[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2173: build(deps): bump modello-plugin-java from 1.5 to 2.0.0
dependabot[bot] opened a new pull request #2173: URL: https://github.com/apache/myfaces-tobago/pull/2173 Bumps modello-plugin-java from 1.5 to 2.0.0. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.codehaus.modello:modello-plugin-java=maven=1.5=2.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2172: build(deps): bump jdom2 from 2.0.6 to 2.0.6.1
dependabot[bot] opened a new pull request #2172: URL: https://github.com/apache/myfaces-tobago/pull/2172 Bumps [jdom2](https://github.com:/hunterhacker/jdom) from 2.0.6 to 2.0.6.1. Release notes Sourced from https://github.com:/hunterhacker/jdom/releases;>jdom2's releases. JDOM 2.0.6.1 Fix for CVE-2021-33813 Commits https://github.com/hunterhacker/jdom/commit/c6065f684bdff5cebf5f23b2859c5e4c89fd89db;>c6065f6 Merge pull request https://github.com:/hunterhacker/jdom/issues/194;>#194 from schwehr/codespell https://github.com/hunterhacker/jdom/commit/b7cb36b2305a894355c092ebb698fcdd50b1d67d;>b7cb36b codespell https://github.com/hunterhacker/jdom/commit/aa6f028f8ddbfebcf69380f984c6c1461f8bf85c;>aa6f028 Merge pull request https://github.com:/hunterhacker/jdom/issues/192;>#192 from hunterhacker/tmp-cleanup https://github.com/hunterhacker/jdom/commit/25cf24eeb65e3231109915132cb34be08884fde1;>25cf24e Fixes https://github.com:/hunterhacker/jdom/issues/186;>#186 - update to Jaxen 1.2.0 https://github.com/hunterhacker/jdom/commit/03a391ad6f5a10b3f6f13e5a620412d0e60351c5;>03a391a Merge pull request https://github.com:/hunterhacker/jdom/issues/191;>#191 from hunterhacker/tmp-cleanup https://github.com/hunterhacker/jdom/commit/4f9af12b2612b6114756472b5b28d5226cb2;>4f9af12 Resolve as many StAX unit test fails as possible https://github.com/hunterhacker/jdom/commit/118853b185914527f13d606f9c650f5efac75f39;>118853b Addresses https://github.com:/hunterhacker/jdom/issues/189;>#189 again - use just the features for entity expansion tracking https://github.com/hunterhacker/jdom/commit/37c20d8359ed355d23d1ceb8c953e95d96a456d1;>37c20d8 Merge pull request https://github.com:/hunterhacker/jdom/issues/162;>#162 from seberget/master https://github.com/hunterhacker/jdom/commit/e3788905ace4c5df5ed528d732681f6f400daad0;>e378890 Merge pull request https://github.com:/hunterhacker/jdom/issues/185;>#185 from yagee-de/Automatic-Module-Name https://github.com/hunterhacker/jdom/commit/768c7e8b125ea79518a8642b10677a2e80b222d0;>768c7e8 Merge pull request https://github.com:/hunterhacker/jdom/issues/190;>#190 from hunterhacker/tmp-cleanup Additional commits viewable in https://github.com:/hunterhacker/jdom/compare/JDOM-2.0.6...JDOM-2.0.6.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.jdom:jdom2=maven=2.0.6=2.0.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2171: build(deps): bump maven-jar-plugin from 2.3.2 to 3.2.2
dependabot[bot] opened a new pull request #2171: URL: https://github.com/apache/myfaces-tobago/pull/2171 Bumps [maven-jar-plugin](https://github.com/apache/maven-jar-plugin) from 2.3.2 to 3.2.2. Release notes Sourced from https://github.com/apache/maven-jar-plugin/releases;>maven-jar-plugin's releases. 3.2.2 What's Changed [MJAR-260] Fail on invalid automatic module name by https://github.com/sormuras;>@sormuras in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/3;>apache/maven-jar-plugin#3 [MNGSITE-393] remove more pre Maven 3 content by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/8;>apache/maven-jar-plugin#8 compat not needed by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/10;>apache/maven-jar-plugin#10 ignore .checkstyle by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/12;>apache/maven-jar-plugin#12 Two minor dependency updates by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/11;>apache/maven-jar-plugin#11 simplify test by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/13;>apache/maven-jar-plugin#13 fix link to issue tracker by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/14;>apache/maven-jar-plugin#14 update minimum Maven version to 3.1.0 by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/15;>apache/maven-jar-plugin#15 docs: grammar by https://github.com/elharo;>@elharo in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/18;>apache/maven-jar-plugin#18 Bump maven-shared-utils from 3.3.3 to 3.3.4 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/20;>apache/maven-jar-plugin#20 Bump plexus-archiver from 4.2.3 to 4.2.5 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/23;>apache/maven-jar-plugin#23 use shared gh action by https://github.com/olamy;>@olamy in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/24;>apache/maven-jar-plugin#24 Bump junit from 4.13 to 4.13.2 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/25;>apache/maven-jar-plugin#25 use shared gh action - v1 by https://github.com/slawekjaranowski;>@slawekjaranowski in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/28;>apache/maven-jar-plugin#28 Bump maven-archiver from 3.5.0 to 3.5.1 by https://github.com/dependabot;>@dependabot in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/27;>apache/maven-jar-plugin#27 New Contributors https://github.com/sormuras;>@sormuras made their first contribution in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/3;>apache/maven-jar-plugin#3 https://github.com/elharo;>@elharo made their first contribution in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/8;>apache/maven-jar-plugin#8 https://github.com/dependabot;>@dependabot made their first contribution in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/20;>apache/maven-jar-plugin#20 https://github.com/olamy;>@olamy made their first contribution in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/24;>apache/maven-jar-plugin#24 https://github.com/slawekjaranowski;>@slawekjaranowski made their first contribution in https://github-redirect.dependabot.com/apache/maven-jar-plugin/pull/28;>apache/maven-jar-plugin#28 Full Changelog: https://github.com/apache/maven-jar-plugin/commits/maven-jar-plugin-3.2.2;>https://github.com/apache/maven-jar-plugin/commits/maven-jar-plugin-3.2.2 Commits https://github.com/apache/maven-jar-plugin/commit/d37e99594d4308d310362fcd2c0ffabfe517ffef;>d37e995 [maven-release-plugin] prepare release maven-jar-plugin-3.2.2 https://github.com/apache/maven-jar-plugin/commit/7bb0bfc631fce48feb59c80baa9b64b26cd64627;>7bb0bfc [MJAR-284] Remove override for Plexus Archiver https://github.com/apache/maven-jar-plugin/commit/a3e424db42892f9d605f856f26be1f1a1ed37cf0;>a3e424d [MJAR-283] Upgrade Plexus Utils to 3.3.1 https://github.com/apache/maven-jar-plugin/commit/95bc15b7a08b639ba282930b6d92a85e504af2e8;>95bc15b [maven-release-plugin] prepare for next development iteration https://github.com/apache/maven-jar-plugin/commit/50a8e0b1cd43f5b4319226a7579c6feee063698d;>50a8e0b [maven-release-plugin] prepare release maven-jar-plugin-3.2.1
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2170: build(deps): bump maven-scm-plugin from 1.5 to 1.12.2
dependabot[bot] opened a new pull request #2170: URL: https://github.com/apache/myfaces-tobago/pull/2170 Bumps [maven-scm-plugin](https://github.com/apache/maven-scm) from 1.5 to 1.12.2. Commits https://github.com/apache/maven-scm/commit/09c31eca8132a45552870e4a6e080f6d156e8579;>09c31ec [maven-release-plugin] prepare release maven-scm-1.12.2 https://github.com/apache/maven-scm/commit/e670d1de4eef99ccfe595e3fd1a2f88d60ca2843;>e670d1d Fix Javadoc 8 issues https://github.com/apache/maven-scm/commit/0ebd6465dd4de7bded2058eb5ac73c6bdd489d14;>0ebd646 [maven-release-plugin] prepare for next development iteration https://github.com/apache/maven-scm/commit/305eff99de37f6ca6effdbaaa75e2a38b4d718d4;>305eff9 [maven-release-plugin] prepare release maven-scm-1.12.1 https://github.com/apache/maven-scm/commit/3116aa96b0274f834d0169616dc1548826ddc37c;>3116aa9 [SCM-974] Upgrade Plexus Utils to 3.3.1 https://github.com/apache/maven-scm/commit/3743e166a63a4a117c33a3a289bb897551647744;>3743e16 [SCM-973] GitCheckInCommandNoBranchTest fails with Git 2.34.0+ https://github.com/apache/maven-scm/commit/f0834e45bee09b89729b85a071105f52c2caaa23;>f0834e4 Remove broken Travis CI https://github.com/apache/maven-scm/commit/7ad183a0d4114a60cff46afc0a87f2c08114b433;>7ad183a Fix serialVersionUID https://github.com/apache/maven-scm/commit/f6d038e0dc5aae9242f35c651368f1cb9761fe16;>f6d038e use shared gh action (https://github-redirect.dependabot.com/apache/maven-scm/issues/129;>#129) https://github.com/apache/maven-scm/commit/77a85d9e326c488cfebc33c31d627fc2035a4830;>77a85d9 [maven-release-plugin] prepare for next development iteration Additional commits viewable in https://github.com/apache/maven-scm/compare/maven-scm-1.5...maven-scm-1.12.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-scm-plugin=maven=1.5=1.12.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2169: build(deps): bump weld-servlet-shaded from 4.0.2.Final to 4.0.3.Final
