This is an automated email from the ASF dual-hosted git repository.
dongjoon pushed a commit to branch branch-2.2
in repository https://gitbox.apache.org/repos/asf/orc.git
The following commit(s) were added to refs/heads/branch-2.2 by this push:
new 5625de93a ORC-2066: Upgrade `spotbugs-maven-plugin` to 4.9.8.2
5625de93a is described below
commit 5625de93a858e6f4d7694bc01199bb91423dddbe
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Thu Jan 29 14:01:32 2026 +0900
ORC-2066: Upgrade `spotbugs-maven-plugin` to 4.9.8.2
Bumps
[com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin)
from 4.9.6.0 to 4.9.8.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/spotbugs/spotbugs-maven-plugin/releases";>com.github.spotbugs:spotbugs-maven-plugin's
releases</a>.</em></p>
<blockquote>
<h2>Spotbugs Maven Plugin 4.9.8.2</h2>
<ul>
<li>Fixed generate site reports to include all site variations, thanks to
<a
href="https://github.com/bradleylarrick";><code>​bradleylarrick</code></a></li>
<li>Add support for source jar/zip, thanks to <a
href="https://github.com/cortlepp";><code>​cortlepp</code></a></li>
</ul>
<h2>Spotbugs Maven Plugin 4.9.8.1</h2>
<p>Bug fix with SpotbugsInfo.EOF error (was meant to be
SpotbugsInfo.EOL).</p>
<h2>Spotbugs Maven Plugin 4.9.8.0</h2>
<p>Bug fix release supporting spotbugs 4.9.8.</p>
<h2>Spotbugs Maven Plugin 4.9.7.0</h2>
<ul>
<li>Supports 4.9.7 of spotbugs</li>
<li>Build updates</li>
<li>Fixes <a
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/1215";>spotbugs/spotbugs-maven-plugin#1215</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/a03feda706f2d8f1acf03b1552e4abd0822e6329";><code>a03feda</code></a>
[maven-release-plugin] prepare release spotbugs-maven-plugin-4.9.8.2</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/1c8063d051207712a8575792fbf389f1ce4c4e93";><code>1c8063d</code></a>
[gha] Update actions</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/f59d628832810d2d5bcb306930c5e4383a80c093";><code>f59d628</code></a>
Merge pull request <a
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/1265";>#1265</a>
from spotbugs/renovate/actions-checkout-6.x</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/1c232fbbcae1bac203f136635f62f6c3274c45c3";><code>1c232fb</code></a>
chore(deps): update actions/checkout action to v6</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/436be138e718e657e557890710b7811985d4cacc";><code>436be13</code></a>
Merge pull request <a
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/1263";>#1263</a>
from spotbugs/renovate/actions-checkout-digest</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/0708203fe93a56d1d9ecb834149d4d69b469a6a8";><code>0708203</code></a>
Merge pull request <a
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/1264";>#1264</a>
from spotbugs/renovate/github-codeql-action-digest</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/fcd2d1b2a597b54c6060f020f88f44879694be3d";><code>fcd2d1b</code></a>
chore(deps): update github/codeql-action digest to e12f017</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/7c54b5b993e03a84cef89ab026568098f0162cb8";><code>7c54b5b</code></a>
chore(deps): update actions/checkout digest to 93cb6ef</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/79d724eb5ad0f5c8348d9a93b016b2e3c80dbc23";><code>79d724e</code></a>
Merge pull request <a
href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/1262";>#1262</a>
from spotbugs/renovate/lang3.version</li>
<li><a
href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/b9bbed3056bfce80162ab9f591e32e2c964a5ad7";><code>b9bbed3</code></a>
fix(deps): update dependency org.apache.commons:commons-lang3 to v3.20.0</li>
<li>Additional commits viewable in <a
href="https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.9.6.0...spotbugs-maven-plugin-4.9.8.2";>compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| com.github.spotbugs:spotbugs-maven-plugin | [< 4.8, > 4.7.3.4] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI
passes on it
- `dependabot cancel merge` will cancel a previously requested merge and
block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it.
You can achieve the same result by closing it manually
- `dependabot show <dependency name> ignore conditions` will show all of
the ignore conditions of the specified dependency
- `dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
</details>
Closes #2494 from
dependabot[bot]/dependabot/maven/java/com.github.spotbugs-spotbugs-maven-plugin-4.9.8.2.
Authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Dongjoon Hyun <[email protected]>
(cherry picked from commit a2a640549eb8e3fd66bd70bffb87d63eea4ddaa4)
Signed-off-by: Dongjoon Hyun <[email protected]>
---
java/pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/java/pom.xml b/java/pom.xml
index 2ade21cfb..d825e1227 100644
--- a/java/pom.xml
+++ b/java/pom.xml
@@ -395,7 +395,7 @@
<plugin>
<groupId>com.github.spotbugs</groupId>
<artifactId>spotbugs-maven-plugin</artifactId>
- <version>4.9.3.0</version>
+ <version>4.9.8.2</version>
<configuration>
<includeFilterFile>spotbugs-include.xml</includeFilterFile>
<excludeFilterFile>spotbugs-exclude.xml</excludeFilterFile>
