jaconi-io / morp

Multi-tenant OpenID Connect reverse proxy
MIT License
0 stars 0 forks source link

build(deps): bump org.jsoup:jsoup from 1.16.2 to 1.17.1 #227

Closed dependabot[bot] closed 11 months ago

dependabot[bot] commented 11 months ago

Bumps org.jsoup:jsoup from 1.16.2 to 1.17.1.

Release notes

Sourced from org.jsoup:jsoup's releases.

jsoup 1.17.1

... (truncated)

Changelog

Sourced from org.jsoup:jsoup's changelog.

jsoup changelog

Release 1.17.1 [27-Nov-2023]

  • Improvement: in Jsoup.connect(), added support for request-level authentication, supporting authentication to proxies and to servers. jhy/jsoup#2046

  • Improvement: in the Elements list, added direct support for #set(index, element), #remove(index), #remove(object), #clear(), #removeAll(collection), #retainAll(collection), #removeIf(filter), #replaceAll(operator). These methods update the original DOM, as well as the Elements list. jhy/jsoup#2017

  • Improvement: added the NodeIterator class, to efficiently traverse a node tree using the Iterator interface. And added Stream Element#stream() and Node#nodeStream() methods, to enable fluent composable stream pipelines of node traversals. jhy/jsoup#2051

  • Improvement: when changing the OutputSettings syntax to XML, the xhtml EscapeMode is automatically set by default.

  • Improvement: added the :is(selector list) pseudo-selector, which finds elements that match any of the selectors in the selector list. Useful for making large ORed selectors more readable.

  • Improvement: repackaged the library with native (vs automatic) JPMS module support. jhy/jsoup#2025

  • Improvement: better fidelity of source positions when tracking is enabled. And implicitly created or closed elements are tracked and detectable via Range.isImplicit(). jhy/jsoup#2056

  • Improvement: when source tracking is enabled, the source position for attribute names and values is now available. Attribute#sourceRange() provides the ranges. jhy/jsoup#2057

  • Improvement: when running concurrently under Java 21+ Virtual Threads, virtual threads could be pinned to their carrier platform thread when parsing an input stream. To improve performance, particularly when parsing fetched URLs, the internal ConstrainableInputStream has been replaced by ControllableInputStream, which avoids the locking which caused that pinning. jhy/jsoup#2054

  • Improvement: in Jsoup.Connect, allow any XML mimetype as a supported mimetype. Was previously limited to {application|text}/xml. This enables for e.g. fetching SVGs with a image/svg+xml mimetype, without having to disable mimetype validation. jhy/jsoup#2059

  • Bugfix: when outputting with XML syntax, HTML elements that were parsed as data nodes ( and ) should be emitted as CDATA nodes, so that they can be parsed correctly by an XML parser. jhy/jsoup#1720

  • Bugfix: the Immediate Parent selector > could match elements above the root context element, causing incorrect elements to be returned when used on elements other than the root document.

... (truncated)

Commits
  • 8eecef3 [maven-release-plugin] prepare release jsoup-1.17.1
  • a6c1950 In javadoc, emit links to source
  • 00f85a8 Revised Connection.data javadoc
  • f49dd2c PR url
  • 4b91adf Simpler empty test
  • 73d4506 Refactored UserData to be tucked into a hash (#2060)
  • 58521a4 Allow any XML mimetype in Connection
  • bc79810 Specify overrides
  • 0a73767 Re-specify Iterator<Attribute> type
  • 4669e14 Make Attributes iterator throw NoSuchElementException
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
sonarcloud[bot] commented 11 months ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

codecov[bot] commented 11 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Comparison is base (2ff57ad) 86.21% compared to head (4666115) 86.21%. Report is 2 commits behind head on main.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #227 +/- ## ========================================= Coverage 86.21% 86.21% Complexity 123 123 ========================================= Files 27 27 Lines 312 312 Branches 31 31 ========================================= Hits 269 269 Misses 27 27 Partials 16 16 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.