Closed dependabot[bot] closed 4 months ago
Kudos, no new issues were introduced!
0 New issues
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code
Will be addressed as a part of https://github.com/siemens/cmp-ra-component/pull/94
This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.
Bumps the dependabot-dependency-updates group with 5 updates:
2.0.10
2.0.11
3.2.3
3.2.5
2.41.1
2.42.0
9.0.7
9.0.8
2.7.10
2.7.11
Updates
org.slf4j:slf4j-simple
from 2.0.10 to 2.0.11Updates
org.apache.maven.plugins:maven-surefire-plugin
from 3.2.3 to 3.2.5Release notes
Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.
... (truncated)
Commits
4b3a271
[maven-release-plugin] prepare release surefire-3.2.5eb3f1d9
Bump org.codehaus.plexus:plexus-component-metadata from 2.1.1 to 2.2.0430c406
Bump org.assertj:assertj-core from 3.24.2 to 3.25.12d92f2d
[SUREFIRE-2231] JaCoCo 0.8.11 fails with old TestNG releases on Java 17+3290740
Bump org.apache.maven.plugins:maven-docck-plugin from 1.1 to 1.225a9776
Bump net.java.dev.javacc:javacc from 7.0.12 to 7.0.137752f7e
Bump commons-io:commons-io from 2.15.0 to 2.15.18874add
Revert "Bump jacocoVersion from 0.8.8 to 0.8.11"c0f7755
Fix formattinge5f4545
Bump jacocoVersion from 0.8.8 to 0.8.11Updates
com.diffplug.spotless:spotless-maven-plugin
from 2.41.1 to 2.42.0Changelog
Sourced from com.diffplug.spotless:spotless-maven-plugin's changelog.
... (truncated)
Commits
79c7966
Published lib/2.42.09652e05
Speedup GIT_ATTRIBUTES (#1838)1a1fbfe
Remove unused field.cdc0c7b
Update changelogs.0cfe58f
Update docs.d56acd5
Fix spotbugs.809fb4b
Make GIT_ATTRIBUTES_FAST_ALLSAME faster.54c0af2
Set the default line endings to be GIT_ATTRIBUTES_FAST_ALLSAME.9c27d39
Create new GIT_ATTRIBUTES_FAST_ALLSAME which is the same as GIT_ATTRIBUTES, e...5d9f3b4
Maven IDE hook (#1782)Updates
org.owasp:dependency-check-maven
from 9.0.7 to 9.0.8Release notes
Sourced from org.owasp:dependency-check-maven's releases.
Changelog
Sourced from org.owasp:dependency-check-maven's changelog.
Commits
4a32ff1
build: prepare release v9.0.83d648c5
docs: release 9.0.8293c98d
build(deps): bump org.apache.maven.plugins:maven-project-info-reports-plugin ...361e255
build(deps): bump org.codehaus.mojo:versions-maven-plugin from 2.16.1 to 2.16...be5c4a4
fix: favor stability over performance (#6349)a110bd0
chore: replace commons-io with core java calls (#6343)6146364
build(deps): bump org.jetbrains:annotations from 24.0.1 to 24.1.0 (#6097)77adb07
build(deps): bump actions/setup-node from 4.0.0 to 4.0.1 (#6341)9199230
fix: improve error reporting for invalid H2 database (#6339)401d031
fix: rework fix for closing input streams on errors correctly (#6338)Updates
org.cyclonedx:cyclonedx-maven-plugin
from 2.7.10 to 2.7.11Release notes
Sourced from org.cyclonedx:cyclonedx-maven-plugin's releases.
Commits
349fe7c
[maven-release-plugin] prepare release cyclonedx-maven-plugin-2.7.112d130a0
rename convert methohds to explicit project vs dependency051be8e
cleanup unused coded0e6cb5
test dependency type=zip for #431 (reverts #9)46837cd
Update DefaultModelConverter.java to support Zip filesdc90b21
define plugin-tools.version property8836cbd
Add support for custom external references (#428)86410aa
Bump org.apache.maven.plugin-tools:maven-plugin-annotations4d71b50
Bump org.apache.maven.plugins:maven-plugin-report-plugin70aae8e
Bump org.apache.maven.plugins:maven-plugin-plugin from 3.10.2 to 3.11.0You can trigger a rebase of this PR by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show