Closed dependabot[bot] closed 6 months ago
This will be addressed within https://github.com/siemens/cmp-ra-component/pull/80
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version
or @dependabot ignore this minor version
. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore
condition with the desired update_types
to your config file.
If you change your mind, just re-open this PR and I'll resolve any conflicts on it.
Bumps org.owasp:dependency-check-maven from 8.4.3 to 9.0.7.
Release notes
Sourced from org.owasp:dependency-check-maven's releases.
... (truncated)
Changelog
Sourced from org.owasp:dependency-check-maven's changelog.
... (truncated)
Commits
f7eab9f
build: prepare release v9.0.760a3b38
docs: prepare release1eedf4c
fix: skip pyproject.toml unless it containstool.poetry
(#6316)667fde1
fix: improve memory usage on NVD update (#6321)8c6a97b
build(deps): bump actions/github-script from 7.0.0 to 7.0.1 (#6079)1fee73a
docs: document insecure configuration for GHSA-qqhq-8r2c-c3f5 (#6315)62ae1a1
fix: resolve build error (#6312)793931a
chore: add codeql back (#6311)b511b03
build: Release 9.0.6 (#6310)bbda62d
chore: remove failing codeql scans (#6309)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show