singleton icon indicating copy to clipboard operation
singleton copied to clipboard

Published 20 hours ago verified publisher icon vmware

Bump de.undercouch:gradle-download-task from 3.4.3 to 5.6.0

Open dependabot[bot] opened this issue 11 months ago • 1 comments

Bumps de.undercouch:gradle-download-task from 3.4.3 to 5.6.0.

Release notes

Sourced from de.undercouch:gradle-download-task's releases.

5.6.0

New features:

  • Add possibility to configure HTTP status code validator (using the validateStatus property)
  • Add integration tests for Gradle versions up to 8.6

Bug fixes:

  • Do not unnecessarily enable preemptive auth for proxy (possible security issue)
  • Remove sensitive headers from request after redirect (possible security issue). Thanks to @​diederikfaber for reporting this and to @​dtretyakov and @​eghobo for the pointers.
  • Really log all requests (including redirects) and all headers in debug mode. It seems something has changed in Apache HttpClient since we initially implemented this feature.

Maintenance:

  • Update dependencies
  • Update to Gradle 8.6
  • Fix some warnings in build script
  • Set dependabot interval to weekly
  • Split CI tests of Gradle 7.x versions

5.5.0

New features:

  • Accept URI as source (#338)
  • Support RegularFile as input for the Verify action

Bug fixes:

  • Relocate Apache HttpClient's public suffix list to avoid classpath conflicts (#317)

Maintenance:

  • Add integration tests for Gradle versions up to 8.3
  • Remove unnecessary integration tests for some 5.x and 6.x versions of Gradle
  • Update dependencies
  • Update to Gradle 8.3
  • Fix deprecation warnings in examples

5.4.0

New features:

  • Add possibility to set request method and body

Maintenance:

  • Update dependencies
  • Improve documentation
  • Add integration tests for Gradle 8.0.1

5.3.1

Bug fixes:

  • Downgrade slf4j to fix warning on console about missing slf4j provider
  • Allow download and verify extensions to be created on demand in custom tasks, so these tasks can be made compatible with Gradle's configuration cache (see #284). Thanks to @​liblit for testing!

Maintenance:

... (truncated)

Commits
  • 904c4ed Bump up version number to 5.6.0
  • 6905421 Document validateStatus
  • 1c50c9d Update Gradle to 8.6 and fix some deprecation warnings in build script
  • e31d969 Update dependencies
  • f22bde6 Merge pull request #385 from michel-kraemer/dependabot/npm_and_yarn/screencas...
  • bcbc187 Add integration tests for Gradle versions up to 8.6
  • 1d1ea79 Add more tests
  • 814e8e7 Fix typo
  • 07f09ad Split CI tests of Gradle 7.x versions
  • 1641eb8 Use default ports when comparing hosts
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Mar 04 '24 16:03 dependabot[bot]

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

:exclamation: No coverage uploaded for pull request base (g11n-java-client@36360d1). Click here to learn what that means.

Additional details and impacted files 
@@                 Coverage Diff                 @@
##             g11n-java-client    #3047   +/-   ##
===================================================
  Coverage                    ?   55.33%           
  Complexity                  ?      980           
===================================================
  Files                       ?      114           
  Lines                       ?     5767           
  Branches                    ?     1007           
===================================================
  Hits                        ?     3191           
  Misses                      ?     2046           
  Partials                    ?      530

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

codecov[bot] avatar Mar 04 '24 16:03 codecov[bot]