[Maven Deps]: Bump liquibase-core from 4.17.2 to 4.18.0

[dependabot[bot]]

Bumps liquibase-core from 4.17.2 to 4.18.0.

Release notes

Sourced from liquibase-core's releases.

Liquibase v4.18.0

Notable Changes

[PRO] Hashicorp Vault extension and Liquibase Pro

Use together for increased security and convenience of centralized properties. Note: This release works with Vault v1, and a v2 compatible release will follow up soon.

• Security
 Vaults offer much greater security than defaults files or 
environment variables


• Centralization
 Secure your database credentials, Pro license key, secure urls, and more in one central location. Update your critical properties in one place, and all linked tools and jobs use the new values
.

[PRO] rollback-on-error command argument

• When set to true will attempt to rollback a failed update operation.
• Note: changesets marked failonerror=false, do not count as error, and so do not rollback-on-error

[OSS] Liquibase Environment variables

• Now free to all users, not just Pro users.
• Learn more at https://docs.liquibase.com/concepts/connections/liquibase-environment-variables.html

Enhancements

• [PRO] Added new modifyChangeSets tag to support specification of runWith attribute for all change sets in include or includeAll

API Breaking Changes

• Use PathHandler for writing log files, which allows using S3 and other extensions (DAT-11515) by @​abrackx in liquibase/liquibase#3438

Security, Driver and other updates

• Upgrade mockito-inline from 4.8.0 to 4.8.1 by @​dependabot in liquibase/liquibase#3382
• Upgrade actions/cache from 3.0.8 to 3.0.11 by @​dependabot in liquibase/liquibase#3370
• Bump robinraju/release-downloader from 1.5 to 1.6 by @​dependabot in liquibase/liquibase#3423
• Upgrade postgresql driver from 42.5.0 to 42.5.1 by @​dependabot in liquibase/liquibase#3501
• Bump maven-plugin-plugin from 3.6.4 to 3.7.0 by @​dependabot in liquibase/liquibase#3450
• Bump sqlite-jdbc from 3.39.3.0 to 3.39.4.0 by @​dependabot in liquibase/liquibase#3451
• Bump maven-shade-plugin from 3.4.0 to 3.4.1 by @​dependabot in liquibase/liquibase#3422
• Bump gmavenplus-plugin from 1.13.1 to 2.1.0 by @​dependabot in liquibase/liquibase#3391
• Bump picocli from 4.6.3 to 4.7.0 by @​dependabot in liquibase/liquibase#3432
• Bump jcc from 11.5.7.0 to 11.5.8.0 by @​dependabot in liquibase/liquibase#3414
• Upgrade testcontainers-bom from 1.17.3 to 1.17.5 by @​dependabot in liquibase/liquibase#3341

Fixes

• Fixes generate-changelog view comments for Postgres (DAT-9410) by @​abrackx in liquibase/liquibase#3403

• Adds DefaultChangeExecListener, catches and handles migration errors (DAT-9372) by @​abrackx in liquibase/liquibase#3431

• Fixes nullpointer when dealing with LiquibaseException on updates. by @​filipelautert in liquibase/liquibase#3447

• Resets changelog cache upon acquiring lock by @​filipelautert in liquibase/liquibase#3396

• Allows createSequence field "dataType" to be use with DB2 as the database supports it. by @​filipelautert in liquibase/liquibase#3328

... (truncated)

Changelog

Sourced from liquibase-core's changelog.

Liquibase Core Changelog

Changes in version Liquibase v4.18.0

Notable Changes

• [PRO] Hashicorp Vault extension and Liquibase Pro

• Use together for increased security and convenience of centralized properties

• [PRO]Security

• Vaults offer much greater security than defaults files or
environment variables


• [PRO] Centralization

• Secure your database credentials, Pro license key, secure urls, and more in one central location.
• Update your critical properties in one place, and all linked tools and jobs use the new values
.

• [PRO] rollback-on-error command argument

• When set to true will attempt to rollback a failed update operation.
• Note: changesets marked failonerror=false, do not count as error, and so do not rollback-on-error

[OSS] Liquibase Environment variables

• Now free to all users, not just Pro users.
• Learn more at https://docs.liquibase.com/concepts/connections/liquibase-environment-variables.html

Enhancements

• [PRO] Auto-rollback enabled for more Pro stored logic objects
• [PRO] Added new modifyChangeSets tag to support specification of runWith attribute for all change sets in include or includeAll

API Breaking Changes

• Use PathHandler for writing log files, which allows using S3 and other extensions (DAT-11515) by @​abrackx in #3438

Security, Driver and other updates

• Upgrade mockito-inline from 4.8.0 to 4.8.1 by @​dependabot in liquibase/liquibase#3382
• Upgrade actions/cache from 3.0.8 to 3.0.11 by @​dependabot in liquibase/liquibase#3370
• Bump robinraju/release-downloader from 1.5 to 1.6 by @​dependabot in liquibase/liquibase#3423
• Upgrade postgresql driver from 42.5.0 to 42.5.1 by @​dependabot in liquibase/liquibase#3501
• Bump maven-plugin-plugin from 3.6.4 to 3.7.0 by @​dependabot in liquibase/liquibase#3450
• Bump sqlite-jdbc from 3.39.3.0 to 3.39.4.0 by @​dependabot in liquibase/liquibase#3451
• Bump maven-shade-plugin from 3.4.0 to 3.4.1 by @​dependabot in liquibase/liquibase#3422
• Bump gmavenplus-plugin from 1.13.1 to 2.1.0 by @​dependabot in liquibase/liquibase#3391
• Bump picocli from 4.6.3 to 4.7.0 by @​dependabot in liquibase/liquibase#3432
• Bump jcc from 11.5.7.0 to 11.5.8.0 by @​dependabot in liquibase/liquibase#3414
• Upgrade testcontainers-bom from 1.17.3 to 1.17.5 by @​dependabot in liquibase/liquibase#3341

Fixes

• Fixes generate-changelog view comments for Postgres (DAT-9410) by @​abrackx in liquibase/liquibase#3403
• Adds DefaultChangeExecListener, catches and handles migration errors (DAT-9372) by @​abrackx in liquibase/liquibase#3431

... (truncated)

Commits

• 7e4e7f2 revert auto-rollbacks for stored logic (DAT-12575) (#3526)
• f590f42 version pin remaing yamls to ubuntu-20.04
• 50ddbbf Version pin to ubuntu-20.04
• f444da7 Version pin to ubuntu-20.04
• 99a3d0c Version pin to ubuntu-20.04
• fdf6699 Version pin to ubuntu-20.04
• 9fa22a6 Version pin to ubuntu-20.04
• a42266a Merge pull request #3521 from liquibase/update-changelog-txt-4.18
• 3213b0a Fix typo in release notes.
• bba98bc update changelog txt 4.18
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Docker Image Vulnerability Report

Results for image kio.ee/kyberorg/axe:qa

:no_entry: Total 1 vulnerabilities found - 1 fixable :no_entry: 1 critical :fire: 0 high :warning: 0 medium :triangular_flag_on_post: 0 low

Scanned with Trivy v0.32.1 from Aqua Security Report generated at 10.1.2023 13:52:13+0000

[github-actions[bot]]

QA Test Statistics

374 tests   372 :heavy_check_mark:  4m 56s :stopwatch:   40 suites      2 :zzz:   40 files        0 :x:

Results for commit f1cd32ec.

:recycle: This comment has been updated with latest results.