search

dequelabs / axe-core-maven-html

Tools for using axe for web accessibility testing with JUnit, Selenium, and Playwright
Mozilla Public License 2.0
81 stars 102 forks source link

chore: bump the maven-low-risk group across 1 directory with 13 updates #486

Closed dependabot[bot] closed 1 week ago

dependabot[bot] commented 1 month ago

Bumps the maven-low-risk group with 13 updates in the / directory:

Package From To
org.apache.maven.plugins:maven-javadoc-plugin 3.7.0 3.10.0
org.apache.maven.plugins:maven-surefire-plugin 3.2.5 3.5.0
org.apache.maven.plugins:maven-gpg-plugin 3.2.4 3.2.7
commons-io:commons-io 2.16.1 2.17.0
io.github.bonigarcia:webdrivermanager 5.8.0 5.9.2
org.apache.commons:commons-lang3 3.14.0 3.17.0
com.fasterxml.jackson.core:jackson-databind 2.17.1 2.18.0
org.junit.vintage:junit-vintage-engine 5.10.2 5.11.1
com.github.eirslett:frontend-maven-plugin 1.15.0 1.15.1
com.microsoft.playwright:playwright 1.44.0 1.47.0
commons-codec:commons-codec 1.17.0 1.17.1
org.apache.commons:commons-compress 1.26.2 1.27.1
com.fasterxml.jackson.core:jackson-annotations 2.17.1 2.18.0

Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.10.0

Commits
  • 487e479 [maven-release-plugin] prepare release maven-javadoc-plugin-3.10.0
  • 9638a6a [MJAVADOC-785] Align plugin implementation with AbstractMavenReport (maven-re...
  • 9d33925 [MJAVADOC-784] Upgrade to Doxia 2.0.0 Milestone Stack
  • a11b921 [MJAVADOC-809] Align Mojo class names
  • 7c4b467 Bump org.apache.maven.plugins:maven-plugins from 42 to 43
  • 636442b Improve ITs
  • dbca15a Bump org.hamcrest:hamcrest-core from 2.2 to 3.0
  • d02bb88 Bump org.apache.commons:commons-lang3 from 3.15.0 to 3.16.0
  • 0a850a1 [MJAVADOC-807] Simplify IT for MJAVADOC-498
  • 43e901f Improve URL handling
  • Additional commits viewable in compare view


Updates org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.0

What's Changed

Full Changelog: https://github.com/apache/maven-surefire/compare/surefire-3.4.0...surefire-3.5.0

3.4.0

... (truncated)

Commits
  • c78365f [maven-release-plugin] prepare release surefire-3.5.0
  • 05e4681 [SUREFIRE-2227] Dynamically calculate xrefTestLocation
  • f1a419a [SUREFIRE-2228] Upgrade to Doxia 2.0.0 Milestone Stack
  • 5e14d4f [SUREFIRE-2161] Align Mojo class names and output names
  • c0784ab Bump org.apache.commons:commons-compress from 1.27.0 to 1.27.1
  • 79ea717 [SUREFIRE-2256] Upgrade to Parent 43
  • 4648b47 add Reproducible Builds badge
  • f64c1b3 [maven-release-plugin] prepare for next development iteration
  • 3ae062d [maven-release-plugin] prepare release surefire-3.4.0
  • f0de8c0 Bump org.htmlunit:htmlunit from 4.3.0 to 4.4.0
  • Additional commits viewable in compare view


Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.4 to 3.2.7

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.7

Fixes a lingering issue affecting whole 3.2.x lineage, that resulted in "bad passphrase" on Windows OS with GPG signer (see MGPG-136 for details).

What's Changed

Full Changelog: https://github.com/apache/maven-gpg-plugin/compare/maven-gpg-plugin-3.2.6...maven-gpg-plugin-3.2.7

3.2.6

Release Notes - Maven GPG Plugin - Version 3.2.6

What's Changed

New Contributors

... (truncated)