lofwyr14 merged pull request #2169: URL: https://github.com/apache/myfaces-tobago/pull/2169 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2169: build(deps): bump weld-servlet-shaded from 4.0.2.Final to 4.0.3.Final
dependabot[bot] opened a new pull request #2169: URL: https://github.com/apache/myfaces-tobago/pull/2169 Bumps weld-servlet-shaded from 4.0.2.Final to 4.0.3.Final. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.jboss.weld.servlet:weld-servlet-shaded=maven=4.0.2.Final=4.0.3.Final)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2168: build(deps): bump spring.version from 4.3.29.RELEASE to 5.0.0.RELEASE
dependabot[bot] opened a new pull request #2168: URL: https://github.com/apache/myfaces-tobago/pull/2168 Bumps `spring.version` from 4.3.29.RELEASE to 5.0.0.RELEASE. Updates `spring-orm` from 4.3.29.RELEASE to 5.0.0.RELEASE Release notes Sourced from https://github.com/spring-projects/spring-framework/releases;>spring-orm's releases. v4.3.30.RELEASE :star: New Features ContentCachingResponseWrapper should not add “Content-Length” when “Transfer-Encoding” is present https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26194;>#26194 Inefficient request handling inside ServletRequestDataBinder https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26007;>#26007 Avoid creation of unused logger instance in AbstractMediaTypeExpression https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/25904;>#25904 :beetle: Bug Fixes Remove duplicate property in PropertyCacheKey.toString() https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26245;>#26245 UrlPathHelper#removeJsessionid doesn't remove the jsessionid from the URL https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26086;>#26086 jsessionid breaks request mappings when removeSemicolonContent is turned off https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/25869;>#25869 :notebook_with_decorative_cover: Documentation DateTimeFormat ISO.DATE_TIME javadoc contains misleading default note https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26138;>#26138 Commits https://github.com/spring-projects/spring-framework/commit/f4f990b2c900a9b325fd0770d9064a188d073253;>f4f990b Release version 5.0.0.RELEASE https://github.com/spring-projects/spring-framework/commit/c078e2eb1deb8b86db64e303d1d263249d0b3d5b;>c078e2e Overview with explicit JDK 9 (Jigsaw) and Java EE 8 references https://github.com/spring-projects/spring-framework/commit/255ccf58e0f78320badb96ba1a08004c88c1ff0a;>255ccf5 Remove snapshot repository from build setup https://github.com/spring-projects/spring-framework/commit/5733065ba45f4512bb2e569e1c443faad91628b0;>5733065 Rename webflux-client.adoc to webflux-webclient.adoc https://github.com/spring-projects/spring-framework/commit/67910ee48cd285a6f5367a4206dec8fcf935d056;>67910ee WebFlux and Integration share webflux-client.adoc https://github.com/spring-projects/spring-framework/commit/71ccf3c9e340f6783fcf436211882257581d27ec;>71ccf3c Polish https://github.com/spring-projects/spring-framework/commit/13c959296a464f30d01d59593fbbea857718f3af;>13c9592 Polish https://github.com/spring-projects/spring-framework/commit/869b818e96844791bdd30201f2ee4c636ebba075;>869b818 WebFlux support for LocaleContext related arguments https://github.com/spring-projects/spring-framework/commit/0f1bd49f6dd449b902211a5946107c11ee5d1cac;>0f1bd49 HandlerMappingIntrospector is a bean https://github.com/spring-projects/spring-framework/commit/126ac849e5592f65d742d1f23bf891e1a115af01;>126ac84 Fix behavior of ClientResponse#bodyTo** with Void Additional commits viewable in https://github.com/spring-projects/spring-framework/compare/v4.3.29.RELEASE...v5.0.0.RELEASE;>compare view Updates `spring-jdbc` from 4.3.29.RELEASE to 5.0.0.RELEASE Release notes Sourced from https://github.com/spring-projects/spring-framework/releases;>spring-jdbc's releases. v4.3.30.RELEASE :star: New Features ContentCachingResponseWrapper should not add “Content-Length” when “Transfer-Encoding” is present https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26194;>#26194 Inefficient request handling inside ServletRequestDataBinder https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26007;>#26007 Avoid creation of unused logger instance in AbstractMediaTypeExpression https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/25904;>#25904 :beetle: Bug Fixes Remove duplicate property in PropertyCacheKey.toString() https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26245;>#26245 UrlPathHelper#removeJsessionid doesn't remove the jsessionid from the URL https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26086;>#26086 jsessionid breaks request mappings when removeSemicolonContent is turned off https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/25869;>#25869 :notebook_with_decorative_cover: Documentation DateTimeFormat ISO.DATE_TIME javadoc contains misleading default note https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/26138;>#26138 Commits
[VOTE] Release Tobago 2.4.5 and checkstyle-rules 16
Hello, I would like to release: * Tobago 2.4.5 * checkstyle-rules 16 The artifacts were deployed on nexus repository for binary and source packages: * Tobago 2.4.5 [1] * checkstyle-rules 16 [2] The release notes are in Jira: * Tobago 2.4.5 [3] The artifacts are available at the staging repository (Nexus) at: * Tobago 2.4.5 [4] % shasum -a 256 tobago-2.4.5-source-release.zip 747c4cc4f84f00671eced7c000bf099f4ce9403fb20be460c16b8cbf19295945 tobago-2.4.5-source-release.zip * checkstyle-rules 16 [5] % shasum -a 256 checkstyle-rules-16-source-release.zip 33b7dc12ddd81c326212f8469ec2bd11c5b3df2fd90a4b76c38b2174a86d6b2e checkstyle-rules-16-source-release.zip Please vote now! (The vote is open for 72h.) [ ] +1 [ ] +0 [ ] -1 Regards, Udo [1]https://repository.apache.org/content/repositories/orgapachemyfaces-1199 [2]https://repository.apache.org/content/repositories/orgapachemyfaces-1198 [3]https://issues.apache.org/jira/projects/TOBAGO/versions/12349661 [4]https://repository.apache.org/content/repositories/orgapachemyfaces-1199/org/apache/myfaces/tobago/tobago/2.4.5/tobago-2.4.5-source-release.zip [5]https://repository.apache.org/content/repositories/orgapachemyfaces-1198/org/apache/myfaces/buildtools/checkstyle-rules/16/checkstyle-rules-16-source-release.zip
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2167: chore: update slf4j
lofwyr14 merged pull request #2167: URL: https://github.com/apache/myfaces-tobago/pull/2167 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2163: build(deps): bump javax.el-api from 3.0.1-b04 to 3.0.1-b06
lofwyr14 merged pull request #2163: URL: https://github.com/apache/myfaces-tobago/pull/2163 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2166: build: prepare release
lofwyr14 merged pull request #2166: URL: https://github.com/apache/myfaces-tobago/pull/2166 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2165: build: prepare release
lofwyr14 merged pull request #2165: URL: https://github.com/apache/myfaces-tobago/pull/2165 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 closed pull request #2164: build: prepare release
lofwyr14 closed pull request #2164: URL: https://github.com/apache/myfaces-tobago/pull/2164 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[Tobago] Preparation for the 2.4.5 release
Hi, folks, we plan to build version 2.4.5 of Tobago soon. If you know any blocking problems with the current SNAPSHOT, give me a hint. Regards, Udo
[jira] [Resolved] (TOBAGO-2111) Update jQuery UI Timepicker to 1.6.3
[ https://issues.apache.org/jira/browse/TOBAGO-2111?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Udo Schnurpfeil resolved TOBAGO-2111. - Resolution: Fixed > Update jQuery UI Timepicker to 1.6.3 > > > Key: TOBAGO-2111 > URL: https://issues.apache.org/jira/browse/TOBAGO-2111 > Project: MyFaces Tobago > Issue Type: Task >Affects Versions: 2.4.4 >Reporter: Udo Schnurpfeil >Assignee: Udo Schnurpfeil >Priority: Major > Fix For: 2.4.5 > > > Update to last release. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2163: build(deps): bump javax.el-api from 3.0.1-b04 to 3.0.1-b06
