search

AddstarMC / geSuit

Plugin suite for BungeeCord
12 stars 15 forks source link

Bump metrics-core from 4.1.8 to 4.2.2 in /geSuit-parent #167

Closed dependabot-preview[bot] closed 3 years ago

dependabot-preview[bot] commented 3 years ago

Bumps metrics-core from 4.1.8 to 4.2.2.

Release notes

Sourced from metrics-core's releases.

v4.2.2

Bug fixes

  • Fix accidental leaking of dependencies in metrics-bom (#2047)

Dependency updates

  • Update slf4j.version to v1.7.31 (#2035)
  • Update dependency org.assertj:assertj-core to v3.20.2 (#2032, #2041)
  • Update dependency org.checkerframework:checker-qual to v3.15.0 (#2037)
  • Update dependency org.mockito:mockito-core to v3.11.2 (#2044)

v4.2.1

⚠️ Dependency leak in metrics-bom

This release accidentally leaked non-project dependencies into io.dropwizard.metrics:metrics-bom.

If you're using this BOM, please be aware that it also manages the following dependencies:

  • org.slf4j:slf4j-api
  • org.slf4j:slf4j-simple
  • junit:junit
  • org.assertj:assertj-core
  • org.mockito:mockito-core
  • org.hamcrest:hamcrest-core

This has been fixed in Dropwizard Metrics 4.2.2.

Bug fixes

  • JMXReporter may create invalid ObjectNames (#2031)

Dependency updates

  • Upgrade to Jackson 2.12.3
  • Update jetty9.version to v9.4.42.v20210604 (#1946, #2001)
  • Update dependency org.eclipse.jetty:jetty-bom to v10.0.5 (#1950, #2002, #2013)
  • Update dependency org.eclipse.jetty:jetty-bom to v11.0.5 (#1951, #2004, #2014)
  • Bump jdbi3-core from 3.20.0 to 3.20.1 (#2005)
  • Bump assertj-core from 3.20.0 to 3.20.1 (#2026, #2032)
  • Bump ehcache from 3.9.3 to 3.9.4 (#1949)
  • Bump jcstress-core from 0.11 to 0.12 (#2000)
  • Bump mockito-core from 3.11.0 to 3.11.1 (#1987, #2015)
  • Update dependency org.checkerframework:checker-qual to v3.14.0 (#1985)
  • Update dependency org.openjdk.jcstress:jcstress-core to v0.13 (#1996, #2027)
  • Update jmh.version to v1.32 (#1959)
  • Update dependency org.apache.maven.plugins:maven-javadoc-plugin to v3.3.0 (#1955)
  • Bump actions/stale from 3.0.18 to 3.0.19 (#1947)
  • Update actions/cache action to v2.1.6 (#1962)

... (truncated)

Commits
  • b3a1568 [maven-release-plugin] prepare release v4.2.2
  • 31a1102 Merge branch 'release/4.1.x' into release/4.2.x
  • dcd65b1 [maven-release-plugin] prepare for next development iteration
  • 25c0848 [maven-release-plugin] prepare release v4.1.24
  • fb02ec5 Update dependency org.mockito:mockito-core to v3.11.2 (#2044)
  • 7682a84 Update dependency org.mockito:mockito-core to v3.11.2 (#2043)
  • 06dcd24 Fix accidental leaking of dependencies in metrics-bom (#2047)
  • 7c46f13 Fix accidental leaking of dependencies in metrics-bom (#2049)
  • aa3c4de Merge branch 'release/4.1.x' into release/4.2.x
  • 7ff7af1 Remove Dependabot config in favor of WhiteSource Renovate
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 3 years ago

Superseded by #169.