Commits
  • 43af21c [maven-release-plugin] prepare release maven-gpg-plugin-3.2.7
  • 8c5a8d2 [MGPG-144] Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#119)
  • cb5422f [MGPG-143] Bump com.kohlschutter.junixsocket:junixsocket-core from 2.10.0 to ...
  • 6b2a27f [MGPG-136] Windows passphrase corruption (#120)
  • 31e87e0 [maven-release-plugin] prepare for next development iteration
  • 1c9a14c [maven-release-plugin] prepare release maven-gpg-plugin-3.2.6
  • bbe6156 Add FAQ for "no pinentry" issue (#118)
  • 5b94273 [MGPG-141] Remove use of deprecated classes (#117)
  • afdfd28 [MGPG-138] Drop direct use of plexus-cipher and secdispatcher (#115)
  • 7516e7c [MGPG-140] Update Maven to 3.9.9 (#116)
  • Additional commits viewable in compare view


Updates commons-io:commons-io from 2.16.1 to 2.17.0

Updates io.github.bonigarcia:webdrivermanager from 5.8.0 to 5.9.2

Changelog

Sourced from io.github.bonigarcia:webdrivermanager's changelog.

[5.9.2] - 2024-07-25

Fixed

  • HTTP 404 when downloading microsoft edgedriver in macOS or Linux (#1320)

[5.9.1] - 2024-06-24

Removed

  • Remove using jackson-databind 2.17.1

[5.9.0] - 2024-06-24

Fixed

  • Fix architecture label to build URL for Edge ARM64

Changed

  • Force to use jackson-databind 2.17.1

Removed

  • Exclude org.bouncycastle:bcpkix-jdk18on from docker-java
Commits
  • 33adaaf [maven-release-plugin] prepare release webdrivermanager-5.9.2
  • 16545fb Update doc for release 5.9.2
  • a973d4a Improve logic for latest driver version detection
  • 19da22a Fix logic to detect browser version
  • d6f6d2d Improve logic to read msedgedriver latest version (#1320)
  • 3b7165a Enable Edge test in CI
  • 63b58ff Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.8.0 (#1322)
  • 1158826 Bump selenium.version from 4.22.0 to 4.23.0 (#1321)
  • 44b1440 Update mirror info (Sat Jul 20 12:02:21 UTC 2024)
  • 5a460e7 Update mirror info (Fri Jul 19 12:02:27 UTC 2024)
  • Additional commits viewable in compare view


Updates org.apache.commons:commons-lang3 from 3.14.0 to 3.17.0

Updates com.fasterxml.jackson.core:jackson-databind from 2.17.1 to 2.18.0

Commits


Updates org.junit.vintage:junit-vintage-engine from 5.10.2 to 5.11.1

Release notes

Sourced from org.junit.vintage:junit-vintage-engine's releases.

JUnit 5.11.1 = Platform 1.11.1 + Jupiter 5.11.1 + Vintage 5.11.1

See Release Notes.

Full Changelog: https://github.com/junit-team/junit5/compare/r5.11.0...r5.11.1

JUnit 5.11.0 = Platform 1.11.0 + Jupiter 5.11.0 + Vintage 5.11.0

See Release Notes.

New Contributors

Full Changelog: https://github.com/junit-team/junit5/compare/r5.10.3...r5.11.0

JUnit 5.11.0-RC1 = Platform 1.11.0-RC1 + Jupiter 5.11.0-RC1 + Vintage 5.11.0-RC1

See Release Notes.

New Contributors

Full Changelog: https://github.com/junit-team/junit5/compare/r5.11.0-M2...r5.11.0-RC1

JUnit 5.11.0-M2 = Platform 1.11.0-M2 + Jupiter 5.11.0-M2 + Vintage 5.11.0-M2

See Release Notes.

New Contributors

... (truncated)

Commits


Updates com.github.eirslett:frontend-maven-plugin from 1.15.0 to 1.15.1

Changelog

Sourced from com.github.eirslett:frontend-maven-plugin's changelog.