dependabot[bot] opened a new pull request #2163: URL: https://github.com/apache/myfaces-tobago/pull/2163 Bumps [javax.el-api](https://github.com/javaee/uel-ri) from 3.0.1-b04 to 3.0.1-b06. Commits https://github.com/javaee/uel-ri/commit/dcd3531246e7c50e773996fe80254fd08b84988a;>dcd3531 [maven-release-plugin] prepare release javax.el-3.0.1-b06 https://github.com/javaee/uel-ri/commit/849ec6859b65f4a500dfc71d5fe4fd60e8bad9c3;>849ec68 Fix the issue that ImportHandler can't load the classes in web application. https://github.com/javaee/uel-ri/commit/ec3aa49f083d6243d346049491cacbc41fe52a72;>ec3aa49 [maven-release-plugin] prepare for next development iteration https://github.com/javaee/uel-ri/commit/b2119f4523a307827a057ecf160fc490dac5f6f6;>b2119f4 [maven-release-plugin] prepare release javax.el-3.0.1-b05 https://github.com/javaee/uel-ri/commit/7280c1e0d24e067f4e5fc3fedaa2bb3dddba4134;>7280c1e Fix bug 19151813: AstValue#setValue coerced non=null value to null. https://github.com/javaee/uel-ri/commit/827065e5765568ac0150711b1bff571442509d2f;>827065e [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/javaee/uel-ri/compare/javax.el-3.0.1-b04...javax.el-3.0.1-b06;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=javax.el:javax.el-api=maven=3.0.1-b04=3.0.1-b06)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2161: build(deps-dev): bump js from 1.6R2 to 1.7R2
lofwyr14 merged pull request #2161: URL: https://github.com/apache/myfaces-tobago/pull/2161 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2162: build(deps): bump maven-archiver from 3.5.1 to 3.5.2
lofwyr14 merged pull request #2162: URL: https://github.com/apache/myfaces-tobago/pull/2162 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2152: build(deps): bump maven-remote-resources-plugin from 1.2.1 to 1.7.0
lofwyr14 merged pull request #2152: URL: https://github.com/apache/myfaces-tobago/pull/2152 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2162: build(deps): bump maven-archiver from 3.5.1 to 3.5.2
dependabot[bot] opened a new pull request #2162: URL: https://github.com/apache/myfaces-tobago/pull/2162 Bumps [maven-archiver](https://github.com/apache/maven-archiver) from 3.5.1 to 3.5.2. Commits https://github.com/apache/maven-archiver/commit/e17dadfafff78826de72fafe466b1bb4e1bc01fb;>e17dadf [maven-release-plugin] prepare release maven-archiver-3.5.2 https://github.com/apache/maven-archiver/commit/e44988258196b183db2da00386befc265a2e2917;>e449882 [MSHARED-1013] Upgrade Plexus Archiver to 4.2.7 https://github.com/apache/maven-archiver/commit/b50de9db5bcd7c4623ade96b1bc49d7d9e9ab839;>b50de9d update CI url https://github.com/apache/maven-archiver/commit/24dfab4dd15ec65522250766c54b88c011894aed;>24dfab4 add more values unit tests https://github.com/apache/maven-archiver/commit/b15117219111c040ec76b693fb8097e8e4416261;>b151172 Bump plexus-archiver from 4.2.3 to 4.2.4 https://github.com/apache/maven-archiver/commit/1cf2d124bf90655892a867e740e7c7cde4339daa;>1cf2d12 [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/maven-archiver/compare/maven-archiver-3.5.1...maven-archiver-3.5.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven:maven-archiver=maven=3.5.1=3.5.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2161: build(deps-dev): bump js from 1.6R2 to 1.7R2
dependabot[bot] opened a new pull request #2161: URL: https://github.com/apache/myfaces-tobago/pull/2161 Bumps js from 1.6R2 to 1.7R2. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rhino:js=maven=1.6R2=1.7R2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] commented on pull request #2151: build(deps): bump el-ri from 1.0 to 3.0.4
dependabot[bot] commented on pull request #2151: URL: https://github.com/apache/myfaces-tobago/pull/2151#issuecomment-1041339338 Looks like com.sun.el:el-ri is no longer a dependency, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] closed pull request #2151: build(deps): bump el-ri from 1.0 to 3.0.4
dependabot[bot] closed pull request #2151: URL: https://github.com/apache/myfaces-tobago/pull/2151 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2156: build(deps): bump hibernate-validator from 6.2.1.Final to 6.2.2.Final
lofwyr14 merged pull request #2156: URL: https://github.com/apache/myfaces-tobago/pull/2156 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2157: build(deps): bump dependency-check-maven from 6.5.1 to 6.5.3
lofwyr14 merged pull request #2157: URL: https://github.com/apache/myfaces-tobago/pull/2157 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2158: build(deps): bump apache-source-release-assembly-descriptor from 1.0.2 to 1.0.6
lofwyr14 merged pull request #2158: URL: https://github.com/apache/myfaces-tobago/pull/2158 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2159: build(deps): bump maven-javadoc-plugin from 3.3.1 to 3.3.2
lofwyr14 merged pull request #2159: URL: https://github.com/apache/myfaces-tobago/pull/2159 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2160: chore: clean up
lofwyr14 merged pull request #2160: URL: https://github.com/apache/myfaces-tobago/pull/2160 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2159: build(deps): bump maven-javadoc-plugin from 3.3.1 to 3.3.2
dependabot[bot] opened a new pull request #2159: URL: https://github.com/apache/myfaces-tobago/pull/2159 Bumps [maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) from 3.3.1 to 3.3.2. Commits https://github.com/apache/maven-javadoc-plugin/commit/50a41f78278c1d5957cb03e89223fcbc640f1b68;>50a41f7 [maven-release-plugin] prepare release maven-javadoc-plugin-3.3.2 https://github.com/apache/maven-javadoc-plugin/commit/5af4519ce17308f35d4cfb553d0af8168cac35f4;>5af4519 [MJAVADOC-705] Upgrade Maven Reporting API to 3.1.0 https://github.com/apache/maven-javadoc-plugin/commit/ee4132f9d0f6f412784e108305524cf3b3a3009a;>ee4132f [MJAVADOC-704] Javadoc plugin does not respect jdkToolchain https://github.com/apache/maven-javadoc-plugin/commit/651b98e6951ee2e3d8fefa1bcb3629f1dae763be;>651b98e Bump doxia-site-renderer from 1.10 to 1.11.1 https://github.com/apache/maven-javadoc-plugin/commit/db20fddd4eb443711948645613c03a4ccc516dab;>db20fdd Bump plexus-archiver from 4.2.5 to 4.2.6 https://github.com/apache/maven-javadoc-plugin/commit/b51c5d801c1e329b1e59e7b66142c8fd9c0ba6af;>b51c5d8 [MJAVADOC-694] Avoid empty warn message from getResolvePathResult https://github.com/apache/maven-javadoc-plugin/commit/6b1515ed43826417cf4cbad88be1107e92cba3f5;>6b1515e Bump httpcore from 4.4.14 to 4.4.15 https://github.com/apache/maven-javadoc-plugin/commit/a4aa7dcdc22eda19a08cc3c3e231631d422f1725;>a4aa7dc (doc) fix javadoc issues https://github.com/apache/maven-javadoc-plugin/commit/3309cc2ea03237576f3d702cffe1d628c3ea0d12;>3309cc2 Bump maven-project-info-reports-plugin to 3.1.2 https://github.com/apache/maven-javadoc-plugin/commit/51a2c3f803a0124c2591e46925210da705042f19;>51a2c3f Bump maven-javadoc-plugin to 3.3.1 Additional commits viewable in https://github.com/apache/maven-javadoc-plugin/compare/maven-javadoc-plugin-3.3.1...maven-javadoc-plugin-3.3.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-javadoc-plugin=maven=3.3.1=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2158: build(deps): bump apache-source-release-assembly-descriptor from 1.0.2 to 1.0.6
dependabot[bot] opened a new pull request #2158: URL: https://github.com/apache/myfaces-tobago/pull/2158 Bumps apache-source-release-assembly-descriptor from 1.0.2 to 1.0.6. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.apache.resources:apache-source-release-assembly-descriptor=maven=1.0.2=1.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2157: build(deps): bump dependency-check-maven from 6.5.1 to 6.5.3
dependabot[bot] opened a new pull request #2157: URL: https://github.com/apache/myfaces-tobago/pull/2157 Bumps [dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 6.5.1 to 6.5.3. Release notes Sourced from https://github.com/jeremylong/DependencyCheck/releases;>dependency-check-maven's releases. Version 6.5.3 Changes in this Release Performance improvements for some Maven projects (see https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3923;>#3923 and https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3931;>#3931). Fixed bug in npm version handling introduced in 6.5.2 (see https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3956;>#3956). Improved the node package analyzer to correctly report the origin of a dependency (see https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3970;>#3970). General code maintenance and false positive reductions. See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/39?closed=1;>changes. Version 6.5.2 Changes in this Release Fixed false positives around log4j-api and Log4j-web (https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3910;>#3910 https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3937;>#3937). Bug fix when processing NPM lock files (https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3893;>#3893). Added missing pnpm argmument to the CLI (https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3916;>#3916). General code maintenance and false positive reductions. See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/38?closed=1;>changes. Changelog Sourced from https://github.com/jeremylong/DependencyCheck/blob/main/RELEASE_NOTES.md;>dependency-check-maven's changelog. https://github.com/jeremylong/DependencyCheck/releases/tag/v6.5.3;>Version 6.5.3 (2022-01-12) Changes Performance improvements for some Maven projects (see