search

cryptomator / cryptofs

Java Filesystem Provider with integrated encryption
GNU Affero General Public License v3.0
93 stars 35 forks source link

Bump the maven-dependencies group with 15 updates #183

Closed dependabot[bot] closed 10 months ago

dependabot[bot] commented 10 months ago

Bumps the maven-dependencies group with 15 updates:

Package From To
com.google.dagger:dagger 2.44.2 2.48.1
com.google.dagger:dagger-compiler 2.44.2 2.48.1
com.google.guava:guava 32.0.0-jre 32.1.3-jre
com.github.ben-manes.caffeine:caffeine 3.1.4 3.1.8
org.slf4j:slf4j-api 2.0.3 2.0.9
org.slf4j:slf4j-simple 2.0.3 2.0.9
org.junit.jupiter:junit-jupiter 5.9.1 5.10.1
org.mockito:mockito-inline 4.9.0 5.2.0
org.apache.maven.plugins:maven-compiler-plugin 3.10.1 3.11.0
org.apache.maven.plugins:maven-surefire-plugin 3.0.0-M7 3.2.2
org.apache.maven.plugins:maven-source-plugin 3.2.1 3.3.0
org.apache.maven.plugins:maven-javadoc-plugin 3.4.1 3.6.2
org.owasp:dependency-check-maven 8.1.2 9.0.0
org.jacoco:jacoco-maven-plugin 0.8.8 0.8.11
org.apache.maven.plugins:maven-gpg-plugin 3.0.1 3.1.0

Updates com.google.dagger:dagger from 2.44.2 to 2.48.1

Release notes

Sourced from com.google.dagger:dagger's releases.

Dagger 2.48.1

Bug Fixes

Fixes #4063, #4054: [KSP]: Fixes some incremental processing issues with KSP (c8a568956) Fixes #4046: [KSP] Fixes "Unexpected element" in XProcessing library (https://github.com/androidx/androidx/commit/bdc1bb06d4f5dbd574bb66cef674ba31846eb4d3) Fixes #4059: [KSP] Align behavior of generic inline types in KSP with KAPT in XProcessing library (https://github.com/androidx/androidx/commit/b0fa9cf493458a1f3b35a1d68298552e3eaae678) Fixes #3980: Fixes Lint crash with AGP 8.1.0. (e651294c2) Fixes #4055: Fixes issue with using generic types in Dagger's ClassKey (9852b4237)

Dagger 2.48

Dagger/Hilt KSP support

Dagger 2.48 includes the alpha release of the Dagger and Hilt KSP processors.

Instructions for using the Dagger/Hilt KSP processors can be found at https://dagger.dev/dev-guide/ksp.

In order to use Dagger’s KSP processor you will need to:

If you depend on androidx.hilt:hilt-common or androidx.hilt:hilt-work they will need to be updated to at least 1.1.0-alpha01.

Also note that Dagger’s KSP processors are still in the alpha stage. So far we’ve focused mainly on trying to ensure correctness rather than optimize performance. Please apply due diligence when enabling ksp and report any bugs or performance issues at https://github.com/google/dagger/issues. The current list of known issues can be found here.

There are also a few potentially breaking changes included with this release. These changes were made to better support Dagger usage with Kotlin sources, and make the migration from KAPT to KSP more seamless. We don’t expect these changes to affect most users. Please see below for more details.

Breaking changes

The dagger.ignoreProvisionKeyWildcards is now enabled by default

This may break apps that are providing the same binding with different wildcards, e.g. Foo<Bar> and Foo<? extends Bar>.

Fix: See https://dagger.dev/dev-guide/compiler-options#ignore-provision-key-wildcards for suggestions on how to fix this. If fixing is not an immediate option, you can still disable the flag with dagger.ignoreProvisionKeyWildcards=DISABLED.

