This is an automated email from the ASF dual-hosted git repository.
dongjoon pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/orc.git
The following commit(s) were added to refs/heads/main by this push:
new 1624a9557 ORC-2044: Upgrade `maven-assembly-plugin` to 3.8.0
1624a9557 is described below
commit 1624a9557374144d2a729f36b1d390e954295fd6
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Sat Jan 3 22:24:48 2026 +0900
ORC-2044: Upgrade `maven-assembly-plugin` to 3.8.0
Bumps
[org.apache.maven.plugins:maven-assembly-plugin](https://github.com/apache/maven-assembly-plugin)
from 3.7.1 to 3.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/apache/maven-assembly-plugin/releases";>org.apache.maven.plugins:maven-assembly-plugin's
releases</a>.</em></p>
<blockquote>
<h2>3.8.0</h2>
<h2>🐛 Bug Fixes</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/MASSEMBLY-1030";>[MASSEMBLY-1030]</a>
- Manifest entries from archive configuration are not added in final MANIFEST
(<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/205";>#205</a>)
<a href="https://github.com/olamy";><code>olamy</code></a></li>
<li><a
href="https://issues.apache.org/jira/browse/MASSEMBLY-1029";>[MASSEMBLY-1029]</a>
- Use minimal level for model validation (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/204";>#204</a>)
<a href="https://github.com/gnodet";><code>gnodet</code></a></li>
</ul>
<h2>📝 Documentation updates</h2>
<ul>
<li><a
href="https://issues.apache.org/jira/browse/MNGSITE-529";>[MNGSITE-529]</a> -
Rename "Goals" to "Plugin Documentation" (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/215";>#215</a>)
<a href="https://github.com/Bukama";><code>Bukama</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li>chore: migrate junit3/4 to junit5 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1260";>#1260</a>)
<a href="https://github.com/sparsick";><code>sparsick</code></a></li>
<li>feat: enable prevent branch protection rules (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1252";>#1252</a>)
<a href="https://github.com/sebtiem";><code>sebtiem</code></a></li>
<li>Enable Github Issues (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/219";>#219</a>)
<a href="https://github.com/Bukama";><code>Bukama</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li>Bump Maven to 3.9.11. Prerequisite still 3.6.3 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1270";>#1270</a>)
<a href="https://github.com/slachiewicz";><code>slachiewicz</code></a></li>
<li>Bump org.apache.commons:commons-lang3 from 3.19.0 to 3.20.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1269";>#1269</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-io from 3.5.2 to 3.6.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1264";>#1264</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-interpolation from 1.28 to 1.29 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1266";>#1266</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump commons-io:commons-io from 2.20.0 to 2.21.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1267";>#1267</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.10.3 to 4.10.4 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1265";>#1265</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven:maven-archiver from 3.6.4 to 3.6.5 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1258";>#1258</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump com.github.luben:zstd-jni from 1.5.7-5 to 1.5.7-6 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1259";>#1259</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump plexus-archiver to 4.10.3 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1255";>#1255</a>)
<a href="https://github.com/slachiewicz";><code>slachiewicz</code></a></li>
<li>Bump m-invoker-p to 3.9.1 for Java 25 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1256";>#1256</a>)
<a href="https://github.com/slachiewicz";><code>slachiewicz</code></a></li>
<li>Bump com.github.luben:zstd-jni from 1.5.7-4 to 1.5.7-5 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1254";>#1254</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven.plugins:maven-plugins from 44 to 45 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1251";>#1251</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven.plugins:maven-plugins from 42 to 44 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/216";>#216</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.commons:commons-compress from 1.27.1 to 1.28.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1248";>#1248</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven:maven-archiver from 3.6.3 to 3.6.4 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1249";>#1249</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.1 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1250";>#1250</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump commons-io:commons-io from 2.19.0 to 2.20.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1247";>#1247</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump com.github.luben:zstd-jni from 1.5.7-3 to 1.5.7-4 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1244";>#1244</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump commons-fileupload:commons-fileupload from 1.5 to 1.6.0 in
