xmlunit/xmlunit (org.xmlunit:xmlunit-legacy)
### [`v2.10.0`](https://togithub.com/xmlunit/xmlunit/blob/HEAD/RELEASE_NOTES.md#XMLUnit-for-Java-2100---Released-2024-04-28)
- add a new `ElementSelectors.byNameAndAllAttributes` variant that filters attributes before deciding whether elements can
be compared.
Inspired by Issue [#259](https://togithub.com/xmlunit/xmlunit/issues/259)
- By default the `TransformerFactory`s created will now try to disable extension functions. If you need extension
functions for your transformations you may want to pass in your own instance of `TransformerFactory` and
`TransformerFactoryConfigurer` may help with that.
Inspired by Issue [#264](https://togithub.com/xmlunit/xmlunit/issues/264)
This is tracked as [CVE-2024-31573](https://togithub.com/xmlunit/xmlunit/security/advisories/GHSA-chfm-68vv-pvw5).
- `JAXPXPathEngine` will now try to disable the execution of extension functions by default but uses
`XPathFactory#setProperty` which is not available prior to Java 18. You may want to enable secure processing on an
`XPathFactory` instance you pass to `JAXPXPathEngine` instead - and `XPathFactoryConfigurer` may help with that.
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
2.9.1->2.10.0Release Notes
xmlunit/xmlunit (org.xmlunit:xmlunit-legacy)
### [`v2.10.0`](https://togithub.com/xmlunit/xmlunit/blob/HEAD/RELEASE_NOTES.md#XMLUnit-for-Java-2100---Released-2024-04-28) - add a new `ElementSelectors.byNameAndAllAttributes` variant that filters attributes before deciding whether elements can be compared. Inspired by Issue [#259](https://togithub.com/xmlunit/xmlunit/issues/259) - By default the `TransformerFactory`s created will now try to disable extension functions. If you need extension functions for your transformations you may want to pass in your own instance of `TransformerFactory` and `TransformerFactoryConfigurer` may help with that. Inspired by Issue [#264](https://togithub.com/xmlunit/xmlunit/issues/264) This is tracked as [CVE-2024-31573](https://togithub.com/xmlunit/xmlunit/security/advisories/GHSA-chfm-68vv-pvw5). - `JAXPXPathEngine` will now try to disable the execution of extension functions by default but uses `XPathFactory#setProperty` which is not available prior to Java 18. You may want to enable secure processing on an `XPathFactory` instance you pass to `JAXPXPathEngine` instead - and `XPathFactoryConfigurer` may help with that.Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.