search

binkley / modern-java-practices

Modern Java/JVM Build Practices
Other
948 stars 70 forks source link

Bump spotbugs.version from 4.8.0 to 4.8.1 #411

Closed dependabot[bot] closed 7 months ago

dependabot[bot] commented 1 year ago

Bumps spotbugs.version from 4.8.0 to 4.8.1. Updates com.github.spotbugs:spotbugs-annotations from 4.8.0 to 4.8.1

Release notes

Sourced from com.github.spotbugs:spotbugs-annotations's releases.

SpotBugs 4.8.1

CHANGELOG

CHECKSUM

file checksum (sha256)
spotbugs-4.8.1-javadoc.jar f8ef08283a500d3f250f87f5b01fac2ed19acc11bc78657fd277ca7d27c9c211
spotbugs-4.8.1-sources.jar 29fef7bebfe1597f8477e21cf139ac6f1ef01afabce8bb3e6ae258a3d6c3de8f
spotbugs-4.8.1.tgz b8e8f755c3e629885616d898e1a857162273253559f9e0e329983c671c02cd4e
spotbugs-4.8.1.zip 5cb639cf1ce79dc58ba07ee459a6da8bd665e06e10cfb66a79c685601326c111
spotbugs-annotations-4.8.1-javadoc.jar 56be7c8808111619cf87f4385368b8c0d30e4a01bcea4add878780608a6e932a
spotbugs-annotations-4.8.1-sources.jar b5d0110b70b9c44915f2c3375d1b700acb6d409152baf70030787d17a684469b
spotbugs-annotations.jar 06eba41a81aaccb011c3f75afa019e509cda7f1eb7a4e057bb860c60845f915e
spotbugs-ant-4.8.1-javadoc.jar 3862ce0fe8a201562cb32ddfbff3d78745950aeb0d0ea8c849bf55d1aa9b71de
spotbugs-ant-4.8.1-sources.jar 9f1431331363f45ceb9b91c0e5246eab574fbff81c56eff0e385f572d346de61
spotbugs-ant.jar a798346790437cdc18217379fa54a7e6b044ba2070891ebe01faee28af79af6c
spotbugs.jar e49adbc51addf00264042d82075db98a10ad2af9348f7275de6bc075b7245a95
test-harness-4.8.1-javadoc.jar 6f2d3a6c452c972e2890161ee1ff84437bba0877bcd302041df73e9d02217d7b
test-harness-4.8.1-sources.jar 633ae795c1889fa59f1faad8ea8f1f5b39155029f4f75b51557085097570feb6
test-harness-4.8.1.jar 23f414f9988a3d44dded88ad2d827e95699dc6bb8d6e06a2b0920db2cac442b9
test-harness-core-4.8.1-javadoc.jar af4e056c212f1039e9f756067fce7125f24160f2e70918fa710e6e3cd9993e92
test-harness-core-4.8.1-sources.jar f5db3e4ebf3f90c9bbf4815824c9d94f93fb740c9610b6f70a64bf7896a4e082
test-harness-core-4.8.1.jar 5bd0e9b18f0ec45c27ee3ec882cb6db86ed42a6b884f091468496de3281dc242
test-harness-jupiter-4.8.1-javadoc.jar 1d84b2c269263a7eb0641d021e99da9a6da2bfac05430b341a38a4b0530e57a9
test-harness-jupiter-4.8.1-sources.jar 0aefbc5c8bd406e5dc0b1d59bc3afc6889c02010d486b22242f4f19a1a935800
test-harness-jupiter-4.8.1.jar d2ed802cc81dca3cf8c393fda7f77f02b01c0c1a8ffce7ec57da53aff27a1485
Changelog

Sourced from com.github.spotbugs:spotbugs-annotations's changelog.

4.8.1 - 2023-11-06

Fixed

  • Fixed schema location for findbugsfilter.xsd ([#1416])
  • Fixed missing null checks ([#2629])
  • Disabled DontReusePublicIdentifiers due to the high false positives rate ([#2627])
  • Removed signature of methods using UTF-8 in DefaultEncodingDetector ([#2634])
  • Fix exception escapes when calling functions of JUnit Assert or Assertions ([#2640])
  • Fixed an error in the SARIF export when a bug annotation is missing ([#2632])
  • Fixed false positive RV_EXCEPTION_NOT_THROWN when asserting to exception throws ([#2628])
  • Fix false positive CT_CONSTRUCTOR_THROW when supertype has final finalize ([#2665])
  • Lowered the priority of PA_PUBLIC_MUTABLE_OBJECT_ATTRIBUTE bug ([#2652])
  • Eclipse: fixed startup overhead (on computing classpath) for PDE projects ([#2671])

Build

  • Fix deprecated GHA on '::set-output' by using GITHUB_OUTPUT ([#2651])
Commits
  • a93f606 release v4.8.1
  • 2f8d6ac fix(deps): update junit5 monorepo to v5.10.1 (#2678)
  • fc46873 fix(deps): update dependency org.mockito:mockito-core to v5.7.0 (#2675)
  • 2541a96 Add more bundles for PDE classpath resolving (#2673)
  • 65c8c37 Simplify PDE classpath resolving (#2671)
  • 2ea7c1d fix(deps): update dependency org.checkerframework:checker-qual to v3.40.0 (#2...
  • 17bb20b Lower the priority of PA_PUBLIC_MUTABLE_OBJECT_ATTRIBUTE (#2669)
  • 0ed9c56 fix(deps): update dependency org.apache.commons:commons-text to v1.11.0 (#2668)
  • 674a7d0 Fix CT_CONSTRUCTOR_THROW FP when Supertype has final finalize (#2666)
  • a834b53 fix(deps): update log4j to v2.21.1 (#2663)
  • Additional commits viewable in compare view


Updates com.github.spotbugs:spotbugs from 4.8.0 to 4.8.1

Release notes

Sourced from com.github.spotbugs:spotbugs's releases.