1.15.1

  • Fix #1150: Update lifecycle-mapping-metadata.xml for npx
Commits
  • 3f70757 [maven-release-plugin] prepare release frontend-plugins-1.15.1
  • c5c9aec Attempt 2: secrets for OSSRH deployment
  • 274bb70 Update secrets for OSSRH deployment
  • f39b40c Fix: bun windows support
  • a7d3b8b Update NodeInstaller.java
  • 2750625 Fix #1152: Copy npm script file
  • 622ac16 #1042 Use correct Xpp3Dom class
  • bca8bdf Replace tabs with spaces
  • 122cd9b #1042 Allow Authentication via Http Header
  • 60bbf02 Fix: delete only bun directory inside the installation directory instead of t...
  • Additional commits viewable in compare view


Updates com.microsoft.playwright:playwright from 1.44.0 to 1.47.0

Release notes

Sourced from com.microsoft.playwright:playwright's releases.

v1.47.0

Network Tab improvements

The Network tab in the trace viewer has several nice improvements:

  • filtering by asset type and URL
  • better display of query string parameters
  • preview of font assets

Network tab now has filters

Miscellaneous

  • The mcr.microsoft.com/playwright/java:v1.47.0 now serves a Playwright image based on Ubuntu 24.04 Noble. To use the 22.02 jammy-based image, please use mcr.microsoft.com/playwright/java:v1.47.0-jammy instead.
  • The :latest/:focal/:jammy tag for Playwright Docker images is no longer being published. Pin to a specific version for better stability and reproducibility.
  • TLS client certificates can now be passed from memory by passing cert and key as byte arrays instead of file paths.
  • noWaitAfter in locator.selectOption() was deprecated.
  • We've seen reports of WebGL in Webkit misbehaving on GitHub Actions macos-13. We recommend upgrading GitHub Actions to macos-14.

Browser Versions

  • Chromium 129.0.6668.29
  • Mozilla Firefox 130.0
  • WebKit 18.0

This version was also tested against the following stable channels:

  • Google Chrome 128
  • Microsoft Edge 128

v1.46.0

TLS Client Certificates

Playwright now allows to supply client-side certificates, so that server can verify them, as specified by TLS Client Authentication.

You can provide client certificates as a parameter of browser.newContext() and apiRequest.newContext(). The following snippet sets up a client certificate for https://example.com:

BrowserContext context = browser.newContext(new Browser.NewContextOptions()
    .setClientCertificates(asList(new ClientCertificate("https://example.com")
          .setCertPath(Paths.get("client-certificates/cert.pem"))
          .setKeyPath(Paths.get("client-certificates/key.pem")))));

Trace Viewer Updates

  • Content of text attachments is now rendered inline in the attachments pane.
  • New setting to show/hide routing actions like route.resume().
  • Request method and status are shown in the network details tab.
  • New button to copy source file location to clipboard.
  • Metadata pane now displays the baseURL.

Miscellaneous

... (truncated)

Commits
  • bb0f48e chore: set version to 1.47.0 (#1673)
  • ee18e1a chore: roll 1.47.0-beta-1726138322000 (#1672)
  • 9cf4bf2 docs: Update ROLLING.md with new roll script
  • 36350f3 chore: roll 1.47.0 (#1670)
  • f3476c6 test: fix client-certificate tests (#1669)
  • 8fd8f1c test: remove per-context proxy hacks for Windows/Chromium (#1668)
  • 7d20666 chore(deps): bump the all group with 2 updates (#1664)
  • 6b01b87 chore: roll driver to 1.47.0 alpha 2024 08 28 (#1663)
  • 2e32eb7 feat(junit): Implement automatic saving of traces and screenshots via fixture...
  • b81b144 fix: null check in ListenerCollection notify method (#1661)
  • Additional commits viewable in compare view


Updates commons-codec:commons-codec from 1.17.0 to 1.17.1

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.17.1 RELEASE NOTES

The Apache Commons Codec component contains encoders and decoders for various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

Feature and fix release. Requires a minimum of Java 8.

Fixed Bugs

  •         Md5Crypt now throws IllegalArgumentException on an invalid prefix. Thanks to Gary Gregory.

Changes

  •         Bump org.apache.commons:commons-parent from 69 to 71 [#286](https://github.com/apache/commons-codec/issues/286). Thanks to Gary Gregory.

  •         Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24 [#293](https://github.com/apache/commons-codec/issues/293). Thanks to Dependabot.

  •         Bump org.codehaus.mojo:taglist-maven-plugin from 3.0.0 to 3.1.0 [#292](https://github.com/apache/commons-codec/issues/292). Thanks to Dependabot.

For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

Commits


Updates org.apache.commons:commons-compress from 1.26.2 to 1.27.1

Updates com.fasterxml.jackson.core:jackson-annotations from 2.17.1 to 2.18.0

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 1 week ago

Superseded by #494.