jenkinsci / dependency-track-plugin

Main repository for the official Dependency-Track Jenkins plugin
https://dependencytrack.org/
Apache License 2.0
44 stars 27 forks source link

Bump plugin from 4.31 to 4.54 #140

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps plugin from 4.31 to 4.54.

Release notes

Sourced from plugin's releases.

4.54

🚨 Removed

🚀 New features and improvements

📦 Dependency updates

4.53

📦 Dependency updates

4.52

💥 Breaking changes

This release of the plugin build toolchain requires Java 11 or newer and Jenkins 2.361 or newer. Update jenkins.version in pom.xml to 2.361 or newer as described in the developer documentation, and adjust your Jenkinsfile to remove any Java 8 configurations. Note that in the absence of an explicit set of configurations, the default set of configurations still includes Java 8. The recommended set of configurations can be found in the archetype. Also note that pending JENKINS-46795 any changes to a repository's Jenkinsfile require write access to take effect in the PR build.

If you neglect to update jenkins.version to 2.361 or later, you will receive the following error:

This version of maven-hpi-plugin requires Jenkins 2.361 or later.

If you neglect to adjust your Jenkinsfile to remove any Java 8 configurations (or try to build locally with Java 8), you will receive a low-level class version error.

🚨 Removed

... (truncated)

Commits
  • 500c002 [maven-release-plugin] prepare release plugin-4.54
  • a76b01b Manage versions of maven-assembly-plugin and maven-help-plugin (#684)
  • 45b6944 Remove managed dependency on Animal Sniffer (#679)
  • 2bc3677 Remove unnecessary default group ID (#681)
  • ead3363 Remove unnecessary useReleaseProfile configuration (#682)
  • cd569bc Skip Yarn linting in quick-build profile (#680)
  • 0d15080 Add properties for Maven plugin versions (#677)
  • faa67ff Bump jenkins-test-harness (#678)
  • 59317c2 Inline Maven property incrementals.url for Maven 4 support (#666)
  • a316c25 Bump maven-failsafe-plugin from 3.0.0-M7 to 3.0.0-M8 (#675)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #144.