spotify / missinglink

Build time tool for detecting link problems in java projects
Apache License 2.0
146 stars 27 forks source link

Bump maven-shade-plugin from 3.4.1 to 3.5.0 #322

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps maven-shade-plugin from 3.4.1 to 3.5.0.

Release notes

Sourced from maven-shade-plugin's releases.

Maven Shade Plugin 3.5.0 release notes https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12352951

Release Notes - Maven Shade Plugin - Version 3.5.0


What's Changed

... (truncated)

Commits
  • 963e30e [maven-release-plugin] prepare release maven-shade-plugin-3.5.0
  • 9265316 Fix for tmp file creation
  • fc0f784 Get rid of security alerts (#190)
  • d3dd181 [MSHADE-446] Update dependencies (#189)
  • f251212 [MSHADE-447] Do not use forked guice, use sisu from parent (#188)
  • 2e7f87a Add git blame ignore (for reformat)
  • d5d3bd7 refactor: refactor bad smell UnnecessaryToStringCall (#186)
  • 57edc03 Bump asmVersion from 9.4 to 9.5
  • b598aef [MNG-6829] Replace StringUtils#isEmpty(String) and #isNotEmpty(String) (#187)
  • f15f26b [MSHADE-443] Fix problems with shadeSourcesContent (#185)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov[bot] commented 1 year ago

Codecov Report

Merging #322 (f552024) into master (5a670cc) will not change coverage. The diff coverage is n/a.

@@            Coverage Diff            @@
##             master     #322   +/-   ##
=========================================
  Coverage     85.20%   85.20%           
  Complexity      238      238           
=========================================
  Files            23       23           
  Lines           872      872           
  Branches        104      104           
=========================================
  Hits            743      743           
  Misses           92       92           
  Partials         37       37