Skyscanner / sonar-secrets

SonarQube plugin for identifying hardcoded secrets, such as passwords, API keys, AWS credentials, etc..
Other
100 stars 24 forks source link

Bump gson from 2.8.6 to 2.8.8 in /java #57

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps gson from 2.8.6 to 2.8.8.

Release notes

Sourced from gson's releases.

Gson 2.8.8

  • Fixed issue with recursive types (#1390).
  • Better behaviour with Java 9+ and Unsafe if there is a security manager (#1712).
  • EnumTypeAdapter now works better when ProGuard has obfuscated enum fields (#1495).
Changelog

Sourced from gson's changelog.

Version 2.8.8

  • Fixed issue with recursive types (#1390).
  • Better behaviour with Java 9+ and Unsafe if there is a security manager (#1712).
  • EnumTypeAdapter now works better when ProGuard has obfuscated enum fields (#1495).

Version 2.8.7

  • Fixed ISO8601UtilsTest failing on systems with UTC+X.
  • Improved javadoc for JsonStreamParser.
  • Updated proguard.cfg (#1693).
  • Fixed IllegalStateException in JsonTreeWriter (#1592).
  • Added JsonArray.isEmpty() (#1640).
  • Added new test cases (#1638).
  • Fixed OSGi metadata generation to work on JavaSE < 9 (#1603).
Commits
  • b41030d [maven-release-plugin] prepare release gson-parent-2.8.8
  • 81f25c8 Merge pull request #1936 from google/dependabot/maven/org.apache.maven.scm-ma...
  • a7404e8 Merge pull request #1935 from google/dependabot/maven/org.apache.maven.scm-ma...
  • 205df01 Bump maven-scm-provider-gitexe from 1.11.2 to 1.11.3
  • f98dabd Bump maven-scm-api from 1.11.2 to 1.11.3
  • 9edaeb3 Merge pull request #1909 from HiFromAjay/aj
  • 01ab13f Remove unused imports [#1909, #1908]
  • 789818d Merge pull request #1930 from christofferqa/keep_typetoken
  • df94ccd Merge pull request #1925 from google/dependabot/maven/org.apache.maven.plugin...
  • 80feb23 Merge pull request #1926 from google/dependabot/maven/com.github.wvengen-prog...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 3 years ago

Superseded by #61.