app icon indicating copy to clipboard operation
app copied to clipboard

Published 20 hours ago verified publisher icon WorldHealthOrganization

build(deps): Bump okio from 2.9.0 to 3.2.0 in /server

Open dependabot[bot] opened this issue 2 years ago • 1 comments

Bumps okio from 2.9.0 to 3.2.0.

Changelog

Sourced from okio's changelog.

Version 3.2.0

2022-06-26

  • Fix: Configure the multiplatform artifact (com.squareup.okio:okio:3.x.x) to depend on the JVM artifact (com.squareup.okio:okio-jvm:3.x.x) for Maven builds. This should work-around an issue where Maven doesn't interpret Gradle metadata.
  • Fix: Change CipherSource and CipherSink to recover if the cipher doesn't support streaming. This should work around a crash with AES/GCM ciphers on Android.

Version 3.1.0

2022-04-19

  • Upgrade: [Kotlin 1.6.20][kotlin_1_6_20].
  • New: Support [Hierarchical project structure][hierarchical_projects]. If you're using Okio in a multiplatform project please upgrade your project to Kotlin 1.6.20 (or newer) to take advantage of this. With hierarchical projects it's easier to use properties like FileSystem.SYSTEM that are available on most Okio platforms but not all of them.
  • New: ForwardingSource is now available on all platforms.
  • New: The watchosX64 platform is now supported.
  • Fix: Don't crash in `NSData.toByteString()' when the input is empty.
  • Fix: Support empty ZIP files in FileSystem.openZip().
  • Fix: Throw in canonicalize() of ZIP file systems if the path doesn't exist.
  • Fix: Don't require ZIP files start with a local file header.
  • New: okio.ProtocolException is a new exception type for multiplatform users. (It is aliased to java.net.ProtocolException on JVM platforms).

Version 3.0.0

2021-10-28

This is the first stable release of Okio 3.x. This release is strongly backwards-compatible with Okio 2.x, and the new major version signifies new capabilities more than it does backwards incompatibility.

Most users should be able to upgrade from 2.x by just changing the version. If you're using Okio in a Kotlin Multiplatform project, you'll need to drop the -multiplatform suffix in your Gradle dependencies.

  • New: Remove @ExperimentalFileSystem. This annotation is no longer necessary as the file system is no longer experimental!
  • New: Path no longer aggressively normalizes .. segments. Use Path.normalize() to apply these based on the content of the path, or FileSystem.canonicalize() to do it honoring any symlinks on a particular file system.
  • New: Publish a [bill of materials (BOM)][bom] for Okio. Depend on this from Gradle or Maven to keep all of your Okio artifacts on the same version, even if they're declared via transitive dependencies. You can even omit versions when declaring other Okio dependencies.

... (truncated)

Commits
  • d2a629c Prepare for release 3.2.0.
  • 73c08ca Make pom.xml depend on the JVM artifact (#1125)
  • ba4eec2 Provide fallback for broken AES/GCM streaming implementation on Android (#1096)
  • ef6bf7f Prepare next development version.
  • e0b2b4c Add flag to enable compatibility with non-hierarchical projects (#1118)
  • 23872fe 2022
  • 60db130 Prepare for release 3.1.0.
  • 533e019 Support Kotlin Hierarchical Project structure (#980)
  • ede888f Merge pull request #1107 from MJegorovas/fixNSDataToByteString
  • 4766fe7 Use ByteString.EMPTY in assert
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Jun 27 '22 06:06 dependabot[bot]

This item has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

stale[bot] avatar Jul 10 '22 02:07 stale[bot]

Superseded by #2197.

dependabot[bot] avatar Jan 09 '23 06:01 dependabot[bot]