https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3923;>#3923 and https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3931;>#3931). Fixed bug in npm version handling introduced in 6.5.2 (see https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3956;>#3956). Improved the node package analyzer to correctly report the origin of a dependency (see https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3970;>#3970). General code maintenance and false positive reductions. See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/39?closed=1;>changes. https://github.com/jeremylong/DependencyCheck/releases/tag/v6.5.2;>Version 6.5.2 (2022-01-03) Changes Fixed false positives around log4j-api and Log4j-web (https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3910;>#3910 https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3937;>#3937). Bug fix when processing NPM lock files (https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3893;>#3893). Added missing pnpm argmument to the CLI (https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3916;>#3916). General code maintenance and false positive reductions. See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/38?closed=1;>changes. Commits https://github.com/jeremylong/DependencyCheck/commit/9682614da18349f01078f7ce4938a8cdf4b1e1ea;>9682614 [maven-release-plugin] prepare release v6.5.3 https://github.com/jeremylong/DependencyCheck/commit/7a51b78d568be0cae726db8bc7a09cbfee9967e1;>7a51b78 prepare release https://github.com/jeremylong/DependencyCheck/commit/053a8e2e1f0e50b55eeed4c1a5c573967f8a620b;>053a8e2 make checkstyle happier https://github.com/jeremylong/DependencyCheck/commit/56058e5dc3bd44d261f0a81a69be130dfd143823;>56058e5 Merge pull request https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3983;>#3983 from jeremylong/fixEcosystem https://github.com/jeremylong/DependencyCheck/commit/7e445208ee7984edc867a73ad095299386ee4461;>7e44520 fix ecosystem per https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3980;>#3980 https://github.com/jeremylong/DependencyCheck/commit/4bd88dc815f27e274cfe63a2ffd5d3294cbfdb36;>4bd88dc prepare release https://github.com/jeremylong/DependencyCheck/commit/9bc3b108ed21d89ac4c25f50ba643d96f470a3f4;>9bc3b10 Merge pull request https://github-redirect.dependabot.com/jeremylong/DependencyCheck/issues/3978;>#3978 from jeremylong/fpReports https://github.com/jeremylong/DependencyCheck/commit/0cb6c672e2130cb128e709e281891d3bd1a9b8a3;>0cb6c67 Merge pull request
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2156: build(deps): bump hibernate-validator from 6.2.1.Final to 6.2.2.Final
dependabot[bot] opened a new pull request #2156: URL: https://github.com/apache/myfaces-tobago/pull/2156 Bumps [hibernate-validator](https://github.com/hibernate/hibernate-validator) from 6.2.1.Final to 6.2.2.Final. Changelog Sourced from https://github.com/hibernate/hibernate-validator/blob/6.2.2.Final/changelog.txt;>hibernate-validator's changelog. 6.2.2.Final (2022-02-10) ** Bug * HV-1878 java.sql.Date is not supported anymore ** Task * HV-1880 Clean up Gemfile.lock that shouldn't be there * HV-1877 Move the release job to a separate Jenkinsfile * HV-1874 Bump Log4j test dependency to 2.17.1 * HV-1871 Sign published artifacts * HV-1864 Make sure we can release with JDK 17 Commits https://github.com/hibernate/hibernate-validator/commit/1094476b9b1fecaa6fd9704a1dd17e8b9e985540;>1094476 [Jenkins release job] Preparing release 6.2.2.Final https://github.com/hibernate/hibernate-validator/commit/cba005f23b1186337ef4744ea3989eb750a60875;>cba005f [Jenkins release job] changelog.txt updated by release build 6.2.2.Final https://github.com/hibernate/hibernate-validator/commit/73b057bee35c60a92e7dde15c6d85e829c55c66a;>73b057b [Jenkins release job] README.md updated by release build 6.2.2.Final https://github.com/hibernate/hibernate-validator/commit/1994692019232a9950a8c849ef76e8289f0474a5;>1994692 HV-1864 Also open java.security.cert for Asciidoctor PDF https://github.com/hibernate/hibernate-validator/commit/4e033a34cd7093bea4406a6cbc21f4ccb051888e;>4e033a3 HV-1864 Rename jvm.options to jvm.config https://github.com/hibernate/hibernate-validator/commit/a9c58f19dd22b730367b42d3fce3bde374ef40a2;>a9c58f1 HV-1864 Add .mvn/jvm.options to fix bug in nexus-staging-maven-plugin on JDK17 https://github.com/hibernate/hibernate-validator/commit/8e193ac20f6b67a24b695016b0f3e23d0635b7bf;>8e193ac HV-1877 Keep fewer builds in the Jenkins history https://github.com/hibernate/hibernate-validator/commit/1dc264b33f2d819a67d87e9fc59e5886ff01e969;>1dc264b HV-1877 Abort previous non-release builds on the same branch/PR when starting... https://github.com/hibernate/hibernate-validator/commit/9771850a3390a94601ac2b9efa11bb1229b76c6d;>9771850 HV-1877 Remove the now unnecessary Deploy stage from the Jenkinsfile https://github.com/hibernate/hibernate-validator/commit/8fda07ab387c1137b15964e863bfda3ef694ca3e;>8fda07a HV-1877 Move the release job to a separate Jenkinsfile Additional commits viewable in https://github.com/hibernate/hibernate-validator/compare/6.2.1.Final...6.2.2.Final;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.hibernate.validator:hibernate-validator=maven=6.2.1.Final=6.2.2.Final)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2153: build(deps-dev): bump junit from 4.12 to 4.13.2
lofwyr14 merged pull request #2153: URL: https://github.com/apache/myfaces-tobago/pull/2153 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2154: build(deps): bump maven-pmd-plugin from 3.4 to 3.16.0
lofwyr14 merged pull request #2154: URL: https://github.com/apache/myfaces-tobago/pull/2154 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] closed pull request #2150: build(deps): bump stringtemplate from 3.0 to 4.0.2
dependabot[bot] closed pull request #2150: URL: https://github.com/apache/myfaces-tobago/pull/2150 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] commented on pull request #2150: build(deps): bump stringtemplate from 3.0 to 4.0.2
dependabot[bot] commented on pull request #2150: URL: https://github.com/apache/myfaces-tobago/pull/2150#issuecomment-1041324293 Looks like org.antlr:stringtemplate is no longer being updated by Dependabot, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2155: chore: stringtemplate - ignore 4 in Tobago 2
lofwyr14 merged pull request #2155: URL: https://github.com/apache/myfaces-tobago/pull/2155 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2154: build(deps): bump maven-pmd-plugin from 3.4 to 3.16.0
dependabot[bot] opened a new pull request #2154: URL: https://github.com/apache/myfaces-tobago/pull/2154 Bumps [maven-pmd-plugin](https://github.com/apache/maven-pmd-plugin) from 3.4 to 3.16.0. Release notes Sourced from https://github.com/apache/maven-pmd-plugin/releases;>maven-pmd-plugin's releases. 3.16.0 Bug Fixes https://issues.apache.org/jira/browse/MPMD-325;>[MPMD-325] Could not find class due to IncompatibleClassChangeError warning https://issues.apache.org/jira/browse/MPMD-324;>[MPMD-324] Ruleset URLs have hyphen replaced with forwardslash https://issues.apache.org/jira/browse/MPMD-323;>[MPMD-323] ResourceManager should use project base dir instead of pom location Build https://issues.apache.org/jira/browse/MPMD-328;>[MPMD-328] Shared GitHub Actions New features and improvements https://issues.apache.org/jira/browse/MPMD-327;>[MPMD-327] Upgrade to PMD 6.42.0 Dependency updates https://issues.apache.org/jira/browse/MPMD-326;>[MPMD-326] Set Maven 3.1.1 as minimum version Commits https://github.com/apache/maven-pmd-plugin/commit/b8a794e37e4cb3bb986ce044f3ef8df0dd392ed1;>b8a794e [maven-release-plugin] prepare release maven-pmd-plugin-3.16.0 https://github.com/apache/maven-pmd-plugin/commit/6fc39ec2428a9fd68319da39f89d2191ac3ad25b;>6fc39ec [MPMD-323] ResourceManager should use project base dir instead of pom https://github.com/apache/maven-pmd-plugin/commit/4eae72c6c6f394c0c65fc4994eead9d06a6544f2;>4eae72c [MPMD-324] Ruleset URLs have hyphen replaced with forwardslash https://github.com/apache/maven-pmd-plugin/commit/64e35f73c27107c192b33b856f549fa66953b305;>64e35f7 Make maven core provided scope https://github.com/apache/maven-pmd-plugin/commit/1dd8d0007fcf5d48571b9483bd3865a57d8e5383;>1dd8d00 [MPMD-327] Upgrade to PMD 6.42.0 https://github.com/apache/maven-pmd-plugin/commit/fae45251df926bb2e91ac14914b374c5f0ed28ed;>fae4525 [MPMD-327] Upgrade to PMD 6.41.0 https://github.com/apache/maven-pmd-plugin/commit/80e8aabe537063ddb64887c4dc18ca6c91be19e8;>80e8aab (doc) Update README.md https://github.com/apache/maven-pmd-plugin/commit/3fffd9cc7c0bea9ddd8489c9a7b4fee264d2d2c0;>3fffd9c [MPMD-328] Shared Github Actions (https://github-redirect.dependabot.com/apache/maven-pmd-plugin/issues/48;>#48) https://github.com/apache/maven-pmd-plugin/commit/2175d5e3936d0f4718da6f890a442cfc60cd617e;>2175d5e [MPMD-327] Upgrade to PMD 6.40.0 https://github.com/apache/maven-pmd-plugin/commit/b8ac1fbc41b2b7e69bb6d8c0a336119e8fdd2d26;>b8ac1fb [MPMD-327] Upgrade to PMD 6.39.0 Additional commits viewable in https://github.com/apache/maven-pmd-plugin/compare/maven-pmd-plugin-3.4...maven-pmd-plugin-3.16.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-pmd-plugin=maven=3.4=3.16.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2153: build(deps-dev): bump junit from 4.12 to 4.13.2
