.getChannelTarget() (4561bb5b8)
  • opentelemetry: Publish new module grpc-opentelemetry (5ba1a5563). The feature is still missing documentation and an example. It only supports metrics; tracing and logs will be future enhancements. See gRFC A66
  • bazel: Add support for bzlmod (#11046) (d1890c0ac)
  • bazel: Replace usages of the old compatibility maven targets with @maven targets (00649913b)
  • okhttp: Support serverBuilder.maxConcurrentCallsPerConnection (Fixes #11062). (#11063) (805072339)
  • xds: Experimental metrics recording in WRR LB (06df25b65, 35a171bc1, 2897b3939), to be exported by grpc-opentelemetry if explicitly enabled in GrpcOpenTelemetry. See gRFC A78
  • rls: Experimental metrics recording in RLS LB (a9fb272b7, a1d19327f, 813331837), to be exported by grpc-opentelemetry if explicitly enabled in GrpcOpenTelemetry

Improvements

  • examples: support bazel build for retry policy example (58de563fa)
  • netty: Allow deframer errors to close stream with a status code, as long as headers have not yet been sent (e036b1b19). This will greatly improve the debuggability of certain server errors in particular cases. Instead of the client seeing “CANCELLED: RST_STREAM closed stream. HTTP/2 error code: CANCEL”, they could see “RESOURCE_EXHAUSTED: gRPC message exceeds maximum size 4194304: 6144592”
  • netty: Improve handling of unexpected write queue promise failures (#11016)
  • servlet: Avoid unnecessary FINEST hex string conversion by checking log level. Fixes #11031. (f7ee5f318)
  • StatusException/StatusRuntimeException hide stack trace in a simpler way (#11064) (e36f099be)
  • util: Status desc for outlier detection ejection (#11036) (10cb4a3be)
  • binder: Helper class to allow in process servers to use peer uids in test (#11014) (537dbe826)
  • Add load() statements for the Bazel builtin top-level java symbols (#11105) (add8c37a4)
  • Add StatusProto.toStatusException overload to accept Throwable (#11083) (5c9b49231)

Bug fixes

  • Fix retry race condition that can lead to double decrementing inFlightSubStreams and so miss calling closed (#11026) (bdb623031)
  • Change defaults to use the older PickFirstLoadBalancer and disable Happy Eyeballs. This disables a performance optimization added in v1.63. (#11120) We have had a report that the new implementation can trigger a NullPointerException
  • core: Transition to CONNECTING immediately when exiting idle (2c5f0c22c). Previously the visible state change from channel.getState() was delayed until the name resolver returned results. This had no impact to RPC behavior
  • xds: Specify a locale for upper/lower case conversions (e6305930d)
  • rls: Synchronization fixes in CachingRlsLbClient (6e97b180b). These races had not been witnessed in practice
  • rls: Guarantee backoff will update RLS picker (f9b6e5f92). This fixes a regression introduced by 6e97b180b that could hang RPCs instead of using fallback, but fixes a pre-existing bug that could greatly delay RPCs from using fallback.
  • rls: Fix time handling in CachingRlsLbClient (da619e2bd). This could have caused backoff entries to improperly be considered expired
  • xds: Properly disable the default endpoint identification algorithm with XdsChannelCredentials (097a46b76). The credential does its own verification and the default needs to be disabled for SPIFFE
  • netty: Release SendGrpcFrameCommand when stream is missing (#11116) (fb9a10809)
  • okhttp: Remove finished stream even if a pending stream was started (d21fe32be)

Dependencies

  • cronet: Update Cronet to latest release + Move to Stable Cronet APIs. (5a8da19f3)
  • cronet: @​javadoc update android permission MODIFY_NETWORK_ACCOUNTING (deprecated) => UPDATE_DEVICE_STATS (c703a1ee0)
  • cronet: Update to Java-8 API's and tighten the scopes (163efa371)
  • cronet: Update to StandardCharsets and assertNotNull API's (77e59b29d)

Acknowledgements

@​panchenko @​Ashok-Varma @​benjaminp @​AutomatedTester @​hypnoce @​keith @​laglangyue

... (truncated)

Commits
  • a54c72f Bump version to 1.64.0
  • 2c1b07c Update README etc to reference 1.64.0
  • 9798e4a all: Add opentelemetry
  • d086f5a opentelemetry: Mark registerGlobal() as experimental
  • 3158f91 rls: Guarantee backoff will update RLS picker
  • 80f872e xds, rls: Experimental metrics are disabled by default (#11196) (#11197)
  • cc587e6 opentelemetry: Publish grpc opentelemetry (#11187) (#11195)
  • 8133318 rls: Add gauge metric recording (#11175)
  • f737cbc api: Hide internal metric APIs
  • 1e731be opentelemetry: Rename and stabilize API OpenTelemetryModule
  • Additional commits viewable in compare view

Updates com.google.errorprone:error_prone_core from 2.27.0 to 2.28.0

Release notes

Sourced from com.google.errorprone:error_prone_core's releases.

Error Prone 2.28.0

Error Prone nows supports the latest JDK 23 EA builds (#4412, #4415).

Closed issues:

  • Improved errors for invalid check severities (#4306).
  • Fix a crash with nested instanceof patterns (#4349).
  • Fix a crash in JUnitIncompatibleType (#4377).
  • In ObjectEqualsForPrimitives, don't suggest replacing equal with == for floating-point values (#4392).

New checks:

Full Changelog: https://github.com/google/error-prone/compare/v2.27.1...v2.28.0

Error Prone 2.27.1

This release contains all of the changes in 2.27.0, plus a bug fix to ClassInitializationDeadlock (google/error-prone#4378)

Full Changelog: https://github.com/google/error-prone/compare/v2.27.0...v2.27.1

Commits
  • c71fd4e Release Error Prone 2.28.0
  • 32997f7 Bugfix assignment switch analysis in StatementSwitchToExpressionSwitch: if an...
  • 2dde254 Update references to javadoc APIs after the introduction of Markdown doc comm...
  • 5fef6e0 Yet another JUnitInc...

    Description has been truncated

dependabot[bot] avatar Jun 01 '24 00:06 dependabot[bot]

@olamy there's a messy upper bounds error on this. It also exists in the jetty 10/11 dependabot stuff too

joakime avatar Jun 12 '24 21:06 joakime

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot[bot] avatar Jul 01 '24 00:07 dependabot[bot]