(orc) branch main updated: ORC-1780: Upgrade `spotbugs-maven-plugin` to 4.8.6.4

Mon, 23 Sep 2024 11:55:39 -0700 

This is an automated email from the ASF dual-hosted git repository.

dongjoon pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/orc.git


The following commit(s) were added to refs/heads/main by this push:
     new ccd74b7aa ORC-1780: Upgrade `spotbugs-maven-plugin` to 4.8.6.4
ccd74b7aa is described below

commit ccd74b7aa7dbbf6c121fcc6531fe6104d946be3d
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Mon Sep 23 11:54:45 2024 -0700

    ORC-1780: Upgrade `spotbugs-maven-plugin` to 4.8.6.4
    
    Bumps 
[com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin)
 from 4.8.6.3 to 4.8.6.4.
    <details>
    <summary>Release notes</summary>
    <p><em>Sourced from <a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/releases";>com.github.spotbugs:spotbugs-maven-plugin's
 releases</a>.</em></p>
    <blockquote>
    <h2>Spotbugs Maven Plugin 4.8.6.4</h2>
    <ul>
    <li>Groovy set to 4.0.23</li>
    <li>Drop maven site plugin 3.6 and before support.</li>
    </ul>
    </blockquote>
    </details>
    <details>
    <summary>Commits</summary>
    <ul>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/9d20ef311806128a85c5b031d3ae7e3fea263972";><code>9d20ef3</code></a>
 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.8.6.4</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/25fe692cdd8980732364cf04941bf34714b99b4e";><code>25fe692</code></a>
 Merge pull request <a 
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/884";>#884</a>
 from hazendaz/master</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/6eaf131575109c86b7c93d471bedd09bfdb0a7ad";><code>6eaf131</code></a>
 [drop] Remove support for maven 3.6 plugin as cannot support any longer</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/ee561ffbcd8a783f05426a4dd8f11f7f7f8499aa";><code>ee561ff</code></a>
 Merge pull request <a 
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/883";>#883</a>
 from spotbugs/renovate/io.version</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/e7f91f9ef6dbecc08daaa7f9ebf28b2c49c145b4";><code>e7f91f9</code></a>
 Update dependency commons-io:commons-io to v2.17.0</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/d4c777ecb19433d9b9ac508ccb14d423f7a6e88d";><code>d4c777e</code></a>
 Merge pull request <a 
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/881";>#881</a>
 from spotbugs/renovate/major-jgit.version</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/284e71e21fc822f4623ac0705cc831b01eb95238";><code>284e71e</code></a>
 Update jgit.version to v7</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/71aca1586fbb5e1f1ceb1251ff3f829bb9f2a86c";><code>71aca15</code></a>
 Merge pull request <a 
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/882";>#882</a>
 from spotbugs/renovate/groovy-monorepo</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/5665c2e3a3ea9c239a288b5105dbfc1d679d5f0d";><code>5665c2e</code></a>
 Update groovy monorepo to v4.0.23</li>
    <li><a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/0c1183e54c3a6d885bfc9d977b305eb88fa4514e";><code>0c1183e</code></a>
 Merge pull request <a 
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/880";>#880</a>
 from spotbugs/renovate/log4j2-monorepo</li>
    <li>Additional commits viewable in <a 
href="https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.8.6.3...spotbugs-maven-plugin-4.8.6.4";>compare
 view</a></li>
    </ul>
    </details>
    <br />
    
    <details>
    <summary>Most Recent Ignore Conditions Applied to This Pull 
Request</summary>
    
    | Dependency Name | Ignore Conditions |
    | --- | --- |
    | com.github.spotbugs:spotbugs-maven-plugin | [< 4.8, > 4.7.3.4] |
    </details>
    
    [![Dependabot compatibility 
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin&package-manager=maven&previous-version=4.8.6.3&new-version=4.8.6.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
    
    Dependabot will resolve any conflicts with this PR as long as you don't 
alter it yourself. You can also trigger a rebase manually by commenting 
`dependabot rebase`.
    
    [//]: # (dependabot-automerge-start)
    [//]: # (dependabot-automerge-end)
    
    ---
    
    <details>
    <summary>Dependabot commands and options</summary>
    <br />
    
    You can trigger Dependabot actions by commenting on this PR:
    - `dependabot rebase` will rebase this PR
    - `dependabot recreate` will recreate this PR, overwriting any edits that 
have been made to it
    - `dependabot merge` will merge this PR after your CI passes on it
    - `dependabot squash and merge` will squash and merge this PR after your CI 
passes on it
    - `dependabot cancel merge` will cancel a previously requested merge and 
block automerging
    - `dependabot reopen` will reopen this PR if it is closed
    - `dependabot close` will close this PR and stop Dependabot recreating it. 
You can achieve the same result by closing it manually
    - `dependabot show <dependency name> ignore conditions` will show all of 
the ignore conditions of the specified dependency
    - `dependabot ignore this major version` will close this PR and stop 
Dependabot creating any more for this major version (unless you reopen the PR 
or upgrade to it yourself)
    - `dependabot ignore this minor version` will close this PR and stop 
Dependabot creating any more for this minor version (unless you reopen the PR 
or upgrade to it yourself)
    - `dependabot ignore this dependency` will close this PR and stop 
Dependabot creating any more for this dependency (unless you reopen the PR or 
upgrade to it yourself)
    
    </details>
    
    Closes #2035 from 
dependabot[bot]/dependabot/maven/java/com.github.spotbugs-spotbugs-maven-plugin-4.8.6.4.
    
    Authored-by: dependabot[bot] 
<49699333+dependabot[bot]@users.noreply.github.com>
    Signed-off-by: Dongjoon Hyun <[email protected]>
---
 java/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/pom.xml b/java/pom.xml
index d905a025d..5b00c5c91 100644
--- a/java/pom.xml
+++ b/java/pom.xml
@@ -395,7 +395,7 @@
         <plugin>
           <groupId>com.github.spotbugs</groupId>
           <artifactId>spotbugs-maven-plugin</artifactId>
-          <version>4.8.6.3</version>
+          <version>4.8.6.4</version>
           <configuration>
             <includeFilterFile>spotbugs-include.xml</includeFilterFile>
             <excludeFilterFile>spotbugs-exclude.xml</excludeFilterFile>

Reply via email to