This is an automated email from the ASF dual-hosted git repository.
csy pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/orc.git
The following commit(s) were added to refs/heads/main by this push:
new 7b6df293e ORC-1731: Upgrade `maven-dependency-plugin` to 3.7.0
7b6df293e is described below
commit 7b6df293eda9f974ad282e46157495c3ed713a3f
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Wed Jun 19 14:51:01 2024 +0800
ORC-1731: Upgrade `maven-dependency-plugin` to 3.7.0
Bumps
[org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin)
from 3.6.1 to 3.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/apache/maven-dependency-plugin/releases";>org.apache.maven.plugins:maven-dependency-plugin's
releases</a>.</em></p>
<blockquote>
<h2>3.7.0</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-941";>[MDEP-941]</a>
- Deprecate dependency:sources in favor of dependency:resolv… (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/411";>#411</a>)
<a href="https://github.com/michael-o";><code>michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-838";>[MDEP-838]</a>
- "Artifact has not been packaged yet" error message is not … (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/412";>#412</a>)
<a href="https://github.com/michael-o";><code>michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-939";>[MDEP-939]</a>
- Lock down classifier in dependency:sources goal (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/409";>#409</a>)
<a href="https://github.com/michael-o";><code>michael-o</code></a></li>
<li>Revert "Fix sources goal for multimodule projects" (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/408";>#408</a>)
<a href="https://github.com/michael-o";><code>michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-923";>[MDEP-923]</a>
- Move methods in place where are used (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/407";>#407</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>MDEP-938] Correct invalid property name and add deprecated old one (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/404";>#404</a>)
<a href="https://github.com/hazendaz";><code>hazendaz</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-835";>[MDEP-835]</a>
- Add optional dependency for tree IT (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/403";>#403</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>Add missing dependency (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/401";>#401</a>)
<a href="https://github.com/michael-o";><code>michael-o</code></a></li>
</ul>
<h2>🚀 New features and improvements</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-799";>[MDEP-799]</a>
- tree: add optional output type json (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/391";>#391</a>)
<a href="https://github.com/LogFlames";><code>LogFlames</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-928";>[MDEP-928]</a>
- Allow excluding classes from dependency:analyze (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/393";>#393</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-924";>[MDEP-924]</a>
- Get rid of maven-artifact-transfer from list-classes goal (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/382";>#382</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-925";>[MDEP-925]</a>
- Require Maven 3.6.3 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/381";>#381</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-922";>[MDEP-922]</a>
- dependency:analyze-exclusions - should report issue only in current project
(<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/378";>#378</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-917";>[MDEP-917]</a>
- dependency:analyze-exclusions - use Resolver API instead of ProjectBuilder
(<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/374";>#374</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-317";>[MDEP-317]</a>
- add mojo to analyze invalid exclusions (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/362";>#362</a>)
<a href="https://github.com/vbreivik";><code>vbreivik</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-894";>[MDEP-894]</a>
- Use <code>Component</code> only - fix tests (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/360";>#360</a>)
<a href="https://github.com/michael-o";><code>michael-o</code></a></li>
</ul>
<h2>🐛 Bug Fixes</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-914";>[MDEP-914]</a>
- Fix link in collect goal description (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/380";>#380</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-895";>[MDEP-895]</a>
- dependency:sources fails for multi-module project (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/349";>#349</a>)
<a href="https://github.com/jmle";><code>jmle</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-771";>[MDEP-771]</a>
- Remove broken 404 link (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/344";>#344</a>)
<a href="https://github.com/elharo";><code>elharo</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-936";>[MDEP-936]</a>
- Bump org.apache.maven.shared:maven-dependency-tree from 3.2.1 to 3.3.0 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/397";>#397</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-920";>[MDEP-920]</a>
- Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/395";>#395</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-929";>[MDEP-929]</a>
- Bump org.apache.maven.shared:maven-dependency-analyzer from 1.14.0 to 1.14.1
(<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/394";>#394</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.apache.maven.shared:maven-dependency-analyzer from 1.13.2 to
1.14.0 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/392";>#392</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-921";>[MDEP-921]</a>
- Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/376";>#376</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/377";>#377</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-920";>[MDEP-920]</a>
- Bump org.assertj:assertj-core from 3.24.2 to 3.25.3 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/373";>#373</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-915";>[MDEP-915]</a>
- Bump commons-io:commons-io from 2.16.0 to 2.16.1 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/370";>#370</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump jettyVersion from 9.4.53.v20231009 to 9.4.54.v20240208 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/364";>#364</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-915";>[MDEP-915]</a>
- Bump commons-io:commons-io from 2.15.1 to 2.16.0 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/369";>#369</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/366";>#366</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump apache/maven-gh-actions-shared from 3 to 4 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/365";>#365</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.9.0 to 4.9.1 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/358";>#358</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-io from 3.4.1 to 3.4.2 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/359";>#359</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.jsoup:jsoup from 1.17.1 to 1.17.2 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/361";>#361</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump ch.qos.logback:logback-classic from 1.2.3 to 1.2.13 in
/src/it/projects/mdep-204-go-offline-resolve-intermodule/module-2 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/354";>#354</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.apache.commons:commons-text from 1.10.0 to 1.11.0 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/357";>#357</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.0 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/348";>#348</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump org.jsoup:jsoup from 1.16.2 to 1.17.1 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/350";>#350</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
<li>Bump commons-io:commons-io from 2.14.0 to 2.15.1 (<a
href="https://redirect.github.com/apache/maven-dependency-plugin/pull/352";>#352</a>)
<a href="https://github.com/dependabot";><code>dependabot</code></a></li>
</ul>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/f975bcb68bbd200d9890c44abe219c3712462f17";><code>f975bcb</code></a>
[maven-release-plugin] prepare release maven-dependency-plugin-3.7.0</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/dbdda0ccba8bebb98c0f2390e000b0561bfc5f4b";><code>dbdda0c</code></a>
[MDEP-941] Deprecate dependency:sources in favor of
dependency:resolve-sources</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/f090b5efdeff0b2f2ebcc88a40f4b02dc4a6f408";><code>f090b5e</code></a>
[MDEP-838] "Artifact has not been packaged yet" error message is not
very hel...</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/9902456ae515769daa6068a278267c62fb300e67";><code>9902456</code></a>
[MDEP-669] Optimize the documentation of <outputProperty> of
build-classpath ...</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/04c32164bcb3ecef6115616fee291d5ee071d370";><code>04c3216</code></a>
[MDEP-939] Lock down classifier in dependency:sources goal</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/9fd4ed53b23e35de8ad8179e5b379acf3721ffbe";><code>9fd4ed5</code></a>
Revert "Fix sources goal for multimodule projects"</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/fd17de46e7ac8cc8778ab697192b4c343ff6f94d";><code>fd17de4</code></a>
[MDEP-923] Move methods in place where are used</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/ad5fdc57ef8bee311138b8586e9dba8a219dda4d";><code>ad5fdc5</code></a>
[MDEP-938] Correct invalid property name and add deprecated old one</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/d95615fa6b4c9c2e41a124116e948d146e79018c";><code>d95615f</code></a>
[MDEP-835] Add optional dependency for tree IT</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/07dbccc8db436374a22ea6a698e50e3a15af755b";><code>07dbccc</code></a>
Remove useless exclude</li>
<li>Additional commits viewable in <a
href="https://github.com/apache/maven-dependency-plugin/compare/maven-dependency-plugin-3.6.1...maven-dependency-plugin-3.7.0";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI
passes on it
- `dependabot cancel merge` will cancel a previously requested merge and
block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it.
You can achieve the same result by closing it manually
- `dependabot show <dependency name> ignore conditions` will show all of
the ignore conditions of the specified dependency
- `dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
</details>
Closes #1958 from
dependabot[bot]/dependabot/maven/java/org.apache.maven.plugins-maven-dependency-plugin-3.7.0.
Authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Shaoyun Chen <[email protected]>
---
java/pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/java/pom.xml b/java/pom.xml
index 29709718d..cb61c0c67 100644
--- a/java/pom.xml
+++ b/java/pom.xml
@@ -69,7 +69,7 @@
<javadoc.location>${project.basedir}/../target/javadoc</javadoc.location>
<junit.version>5.10.2</junit.version>
<maven-assembly-plugin.version>3.7.1</maven-assembly-plugin.version>
- <maven-dependency-plugin.version>3.6.1</maven-dependency-plugin.version>
+ <maven-dependency-plugin.version>3.7.0</maven-dependency-plugin.version>
<maven-shade-plugin.version>3.6.0</maven-shade-plugin.version>
<maven.compiler.release>17</maven.compiler.release>
<maven.compiler.useIncrementalCompilation>false</maven.compiler.useIncrementalCompilation>
