DependencyCheck
DependencyCheck copied to clipboard
Bump logback.version from 1.2.11 to 1.3.0
Bumps logback.version
from 1.2.11 to 1.4.0.
Updates logback-core
from 1.2.11 to 1.4.0
Commits
e83403e
prepare release 1.4.0e2c0cc6
migrate to Jakarta EE0088e60
bump version to 1.4.0-SNAPSHOT on masterb73153c
indentation changes5175596
bump to SLF4J 2.0.0417db91
rename EnvUtil.ourVersion as logbackVersion255af5a
fix sequenceNumberGenerationd2c4044
fix LOGBACK-166770eb96e
minor refactoringcbb1e3d
Merge pull request #581 from schlosna/ds/file-filter-regex- Additional commits viewable in compare view
Updates logback-classic
from 1.2.11 to 1.4.0
Commits
e83403e
prepare release 1.4.0e2c0cc6
migrate to Jakarta EE0088e60
bump version to 1.4.0-SNAPSHOT on masterb73153c
indentation changes5175596
bump to SLF4J 2.0.0417db91
rename EnvUtil.ourVersion as logbackVersion255af5a
fix sequenceNumberGenerationd2c4044
fix LOGBACK-166770eb96e
minor refactoringcbb1e3d
Merge pull request #581 from schlosna/ds/file-filter-regex- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
@jeremylong should bump to 1.3.0 instead to retain Java 8 compatibility see qos.ch logback news
@dependabot rebase
Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!
If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate
.
@jeremylong I wrongly assumed that the slf4j 2 api upgrade was not yet in, but now see that it is in, but didn't trigger issues yet (but likely already did log warnings on the logging as per https://www.slf4j.org/faq.html#changesInVersion200) as the implementation of the 1.7 series that the code depends on was still available in logback
@dependabot ignore this dependency
OK, I won't notify you about any of these dependencies again, unless you re-open this PR. 😢