@Binds assignability check

Unlike KAPT, KSP takes nullability into account when checking if a type is assignable to another type. This changes the behavior of Dagger’s @Binds usage validation such that a type that was assignable in KAPT may no longer be assignable in KSP. For example:

// Incorrect: this compiles successfully in KAPT but the compilation fails in KSP
@Binds fun bind(impl: FooImpl<Bar?>): Foo<Bar>

Fix: To fix this breakage, users should update the parameter or return type in the method such that they are actually assignable when taking nullability into account. For example:

// Correct: this compiles successfully in KAPT and KSP
</tr></table>

... (truncated)

Commits
  • 2d9ba60 2.48.1 release
  • 378535e Refactor ResolvedBindings and LegacyBindingGraph to include the ComponentPath.
  • fd907cb Allow sharding for Dagger compiler tests.
  • 558cc51 Fix Dagger's incremental processing for KSP.
  • 5cc209c [Refactor]: This CL refactors a few things in ComponentDescriptor.
  • e8f5f2b Drop latest XProcessing jars into Dagger.
  • 7412301 Internal changes
  • 76bde06 Rollback of "[Refactor] Remove duplicated logic in BindingGraphFactory"
  • e651294 Fix Lint crash with AGP 8.1.0. See google/dagger#4023...
  • 47953aa [Refactor] Remove duplicated logic in BindingGraphFactory.
  • Additional commits viewable in compare view


Updates com.google.dagger:dagger-compiler from 2.44.2 to 2.48.1

Release notes

Sourced from com.google.dagger:dagger-compiler's releases.

Dagger 2.48.1

Bug Fixes

Fixes #4063, #4054: [KSP]: Fixes some incremental processing issues with KSP (c8a568956) Fixes #4046: [KSP] Fixes "Unexpected element" in XProcessing library (https://github.com/androidx/androidx/commit/bdc1bb06d4f5dbd574bb66cef674ba31846eb4d3) Fixes #4059: [KSP] Align behavior of generic inline types in KSP with KAPT in XProcessing library (https://github.com/androidx/androidx/commit/b0fa9cf493458a1f3b35a1d68298552e3eaae678) Fixes #3980: Fixes Lint crash with AGP 8.1.0. (e651294c2) Fixes #4055: Fixes issue with using generic types in Dagger's ClassKey (9852b4237)

Dagger 2.48

Dagger/Hilt KSP support

Dagger 2.48 includes the alpha release of the Dagger and Hilt KSP processors.

Instructions for using the Dagger/Hilt KSP processors can be found at https://dagger.dev/dev-guide/ksp.

In order to use Dagger’s KSP processor you will need to:

If you depend on androidx.hilt:hilt-common or androidx.hilt:hilt-work they will need to be updated to at least 1.1.0-alpha01.

Also note that Dagger’s KSP processors are still in the alpha stage. So far we’ve focused mainly on trying to ensure correctness rather than optimize performance. Please apply due diligence when enabling ksp and report any bugs or performance issues at https://github.com/google/dagger/issues. The current list of known issues can be found here.

There are also a few potentially breaking changes included with this release. These changes were made to better support Dagger usage with Kotlin sources, and make the migration from KAPT to KSP more seamless. We don’t expect these changes to affect most users. Please see below for more details.

Breaking changes

The dagger.ignoreProvisionKeyWildcards is now enabled by default

This may break apps that are providing the same binding with different wildcards, e.g. Foo<Bar> and Foo<? extends Bar>.

Fix: See https://dagger.dev/dev-guide/compiler-options#ignore-provision-key-wildcards for suggestions on how to fix this. If fixing is not an immediate option, you can still disable the flag with dagger.ignoreProvisionKeyWildcards=DISABLED.