dependabot[bot] opened a new pull request #2153: URL: https://github.com/apache/myfaces-tobago/pull/2153 Bumps [junit](https://github.com/junit-team/junit4) from 4.12 to 4.13.2. Release notes Sourced from https://github.com/junit-team/junit4/releases;>junit's releases. JUnit 4.13.2 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.2.md;>release notes for details. JUnit 4.13.1 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.1.md;>release notes for details. JUnit 4.13 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.md;>release notes for details. JUnit 4.13 RC 2 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes;>release notes for details. JUnit 4.13 RC 1 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes;>release notes for details. JUnit 4.13 Beta 3 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes;>release notes for details. JUnit 4.13 Beta 2 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes;>release notes for details. JUnit 4.13 Beta 1 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes;>release notes for details. Commits https://github.com/junit-team/junit4/commit/05fe2a64f59127c02135be22f416e91260d6ede6;>05fe2a6 [maven-release-plugin] prepare release r4.13.2 https://github.com/junit-team/junit4/commit/ff57344f7171ea8b0935c4f842cacf1097266592;>ff57344 Add build for JDK 17-ea https://github.com/junit-team/junit4/commit/02aaa01b8f74c0eb496d76685ec49fddeb311087;>02aaa01 Improve check that thread is stopped https://github.com/junit-team/junit4/commit/e9a75f4be71a4d5a794ccd063522eea4b0f3194f;>e9a75f4 Merge test for exception type and message https://github.com/junit-team/junit4/commit/d27ad5259228e84c235dac24cd62f974ac0a8e1d;>d27ad52 Rename DelegateStatement to DelegatingStatement https://github.com/junit-team/junit4/commit/b83dc2e8c4ff06cf233cd347f1280bb417482985;>b83dc2e Better name for test that stops statement https://github.com/junit-team/junit4/commit/527f3a3d0d71ad6dc66ede6f68f6fc316904ed2a;>527f3a3 Replace InfiniteLoop with RunForASecond https://github.com/junit-team/junit4/commit/2db63942882d91020b46d7333285e5c94f1d1e52;>2db6394 Tidy up FailOnTimeoutTest https://github.com/junit-team/junit4/commit/64634e1c3e357251a84278c26b73b04fc3450ea3;>64634e1 Update 4.13.2 release notes to document pull 1654 https://github.com/junit-team/junit4/commit/f8ee412316b1a94d3dc35498359cc2f0ca273216;>f8ee412 Fix serialization of AssumptionViolatedException (https://github-redirect.dependabot.com/junit-team/junit4/issues/1654;>#1654) Additional commits viewable in https://github.com/junit-team/junit4/compare/r4.12...r4.13.2;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=junit:junit=maven=4.12=4.13.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe,
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2152: build(deps): bump maven-remote-resources-plugin from 1.2.1 to 1.7.0
dependabot[bot] opened a new pull request #2152: URL: https://github.com/apache/myfaces-tobago/pull/2152 Bumps [maven-remote-resources-plugin](https://github.com/apache/maven-remote-resources-plugin) from 1.2.1 to 1.7.0. Commits https://github.com/apache/maven-remote-resources-plugin/commit/e81f39260da526852df71bea509158b8614b32cc;>e81f392 [maven-release-plugin] prepare release maven-remote-resources-plugin-1.7.0 https://github.com/apache/maven-remote-resources-plugin/commit/331f9ada62b1f4fb922ce00a3d8864f9cae2f19d;>331f9ad fix code formatting https://github.com/apache/maven-remote-resources-plugin/commit/33022e15c1f6212443bd9d10367f07b666fb69b6;>33022e1 [MRRESOURCES-114] use reproducible project.build.outputTimestamp https://github.com/apache/maven-remote-resources-plugin/commit/09f77658d4041d82ae946e8bada4c92c59772568;>09f7765 Corrected small grammar mistake in usage.apt.vm https://github.com/apache/maven-remote-resources-plugin/commit/df37e43faecf42fc7e2c6da327145e69943d7e39;>df37e43 Adjust test for Jenkins on Windows https://github.com/apache/maven-remote-resources-plugin/commit/ba044a9492add0b47a06332aeb0e09376d82744a;>ba044a9 [MRRESOURCES-112] Require Java 7 https://github.com/apache/maven-remote-resources-plugin/commit/a67d69c081ccbe60c669e20771f108a6456d7770;>a67d69c added README.md https://github.com/apache/maven-remote-resources-plugin/commit/aa416d5293a9e1d2d3c8f8ae45fbc32417854c46;>aa416d5 [maven-release-plugin] prepare for next development iteration https://github.com/apache/maven-remote-resources-plugin/commit/ce78dc0b33480e14cd4c19e5581da5a243f4b922;>ce78dc0 [maven-release-plugin] prepare release maven-remote-resources-plugin-1.6.0 https://github.com/apache/maven-remote-resources-plugin/commit/7e2a84eba512d4852af2014fe2e91cd639a77132;>7e2a84e fixed rendering issue Additional commits viewable in https://github.com/apache/maven-remote-resources-plugin/compare/maven-remote-resources-plugin-1.2.1...maven-remote-resources-plugin-1.7.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-remote-resources-plugin=maven=1.2.1=1.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2151: build(deps): bump el-ri from 1.0 to 3.0.4
dependabot[bot] opened a new pull request #2151: URL: https://github.com/apache/myfaces-tobago/pull/2151 Bumps [el-ri](https://github.com/eclipse-ee4j/el-ri) from 1.0 to 3.0.4. Commits See full diff in https://github.com/eclipse-ee4j/el-ri/commits;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.sun.el:el-ri=maven=1.0=3.0.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2150: build(deps): bump stringtemplate from 3.0 to 4.0.2
dependabot[bot] opened a new pull request #2150: URL: https://github.com/apache/myfaces-tobago/pull/2150 Bumps stringtemplate from 3.0 to 4.0.2. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.antlr:stringtemplate=maven=3.0=4.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] commented on pull request #2139: build(deps): bump jsp-api from 2.1 to 2.2
dependabot[bot] commented on pull request #2139: URL: https://github.com/apache/myfaces-tobago/pull/2139#issuecomment-1041291168 Looks like javax.servlet.jsp:jsp-api is no longer being updated by Dependabot, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] closed pull request #2139: build(deps): bump jsp-api from 2.1 to 2.2
dependabot[bot] closed pull request #2139: URL: https://github.com/apache/myfaces-tobago/pull/2139 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2149: chore: jsp - ignore 2.2 in Tobago 2
lofwyr14 merged pull request #2149: URL: https://github.com/apache/myfaces-tobago/pull/2149 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2148: chore: update maven-processor-plugin version
lofwyr14 merged pull request #2148: URL: https://github.com/apache/myfaces-tobago/pull/2148 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2127: build(deps): bump maven-processor-plugin from 2.2.4 to 4.5-jdk8
lofwyr14 merged pull request #2127: URL: https://github.com/apache/myfaces-tobago/pull/2127 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2142: build(deps): bump lesscss-maven-plugin from 1.3.0 to 1.7.0.1.1
lofwyr14 merged pull request #2142: URL: https://github.com/apache/myfaces-tobago/pull/2142 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2143: build(deps): bump weld-servlet-shaded from 3.1.8.Final to 3.1.9.Final
lofwyr14 merged pull request #2143: URL: https://github.com/apache/myfaces-tobago/pull/2143 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2144: build(deps): bump animal-sniffer-maven-plugin from 1.17 to 1.21
lofwyr14 merged pull request #2144: URL: https://github.com/apache/myfaces-tobago/pull/2144 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2145: build(deps): bump derby from 10.12.1.1 to 10.15.2.0
lofwyr14 merged pull request #2145: URL: https://github.com/apache/myfaces-tobago/pull/2145 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2146: build(deps): bump maven-compiler-plugin from 3.9.0 to 3.10.0
lofwyr14 merged pull request #2146: URL: https://github.com/apache/myfaces-tobago/pull/2146 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2147: build(deps): bump maven-pmd-plugin from 3.15.0 to 3.16.0
lofwyr14 merged pull request #2147: URL: https://github.com/apache/myfaces-tobago/pull/2147 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2147: build(deps): bump maven-pmd-plugin from 3.15.0 to 3.16.0