/src/it/projects/bugs/massembly-580 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/1245";>#1245</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump com.github.luben:zstd-jni from 1.5.7-2 to 1.5.7-3 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/225";>#225</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/209";>#209</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven.shared:maven-common-artifact-filters from 3.3.2
to 3.4.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/207";>#207</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump commons-io:commons-io from 2.16.1 to 2.19.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/224";>#224</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-interpolation from 1.27 to 1.28 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/223";>#223</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump com.github.luben:zstd-jni from 1.5.6-3 to 1.5.7-2 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/222";>#222</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.3 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/221";>#221</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.commons:commons-compress from 1.27.0 to 1.27.1 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/213";>#213</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.maven.shared:maven-filtering from 3.3.2 to 3.4.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/220";>#220</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.codehaus.plexus:plexus-io from 3.4.2 to 3.5.1 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/214";>#214</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.hamcrest:hamcrest from 2.2 to 3.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/212";>#212</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
<li>Bump org.apache.commons:commons-compress from 1.26.1 to 1.27.0 (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/pull/211";>#211</a>)
<a href="https://github.com/apps/dependabot";>dependabot[bot]</a></li>
</ul>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/53dcfc025117ee06dcb71a5ae5ceffb08c3b914f";><code>53dcfc0</code></a>
Remove redundant escaping (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/issues/1277";>#1277</a>)</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/04cbbb337d5e486a6bd03195d1493c8afe394ec2";><code>04cbbb3</code></a>
some nits (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/issues/1279";>#1279</a>)</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/7c9e58a45f3ded2b342c36d7b1b1fcc52a71b5dd";><code>7c9e58a</code></a>
Plug ThreadLocal memory leak (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/issues/1276";>#1276</a>)</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/ceef4b01476f04067bef1660229bf69e109394c2";><code>ceef4b0</code></a>
commons-io version is now the same (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/issues/1274";>#1274</a>)</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/0a06350eb17630b256c7825ed76e7520b359d4f0";><code>0a06350</code></a>
Declare used dependencies (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/issues/1271";>#1271</a>)</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/31ac192dbee96da6afd81aaed434e33703dff9ce";><code>31ac192</code></a>
Remove commented code (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/issues/1273";>#1273</a>)</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/c5b8aff698c9ac93925530a31181b68ae04f9749";><code>c5b8aff</code></a>
Document regex support in include/exclude patterns (<a
href="https://redirect.github.com/apache/maven-assembly-plugin/issues/1243";>#1243</a>)</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/bd8cafc839e49b670564f1ba99438498a1e85810";><code>bd8cafc</code></a>
[maven-release-plugin] prepare for next development iteration</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/434b3aa2b516cb03fdccdd63548a53013c7368f0";><code>434b3aa</code></a>
[maven-release-plugin] prepare release maven-assembly-plugin-3.8.0</li>
<li><a
href="https://github.com/apache/maven-assembly-plugin/commit/43666c313d9a5df248646337b750bd82e51a0bc5";><code>43666c3</code></a>
Bump Maven to 3.9.11. Prerequisite still 3.6.3</li>
<li>Additional commits viewable in <a
href="https://github.com/apache/maven-assembly-plugin/compare/maven-assembly-plugin-3.7.1...v3.8.0";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI
passes on it
- `dependabot cancel merge` will cancel a previously requested merge and
block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it.
You can achieve the same result by closing it manually
- `dependabot show <dependency name> ignore conditions` will show all of
the ignore conditions of the specified dependency
- `dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
</details>
Closes #2464 from
dependabot[bot]/dependabot/maven/java/org.apache.maven.plugins-maven-assembly-plugin-3.8.0.
Authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Dongjoon Hyun <[email protected]>
---
java/pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/java/pom.xml b/java/pom.xml
index 515bcd5e5..be8e7063a 100644
--- a/java/pom.xml
+++ b/java/pom.xml
@@ -70,7 +70,7 @@
<javadoc.location>${project.basedir}/../target/javadoc</javadoc.location>
<jts.version>1.20.0</jts.version>
<junit.version>6.0.1</junit.version>
- <maven-assembly-plugin.version>3.7.1</maven-assembly-plugin.version>
+ <maven-assembly-plugin.version>3.8.0</maven-assembly-plugin.version>
<maven-dependency-plugin.version>3.9.0</maven-dependency-plugin.version>
<maven-enforcer-plugin.version>3.6.2</maven-enforcer-plugin.version>
<maven-shade-plugin.version>3.6.1</maven-shade-plugin.version>