@Binds assignability check

Unlike KAPT, KSP takes nullability into account when checking if a type is assignable to another type. This changes the behavior of Dagger’s @Binds usage validation such that a type that was assignable in KAPT may no longer be assignable in KSP. For example:

// Incorrect: this compiles successfully in KAPT but the compilation fails in KSP
@Binds fun bind(impl: FooImpl<Bar?>): Foo<Bar>

Fix: To fix this breakage, users should update the parameter or return type in the method such that they are actually assignable when taking nullability into account. For example:

// Correct: this compiles successfully in KAPT and KSP
</tr></table>

... (truncated)

Commits
  • 2d9ba60 2.48.1 release
  • 378535e Refactor ResolvedBindings and LegacyBindingGraph to include the ComponentPath.
  • fd907cb Allow sharding for Dagger compiler tests.
  • 558cc51 Fix Dagger's incremental processing for KSP.
  • 5cc209c [Refactor]: This CL refactors a few things in ComponentDescriptor.
  • e8f5f2b Drop latest XProcessing jars into Dagger.
  • 7412301 Internal changes
  • 76bde06 Rollback of "[Refactor] Remove duplicated logic in BindingGraphFactory"
  • e651294 Fix Lint crash with AGP 8.1.0. See google/dagger#4023...
  • 47953aa [Refactor] Remove duplicated logic in BindingGraphFactory.
  • Additional commits viewable in compare view


Updates com.google.guava:guava from 32.0.0-jre to 32.1.3-jre

Release notes

Sourced from com.google.guava:guava's releases.

32.1.3

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>32.1.3-jre</version>
  <!-- or, for Android: -->
  <version>32.1.3-android</version>
</dependency>

Jar files

Guava requires one runtime dependency, which you can download here:

Javadoc

JDiff

Changelog

  • Changed Gradle Metadata to include dependency versions directly. This may address "Could not find some-dependency" errors that some users have reported (which might be a result of users' excluding guava-parent). (c6d35cf1a5)
  • collect: Changed Multisets.unmodifiableMultiset(set).removeIf(predicate) to throw an exception always, even if nothing matches predicate. (61dbccfda3)
  • graph: Fixed the behavior of Graph/ValueGraph views for a node when that node is removed from the graph. (950799691c)
  • io: Fixed Files.createTempDir and FileBackedOutputStream under Windows services, a rare use case. (The fix actually covers only Java 9+ because Java 8 would require an additional approach. Let us know if you need support under Java 8.) (f87f68cd3e)
  • net: Made MediaType.parse allow and skip over whitespace around the / and = separator tokens in addition to the ; separator, for which it was already being allowed. (2786f83291)
  • util.concurrent: Tweaked Futures.getChecked constructor-selection behavior: The method continues to prefer to call constructors with a String parameter, but now it breaks ties based on whether the constructor has a Throwable parameter. Beyond that, the choice of constructor remains undefined. (For this and other reasons, we discourage the use of getChecked.) (59cfb2267a)

32.1.2

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>32.1.2-jre</version>
</tr></table>

... (truncated)

Commits


Updates com.github.ben-manes.caffeine:caffeine from 3.1.4 to 3.1.8

Release notes

Sourced from com.github.ben-manes.caffeine:caffeine's releases.

3.1.8

  • Added a workaround for a possible JDK concurrency bug with method handles (#1111)

3.1.7

Cache

  • Improved builder construction time (#905)

JCache

  • Fixed deadlock when a cache listener writes to another cache (#1065)
  • Added jakarta.inject support, dropping javax.inject (#1009)

3.1.6

  • Fixed the log message when a key's equality has changed and corrupted the underlying map (#900, SLF4J-529)
  • Added Implementation-Version and other MANIFEST.MF attributes (#889)

3.1.5

Cache

  • Fixed clear() removing a key more than once due to a write-back removal listener (#872)

