search

apache / logging-log4j-kotlin

A Kotlin-friendly interface to log against the Log4j API
https://logging.apache.org/log4j/kotlin
Apache License 2.0
45 stars 11 forks source link

Bump org.apache.logging:logging-parent from 10.2.0 to 10.4.0 #53

Closed dependabot[bot] closed 7 months ago

dependabot[bot] commented 7 months ago

Bumps org.apache.logging:logging-parent from 10.2.0 to 10.4.0.

Release notes

Sourced from org.apache.logging:logging-parent's releases.

10.4.0

This minor release contains several small improvements.

Added

  • Add deterministic Palantir Java formatter

Changed

  • Increase directory scanning depth from 8 to 32 in the distribution BeanShell script

10.3.0

This minor release contains several small improvements.

Added

  • Add support to extend the bnd-maven-plugin configuration with bnd-extra-configapache/logging-log4j2#1895
  • Add support to replace project.build.outputTimestamp Maven property in CI (#50)
  • Add XSLT transformation step to add a deterministic serialNumber and VDR links to the SBOM
  • Add support for an optional spotbugs-exclude.xml file

Changed

  • deploy-release-reusable.yaml is improved to automatically derive deployed artifacts as attachments. This renders both distribution-attachment-filepath-pattern and distribution-attachment-count input arguments redundant for almost all cases.
  • Disable the usage of <distributionManagement> and alpha releases in the bnd-baseline-maven-plugin
  • Convert bnd-maven-pluginapache/logging-log4j2#1895
  • Update com.github.spotbugs:spotbugs-annotations to version 4.8.1 (#58)
  • Update com.github.spotbugs:spotbugs-maven-plugin to version 4.8.1.0 (#57)
  • Update com.google.errorprone:error_prone_core to version 2.23.0 (#49)
  • Update org.apache.maven.plugins:maven-artifact-plugin to version 3.5.0
  • Update org.cyclonedx:cyclonedx-maven-plugin to version 2.7.10 (#54)

Fixed

  • Fix broken changelog entry validation
  • Attach flatten:clean to clean phase
  • Add missing Implementation- and Specification- entries in MANIFEST.MF to bnd-maven-pluginapache/logging-log4j2#1923
Commits
  • e45457c Update the project.build.outputTimestamp property
  • 87b97a9 Fix changelog
  • 08224ec Release changelog for version 10.4.0
  • 9debe4e Update the project.build.outputTimestamp property
  • da3fdfb Set the version to 10.4.0
  • 9c5c595 Remove incorrect changelog entry
  • 98d4231 Remove redundant cyclonedx.json attachment pattern from CI
  • 7e446a1 Revert troubleshooting aid
  • c7772f3 Troubleshoot log4j-tools issue
  • 1a5bdd6 Increase directory scanning depth from 8 to 32 in the distribution BeanShell ...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
github-actions[bot] commented 7 months ago

Changes are applied by CI in 8c3342f5513c154ce6b8b156445b6f9c91b8bff6

dependabot[bot] commented 7 months ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.