This is an automated email from the ASF dual-hosted git repository.
dongjoon pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/orc.git
The following commit(s) were added to refs/heads/main by this push:
new 45f9c8810 ORC-2043: Upgrade `maven-jar-plugin` to 3.5.0
45f9c8810 is described below
commit 45f9c8810d53d99e8831382e40f8ef7d6cfb5ac3
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Sat Jan 3 22:22:44 2026 +0900
ORC-2043: Upgrade `maven-jar-plugin` to 3.5.0
Bumps
[org.apache.maven.plugins:maven-jar-plugin](https://github.com/apache/maven-jar-plugin)
from 3.4.2 to 3.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/apache/maven-jar-plugin/releases";>org.apache.maven.plugins:maven-jar-plugin's
releases</a>.</em></p>
<blockquote>
<h2>3.5.0</h2>
<h2>🚀 New features and improvements</h2>
<ul>
<li>Add new "attach" configuration parameter (3.x port of <a
href="https://redirect.github.com/apache/maven-jar-plugin/issues/482";>#482</a>)
(<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/483";>#483</a>)
<a href="https://github.com/hgschmie";><code>hgschmie</code></a></li>
<li>add Java-Version to MANIFEST.MF (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/465";>#465</a>)
<a href="https://github.com/hboutemy";><code>hboutemy</code></a></li>
</ul>
<h2>🐛 Bug Fixes</h2>
<ul>
<li>Fix detecting java version for toolchains and JDK 1.8 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/500";>#500</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>Ignore stderr when parsing javac version from toolchain (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/471";>#471</a>)
<a href="https://github.com/jaredstehler";><code>jaredstehler</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li>Update site descriptor to 2.0.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/501";>#501</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>chore: remove junit3 references (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/494";>#494</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>Migrate component injection to JSR-330 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/492";>#492</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>Add PR Automation to 3.x (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/132";>#132</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>Improve release-drafter configuration (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/128";>#128</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>Fix for Maven 4.0.0-rc-3 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/130";>#130</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/MNGSITE-529";>[MNGSITE-529]</a> -
Rename "Goals" to "Plugin Documentation" (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/119";>#119</a>)
<a href="https://github.com/Bukama";><code>Bukama</code></a></li>
</ul>
<h2>🔧 Build</h2>
<ul>
<li>Bump m-invoker-p to 3.9.1 for Java 25 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/480";>#480</a>)
<a href="https://github.com/hboutemy";><code>hboutemy</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li>Bump commons-io:commons-io from 2.20.0 to 2.21.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/499";>#499</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/498";>#498</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Use maven-plugin-testing-harness version 3.4.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/491";>#491</a>)
<a
href="https://github.com/slawekjaranowski";><code>slawekjaranowski</code></a></li>
<li>Bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1
to 3.15.2 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/488";>#488</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.10.1 to 4.10.3 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/478";>#478</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.1 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/464";>#464</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven.plugins:maven-plugins from 42 to 45 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/452";>#452</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.4 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/461";>#461</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump commons-io:commons-io from 2.19.0 to 2.20.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/457";>#457</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump mavenVersion from 3.9.10 to 3.9.11 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/456";>#456</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump mavenVersion from 3.9.9 to 3.9.10 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/146";>#146</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven.shared:file-management from 3.1.0 to 3.2.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/143";>#143</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump mavenVersion from 3.6.3 to 3.9.9 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/107";>#107</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump commons-io:commons-io from 2.18.0 to 2.19.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/140";>#140</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump commons-io:commons-io from 2.16.1 to 2.18.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/114";>#114</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0 (<a
href="https://redirect.github.com/apache/maven-jar-plugin/pull/109";>#109</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/68d00f1121da7ca6c04501363e020977bd1ad5ae";><code>68d00f1</code></a>
[maven-release-plugin] prepare release maven-jar-plugin-3.5.0</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/357b9bf1ae81c4c41a4705402e2bde82d22a5407";><code>357b9bf</code></a>
Update site descriptor to 2.0.0</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/340249c15f5f54d631b41afbc3653db260bda450";><code>340249c</code></a>
Fix detecting java version for toolchains and JDK 1.8</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/06a6245f7a4874dbab3fcd60d1903cf297a78f90";><code>06a6245</code></a>
chore: remove junit3 references</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/d302b2c9e910521facccfd6443c7bf1bc1156c93";><code>d302b2c</code></a>
Bump commons-io:commons-io from 2.20.0 to 2.21.0</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/6081bdbf50ba61b052e2f32411b4dda3347e4a55";><code>6081bdb</code></a>
Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/ef8ed4cf89bcacb2f8ad5c3f4492ba186ead4409";><code>ef8ed4c</code></a>
Migrate component injection to JSR-330</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/704a35caecb49c72ea87956e4210cd082df18065";><code>704a35c</code></a>
Ignore stderr when parsing javac version from toolchain (<a
href="https://redirect.github.com/apache/maven-jar-plugin/issues/471";>#471</a>)</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/0beb969f0d3b4d88348e8b4a03b0fef40f7b87af";><code>0beb969</code></a>
Use maven-plugin-testing-harness version 3.4.0</li>
<li><a
href="https://github.com/apache/maven-jar-plugin/commit/c2624c8e0bd3314024a32bbfeca59ee155d725d8";><code>c2624c8</code></a>
Bump org.apache.maven.plugin-tools:maven-plugin-annotations (<a
href="https://redirect.github.com/apache/maven-jar-plugin/issues/488";>#488</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/apache/maven-jar-plugin/compare/maven-jar-plugin-3.4.2...maven-jar-plugin-3.5.0";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI
passes on it
- `dependabot cancel merge` will cancel a previously requested merge and
block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it.
You can achieve the same result by closing it manually
- `dependabot show <dependency name> ignore conditions` will show all of
the ignore conditions of the specified dependency
- `dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
</details>
> **Note**
> Automatic rebases have been disabled on this pull request as it has been
open for over 30 days.
Closes #2458 from
dependabot[bot]/dependabot/maven/java/org.apache.maven.plugins-maven-jar-plugin-3.5.0.
Authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Dongjoon Hyun <[email protected]>
---
java/pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/java/pom.xml b/java/pom.xml
index c7819fc58..515bcd5e5 100644
--- a/java/pom.xml
+++ b/java/pom.xml
@@ -375,7 +375,7 @@
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-jar-plugin</artifactId>
- <version>3.4.2</version>
+ <version>3.5.0</version>
<configuration>
<archive>
<manifest>
