search

isselab / HAnS

HAnS - Helping Annotate Software. HAnS is an open-source (Apache 2.0) plugin for IntelliJ that helps you annotate software.
Apache License 2.0
6 stars 8 forks source link

Bump JetBrains/qodana-action from 2023.3 to 2024.1 #64

Closed dependabot[bot] closed 4 months ago

dependabot[bot] commented 6 months ago

Bumps JetBrains/qodana-action from 2023.3 to 2024.1.

Release notes

Sourced from JetBrains/qodana-action's releases.

v2023.3.2

Changelog

  • fc2dc2f :bricks: Use node20 as the action runtime
  • 43dddd1 :arrow_up: Bump the dependencies group with 7 updates
  • 9a71424 :arrow_up: Bump the dependencies group with 1 update
  • 5796958 :arrow_up: Bump the dependencies group with 2 updates
  • 8e10b3a :arrow_up: Update qodana to v2023.3.2
  • 11d3bf9 :arrow_up: Bump the dependencies group with 16 updates
  • 19ac427 :arrow_up: Bump undici from 5.26.3 to 5.28.3
  • 3ffdff2 :arrow_up: Bump the dependencies group with 1 update
  • a040a78 :arrow_up: Bump follow-redirects from 1.15.5 to 1.15.6

v2023.3.1

Changelog

  • e5e5181 :bug: Problem may not always contain a location.
  • 138fe72 :bug: Repack action distribution
  • 7f47dd1 :bug: Fix nullability
  • 8815ca3 :bug: Repack action distribution
  • 4660a5f :arrow_up: Bump the dependencies group with 2 updates
  • 2699838 :arrow_up: Bump the dependencies group with 15 updates
  • 0810865 :arrow_up: Update qodana to v2023.3.1
  • 7cf87a0 :recycle: Fix code for the latest GitHub dependencies
  • 5047802 :bug: Fix output issues (QD-6541, QD-7986)
  • 54f6385 :arrow_up: Bump the dependencies group with 9 updates
  • f5f62df :arrow_up: Bump the dependencies group with 3 updates
Commits
  • a4f50a6 :memo: Update Azure icon
  • 23aa837 :bricks: Update Azure configuration
  • 38a023c :bug: Support --config in the action
  • ccc2f78 :bricks: Update Qodana configuration
  • f0a644c :children_crossing: Fix view report message
  • 03d9f05 :recycle: Apply Qodana suggestions
  • efcec05 :arrow_up: Bump the dependencies group with 7 updates
  • 12749d0 :arrow_up: Update qodana to v2024.1.1
  • 3925fa7 :lock: Prevent second order command injection prevention (CWE-88, CWE-78)
  • 5240dc8 :arrow_up: Bump gradle/wrapper-validation-action
  • Additional commits viewable in compare view


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

github-actions[bot] commented 4 months ago

Qodana Community for JVM

289 new problems were found

Inspection name Severity Problems
Duplicate character in character class ๐Ÿ”ถ Warning 44
@NotNull/@Nullable problems ๐Ÿ”ถ Warning 32
C-style array declaration ๐Ÿ”ถ Warning 20
Unused assignment ๐Ÿ”ถ Warning 20
Redundant local variable ๐Ÿ”ถ Warning 18
Field can be local ๐Ÿ”ถ Warning 15
Nullability and data flow problems ๐Ÿ”ถ Warning 14
Unchecked warning ๐Ÿ”ถ Warning 13
Redundant nested character class ๐Ÿ”ถ Warning 12
Field may be 'final' ๐Ÿ”ถ Warning 7
Unused import ๐Ÿ”ถ Warning 7
Loop variable not updated inside loop ๐Ÿ”ถ Warning 5
Unnecessary unicode escape sequence ๐Ÿ”ถ Warning 5
Unstable API Usage ๐Ÿ”ถ Warning 5
Unnecessarily escaped character ๐Ÿ”ถ Warning 4
Labeled switch rule has redundant code block ๐Ÿ”ถ Warning 3
'size() == 0' can be replaced with 'isEmpty()' ๐Ÿ”ถ Warning 3
'String.equals()' can be replaced with 'String.isEmpty()' ๐Ÿ”ถ Warning 3
Unnecessary semicolon ๐Ÿ”ถ Warning 3
Stream API call chain can be simplified ๐Ÿ”ถ Warning 2
Condition is covered by further condition ๐Ÿ”ถ Warning 1
Incorrect string capitalization ๐Ÿ”ถ Warning 1
Pointless bitwise expression ๐Ÿ”ถ Warning 1
Redundant step in 'Stream' or 'Optional' call chain ๐Ÿ”ถ Warning 1
Redundant character escape ๐Ÿ”ถ Warning 1
Replacement operation has no effect ๐Ÿ”ถ Warning 1
Call to 'printStackTrace()' ๐Ÿ”ถ Warning 1
Redundant 'if' statement ๐Ÿ”ถ Warning 1
Unnecessary 'return' statement ๐Ÿ”ถ Warning 1
Duplicate branches in 'switch' โ—ฝ๏ธ Notice 36
Method can be extracted โ—ฝ๏ธ Notice 5
Commented out code โ—ฝ๏ธ Notice 3
'if' statement with identical branches โ—ฝ๏ธ Notice 1

๐Ÿ’ก Qodana analysis was run in the pull request mode: only the changed files were checked

View the detailed Qodana report To be able to view the detailed Qodana report, you can either: - Register at [Qodana Cloud](https://qodana.cloud/) and [configure the action](https://github.com/jetbrains/qodana-action#qodana-cloud) - Use [GitHub Code Scanning with Qodana](https://github.com/jetbrains/qodana-action#github-code-scanning) - Host [Qodana report at GitHub Pages](https://github.com/JetBrains/qodana-action/blob/3a8e25f5caad8d8b01c1435f1ef7b19fe8b039a0/README.md#github-pages) - Inspect and use `qodana.sarif.json` (see [the Qodana SARIF format](https://www.jetbrains.com/help/qodana/qodana-sarif-output.html#Report+structure) for details) To get `*.log` files or any other Qodana artifacts, run the action with `upload-result` option set to `true`, so that the action will upload the files as the job artifacts: ```yaml - name: 'Qodana Scan' uses: JetBrains/qodana-action@v2024.1.5 with: upload-result: true ```
Contact Qodana team Contact us at [qodana-support@jetbrains.com](mailto:qodana-support@jetbrains.com) - Or via our issue tracker: https://jb.gg/qodana-issue - Or share your feedback: https://jb.gg/qodana-discussions
johmara commented 4 months ago

@dependabot rebase

dependabot[bot] commented 4 months ago

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

johmara commented 4 months ago

@dependabot recreate