search

odpi / egeria-database-connectors

Connectors for exchanging metadata
Apache License 2.0
16 stars 10 forks source link

Bump com.autonomousapps.dependency-analysis from 1.13.1 to 1.18.0 #259

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps com.autonomousapps.dependency-analysis from 1.13.1 to 1.18.0.

Changelog

Sourced from com.autonomousapps.dependency-analysis's changelog.

Version 1.18.0

  • [New] Add flag for ignoring android variants. (Thanks Sergey Boishtyan)
  • [New] Use buffered reading when reading files in SynthesizeDependenciesTask. (Thanks Daan Schipper)

Version 1.17.0

  • [Fixed] Fix NPE in asmUtil.exportedPackages(). (Thanks Jendrik Johannes)
  • [Fixed] Coordinates.compareTo() fix. (Thanks Jendrik Johannes)
  • [Fixed] Use buffered writer when writing large json objects to file. (Thanks Daan Schipper)

Version 1.16.0

  • [New] Support ABI filtering on project level. (Thanks Martijn Vegter.)
  • [New] You can now specify an allow-list (using regex) of which projects to enable analysis on. By default, the regex is ".*" (that is, all projects). An example of a regex that would exclude paths matching a prefix is "^((?!:prefix)).*$". Example usage: 
    # gradle.properties
# match all project paths except those with the prefix ':prefix' (using a negative lookahead)
dependency.analysis.project.includes='^((?!:prefix)).*$'

    only match project paths that have the prefix 'prefix'
    

    dependency.analysis.project.includes='^:prefix.*$'

Version 1.15.0

  • [Fixed] Duplicated declaration does not lead to wrong analysis result (#807) (Thanks Jendrik Johannes)
  • [Fixed] Use information from 'module-info' to determine if a package is public. (Thanks Jendrik Johannes)
  • [Fixed] project(...) dependencies between subprojects of an included build. (Thanks Jendrik Johannes)
  • [Fixed] The requested version is irrelevant for included builds. (Thanks Jendrik Johannes)
  • Improve performance in SynthesizeDependenciesTask.
  • Eliminate some redundant work in FindInlineMembersTask.
  • Eliminate some redundant work relating to JarExploder.
  • Use asm 9.4.

Thanks as well to Adam Ahmed for modernizing the GHA workflows!

Version 1.14.0, 1.14.1

  • [New] Support analysis of androidTest source sets.
  • [Fixed] Improve sorting of duplicate versions.
  • [Fixed] Only check AGP version on root project.
  • Add debug logs for issue 780.

... (truncated)

Commits
  • 3b16d38 Prepare for release 1.18.0.
  • 91af10a Use buffered reading when reading files in SynthesizeDependenciesTask
  • a679750 Add flag for ignoring android variants
  • 611ac06 Prepare next development version.
  • 88d4360 Prepare for release 1.17.0.
  • 2284a26 Use buffered writer when writing large json objects to file
  • a5ee4e5 adds May 2022 newsletter
  • c72f31c Prevent eager task creation during configuration time
  • 6e48951 Update changelog.
  • 4eeef98 Fix NPE in asmUtil.exportedPackages()
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.