JCache

  • Added support for loading the configuration from the cache manager's uri (#877)
Commits
  • b0723da minor build plugin upgrades
  • 82cf9a3 Fix issue #1111 by not creating methodType on each invocation (to work around...
  • b1462dd simplify and document the coalescing bulkloader example (fixes #7)
  • f3a9345 document the write-behind-rxjava example
  • 2c7b878 Improve hibernate example and add resilience example using failsafe
  • c2befe9 Bump EnricoMi/publish-unit-test-result-action from 2.8.0 to 2.9.0 (#1109)
  • 30b3813 upgrade error prone and hibernate
  • 6f0f14e Bump com.uber.nullaway:nullaway from 0.10.11 to 0.10.12 (#1108)
  • 17677fa Bump org.checkerframework:checker-qual from 3.36.0 to 3.37.0 (#1107)
  • 67b36d6 Bump crate-ci/typos from 1.16.1 to 1.16.2 (#1105)
  • Additional commits viewable in compare view


Updates org.slf4j:slf4j-api from 2.0.3 to 2.0.9

Updates org.slf4j:slf4j-simple from 2.0.3 to 2.0.9

Updates org.junit.jupiter:junit-jupiter from 5.9.1 to 5.10.1

Release notes

Sourced from org.junit.jupiter:junit-jupiter's releases.

JUnit 5.10.1 = Platform 1.10.1 + Jupiter 5.10.1 + Vintage 5.10.1

See Release Notes.

Full Changelog: https://github.com/junit-team/junit5/compare/r5.10.0...r5.10.1

JUnit 5.10.0 = Platform 1.10.0 + Jupiter 5.10.0 + Vintage 5.10.0

See Release Notes.

Full Changelog: https://github.com/junit-team/junit5/compare/r5.10.0-RC2...r5.10.0

JUnit 5.10.0-RC2 = Platform 1.10.0-RC2+ Jupiter 5.10.0-RC2 + Vintage 5.10.0-RC2

See Release Notes.

JUnit 5.10.0-RC1 = Platform 1.10.0-RC1 + Jupiter 5.10.0-RC1 + Vintage 5.10.0-RC1

See Release Notes.

JUnit 5.10.0-M1 = Platform 1.10.0-M1 + Jupiter 5.10.0-M1 + Vintage 5.10.0-M1

See Release Notes.

JUnit 5.9.3 = Platform 1.9.3 + Jupiter 5.9.3 + Vintage 5.9.3

See Release Notes.

JUnit 5.9.2 = Platform 1.9.2 + Jupiter 5.9.2 + Vintage 5.9.2

See Release Notes.

Commits
  • e5f50d8 Release 5.10.1
  • ac86d18 Fix typo in AfterAll documentation
  • 388c5be Harmonize application of method and field filters in search algorithms
  • f82dd1e Apply field predicate before searching type hierarchy
  • 1d1eb85 Polishing
  • 5ce280e Update picocli to 4.7.5 and enable help width computation
  • fea05c3 Fix ConsoleLauncherTests and StandaloneTests
  • c556735 Use same expected files for all JDK versions
  • 808493a Run StandaloneTests for Java 8 under Java 8
  • 9ec5766 Unify messages about exit codes in StandaloneTests
  • Additional commits viewable in compare view


Updates org.mockito:mockito-inline from 4.9.0 to 5.2.0

Release notes

Sourced from org.mockito:mockito-inline's releases.

v5.2.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.2.0

v5.1.1

Changelog generated by Shipkit Changelog Gradle Plugin

5.1.1

v5.1.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.1.0

... (truncated)

Commits
  • 74c811a Make InjectMocks aware of generic types (#2923)
  • fc136e4 Explicitly use UTF-8 in IOUtils (#2935)
  • 9473470 Bump io.github.gradle-nexus:publish-plugin from 1.2.0 to 1.3.0 (#2932)
  • dddeb72 Bump versions.bytebuddy from 1.14.0 to 1.14.1 (#2931)
  • 92ed602 Bump com.google.googlejavaformat:google-java-format from 1.15.0 to 1.16.0 (#2...
  • 19ef24a Bump com.diffplug.spotless from 6.15.0 to 6.16.0 (#2930)
  • 8b96cc1 Bump io.github.gradle-nexus:publish-plugin from 1.1.0 to 1.2.0 (#2924)
  • 4eb275c Make project relocatable by using relative paths in the OSGi test task (#2920)
  • d937334 Bump com.github.ben-manes.versions from 0.45.0 to 0.46.0 (#2922)
  • 60b0e71 Bump versions.bytebuddy from 1.13.0 to 1.14.0 (#2918)
  • Additional commits viewable in compare view