dependabot[bot] opened a new pull request #2147: URL: https://github.com/apache/myfaces-tobago/pull/2147 Bumps [maven-pmd-plugin](https://github.com/apache/maven-pmd-plugin) from 3.15.0 to 3.16.0. Release notes Sourced from https://github.com/apache/maven-pmd-plugin/releases;>maven-pmd-plugin's releases. 3.16.0 Bug Fixes https://issues.apache.org/jira/browse/MPMD-325;>[MPMD-325] Could not find class due to IncompatibleClassChangeError warning https://issues.apache.org/jira/browse/MPMD-324;>[MPMD-324] Ruleset URLs have hyphen replaced with forwardslash https://issues.apache.org/jira/browse/MPMD-323;>[MPMD-323] ResourceManager should use project base dir instead of pom location Build https://issues.apache.org/jira/browse/MPMD-328;>[MPMD-328] Shared GitHub Actions New features and improvements https://issues.apache.org/jira/browse/MPMD-327;>[MPMD-327] Upgrade to PMD 6.42.0 Dependency updates https://issues.apache.org/jira/browse/MPMD-326;>[MPMD-326] Set Maven 3.1.1 as minimum version Commits https://github.com/apache/maven-pmd-plugin/commit/b8a794e37e4cb3bb986ce044f3ef8df0dd392ed1;>b8a794e [maven-release-plugin] prepare release maven-pmd-plugin-3.16.0 https://github.com/apache/maven-pmd-plugin/commit/6fc39ec2428a9fd68319da39f89d2191ac3ad25b;>6fc39ec [MPMD-323] ResourceManager should use project base dir instead of pom https://github.com/apache/maven-pmd-plugin/commit/4eae72c6c6f394c0c65fc4994eead9d06a6544f2;>4eae72c [MPMD-324] Ruleset URLs have hyphen replaced with forwardslash https://github.com/apache/maven-pmd-plugin/commit/64e35f73c27107c192b33b856f549fa66953b305;>64e35f7 Make maven core provided scope https://github.com/apache/maven-pmd-plugin/commit/1dd8d0007fcf5d48571b9483bd3865a57d8e5383;>1dd8d00 [MPMD-327] Upgrade to PMD 6.42.0 https://github.com/apache/maven-pmd-plugin/commit/fae45251df926bb2e91ac14914b374c5f0ed28ed;>fae4525 [MPMD-327] Upgrade to PMD 6.41.0 https://github.com/apache/maven-pmd-plugin/commit/80e8aabe537063ddb64887c4dc18ca6c91be19e8;>80e8aab (doc) Update README.md https://github.com/apache/maven-pmd-plugin/commit/3fffd9cc7c0bea9ddd8489c9a7b4fee264d2d2c0;>3fffd9c [MPMD-328] Shared Github Actions (https://github-redirect.dependabot.com/apache/maven-pmd-plugin/issues/48;>#48) https://github.com/apache/maven-pmd-plugin/commit/2175d5e3936d0f4718da6f890a442cfc60cd617e;>2175d5e [MPMD-327] Upgrade to PMD 6.40.0 https://github.com/apache/maven-pmd-plugin/commit/b8ac1fbc41b2b7e69bb6d8c0a336119e8fdd2d26;>b8ac1fb [MPMD-327] Upgrade to PMD 6.39.0 Additional commits viewable in https://github.com/apache/maven-pmd-plugin/compare/maven-pmd-plugin-3.15.0...maven-pmd-plugin-3.16.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-pmd-plugin=maven=3.15.0=3.16.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2146: build(deps): bump maven-compiler-plugin from 3.9.0 to 3.10.0
dependabot[bot] opened a new pull request #2146: URL: https://github.com/apache/myfaces-tobago/pull/2146 Bumps [maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) from 3.9.0 to 3.10.0. Release notes Sourced from https://github.com/apache/maven-compiler-plugin/releases;>maven-compiler-plugin's releases. 3.10.0 Removed https://issues.apache.org/jira/browse/MCOMPILER-484;>[MCOMPILER-484] - Remove deprecated mojos (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/87;>#87) https://github.com/gnodet;>@gnodet New features and improvements https://issues.apache.org/jira/browse/MCOMPILER-205;>[MCOMPILER-205] - Add a boolean to generate missing package-info classes by default (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/88;>#88) https://github.com/gnodet;>@gnodet https://issues.apache.org/jira/browse/MCOMPILER-474;>[MCOMPILER-474] - Also check jar files when determining if dependencies changed (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/73;>#73) https://github.com/Powerrr;>@Powerrr Bug Fixes https://issues.apache.org/jira/browse/MCOMPILER-225;>[MCOMPILER-225] - javac.sh/javac.bat added to archive (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/91;>#91) https://github.com/olamy;>@olamy https://issues.apache.org/jira/browse/MCOMPILER-481;>[MCOMPILER-481] - compiler plugin should include static module for compilation (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/82;>#82) https://github.com/olamy;>@olamy https://issues.apache.org/jira/browse/MCOMPILER-470;>[MCOMPILER-470] -parameters doesn't work with --release https://issues.apache.org/jira/browse/MCOMPILER-460;>[MCOMPILER-460] - Compiler doesn't show detailed information with the Maven Toolchains Dependency updates use plexus-compiler 2.10.0 (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/92;>#92) https://github.com/olamy;>@olamy Bump mockito-core from 4.2.0 to 4.3.1 (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/83;>#83) https://github.com/dependabot;>@dependabot Documentation updates https://issues.apache.org/jira/browse/MCOMPILER-479;>[MCOMPILER-479] - Clarify compiler arguments Javadoc (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/90;>#90) https://github.com/hisener;>@hisener (doc) Fix typo and follow xml block style used for other parameters (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/89;>#89) https://github.com/pzygielo;>@pzygielo Build add more jdk for testing (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/93;>#93) https://github.com/olamy;>@olamy Commits https://github.com/apache/maven-compiler-plugin/commit/f4239a484514451c0879b4a60fbd2bb5d8d8ad53;>f4239a4 [maven-release-plugin] prepare release maven-compiler-plugin-3.10.0 https://github.com/apache/maven-compiler-plugin/commit/fda97298149ed267b898aac29119f14b0fb58ab6;>fda9729 fix typo gtrhhhrhr https://github.com/apache/maven-compiler-plugin/commit/49a40ab224066107a9cc63bbb2c77e2c931480ab;>49a40ab use github https://github.com/apache/maven-compiler-plugin/commit/bd72d750581291181b60c5193c4349e424200b47;>bd72d75 back to snapshot again https://github.com/apache/maven-compiler-plugin/commit/2863d29d6068f80b4be7fbe5f43c58a271c7f798;>2863d29 [maven-release-plugin] prepare release maven-compiler-plugin-3.10.0 https://github.com/apache/maven-compiler-plugin/commit/807d4e517b03f2981819cb912b201adbea9e3f18;>807d4e5 use last release plugin version https://github.com/apache/maven-compiler-plugin/commit/037670c927e4f2395fdc4956a7d1ce67915f1fe6;>037670c restore snapshot version https://github.com/apache/maven-compiler-plugin/commit/07d635a561e6425beeadbf6ebe772f1ee8f9d597;>07d635a [maven-release-plugin] prepare for next development iteration https://github.com/apache/maven-compiler-plugin/commit/a0fa151010072ef6819ffde125e3a2b6baac9119;>a0fa151 [maven-release-plugin] prepare release maven-compiler-plugin-3.10.0 https://github.com/apache/maven-compiler-plugin/commit/500ade40e7ec9b3c318d82d8f27c958fff005bbd;>500ade4 add more jdk for testing (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/93;>#93) Additional commits viewable in https://github.com/apache/maven-compiler-plugin/compare/maven-compiler-plugin-3.9.0...maven-compiler-plugin-3.10.0;>compare view [![Dependabot compatibility
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2145: build(deps): bump derby from 10.12.1.1 to 10.15.2.0
dependabot[bot] opened a new pull request #2145: URL: https://github.com/apache/myfaces-tobago/pull/2145 Bumps derby from 10.12.1.1 to 10.15.2.0. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.derby:derby=maven=10.12.1.1=10.15.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2144: build(deps): bump animal-sniffer-maven-plugin from 1.17 to 1.21
dependabot[bot] opened a new pull request #2144: URL: https://github.com/apache/myfaces-tobago/pull/2144 Bumps [animal-sniffer-maven-plugin](https://github.com/mojohaus/animal-sniffer) from 1.17 to 1.21. Release notes Sourced from https://github.com/mojohaus/animal-sniffer/releases;>animal-sniffer-maven-plugin's releases. 