search

jenkinsci / google-compute-engine-plugin

https://plugins.jenkins.io/google-compute-engine/
Apache License 2.0
57 stars 88 forks source link

Bump com.google.http-client:google-http-client from 1.43.3 to 1.45.1 #487

Open dependabot[bot] opened 2 weeks ago

dependabot[bot] commented 2 weeks ago

Bumps com.google.http-client:google-http-client from 1.43.3 to 1.45.1.

Release notes

Sourced from com.google.http-client:google-http-client's releases.

v1.45.1

1.45.1 (2024-11-12)

Bug Fixes

v1.45.0

1.45.0 (2024-08-21)

Features

  • Introduces google-http-client-apache-v5 (Apache Client/Core 5.x) (#1960) (5d527dc)
    • This new module provides a new transport implementation using the newer Apache Client and Core 5.x. Older modules google-http-client-apache-v2 and v1 (held inside google-http-client) are based on the older Apache Core 4.x library, which has reached EOL and may be flagged by some security scanners although no CVEs have been issued for this.
    • If the EOL state of Apache HTTP Core 4.x is a concern, you can use the following dependency declarations to exclude it from your dependency tree.
      <dependency>
    <groupId>com.google.http-client</groupId>
    <artifactId>google-http-client</artifactId>
    <exclusions>
      <exclusion>
        <groupId>org.apache.httpcomponents</groupId>
        <artifactId>httpcore</artifactId>
      </exclusion>
      <exclusion>
        <groupId>org.apache.httpcomponents</groupId>
        <artifactId>httpclient</artifactId>
      </exclusion>
    </exclusions>
  </dependency>
  • Next release from main is 1.45.0 (#1972) (094dcc8)

Dependencies

  • Update actions/checkout action to v4 (#1993) (f8b0cc1)
  • Update actions/github-script action to v7 (#1994) (e527f0d)
  • Update actions/setup-java action to v4 (#1995) (07aa01c)
  • Update actions/upload-artifact action to v4 (#1996) (5ba7021)
  • Update dependency com.fasterxml.jackson.core:jackson-core to v2.17.2 (#1987) (4202d32)
  • Update dependency com.google.cloud:native-image-shared-config to v1.7.7 (#1937) (b224a1d)
  • Update dependency com.google.cloud:native-image-shared-config to v1.9.0 (#1961) (792e44f)
  • Update dependency com.google.code.gson:gson to v2.11.0 (#1988) (63afd35)
  • Update dependency com.google.errorprone:error_prone_annotations to v2.30.0 (#1989) (6e19c5c)
  • Update dependency com.google.j2objc:j2objc-annotations to v3 (#1998) (3d70537)
  • Update dependency io.grpc:grpc-context to v1.66.0 (#1990) (66a9f15)
  • Update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.5 (#2002) (8c61065)

... (truncated)

Changelog

Sourced from com.google.http-client:google-http-client's changelog.

1.45.1 (2024-11-12)

Bug Fixes

1.45.0 (2024-08-21)

Features

  • Introduce google-http-client-apache-v5 (Apache Client/Core 5.x) (#1960) (5d527dc)
  • Next release from main is 1.45.0 (#1972) (094dcc8)

Dependencies

  • Update actions/checkout action to v4 (#1993) (f8b0cc1)
  • Update actions/github-script action to v7 (#1994) (e527f0d)
  • Update actions/setup-java action to v4 (#1995) (07aa01c)
  • Update actions/upload-artifact action to v4 (#1996) (5ba7021)
  • Update dependency com.fasterxml.jackson.core:jackson-core to v2.17.2 (#1987) (4202d32)
  • Update dependency com.google.cloud:native-image-shared-config to v1.7.7 (#1937) (b224a1d)
  • Update dependency com.google.cloud:native-image-shared-config to v1.9.0 (#1961) (792e44f)
  • Update dependency com.google.code.gson:gson to v2.11.0 (#1988) (63afd35)
  • Update dependency com.google.errorprone:error_prone_annotations to v2.30.0 (#1989) (6e19c5c)
  • Update dependency com.google.j2objc:j2objc-annotations to v3 (#1998) (3d70537)
  • Update dependency io.grpc:grpc-context to v1.66.0 (#1990) (66a9f15)
  • Update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.5 (#2002) (8c61065)
  • Update github/codeql-action action to v3 (#2000) (7250f64)
  • Update ossf/scorecard-action action to v2.4.0 (#1992) (08c5e5a)
  • Update project.appengine.version to v2.0.27 (#1938) (3f27cc8)
  • Update project.appengine.version to v2.0.29 (#1978) (a3fd1e3)

1.44.2 (2024-05-16)

Bug Fixes

  • Base64 decoding to discard newline characters (#1941) (4e153db)

Dependencies

  • Update actions/upload-artifact action to v3.1.3 (#1860) (60deab2)
  • Update dependency com.google.cloud:native-image-shared-config to v1.7.6 (#1928) (3dd6b79)
  • Update dependency org.apache.felix:maven-bundle-plugin to v5.1.9 (#1888) (41c16b9)
  • Update project.appengine.version to v2.0.25 (#1931) (53eb6a1)

... (truncated)

Commits
  • d3425c7 chore(main): release 1.45.1 (#2024)
  • 65de517 chore(main): release 1.45.1-SNAPSHOT (#2005)
  • 4830ad7 fix: add google-http-client-apache-v5 to bom (#2021)
  • 09755f1 chore(deps): update dependency com.google.cloud.samples:shared-configuration ...
  • b2e9b0c build(deps): update dependency com.google.cloud:native-image-shared-config to...
  • f9d4e15 chore: remove owlbot (#2010)
  • 354e4d5 chore(main): release 1.45.0 (#1946)
  • 8c61065 deps: update dependency org.apache.httpcomponents.core5:httpcore5 to v5.2.5 (...
  • c4ebcdc build(deps): update dependency org.apache.maven.plugins:maven-deploy-plugin t...
  • 63afd35 deps: update dependency com.google.code.gson:gson to v2.11.0 (#1988)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)