Updates org.apache.maven.plugins:maven-compiler-plugin from 3.10.1 to 3.11.0

Release notes

Sourced from org.apache.maven.plugins:maven-compiler-plugin's releases.

3.11.0

🚀 New features and improvements

🐛 Bug Fixes

📦 Dependency updates

... (truncated)

Commits
  • eeda628 [maven-release-plugin] prepare release maven-compiler-plugin-3.11.0
  • 82b799f [MCOMPILER-527] Upgrade plexus-java to 1.1.2 (#177)
  • f9c2350 [MCOMPILER-526] Fix IT (#178)
  • 4022bd0 [MCOMPILER-494] - Add a useModulePath switch to the testCompile mojo (#119)
  • f4a8a54 [MCOMPILER-525] Incorrect detection of dependency change (#172)
  • 86b9f59 [MCOMPILER-395] Allow dependency exclusions for 'annotationProcessorPaths' (#...
  • e304ceb [MCOMPILER-526] Ignore reformat commit for git blame
  • f7a4613 [MCOMPILER-526] Reformat
  • cc78aee [MCOMPILER-526] Upgrade to parent 39
  • 3dca82f [MCOMPILER-526] Add packages to please the formatter
  • Additional commits viewable in compare view


Updates org.apache.maven.plugins:maven-surefire-plugin from 3.0.0-M7 to 3.2.2

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.2.2

🐛 Bug Fixes

📦 Dependency updates

🔧 Build

3.2.1

🚀 New features and improvements

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

3.1.2

Release Notes - Maven Surefire - Version 3.1.2

... (truncated)

Commits
  • 2d76753 [maven-release-plugin] prepare release surefire-3.2.2
  • dd640bf [SUREFIRE-2208] Bump org.codehaus.plexus:plexus-java from 1.1.2 to 1.2.0 (#682)
  • dd2fcfd [SUREFIRE-2205] Use maven-plugin-report-plugin only in plugins modules
  • 03c71d1 [SUREFIRE-2206] Downgrade plexus-xml to 3.0.0
  • c3c3c84 Use Maven 3.x.x and 3.6.3 on Jenkins
  • a540ef4 [SUREFIRE-2205] Mojo documentation links are broken
  • 3a58f29 [maven-release-plugin] prepare for next development iteration
  • df9f657 [maven-release-plugin] prepare release surefire-3.2.1
  • 0910b75 Fix formatting
  • 97c84a1 [maven-release-plugin] prepare for next development iteration
  • Additional commits viewable in compare view


Updates org.apache.maven.plugins:maven-source-plugin from 3.2.1 to 3.3.0

Commits
  • 02a9847 [maven-release-plugin] prepare release maven-source-plugin-3.3.0
  • f186993 [MSOURCES-135] Cleanup project code
  • 021af55 [MSOURCES-134] Refresh download page
  • b11a457 Use shared GitHub actions v3
  • 7caf2b0 [MSOURCES-133] Upgrade Parent to 39 - ignore git blame
  • dee4c10 [MSOURCES-133] Upgrade Parent to 39
  • 452111f Add dependabot configuration
  • e691ac3 s/MSOURCE/MSOURCES/
  • 1ddffd8 Auto-link MSOURCE Jira
  • 37ffefe Add pull request template
  • Additional commits viewable in compare view


Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.4.1 to 3.6.2

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.6.2

🐛 Bug Fixes