packageurl-java

packageurl-java copied to clipboard

Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.5.3.0 to 4.7.3.0. Release notes Sourced from spotbugs-maven-plugin's releases. Spotbugs Maven Plugin 4.7.3.0 Supports spotbugs 4.7.3 note: 4.7.2.2 was released and actually included 4.7.3 by default. All...

dependabot[bot]

Bumps [spotbugs](https://github.com/spotbugs/spotbugs) from 4.5.3 to 4.7.3. Release notes Sourced from spotbugs's releases. SpotBugs 4.7.3 CHANGELOG Fixed Fixed detector DontUseFloatsAsLoopCounters to prevent false positives. (#2126) @​baloghadamsoftware Fixed regression in 4.7.2 caused...

dependabot[bot]

Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.1.0. Release notes Sourced from actions/checkout's releases. v3.1.0 What's Changed Inject GitHub host to be able to clone from another GitHub instance by @​peter-murray in...

dependabot[bot]

Bumps [actions/setup-java](https://github.com/actions/setup-java) from 2 to 3.5.1. Release notes Sourced from actions/setup-java's releases. v3.5.1 In scope of this release we change logic for Microsoft Build of OpenJDK. Previously it had hard...

dependabot[bot]

Bumps [json](https://github.com/douglascrockford/JSON-java) from 20211205 to 20220924. Release notes Sourced from json's releases. 20220924 Pull Request Description #688 Update copyright to Public Domain #687 Fix a typo #685 JSONObject map type...

dependabot[bot]

Bumps plexus-compiler-javac-errorprone from 2.8.5 to 2.12.1. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot]

Bumps [maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) from 3.10.0 to 3.10.1. Release notes Sourced from maven-compiler-plugin's releases. 3.10.1 🚀 New features and improvements [MCOMPILER-426] - add flag to enable-preview java compiler feature (#98) @​olamy 🐛...

dependabot[bot]

Maven Central requires all published artifacts to be [signed using PGP](https://maven.apache.org/repository/guide-central-repository-upload.html#pgp-signature). If a publisher provides their key ID to [PGP keys map](https://github.com/s4u/pgp-keys-map) then end users can use the [Verify PGP...

silnith

Bumps [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) from 3.1.0 to 3.2.3. Release notes Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases. 3.2.3 Release Notes - Maven GPG Plugin - Version 3.2.3 [MGPG-123][MGPG-124] - Dependency upgrades (#93) @​cstamas [MGPG-120] -...

dependabot[bot]

Bumps commons-io:commons-io from 2.15.1 to 2.16.1. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot]