solrbot opened a new pull request, #2129: URL: https://github.com/apache/solr/pull/2129
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [com.github.spotbugs:spotbugs-annotations](https://spotbugs.github.io/) ([source](https://togithub.com/spotbugs/spotbugs)) | dependencies | patch | `4.8.0` -> `4.8.2` | --- ### Release Notes <details> <summary>spotbugs/spotbugs (com.github.spotbugs:spotbugs-annotations)</summary> ### [`v4.8.2`](https://togithub.com/spotbugs/spotbugs/blob/HEAD/CHANGELOG.md#482---2023-11-28) [Compare Source](https://togithub.com/spotbugs/spotbugs/compare/4.8.1...4.8.2) ##### Fixed - Fixed false positive UPM_UNCALLED_PRIVATE_METHOD for method used in JUnit's MethodSource ([#​2379](https://togithub.com/spotbugs/spotbugs/issues/2379)) - Use java.nio to load filter files ([#​2684](https://togithub.com/spotbugs/spotbugs/pull/2684)) - Eclipse: Do not export javax.annotation packages ([#​2699](https://togithub.com/spotbugs/spotbugs/pull/2699)) - Fixed not thread safe FindOverridableMethodCall detector ([#​2701](https://togithub.com/spotbugs/spotbugs/issues/2701)) - Fix the weird messages of PI_DO_NOT_REUSE_PUBLIC_IDENTIFIERS bugs. ([#​2646](https://togithub.com/spotbugs/spotbugs/issues/2646)) - Revert commons-text from 1.11.0 to 1.10.0 to resolve a version conflict ([#​2686](https://togithub.com/spotbugs/spotbugs/issues/2686)) - Fix FP in CT_CONSTRUCTOR_THROW when the finalizer does not run, since the exception is thrown before java.lang.Object's constructor exits ([#​2710](https://togithub.com/spotbugs/spotbugs/issues/2710)) ##### Added - New detector finding `System.getenv()` calls, where the corresponding Java property could be used (See [ENV02-J](https://wiki.sei.cmu.edu/confluence/display/java/ENV02-J.+Do+not+trust+the+values+of+environment+variables)). ##### Build - Run build using jdk 17 and 21 without usage of toolchains so we do not defeat the purpose of building on both. ([#​2722](https://togithub.com/spotbugs/spotbugs/pull/2722)) ### [`v4.8.1`](https://togithub.com/spotbugs/spotbugs/blob/HEAD/CHANGELOG.md#481---2023-11-06) [Compare Source](https://togithub.com/spotbugs/spotbugs/compare/4.8.0...4.8.1) ##### Fixed - Fixed schema location for findbugsfilter.xsd ([#​1416](https://togithub.com/spotbugs/spotbugs/issues/1416)) - Fixed missing null checks ([#​2629](https://togithub.com/spotbugs/spotbugs/issues/2629)) - Disabled DontReusePublicIdentifiers due to the high false positives rate ([#​2627](https://togithub.com/spotbugs/spotbugs/issues/2627)) - Removed signature of methods using UTF-8 in DefaultEncodingDetector ([#​2634](https://togithub.com/spotbugs/spotbugs/issues/2634)) - Fix exception escapes when calling functions of JUnit Assert or Assertions ([#​2640](https://togithub.com/spotbugs/spotbugs/issues/2640)) - Fixed an error in the SARIF export when a bug annotation is missing ([#​2632](https://togithub.com/spotbugs/spotbugs/issues/2632)) - Fixed false positive RV_EXCEPTION_NOT_THROWN when asserting to exception throws ([#​2628](https://togithub.com/spotbugs/spotbugs/issues/2628)) - Fix false positive CT_CONSTRUCTOR_THROW when supertype has final finalize ([#​2665](https://togithub.com/spotbugs/spotbugs/issues/2665)) - Lowered the priority of `PA_PUBLIC_MUTABLE_OBJECT_ATTRIBUTE` bug ([#​2652](https://togithub.com/spotbugs/spotbugs/issues/2652)) - Eclipse: fixed startup overhead (on computing classpath) for PDE projects ([#​2671](https://togithub.com/spotbugs/spotbugs/pull/2671)) ##### Build - Fix deprecated GHA on '::set-output' by using GITHUB_OUTPUT ([#​2651](https://togithub.com/spotbugs/spotbugs/pull/2651)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "* * * * *" (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. â™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://togithub.com/solrbot/renovate-github-action) <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy44Ny4yIiwidXBkYXRlZEluVmVyIjoiMzcuODcuMiIsInRhcmdldEJyYW5jaCI6Im1haW4ifQ==--> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
