s4u / sign-maven-plugin

Maven plugin which creates Open PGP / GPG signatures for all of the project's artifacts
https://www.simplify4u.org/sign-maven-plugin/
Apache License 2.0
47 stars 7 forks source link

Bump org.assertj:assertj-core from 3.25.0 to 3.25.3 #170

Closed dependabot[bot] closed 9 months ago

dependabot[bot] commented 9 months ago

Bumps org.assertj:assertj-core from 3.25.0 to 3.25.3.

Release notes

Sourced from org.assertj:assertj-core's releases.

v.3.25.3

:bug: Bug Fixes

  • Lock maven-clean-plugin version for all modules

Core

  • Fix a performance regression in the recursive comparison related to FieldLocation #3350
  • Don't fail when the recursive comparison checks compared fields in collection elements #3349 (proper fix: #3354)

:hammer: Dependency Upgrades

  • Upgrade to Flatten Maven Plugin 1.6.0 #3335
  • Upgrade to Groovy 4.0.18 #3347
  • Upgrade to Hibernate Core 6.4.2.Final #3338
  • Upgrade to Maven Surefire Report Plugin 3.2.5 #3330
  • Upgrade to PITest Maven 1.15.6 #3348
  • Upgrade to SpotBugs Maven Plugin 4.8.3.0 #3336
  • Upgrade to advanced-security/maven-dependency-submission-action to 4 #3346

:heart: Contributors

Thanks to all the contributors who worked on this release:

@​ash211

v3.25.2

:bug: Bug Fixes

  • Fix unresolvable Javadoc stylesheet URLs, simplify configuration #3324

Core

  • Fix missing configuration for MatcherAssert soft assertions
  • Make deprecation notice visible in AbstractAssert#asList #3327
  • Recursive comparison uses equals on root object when useOverriddenEquals is enabled #3320
  • satisfiesExactlyInAnyOrder fails if actual overrides equals #3339
  • Avoid calling actual.hashCode() and expected.hashCode() in DualValue #3340
  • Recursive comparison checks for existence of fields in types that parameterize nested unordered iterables #3332

:hammer: Dependency Upgrades

  • Upgrade to EqualsVerifier 3.15.6 #3329
  • Upgrade to Maven Surefire Plugin 3.2.5 #3328
  • Upgrade to Spotless Maven Plugin 2.43.0 #3345

:heart: Contributors

Thanks to all the contributors who worked on this release:

... (truncated)

Commits
  • cd72df8 [maven-release-plugin] prepare release assertj-build-3.25.3
  • c9b3177 fix: missing license
  • ae62aca Ignore containers when checking compared fields existence in the recursive co...
  • bad16ef chore(deps-dev): bump org.hibernate.orm:hibernate-core from 6.4.2.Final to 6....
  • c794057 Fix a performance regression in the recursive comparison related to FieldLoca...
  • 9ecb7f4 Lock maven-clean-plugin version for all modules
  • d42d40c chore(deps): bump org.pitest:pitest-maven from 1.15.3 to 1.15.6 (#3348)
  • 5b32492 chore(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from ...
  • e27cc02 chore(deps): bump org.codehaus.mojo:flatten-maven-plugin from 1.5.0 to 1.6.0 ...
  • 9771091 chore(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.2.0 to 4...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
sonarcloud[bot] commented 9 months ago

Quality Gate Passed Quality Gate passed

Issues
0 New issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud