dependabot[bot] opened a new pull request, #5: URL: https://github.com/apache/servicemix-website/pull/5
Bumps [scala-compiler](https://github.com/scala/scala) from 2.11.0 to 2.11.12. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/scala/scala/releases";>scala-compiler's releases</a>.</em></p> <blockquote> <p>Scala 2.11.12 is a maintenance release to allow running Scala 2.11 tooling on Java 9. <a href="https://github.com/scala/scala/pulls?q=milestone%3A2.11.12+is%3Amerged";>Five pending backports</a> were merged.</p> <p>This release addresses (<a href="https://redirect.github.com/scala/scala/issues/6108";>#6108</a>) a <a href="http://scala-lang.org/news/security-update-nov17.html";><strong>privilege escalation vulnerability</strong></a> that was identified in the Scala compilation daemon <em>CVE-2017-15288</em>.</p> <p>We strongly encourage you to upgrade to the latest stable version of Scala 2.12.x, as the 2.11.x series is no longer actively maintained.</p> <p>There is a <a href="https://redirect.github.com/scala/bug/issues/10603";>known bug on Java 9 involving the repl</a>: the workaround is to launch it as <code>scala -nobootcp</code>.</p> <p>More general information about the Scala 2.11 series is available in the <a href="https://github.com/scala/scala/releases/v2.11.1";>release notes for Scala 2.11.1</a>.</p> <p>Thanks to <a href="https://www.lightbend.com/scala";>Lightbend</a> for their continued sponsorship of the Scala core team’s efforts. Lightbend offers <a href="https://www.lightbend.com/lightbend-platform-subscription";>commercial support</a> for Scala.</p> <h2>Scala 2.11.11: all the way to eleven!</h2> <p>The 2.11.11 release concludes the 2.11.x series, with no further releases planned. Please consider upgrading to 2.12!</p> <p><strong>Do not use 2.11.9 or 2.11.10</strong>, which introduced significant regressions (see below). This also means this series <a href="https://www.youtube.com/watch?v=KOO5S4vxi0o";>goes to eleven</a>. (No further, though.)</p> <h2>Changes</h2> <p><a href="https://github.com/scala/scala/pulls?q=is%3Amerged%20milestone%3A2.11.11%20label%3Arelease-notes";>Significant changes</a> since 2.11.8 include:</p> <ul> <li><a href="https://redirect.github.com/scala/scala/issues/5730";>#5730</a>, <a href="https://redirect.github.com/scala/scala/issues/5846";>#5846</a> Allow custom <code>apply</code> and <code>unapply</code> methods in case class companions. Also allows case class constructors and apply methods to be private. (In 2.11.11, <code>-Xsource:2.12</code> is needed to enable these changes. In <a href="https://github.com/scala/scala/releases/tag/v2.12.2";>Scala 2.12.2</a>, they are on by default.)</li> <li><a href="https://redirect.github.com/scala/scala/issues/5343";>#5343</a> Add support for higher order unification under <code>-Ypartial-unification</code> (SI-2712)</li> <li><a href="https://redirect.github.com/scala/scala/issues/5341";>#5341</a> Fix for higher-kinded GADT refinement</li> <li><a href="https://redirect.github.com/scala/scala/issues/5061";>#5061</a> JMH-based benchmark framework for contributors</li> <li><a href="https://redirect.github.com/scala/scala/issues/5026";>#5026</a> Upgrade to newer scala-xml (<a href="https://github.com/scala/scala-xml/releases/v1.0.5";>1.0.5</a>)</li> </ul> <p>2.11.11 resolves regressions introduced in 2.11.9 and 2.11.10: <a href="https://redirect.github.com/scala/scala/issues/5730";>#5730</a> (fixed by <a href="https://redirect.github.com/scala/scala/issues/5828";>#5828</a> and <a href="https://redirect.github.com/scala/scala/issues/5846";>#5846</a>), <a href="https://redirect.github.com/scala/scala/issues/5664";>#5664</a> (fixed by <a href="https://redirect.github.com/scala/scala/issues/5821";>#5821</a>). Special thanks to <a href="https://github.com/xuwei-k";><code>@xuwei-k</code></a> and <a href="https://github.com/sjrd";><code>@sjrd</code></a> for reporting and helping diagnose these.