search

jborgers / sonar-pmd

☕️ PMD Plugin for SonarQube
https://redirect.sonarsource.com/plugins/pmd.html
GNU Lesser General Public License v3.0
261 stars 156 forks source link

Bump java-frontend from 7.17.0.31219 to 7.19.0.31550 #396

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps java-frontend from 7.17.0.31219 to 7.19.0.31550.

Release notes

Sourced from java-frontend's releases.

7.19.0.31550

Release notes - SonarJava - 7.19

Breaking change: If you are using Java 19+ preview features, now SonarJava does not enable them automatically, you need to set sonar.java.enablePreview=true explicitly.

False Negative

SONARJAVA-4443 Rule S6437: Add jjwt support

New Feature

SONARJAVA-4369 S6485: Hash-based collections with known capacity should be initialized with the proper related static method

SONARJAVA-4464 Add a new "sonar.java.enablePreview" analysis parameter, disabled by default

Task

SONARJAVA-4468 Update rule metadata

Improvement

SONARJAVA-4378 Update ECJ to 3.33.0

7.18.0.31443

Release notes - SonarJava - 7.18

Bug

SONARJAVA-4396 The Java analyzer distinguishes between changed and unchanged in files in PR context

New Feature

SONARJAVA-4433 S6539: Class depends on an excessive number of classes

SONARJAVA-4434 S6541: Methods should not perform too many tasks (Brain method)

SONARJAVA-4440 S6548: Identify Singleton Design Patterns

Task

SONARJAVA-4455 Update Rules Metadata

Improvement

SONARJAVA-4277 Fix S1142 message wording and secondaries

Commits
  • 652aa20 Update parent version to 67.0.0.241 in pom.xml (#4370)
  • a768565 SONARJAVA-4468 Update rule metadata (#4368)
  • b1a0335 SONARJAVA-4464 Restrict the use of the sonar.java.enablePreview flag to the g...
  • 0f50490 SONARJAVA-4443 Rule S6437: Add jjwt support (#4365)
  • 39f40a1 SONARJAVA-4464 Add new "sonar.java.enablePreview" analysis parameter (#4364)
  • ea704b8 lp/SONARJAVA-4369 Create new check for rule S6485 (#4362)
  • ef03868 SONARJAVA-4368 Upgrade of ECJ to 3.33.0 and bring support of JDK 19+
  • 60b5bb3 Bump spring-core in /its/plugin/projects/package-info-annotations
  • f79ed2c Bump spring-core from 5.3.26 to 5.3.27 in /java-checks-test-sources
  • 7e1b0a7 Add .mailmap file to sort out contributors with multiple emails
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
sonarcloud[bot] commented 1 year ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

dependabot[bot] commented 1 year ago

Superseded by #405.