Support TomEE classloaders for JAX-RS endpoints (#515, thanks to @Restage for the request)
Don't try reading user.dir (the current directory) unless it's on the classpath, since some security environments can't read the current directory (#520, thanks to @elkman for the bug report).
classgraph-4.8.105
Fix potential NPE in verbose logging
Fix for zipfiles between 2GB and 4GB in size, when a zip entry's start position was past the 2GB point in the file (#514, thanks to @cwmccann for the bug report)
classgraph-4.8.104
Improved verbose logging to include types of methods and fields.
Added a couple of missing methods to ClassInfoList for GraphViz visualization of inter-class dependency graphs.
classgraph-4.8.103
Fixed issue with duplication of automatic package roots (e.g. myjar.jar!/BOOT-INF/classes/BOOT-INF/classes/path/to/resource). (#505, thanks to @michael-simons for the bug report and reproducer code.)
Also fixed an issue where closing the InputStream returned by Resource#open() wasn't marking the Resource as closed (which meant the resource couldn't be opened a second time).
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
3 years ago
Bumps classgraph from 4.8.102 to 4.8.106.
Release notes
Sourced from classgraph's releases.
Commits
6d7271f[maven-release-plugin] prepare release classgraph-4.8.106e54949bMerge pull request #526 from classgraph/dependabot/maven/org.openjdk.jmh-jmh-...83032caMerge pull request #525 from classgraph/dependabot/maven/org.openjdk.jmh-jmh-...92dd4d1Bump jmh-generator-annprocess from 1.31 to 1.32a9076ccBump jmh-core from 1.31 to 1.321ffb214Merge pull request #524 from classgraph/dependabot/maven/org.apache.maven.plu...6ca8afdBump maven-javadoc-plugin from 3.2.0 to 3.3.073a3103Don't access home dir (#520)ae51e32Merge branch 'latest' of https://github.com/classgraph/classgraph.git into la...e5cab34Remove unnecessary code (#520)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)