This is an automated email from the ASF dual-hosted git repository.
csy pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/orc.git
The following commit(s) were added to refs/heads/main by this push:
new 66768125b ORC-1765: Upgrade `maven-dependency-plugin` to 3.8.0
66768125b is described below
commit 66768125ba8efadba5bfd962c317113937fe59cd
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Wed Aug 28 11:06:26 2024 +0800
ORC-1765: Upgrade `maven-dependency-plugin` to 3.8.0
Bumps
[org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin)
from 3.7.1 to 3.8.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/75814c79197672264078eb6e181aa2b343150dea";><code>75814c7</code></a>
[maven-release-plugin] prepare release maven-dependency-plugin-3.8.0</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/50397c42b9f4ede4ed82c055caaf3ef0733f3aba";><code>50397c4</code></a>
[MDEP-903] Upgrade to Doxia 2.0.0 Milestone Stack</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/1115ecb4fa11d08f15435b9d094708667e123d18";><code>1115ecb</code></a>
Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/5288cece722923651fbcf5e13741d3f94e910dbf";><code>5288cec</code></a>
Bump org.apache.maven.plugins:maven-plugins from 42 to 43</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/ea4d8e249dc7d7c134c128f25e2a62c6772be1fd";><code>ea4d8e2</code></a>
Bump jettyVersion from 9.4.54.v20240208 to 9.4.55.v20240627</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/2d0b82a865441a683897f5429b9986ed8c75a835";><code>2d0b82a</code></a>
Bump org.codehaus.plexus:plexus-io from 3.4.2 to 3.5.0</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/86b7772498216280c948f8887f20ce2d03269e8a";><code>86b7772</code></a>
(doc) Remove repeated word</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/94e1caf57c84a9da81317b19b3611299d6db700d";><code>94e1caf</code></a>
Bump org.jsoup:jsoup from 1.17.2 to 1.18.1</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/06b427327bfb28a26c9be78ff840948d26eba197";><code>06b4273</code></a>
Bump org.assertj:assertj-core from 3.26.0 to 3.26.3</li>
<li><a
href="https://github.com/apache/maven-dependency-plugin/commit/71cee33151c85d11b4d4ca2f63b5be72f1c482f3";><code>71cee33</code></a>
Remove outdated invoker conditions</li>
<li>Additional commits viewable in <a
href="https://github.com/apache/maven-dependency-plugin/compare/maven-dependency-plugin-3.7.1...maven-dependency-plugin-3.8.0";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI
passes on it
- `dependabot cancel merge` will cancel a previously requested merge and
block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it.
You can achieve the same result by closing it manually
- `dependabot show <dependency name> ignore conditions` will show all of
the ignore conditions of the specified dependency
- `dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
</details>
Closes #2013 from
dependabot[bot]/dependabot/maven/java/org.apache.maven.plugins-maven-dependency-plugin-3.8.0.
Authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Shaoyun Chen <[email protected]>
---
java/pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/java/pom.xml b/java/pom.xml
index 0a512fee5..12cb333d7 100644
--- a/java/pom.xml
+++ b/java/pom.xml
@@ -69,7 +69,7 @@
<javadoc.location>${project.basedir}/../target/javadoc</javadoc.location>
<junit.version>5.11.0</junit.version>
<maven-assembly-plugin.version>3.7.1</maven-assembly-plugin.version>
- <maven-dependency-plugin.version>3.7.1</maven-dependency-plugin.version>
+ <maven-dependency-plugin.version>3.8.0</maven-dependency-plugin.version>
<maven-shade-plugin.version>3.6.0</maven-shade-plugin.version>
<maven.compiler.release>17</maven.compiler.release>
<maven.compiler.useIncrementalCompilation>false</maven.compiler.useIncrementalCompilation>