1.21.0 New features and improvements Cache signatures so that multiple runs of the mojo can reuse loaded signatures (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/165;>#165) https://github.com/gnodet;>@gnodet Bug Fixes Remove incorrect handling of covariant return types (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/83;>#83) https://github.com/ogolberg;>@ogolberg Dependency updates Bump maven-plugin-annotations from 3.6.2 to 3.6.4 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/188;>#188) https://github.com/dependabot;>@dependabot Bump maven-plugin-plugin from 3.6.2 to 3.6.4 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/189;>#189) https://github.com/dependabot;>@dependabot Bump release-drafter/release-drafter from 5.15.0 to 5.17.6 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/190;>#190) https://github.com/dependabot;>@dependabot Bump build-helper-maven-plugin from 3.2.0 to 3.3.0 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/185;>#185) https://github.com/dependabot;>@dependabot Bump plexus-container-default from 2.1.0 to 2.1.1 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/184;>#184) https://github.com/dependabot;>@dependabot Bump maven-plugin-plugin from 3.6.1 to 3.6.2 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/183;>#183) https://github.com/dependabot;>@dependabot Bump maven-plugin-annotations from 3.6.1 to 3.6.2 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/182;>#182) https://github.com/dependabot;>@dependabot Bump junit from 4.13 to 4.13.1 in /animal-sniffer-maven-plugin/src/it/github-5-test-classes (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/180;>#180) https://github.com/dependabot;>@dependabot Bump mojo-parent from 63 to 65 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/181;>#181) https://github.com/dependabot;>@dependabot Bump ant from 1.10.11 to 1.10.12 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/177;>#177) https://github.com/dependabot;>@dependabot Bump actions/setup-java from 2.3.0 to 2.3.1 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/176;>#176) https://github.com/dependabot;>@dependabot Bump plexus-utils from 3.4.0 to 3.4.1 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/174;>#174) https://github.com/dependabot;>@dependabot Bump actions/setup-java from 2.2.0 to 2.3.0 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/173;>#173) https://github.com/dependabot;>@dependabot Bump maven-enforcer-plugin from 3.0.0-M3 to 3.0.0 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/169;>#169) https://github.com/dependabot;>@dependabot Bump enforcer-api from 1.4.1 to 3.0.0 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/170;>#170) https://github.com/dependabot;>@dependabot Bump plexus-utils from 3.3.0 to 3.4.0 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/168;>#168) https://github.com/dependabot;>@dependabot Bump actions/setup-java from 2.1.0 to 2.2.0 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/171;>#171) https://github.com/dependabot;>@dependabot Bump asm from 9.1 to 9.2 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/166;>#166) https://github.com/dependabot;>@dependabot Bump ant from 1.10.10 to 1.10.11 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/167;>#167) https://github.com/dependabot;>@dependabot Bump maven-plugin-plugin from 3.6.0 to 3.6.1 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/157;>#157) https://github.com/dependabot;>@dependabot Bump maven-plugin-annotations from 3.6.0 to 3.6.1 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/158;>#158) https://github.com/dependabot;>@dependabot Bump actions/setup-java from 1 to 2.1.0 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/161;>#161) https://github.com/dependabot;>@dependabot Bump httpclient from 4.1.1 to 4.5.13 in /animal-sniffer-maven-plugin/src/it/manimalsniffer-6 (https://github-redirect.dependabot.com/mojohaus/animal-sniffer/issues/164;>#164) https://github.com/dependabot;>@dependabot Bump actions/cache from 2.1.5 to 2.1.6
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2143: build(deps): bump weld-servlet-shaded from 3.1.8.Final to 3.1.9.Final
dependabot[bot] opened a new pull request #2143: URL: https://github.com/apache/myfaces-tobago/pull/2143 Bumps weld-servlet-shaded from 3.1.8.Final to 3.1.9.Final. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.jboss.weld.servlet:weld-servlet-shaded=maven=3.1.8.Final=3.1.9.Final)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2142: build(deps): bump lesscss-maven-plugin from 1.3.0 to 1.7.0.1.1
dependabot[bot] opened a new pull request #2142: URL: https://github.com/apache/myfaces-tobago/pull/2142 Bumps [lesscss-maven-plugin](https://github.com/marceloverdijk/lesscss-maven-plugin) from 1.3.0 to 1.7.0.1.1. Commits https://github.com/marceloverdijk/lesscss-maven-plugin/commit/7bc24c3e9ed15125b149933f343eb36e801af087;>7bc24c3 [maven-release-plugin] prepare release lesscss-maven-plugin-1.7.0.1.1 https://github.com/marceloverdijk/lesscss-maven-plugin/commit/531d66508b0b630cc842b7b295969504b56465c0;>531d665 moved to lesscss 1.7.0.1.1 https://github.com/marceloverdijk/lesscss-maven-plugin/commit/0ec961f445a368345daade6791428eaa6f882b9d;>0ec961f [maven-release-plugin] prepare for next development iteration https://github.com/marceloverdijk/lesscss-maven-plugin/commit/e7c8de7ec92fdb3a69e25fc276584ea2f76f145b;>e7c8de7 [maven-release-plugin] prepare release lesscss-maven-plugin-1.7.0.1.0 https://github.com/marceloverdijk/lesscss-maven-plugin/commit/034257f6dce47b7c660715367c86aadbb51e2f01;>034257f added slf4j-api 1.7.2 to the testing classpath https://github.com/marceloverdijk/lesscss-maven-plugin/commit/bb8d9dbd0d1d0376507fd57cdb3202f91fe7d886;>bb8d9db changed dependency to version 1.7.0.1.0 of org.lesscss.lesscss https://github.com/marceloverdijk/lesscss-maven-plugin/commit/c8f21890781cb349847944bab8d24ac5255e4b85;>c8f2189 removed SNAPSHOT from the version name in the README.md https://github.com/marceloverdijk/lesscss-maven-plugin/commit/1d2363c9d19dc1a52168ad57ea436acf2fb22b24;>1d2363c changed README.md to use the latest snapshot version https://github.com/marceloverdijk/lesscss-maven-plugin/commit/dc3eb88a7ffeb3ad93adb0bcbc5bb7128d4a45d4;>dc3eb88 Merge branch 'learningobjectsinc-master' https://github.com/marceloverdijk/lesscss-maven-plugin/commit/06c7a804a275833574547c7e9bb9a1e69002fad5;>06c7a80 Merge branch 'master' of git://github.com/learningobjectsinc/lesscss-maven-pl... Additional commits viewable in https://github.com/marceloverdijk/lesscss-maven-plugin/compare/lesscss-maven-plugin-1.3.0...lesscss-maven-plugin-1.7.0.1.1;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.lesscss:lesscss-maven-plugin=maven=1.3.0=1.7.0.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2140: build(deps): bump maven-site-plugin from 3.3 to 3.10.0
lofwyr14 merged pull request #2140: URL: https://github.com/apache/myfaces-tobago/pull/2140 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2141: build(deps): bump commons-logging from 1.1.1 to 1.2
lofwyr14 merged pull request #2141: URL: https://github.com/apache/myfaces-tobago/pull/2141 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2141: build(deps): bump commons-logging from 1.1.1 to 1.2
dependabot[bot] opened a new pull request #2141: URL: https://github.com/apache/myfaces-tobago/pull/2141 Bumps commons-logging from 1.1.1 to 1.2. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=commons-logging:commons-logging=maven=1.1.1=1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2140: build(deps): bump maven-site-plugin from 3.3 to 3.10.0
dependabot[bot] opened a new pull request #2140: URL: https://github.com/apache/myfaces-tobago/pull/2140 Bumps [maven-site-plugin](https://github.com/apache/maven-site-plugin) from 3.3 to 3.10.0. Commits https://github.com/apache/maven-site-plugin/commit/c56b7b2ad2baecbf4286151c645ff4ee9190f420;>c56b7b2 [maven-release-plugin] prepare release maven-site-plugin-3.10.0 https://github.com/apache/maven-site-plugin/commit/7029bab59cac4fe83b62c245e55c37bcb79d9061;>7029bab [MSITE-878] Upgrade Doxia to 1.11.1 and Doxia Tools to 1.11.1 https://github.com/apache/maven-site-plugin/commit/7f8fe7ead4e42b7797eed7eb87c878a16e10b5be;>7f8fe7e [MSITE-877] Shared GitHub Actions (https://github-redirect.dependabot.com/apache/maven-site-plugin/issues/65;>#65) https://github.com/apache/maven-site-plugin/commit/e3302845bd4fac62e7869d1afd0faadd0499becc;>e330284 require CDATA https://github.com/apache/maven-site-plugin/commit/eeba50cf6854c9cca709ae47a626d57d924e463e;>eeba50c Add PR template https://github.com/apache/maven-site-plugin/commit/7813e8f193131faec8898b54b0e59c82602ab665;>7813e8f add Sitetools' integration tool and skin model https://github.com/apache/maven-site-plugin/commit/fda2a84b09a6d08ceb26efee963f00a21e02ffc2;>fda2a84 Updated CI setup https://github.com/apache/maven-site-plugin/commit/0cd2070cf4e32086fe936ea09c5f80c7d5a988cb;>0cd2070 Bump slf4jVersion from 1.7.31 to 1.7.32 (https://github-redirect.dependabot.com/apache/maven-site-plugin/issues/58;>#58) https://github.com/apache/maven-site-plugin/commit/9f24d2bd21f3d7a741ea74b4f41aa42ee02ce625;>9f24d2b update CI url https://github.com/apache/maven-site-plugin/commit/e06aa7822797f6ee54ee4dd309d955c3822df801;>e06aa78 [MSITE-875] add 3.10.0 in history table Additional commits viewable in https://github.com/apache/maven-site-plugin/compare/maven-site-plugin-3.3...maven-site-plugin-3.10.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-site-plugin=maven=3.3=3.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2139: build(deps): bump jsp-api from 2.1 to 2.2
dependabot[bot] opened a new pull request #2139: URL: https://github.com/apache/myfaces-tobago/pull/2139 Bumps jsp-api from 2.1 to 2.2. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=javax.servlet.jsp:jsp-api=maven=2.1=2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2138: build(deps): bump geronimo-atinject_1.0_spec from 1.0 to 1.2
lofwyr14 merged pull request #2138: URL: https://github.com/apache/myfaces-tobago/pull/2138 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2137: build(deps): bump jboss-as-maven-plugin from 7.3.Final to 7.9.Final
