This is an automated email from the ASF dual-hosted git repository.
jbonofre pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/arrow-java.git
The following commit(s) were added to refs/heads/main by this push:
new 3d44a1c2e MINOR: Bump com.fasterxml.jackson:jackson-bom from 2.18.3 to
2.21.0 (#973)
3d44a1c2e is described below
commit 3d44a1c2e71d5f38980cc1030e5652f5f62b942d
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Mon Jan 19 09:46:51 2026 +0100
MINOR: Bump com.fasterxml.jackson:jackson-bom from 2.18.3 to 2.21.0 (#973)
Bumps
[com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom)
from 2.18.3 to 2.21.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/901b398ef9e8dfd8595182f149c4f3f78c1c4893";><code>901b398</code></a>
[maven-release-plugin] prepare release jackson-bom-2.21.0</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/86a4b9f9ff15fbef0e275b836d6e55b4ace3e5ee";><code>86a4b9f</code></a>
...</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/6b5de3aca17aa41f97a4c356bacf0525c4ab5751";><code>6b5de3a</code></a>
Prep for 2.21 release</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/3001d78da41c003e05d2cba7e126a854f7d2120a";><code>3001d78</code></a>
Merge pull request <a
href="https://redirect.github.com/FasterXML/jackson-bom/issues/116";>#116</a>
from FasterXML/tatu/2.21/115-fix-cyclonedx-backport-i...</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/937029253f1779f9d92ff386f210f1f366414289";><code>9370292</code></a>
makeAggregateBom -> makeBom</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/3e4db580fa7bde99b42cf0bfd292184404245a85";><code>3e4db58</code></a>
Backport <a
href="https://redirect.github.com/FasterXML/jackson-bom/issues/115";>#115</a>
in 2.x for 2.21</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/0ce4467b74172d6ff76facd2e67678d1f073530e";><code>0ce4467</code></a>
Merge branch '2.20' into 2.x</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/0dc79f5582788045a837435a588c37a3e079b761";><code>0dc79f5</code></a>
...</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/6a3d76be1d6b3e0549dd5c79ef493b2c2835682d";><code>6a3d76b</code></a>
Merge branch '2.20' into 2.x</li>
<li><a
href="https://github.com/FasterXML/jackson-bom/commit/1d528179d18cf6fea97079361b293b48c3e86719";><code>1d52817</code></a>
Post-release dep version bump</li>
<li>Additional commits viewable in <a
href="https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.3...jackson-bom-2.21.0";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 64e4a612e..b3141d5cd 100644
--- a/pom.xml
+++ b/pom.xml
@@ -100,7 +100,7 @@ under the License.
<dep.netty-bom.version>4.2.9.Final</dep.netty-bom.version>
<dep.grpc-bom.version>1.78.0</dep.grpc-bom.version>
<dep.protobuf-bom.version>4.33.1</dep.protobuf-bom.version>
- <dep.jackson-bom.version>2.18.3</dep.jackson-bom.version>
+ <dep.jackson-bom.version>2.21.0</dep.jackson-bom.version>
<dep.hadoop.version>3.4.2</dep.hadoop.version>
<dep.fbs.version>25.2.10</dep.fbs.version>
<dep.avro.version>1.12.1</dep.avro.version>
