dependabot[bot] opened a new pull request, #241: URL: https://github.com/apache/bval/pull/241
Bumps [com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.9.8.3 to 4.10.2.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spotbugs/spotbugs-maven-plugin/releases";>com.github.spotbugs:spotbugs-maven-plugin's releases</a>.</em></p> <blockquote> <h2>Spotbugs Maven Plugin 4.10.2.0</h2> <ul> <li>Support spotbugs 4.10.2</li> </ul> <h2>What's Changed</h2> <ul> <li>Update ci.yaml by <a href="https://github.com/hazendaz";><code>@hazendaz</code></a> in <a href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/pull/1429";>spotbugs/spotbugs-maven-plugin#1429</a></li> <li>Update spotbugs.version to v4.10.2 by <a href="https://github.com/renovate";><code>@renovate</code></a>[bot] in <a href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/pull/1425";>spotbugs/spotbugs-maven-plugin#1425</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.9.8.5...spotbugs-maven-plugin-4.10.2.0";>https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.9.8.5...spotbugs-maven-plugin-4.10.2.0</a></p> <h2>Spotbugs Maven Plugin 4.9.8.5</h2> <h2>What's Changed</h2> <ul> <li>Update README.md by <a href="https://github.com/hazendaz";><code>@hazendaz</code></a> in <a href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/pull/1426";>spotbugs/spotbugs-maven-plugin#1426</a></li> <li>[fix] Toolchain used wrong flag name 'executable' instead of 'jvm' by <a href="https://github.com/hazendaz";><code>@hazendaz</code></a> in <a href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/pull/1428";>spotbugs/spotbugs-maven-plugin#1428</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.9.8.4...spotbugs-maven-plugin-4.9.8.5";>https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.9.8.4...spotbugs-maven-plugin-4.9.8.5</a></p> <h2>Spotbugs Maven Plugin 4.9.8.4</h2> <ul> <li>build support for maven 4 with maven 4 plugins</li> <li>spotbugs extensions jars now moved to target/spotbugs instead of root</li> <li>new spotbugs-aggregate mojo for multi module</li> <li>support maven toolchains</li> <li>block gui when environment is headless</li> <li>all spotbug extensions as regular dependencies</li> <li>learn to map spotbug extensions to their source project documentation</li> <li>in auxiliary class path exclude java.* packages</li> <li>improve code coverage</li> </ul> <p>note: This release was done on older spotbugs (not the new 4.10.1) on purpose to keep these changes separate from that of spotbugs. The spotbugs 4.10.1 support release will be available in a day or two and users can otherwise override the core module as there are no changes to be done internally.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/2d39b75b4c08fb520f936517783efd904bffc063";><code>2d39b75</code></a> [maven-release-plugin] prepare release spotbugs-maven-plugin-4.10.2.0</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/6c300e6fe4f69409b142a8bc8b4100ec3dc06384";><code>6c300e6</code></a> [pom] Bump internal spotbugs to 4.9.8.5</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/250d68518dd97260380925c3cd30dcf53a0b38c0";><code>250d685</code></a> Merge pull request <a href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/1425";>#1425</a> from spotbugs/renovate/spotbugs.version</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/12f6fb3c1539e294fa916644f614cd9a8edcc4d8";><code>12f6fb3</code></a> Merge pull request <a href="https://redirect.github.com/spotbugs/spotbugs-maven-plugin/issues/1429";>#1429</a> from spotbugs/hazendaz-patch-1</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/aaf0a09933fd09c495187a412f9163a10955debe";><code>aaf0a09</code></a> Update ci.yaml</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/8b5dff48959c4a350b6f17ab74d2f5479cc3fece";><code>8b5dff4</code></a> Merge branch 'master' into renovate/spotbugs.version</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/c83698dea617fa5f0cd81186ab717ae33c764c73";><code>c83698d</code></a> Update pom.xml</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/b8788fd3c210b91040393d9cc14a96d41aba7df0";><code>b8788fd</code></a> [maven-release-plugin] prepare for next development iteration</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/f758cb536ea3b7f72e1bf71156073799e0b347eb";><code>f758cb5</code></a> [maven-release-plugin] prepare release spotbugs-maven-plugin-4.9.8.5</li> <li><a href="https://github.com/spotbugs/spotbugs-maven-plugin/commit/cec6af52b92791869e9320cf9a30d10468f3fab7";><code>cec6af5</code></a> Update pom.xml</li> <li>Additional commits viewable in <a href="https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.9.8.3...spotbugs-maven-plugin-4.10.2.0";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