SpotBugs 4.8.1

CHANGELOG

CHECKSUM

file checksum (sha256)
spotbugs-4.8.1-javadoc.jar f8ef08283a500d3f250f87f5b01fac2ed19acc11bc78657fd277ca7d27c9c211
spotbugs-4.8.1-sources.jar 29fef7bebfe1597f8477e21cf139ac6f1ef01afabce8bb3e6ae258a3d6c3de8f
spotbugs-4.8.1.tgz b8e8f755c3e629885616d898e1a857162273253559f9e0e329983c671c02cd4e
spotbugs-4.8.1.zip 5cb639cf1ce79dc58ba07ee459a6da8bd665e06e10cfb66a79c685601326c111
spotbugs-annotations-4.8.1-javadoc.jar 56be7c8808111619cf87f4385368b8c0d30e4a01bcea4add878780608a6e932a
spotbugs-annotations-4.8.1-sources.jar b5d0110b70b9c44915f2c3375d1b700acb6d409152baf70030787d17a684469b
spotbugs-annotations.jar 06eba41a81aaccb011c3f75afa019e509cda7f1eb7a4e057bb860c60845f915e
spotbugs-ant-4.8.1-javadoc.jar 3862ce0fe8a201562cb32ddfbff3d78745950aeb0d0ea8c849bf55d1aa9b71de
spotbugs-ant-4.8.1-sources.jar 9f1431331363f45ceb9b91c0e5246eab574fbff81c56eff0e385f572d346de61
spotbugs-ant.jar a798346790437cdc18217379fa54a7e6b044ba2070891ebe01faee28af79af6c
spotbugs.jar e49adbc51addf00264042d82075db98a10ad2af9348f7275de6bc075b7245a95
test-harness-4.8.1-javadoc.jar 6f2d3a6c452c972e2890161ee1ff84437bba0877bcd302041df73e9d02217d7b
test-harness-4.8.1-sources.jar 633ae795c1889fa59f1faad8ea8f1f5b39155029f4f75b51557085097570feb6
test-harness-4.8.1.jar 23f414f9988a3d44dded88ad2d827e95699dc6bb8d6e06a2b0920db2cac442b9
test-harness-core-4.8.1-javadoc.jar af4e056c212f1039e9f756067fce7125f24160f2e70918fa710e6e3cd9993e92
test-harness-core-4.8.1-sources.jar f5db3e4ebf3f90c9bbf4815824c9d94f93fb740c9610b6f70a64bf7896a4e082
test-harness-core-4.8.1.jar 5bd0e9b18f0ec45c27ee3ec882cb6db86ed42a6b884f091468496de3281dc242
test-harness-jupiter-4.8.1-javadoc.jar 1d84b2c269263a7eb0641d021e99da9a6da2bfac05430b341a38a4b0530e57a9
test-harness-jupiter-4.8.1-sources.jar 0aefbc5c8bd406e5dc0b1d59bc3afc6889c02010d486b22242f4f19a1a935800
test-harness-jupiter-4.8.1.jar d2ed802cc81dca3cf8c393fda7f77f02b01c0c1a8ffce7ec57da53aff27a1485
Changelog

Sourced from com.github.spotbugs:spotbugs's changelog.

4.8.1 - 2023-11-06

Fixed

  • Fixed schema location for findbugsfilter.xsd ([#1416])
  • Fixed missing null checks ([#2629])
  • Disabled DontReusePublicIdentifiers due to the high false positives rate ([#2627])
  • Removed signature of methods using UTF-8 in DefaultEncodingDetector ([#2634])
  • Fix exception escapes when calling functions of JUnit Assert or Assertions ([#2640])
  • Fixed an error in the SARIF export when a bug annotation is missing ([#2632])
  • Fixed false positive RV_EXCEPTION_NOT_THROWN when asserting to exception throws ([#2628])
  • Fix false positive CT_CONSTRUCTOR_THROW when supertype has final finalize ([#2665])
  • Lowered the priority of PA_PUBLIC_MUTABLE_OBJECT_ATTRIBUTE bug ([#2652])
  • Eclipse: fixed startup overhead (on computing classpath) for PDE projects ([#2671])

Build

  • Fix deprecated GHA on '::set-output' by using GITHUB_OUTPUT ([#2651])
Commits
  • a93f606 release v4.8.1
  • 2f8d6ac fix(deps): update junit5 monorepo to v5.10.1 (#2678)
  • fc46873 fix(deps): update dependency org.mockito:mockito-core to v5.7.0 (#2675)
  • 2541a96 Add more bundles for PDE classpath resolving (#2673)
  • 65c8c37 Simplify PDE classpath resolving (#2671)
  • 2ea7c1d fix(deps): update dependency org.checkerframework:checker-qual to v3.40.0 (#2...
  • 17bb20b Lower the priority of PA_PUBLIC_MUTABLE_OBJECT_ATTRIBUTE (#2669)
  • 0ed9c56 fix(deps): update dependency org.apache.commons:commons-text to v1.11.0 (#2668)
  • 674a7d0 Fix CT_CONSTRUCTOR_THROW FP when Supertype has final finalize (#2666)
  • a834b53 fix(deps): update log4j to v2.21.1 (#2663)
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 7 months ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.