lofwyr14 merged pull request #2137: URL: https://github.com/apache/myfaces-tobago/pull/2137 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2135: build(deps): bump exec-maven-plugin from 1.1 to 3.0.0
lofwyr14 merged pull request #2135: URL: https://github.com/apache/myfaces-tobago/pull/2135 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2138: build(deps): bump geronimo-atinject_1.0_spec from 1.0 to 1.2
dependabot[bot] opened a new pull request #2138: URL: https://github.com/apache/myfaces-tobago/pull/2138 Bumps geronimo-atinject_1.0_spec from 1.0 to 1.2. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.geronimo.specs:geronimo-atinject_1.0_spec=maven=1.0=1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2137: build(deps): bump jboss-as-maven-plugin from 7.3.Final to 7.9.Final
dependabot[bot] opened a new pull request #2137: URL: https://github.com/apache/myfaces-tobago/pull/2137 Bumps [jboss-as-maven-plugin](https://github.com/jbossas/jboss-as-maven-plugin) from 7.3.Final to 7.9.Final. Commits https://github.com/jbossas/jboss-as-maven-plugin/commit/5eb4743017146fd7de3bb2b9c0df1adf3d2c63e1;>5eb4743 Prepare for 7.9.Final release https://github.com/jbossas/jboss-as-maven-plugin/commit/0d11823c274e6ae702c996d42c1b0915c8a824f3;>0d11823 Add a version for the reporting maven-plugin-plugin. https://github.com/jbossas/jboss-as-maven-plugin/commit/c4290b8100c7fc21c1cb9b3f9f918958e6c047a4;>c4290b8 Merge pull request https://github-redirect.dependabot.com/jbossas/jboss-as-maven-plugin/issues/96;>#96 from jamezp/JBASMP-84 https://github.com/jbossas/jboss-as-maven-plugin/commit/8fb4bc1b7d8c51584c41217d7cdb5ded9a1a4e8f;>8fb4bc1 [JBASMP-84] Use the correct PackageType's for the static map lookup. https://github.com/jbossas/jboss-as-maven-plugin/commit/872ab1a4849f0c8e6e1823ae330042399603fdab;>872ab1a Next is 7.9.Final https://github.com/jbossas/jboss-as-maven-plugin/commit/6f6266712deb8b48105b7f0eb16cf76ae9858028;>6f62667 Prepare for 7.8.Final release https://github.com/jbossas/jboss-as-maven-plugin/commit/e8be1e4f7fc213cc6c8b0b11b7174a619ce59a94;>e8be1e4 Merge pull request https://github-redirect.dependabot.com/jbossas/jboss-as-maven-plugin/issues/95;>#95 from jamezp/JBASMP-80 https://github.com/jbossas/jboss-as-maven-plugin/commit/60dd1efe132066fff7d7a025761c4b1ff433;>60dd1ef [JBASMP-80] Use a real value for the isIgnored() on the PackageType. https://github.com/jbossas/jboss-as-maven-plugin/commit/2d6468a735b70eeece6e0ffda5ea43a8a3f330ee;>2d6468a Merge pull request https://github-redirect.dependabot.com/jbossas/jboss-as-maven-plugin/issues/94;>#94 from jamezp/JBASMP-73 https://github.com/jbossas/jboss-as-maven-plugin/commit/bcb329b99a96f719028d66f055f288c11e9fd20b;>bcb329b [JBASMP-73] During a reload on the shutdown goal wait for the server to reloa... Additional commits viewable in https://github.com/jbossas/jboss-as-maven-plugin/compare/7.3.Final...7.9.Final;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.jboss.as.plugins:jboss-as-maven-plugin=maven=7.3.Final=7.9.Final)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] commented on pull request #2130: build(deps): bump spring.version from 4.3.29.RELEASE to 5.3.15
dependabot[bot] commented on pull request #2130: URL: https://github.com/apache/myfaces-tobago/pull/2130#issuecomment-1041218019 Looks like these dependencies are no longer being updated by Dependabot, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] closed pull request #2130: build(deps): bump spring.version from 4.3.29.RELEASE to 5.3.15
dependabot[bot] closed pull request #2130: URL: https://github.com/apache/myfaces-tobago/pull/2130 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2136: spring - ignore 5
lofwyr14 merged pull request #2136: URL: https://github.com/apache/myfaces-tobago/pull/2136 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2134: build(deps): bump gson from 2.8.9 to 2.9.0
lofwyr14 merged pull request #2134: URL: https://github.com/apache/myfaces-tobago/pull/2134 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [myfaces-tobago] dependabot[bot] opened a new pull request #2135: build(deps): bump exec-maven-plugin from 1.1 to 3.0.0
dependabot[bot] opened a new pull request #2135: URL: https://github.com/apache/myfaces-tobago/pull/2135 Bumps [exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) from 1.1 to 3.0.0. Release notes Sourced from https://github.com/mojohaus/exec-maven-plugin/releases;>exec-maven-plugin's releases. exec-maven-plugin-3.0.0 Bug Fixes Resolving target dir via ${project.build.directory}, so to make s… https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/124;>#124 Ensure mojo descriptors are extracted after compilation https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/123;>#123 Argument file for modulepath is generated wrongly when paths contains spaces https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/115;>#115 java.lang.String cannot be cast to org.codehaus.mojo.exec.Modulepath https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/75;>#75 ⭐ Enhancement Resolves https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/152;>#152 - Adds option to redirect program output of exec:exec to the maven logger. https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/153;>#153 Program output can be difficult to trace and may be jumbled with Maven logs when running Maven with multiple threads https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/152;>#152 Fix type in Property.java https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/147;>#147 Correct spelling and remove redundant small https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/142;>#142 Fix typo https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/140;>#140 timeout configuration parameter https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/128;>#128 Methodhandles https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/119;>#119 Introduce Mock Repository Manager https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/117;>#117 Improved docs about environmentVariables/ config of exec:exec goal https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/104;>#104 Add CodeTriage badge to mojohaus/exec-maven-plugin https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/pull/96;>#96 [Enhancement] Support for JPMS module path for exec:java https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/90;>#90 :heart: Contributors We'd like to thank all the contributors who worked on this release! https://github.com/elharo;>@elharo https://github.com/britter;>@britter https://github.com/stokito;>@stokito https://github.com/hankolerd;>@hankolerd https://github.com/rfscholte;>@rfscholte https://github.com/gaurav9822;>@gaurav9822 https://github.com/codetriage-readme-bot;>@codetriage-readme-bot Commits https://github.com/mojohaus/exec-maven-plugin/commit/9705839246711bd375bf7712df05c621b168fbb1;>9705839 [maven-release-plugin] prepare release exec-maven-plugin-3.0.0 https://github.com/mojohaus/exec-maven-plugin/commit/66563e6891ce812a189d649352f4a0ac95e57050;>66563e6 get this working with java11 https://github.com/mojohaus/exec-maven-plugin/commit/13d1369e039f0f75e2d565a903368dbd5b2c20af;>13d1369 Merge pull request https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/153;>#153 from hankolerd/master https://github.com/mojohaus/exec-maven-plugin/commit/7935062de951ab332cd50fbc05d8ab2070d2b205;>7935062 152 - Adds option to redirect program output of exec:exec to the maven logger. https://github.com/mojohaus/exec-maven-plugin/commit/dbe2c733dd3ae9728ac35f76ec05472444e7b13e;>dbe2c73 use mojo parent 50 https://github.com/mojohaus/exec-maven-plugin/commit/c7c3fe36232003f19d8e5d2109e4f7ab4f3c4546;>c7c3fe3 Merge pull request https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/142;>#142 from elharo/patch-1 https://github.com/mojohaus/exec-maven-plugin/commit/1bb783822860c78e9daf8c7155f3ad2d1814a51d;>1bb7838 Merge pull request https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/140;>#140 from britter/patch-1 https://github.com/mojohaus/exec-maven-plugin/commit/0a9b9cb33a0aa3062c258c695af4eed6fea72f22;>0a9b9cb Merge pull request https://github-redirect.dependabot.com/mojohaus/exec-maven-plugin/issues/147;>#147 from gaurav9822/master https://github.com/mojohaus/exec-maven-plugin/commit/581e6ed87b1e4ac3d9fa0abdab85275d60983626;>581e6ed Added OpenJDK 14 https://github.com/mojohaus/exec-maven-plugin/commit/52d75dc2744669e76f568759df6ba34f6d308aaa;>52d75dc Update Property.java Additional commits viewable in https://github.com/mojohaus/exec-maven-plugin/compare/exec-maven-plugin-1.1...exec-maven-plugin-3.0.0;>compare view
[GitHub] [myfaces-tobago] lofwyr14 merged pull request #2093: build(deps): bump checkstyle from 8.45.1 to 9.3
lofwyr14 merged pull request #2093: URL: https://github.com/apache/myfaces-tobago/pull/2093 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org