Bump jsch from 0.2.4 to 0.2.7

[dependabot[bot]]

Bumps jsch from 0.2.4 to 0.2.7.

Release notes

Sourced from jsch's releases.

jsch-0.2.7

What's Changed

• #265 change buffer_margin computation to be dynamic based upon the MAC to allow connections that advertise small maximum packet sizes.
• #266 fix PuTTY key parsing to work with unix line endings.
• Add support for ECDSA & EdDSA type PuTTY keys.
• #71 add support for PuTTY version 3 format keys.
  • Encrypted PuTTY version 3 format keys requires Bouncy Castle (bcprov-jdk18on).
• Eliminate KeyPairDeferred and instead change handling of OpenSSH V1 type keys to be more like other KeyPair types.
• Be more vigilant about clearing private key data.
• Improve PKCS8 key handling and add support for PKCS5 2.1 encryption.
• Add support for ECDSA type PKCS8 keys.
• Add support for SCrypt type KDF for PKCS8 keys.
  • PKCS8 keys using SCrypt requires Bouncy Castle (bcprov-jdk18on).
• Add support for EdDSA type PKCS8 keys.
  • EdDSA type PKCS8 keys requires Bouncy Castle (bcprov-jdk18on).
• Attempt to authenticate using other signature algorithms supported by the same public key.
  • Allow this behavior to be disabled via try_additional_pubkey_algorithms config option.
    • Some servers incorrectly respond with SSH_MSG_USERAUTH_PK_OK to an initial auth query that they don't actually support for RSA keys.
• Add a new config option enable_pubkey_auth_query to allow skipping auth queries and proceed directly to attempting full SSH_MSG_USERAUTH_REQUEST's.
• Add a new config option enable_auth_none to control whether an initial auth request for the method none is sent to detect all supported auth methods available on the server.

Updates

• Bump jna.version from 5.12.1 to 5.13.0 by @​dependabot in mwiede/jsch#268
• Bump junit-jupiter from 5.9.1 to 5.9.2 by @​dependabot in mwiede/jsch#269
• Bump maven-dependency-plugin from 3.4.0 to 3.5.0 by @​dependabot in mwiede/jsch#270

Full Changelog: https://github.com/mwiede/jsch/compare/jsch-0.2.6...jsch-0.2.7

jsch-0.2.6

What's Changed

• Bump slf4j-api from 2.0.5 to 2.0.6 by @​dependabot in mwiede/jsch#256
• Include host alias instead of the real host in messages and exceptions by @​ShadelessFox in mwiede/jsch#257
• Fix missing keySize set when loading V1 RSA keys by @​Alex-Vol-Amz in mwiede/jsch#258
• Enhancement to present KeyPair.getKeyTypeString() method by @​Alex-Vol-Amz in mwiede/jsch#259

New Contributors

• @​ShadelessFox made their first contribution in mwiede/jsch#257
• @​Alex-Vol-Amz made their first contribution in mwiede/jsch#258

Full Changelog: https://github.com/mwiede/jsch/compare/jsch-0.2.5...jsch-0.2.6

v0.2.5

What's Changed

• Explictly free resources in Compression implementations by @​norrisjeremy in mwiede/jsch#241
• Fix integration test failures on Apple Silicon by skipping OpenSSH 7.4 tests by @​norrisjeremy in mwiede/jsch#227
• generate osgi bundle manifest data for jar #248 by @​mwiede in mwiede/jsch#249

Dependency Updates

• Bump maven-jar-plugin from 3.2.2 to 3.3.0 by @​dependabot in mwiede/jsch#209
• Bump log4j-api from 2.18.0 to 2.19.0 by @​dependabot in mwiede/jsch#208

... (truncated)

Commits

• 5973624 [maven-release-plugin] prepare release jsch-0.2.7
• d705df5 Merge pull request #270 from mwiede/dependabot/maven/org.apache.maven.plugins...
• 5b5f8c6 Merge pull request #269 from mwiede/dependabot/maven/org.junit.jupiter-junit-...
• b6e1adb Merge pull request #268 from mwiede/dependabot/maven/jna.version-5.13.0
• ec04e0e Bump jna.version from 5.12.1 to 5.13.0
• 5b30787 Merge pull request #264 from norrisjeremy/20230105
• 7d0e6e2 Update ChangeLog.
• c6bf01d Add an enable_auth_none config option.
• a83b248 Use standard Base64 instead of commons-codec version.
• 75f3031 Update ChangeLog.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)