jenkinsci / google-compute-engine-plugin

https://plugins.jenkins.io/google-compute-engine/
Apache License 2.0
57 stars 88 forks source link

Bump com.google.http-client:google-http-client from 1.43.3 to 1.45.0 #479

Closed dependabot[bot] closed 1 week ago

dependabot[bot] commented 1 month ago

Bumps com.google.http-client:google-http-client from 1.43.3 to 1.45.0.

Release notes

Sourced from com.google.http-client:google-http-client's releases.

v1.45.0

1.45.0 (2024-08-21)

Features

  • Introduces google-http-client-apache-v5 (Apache Client/Core 5.x) (#1960) (5d527dc)
    • This new module provides a new transport implementation using the newer Apache Client and Core 5.x. Older modules google-http-client-apache-v2 and v1 (held inside google-http-client) are based on the older Apache Core 4.x library, which has reached EOL and may be flagged by some security scanners although no CVEs have been issued for this.
    • If the EOL state of Apache HTTP Core 4.x is a concern, you can use the following dependency declarations to exclude it from your dependency tree.
      <dependency>
        <groupId>com.google.http-client</groupId>
        <artifactId>google-http-client</artifactId>
        <exclusions>
          <exclusion>
            <groupId>org.apache.httpcomponents</groupId>
            <artifactId>httpcore</artifactId>
          </exclusion>
          <exclusion>
            <groupId>org.apache.httpcomponents</groupId>
            <artifactId>httpclient</artifactId>
          </exclusion>
        </exclusions>
      </dependency>
    
  • Next release from main is 1.45.0 (#1972) (094dcc8)

Dependencies

  • Update actions/checkout action to v4 (#1993) (f8b0cc1)
  • Update actions/github-script action to v7 (#1994) (e527f0d)
  • Update actions/setup-java action to v4 (#1995) (07aa01c)
  • Update actions/upload-artifact action to v4 (#1996) (5ba7021)
  • Update dependency com.fasterxml.jackson.core:jackson-core to v2.17.2 (#1987) (4202d32)
  • Update dependency com.google.cloud:native-image-shared-config to v1.7.7 (#1937) (b224a1d)
  • Update dependency com.google.cloud:native-image-shared-config to v1.9.0 (#1961) (792e44f)
  • Update dependency com.google.code.gson:gson to v2.11.0 (#1988) (63afd35)
  • Update dependency com.google.errorprone:error_prone_annotations to v2.30.0 (#1989) (6e19c5c)
  • Update dependency com.google.j2objc:j2objc-annotations to v3 (#1998) (3d70537)
  • Update dependency io.grpc:grpc-context to v1.66.0 (#1990) (66a9f15)
  • Update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.5 (#2002) (8c61065)
  • Update github/codeql-action action to v3 (#2000) (7250f64)
  • Update ossf/scorecard-action action to v2.4.0 (#1992) (08c5e5a)
  • Update project.appengine.version to v2.0.27 (#1938) (3f27cc8)
  • Update project.appengine.version to v2.0.29 (#1978) (a3fd1e3)

v1.44.2

1.44.2 (2024-05-16)

... (truncated)

Changelog

Sourced from com.google.http-client:google-http-client's changelog.

1.45.0 (2024-08-21)

Features

  • Introduce google-http-client-apache-v5 (Apache Client/Core 5.x) (#1960) (5d527dc)
  • Next release from main is 1.45.0 (#1972) (094dcc8)

Dependencies

  • Update actions/checkout action to v4 (#1993) (f8b0cc1)
  • Update actions/github-script action to v7 (#1994) (e527f0d)
  • Update actions/setup-java action to v4 (#1995) (07aa01c)
  • Update actions/upload-artifact action to v4 (#1996) (5ba7021)
  • Update dependency com.fasterxml.jackson.core:jackson-core to v2.17.2 (#1987) (4202d32)
  • Update dependency com.google.cloud:native-image-shared-config to v1.7.7 (#1937) (b224a1d)
  • Update dependency com.google.cloud:native-image-shared-config to v1.9.0 (#1961) (792e44f)
  • Update dependency com.google.code.gson:gson to v2.11.0 (#1988) (63afd35)
  • Update dependency com.google.errorprone:error_prone_annotations to v2.30.0 (#1989) (6e19c5c)
  • Update dependency com.google.j2objc:j2objc-annotations to v3 (#1998) (3d70537)
  • Update dependency io.grpc:grpc-context to v1.66.0 (#1990) (66a9f15)
  • Update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.5 (#2002) (8c61065)
  • Update github/codeql-action action to v3 (#2000) (7250f64)
  • Update ossf/scorecard-action action to v2.4.0 (#1992) (08c5e5a)
  • Update project.appengine.version to v2.0.27 (#1938) (3f27cc8)
  • Update project.appengine.version to v2.0.29 (#1978) (a3fd1e3)

1.44.2 (2024-05-16)

Bug Fixes

  • Base64 decoding to discard newline characters (#1941) (4e153db)

Dependencies

  • Update actions/upload-artifact action to v3.1.3 (#1860) (60deab2)
  • Update dependency com.google.cloud:native-image-shared-config to v1.7.6 (#1928) (3dd6b79)
  • Update dependency org.apache.felix:maven-bundle-plugin to v5.1.9 (#1888) (41c16b9)
  • Update project.appengine.version to v2.0.25 (#1931) (53eb6a1)

1.44.1 (2024-01-26)

Bug Fixes

  • Fixing declaration of maven-source-plugin for release job (f555f56)

... (truncated)

Commits
  • 354e4d5 chore(main): release 1.45.0 (#1946)
  • 8c61065 deps: update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.5 (...
  • c4ebcdc build(deps): update dependency org.apache.maven.plugins:maven-deploy-plugin t...
  • 63afd35 deps: update dependency com.google.code.gson:gson to v2.11.0 (#1988)
  • 07aa01c deps: update actions/setup-java action to v4 (#1995)
  • 9d7a716 build(deps): update dependency org.codehaus.mojo:exec-maven-plugin to v3.4.1 ...
  • ab913a3 chore(deps): update dependency com.google.cloud:libraries-bom to v26.44.0 (#1...
  • 052fc10 build(deps): update dependency org.apache.maven.plugins:maven-gpg-plugin to v...
  • a3fd1e3 deps: update project.appengine.version to v2.0.29 (#1978)
  • b9c628a build(deps): update dependency org.apache.maven.plugins:maven-checkstyle-plug...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 week ago

Superseded by #487.