</p> <p>For more information, check out <a href="https://github.com/scala/bug/issues?utf8=%E2%9C%93&q=is%3Aclosed%20milestone%3A2.11.11";>all closed bugs</a> and <a href="https://github.com/scala/scala/pulls?q=is%3Amerged%20milestone%3A2.11.11";>merged PRs</a>.</p> <p>As usual for minor releases, Scala 2.11.11 is binary compatible with the whole Scala 2.11 series (with the exception of 2.11.9, which should not be used to publish artifacts, see <a href="https://redirect.github.com/scala/scala/issues/5821";>#5821</a>).</p> <p>To share your feedback on this release, please use our new GitHub-based <a href="https://github.com/scala/bug";>bug tracker</a> and Discourse-based <a href="https://contributors.scala-lang.org";>contributors forum</a>.</p> <h2>Contributors</h2> <p>A big thank you to everyone who's helped improve Scala by reporting bugs, improving our documentation, spreading kindness in discussions around Scala, and submitting and reviewing pull requests! You are all magnificent.</p> <p>This release was brought to you by 33 contributors, according to <code>git shortlog -sn --no-merges v2.11.8..v2.11.11</code>. Thank you Adriaan Moors, A. P. Marki, Jason Zaugg, Seth Tisue, Lukas Rytz, Performant Data LLC, Stefan Zeiger, Pap Lőrinc, Iulian Dragos, Rory Graves, Miles Sabin, Martijn Hoekstra, Mike Skells, Sébastien Doeraene, Dale Wijnand, Raphael Jolly, ptrcarta, Łukasz Gieroń, Carsten Varming, CodingTwinky, Jasper-M, Johannes Rudolph, Krzysztof Romanowski, Martynas Mickevičius, Masaru Nomura, Nicolas Stucki, Oscar Boykin, Paul Kernfeld, Philippus Baalman, Tobias Schlatter, Viktor Klang, af, and jvican!</p> <h2>Scala 2.11 Notes</h2> <p>The <a href="https://github.com/scala/scala/releases/v2.11.0";>release notes for Scala 2.11.0</a> have important information applicable to the whole 2.11 series.</p> <h2>Obtaining Scala</h2> <p>Scala releases are available through a variety of channels, including (but not limited to):</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/scala/scala/commit/b8155a5502d6608e491a241a94c82cdec1f4a161";><code>b8155a5</code></a> Merge pull request <a href="https://redirect.github.com/scala/scala/issues/6151";>#6151</a> from retronym/merge/2.10.x-to-2.11.x-20171027</li> <li><a href="https://github.com/scala/scala/commit/517d1700f94966c523629244b07ab0c06d08613f";><code>517d170</code></a> Delay check for Object.class</li> <li><a href="https://github.com/scala/scala/commit/eb6a6fd5d21388f12309462aa9ee84080e45eafe";><code>eb6a6fd</code></a> Adapt to the removal of sun.boot.class.path</li> <li><a href="https://github.com/scala/scala/commit/5e0cea988e791062444f18d805f58b7ae9803a28";><code>5e0cea9</code></a> Merge branch 'backport/reflection' into merge/2.10.x-to-2.11.x-20171027</li> <li><a href="https://github.com/scala/scala/commit/7e398adcde2dc71a6422dff33536f2dcd0740cfc";><code>7e398ad</code></a> Fixup run/t8852a after merging check that target=1.8 for static interface calls</li> <li><a href="https://github.com/scala/scala/commit/b4f1a48060701306e0d1f64b01b06f1af672a303";><code>b4f1a48</code></a> Fixup run/classfile-format-51.scala after merging asm upgrade</li> <li><a href="https://github.com/scala/scala/commit/4b848761c3791b161c43ee80feb4c0c03d7a5dd7";><code>4b84876</code></a> Move ASM sources back to the original location</li> <li><a href="https://github.com/scala/scala/commit/02f7977d0255a7a42ea354113f3f3c0d674a56bd";><code>02f7977</code></a> SI-9833 Fix -nobootcp in the Unix scala script</li> <li><a href="https://github.com/scala/scala/commit/88a562a93e3aa12a8513448b1790cea6d4080d46";><code>88a562a</code></a> Merge commit '7e1a4b94ad' into merge/2.10.x-to-2.11.x-20171027</li> <li><a href="https://github.com/scala/scala/commit/07e26596872d4699e11f564a36de3d52855ad315";><code>07e2659</code></a> Merge commit 'c3d8750f4d' into merge/2.10.x-to-2.11.x-20171027</li> <li>Additional commits viewable in <a href="https://github.com/scala/scala/compare/v2.11.0...v2.11.12";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/servicemix-website/network/alerts). </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@servicemix.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
