search

matomo-org / matomo-java-tracker

Official Java implementation of the Matomo Tracking HTTP API.
https://matomo-org.github.io/matomo-java-tracker/
BSD 3-Clause "New" or "Revised" License
69 stars 52 forks source link

build(deps): bump org.owasp:dependency-check-maven from 10.0.3 to 10.0.4 #296

Closed dependabot[bot] closed 3 weeks ago

dependabot[bot] commented 3 weeks ago

Bumps org.owasp:dependency-check-maven from 10.0.3 to 10.0.4.

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 10.0.4

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 10.0.4 (2024-09-01)

  • build(deps): exclude unused dependency (#6916)
  • fix: improve regex (#6917)
  • fix: correctly handle null values in cpeMatch (#6915)
  • fix(site): Update Fluido skin to resolve broken fork-me-on-github image (#6914)
  • fix: do not report over 100% download complete (#6899)
  • fix: Correct spelling of occurring in NvdApiDataSource.java (#6883)
  • fix: skip blank lines in requirements.txt (#6867)
  • fix: correct percentage calculation (#6868)
  • docs: remove old recommendation (#6860)

See the full listing of changes.

Commits
  • 5120cbd build: prepare release v10.0.4
  • 05df233 docs: release notes for 10.0.4
  • a3a74bc build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 t...
  • 67c9d9e build(deps): bump golang from 1.22.6-alpine to 1.23.0-alpine (#6893)
  • 1bc85e2 build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin
  • 2fe67ed build(deps): bump commons-codec:commons-codec from 1.17.0 to 1.17.1 (#6900)
  • e835fad build(deps): exclude unused dependency (#6916)
  • ccc151a fix: improve regex (#6917)
  • e090d40 chore: additional tests (#6918)
  • b4339ce fix: correctly handle null values in cpeMatch (#6915)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
github-actions[bot] commented 3 weeks ago
Overall Project NaN% NaN% :green_apple:

There is no coverage information present for the Files changed