Closed dependabot[bot] closed 2 months ago
Issues
0 New issues
0 Accepted issues
Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the dependabot-dependency-updates group with 4 updates: com.fasterxml.jackson.core:jackson-databind, org.owasp:dependency-check-maven, org.apache.maven.plugins:maven-gpg-plugin and org.cyclonedx:cyclonedx-maven-plugin.
Updates
com.fasterxml.jackson.core:jackson-databind
from 2.16.1 to 2.17.0Commits
Updates
org.owasp:dependency-check-maven
from 9.0.9 to 9.1.0Release notes
Sourced from org.owasp:dependency-check-maven's releases.
Changelog
Sourced from org.owasp:dependency-check-maven's changelog.
Commits
e0b9397
build: prepare release v9.1.03f1b558
docs: prepare release 9.1.0c364269
build(deps): bump jackson.version from 2.16.0 to 2.16.1 (#6353)d2c04b5
build(deps): bump org.jsoup:jsoup from 1.16.2 to 1.17.2 (#6362)e8c4ca3
build(deps): bump open-vulnerability-client (#6554)2e6a231
build(deps): bump golang from 1.21.5-alpine to 1.22.1-alpine (#6506)0e183da
build(deps): bump actions/setup-java from 3 to 4 (#6172)42adde4
fix: typo (#6526)f60c867
feat: Add v2 support for maven_install.json (#6528)a6a8f21
Merge pull request #1 from nutshelllabs/ef/add-maven-install-v2-supportUpdates
org.apache.maven.plugins:maven-gpg-plugin
from 3.1.0 to 3.2.2Release notes
Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.
... (truncated)
Commits
ab97064
[maven-release-plugin] prepare release maven-gpg-plugin-3.2.22be0a00
[MGPG-115] Show more info about key used to sign (#84)3631830
[MGPG-114] Allow max key size of 16KB (#83)528fab9
[MGPG-113] SignAndDeployFileMojo results in 401 (#82)770636b
[maven-release-plugin] prepare for next development iteration5b69086
[maven-release-plugin] prepare release maven-gpg-plugin-3.2.128d298c
[MGPG-111] Fix dependencies (#81)75d8ed5
[MGPG-112] serverId def value was unintentionally dropped (#80)2a11a2d
[maven-release-plugin] prepare for next development iteration4b23da8
[maven-release-plugin] prepare release maven-gpg-plugin-3.2.0Updates
org.cyclonedx:cyclonedx-maven-plugin
from 2.7.11 to 2.8.0Release notes
Sourced from org.cyclonedx:cyclonedx-maven-plugin's releases.
Commits
90e3817
[maven-release-plugin] prepare release cyclonedx-maven-plugin-2.8.0eed838e
convert external reference type by value instead of default CONSTANT_NAME3fd83bf
Bump org.apache.maven.plugins:maven-compiler-plugin343c62d
check if configured schemaVersion is supportedd001542
distribution-intake external reference is more accuratefa5541d
Bump actions/checkout from 4.1.1 to 4.1.2a43cd05
Bump org.apache.commons:commons-compress31ff1f4
Bump org.junit:junit-bom from 5.10.1 to 5.10.2ce8a6e7
Bump release-drafter/release-drafter from 5 to 616dcb5b
Bump commons-codec:commons-codec from 1.16.0 to 1.16.1Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show