dependabot[bot] opened a new pull request, #1622: URL: https://github.com/apache/struts/pull/1622
Bumps `jasperreports7.version` from 6.21.3 to 7.0.5. Updates `net.sf.jasperreports:jasperreports` from 6.21.3 to 7.0.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Jaspersoft/jasperreports/releases";>net.sf.jasperreports:jasperreports's releases</a>.</em></p> <blockquote> <h2>JasperReports 7.0.5</h2> <ul> <li> <p>support for proportional table column resize using negative weight values convention;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.4</h2> <ul> <li> <p>add deserialization class filter to fix the CVE-2025-10492 security vulnerability;</p> </li> <li> <p>new net.sf.jasperreports.export.docx.size.page.to.content export configuration property added to support variable DOCX page size;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.3</h2> <ul> <li>minor bug fixes and improvements;</li> </ul> <h2>JasperReports 7.0.2</h2> <ul> <li> <p>added support for horizontalPosition and shrinkWidth properties to table component and weight property to table columns to better control table resize behavior when table columns are hidden or resized.</p> </li> <li> <p>removed the Google Maps component, the Chrome server side rendering of Javascript visualizations extension, the interactivity extension as well as the PL/SQL and Oracle stored procedure query executer;</p> </li> <li> <p>various dependencies upgrades including: Apache Batik 1.18, Apache POI 5.3.0 and Spring 6.2.3;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.1</h2> <ul> <li> <p>added automatic module names to manifest files and fixed split packages issues in preparation for Java 9 modules compliance;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.0</h2> <ul> <li> <p>removal of the Ant build system and replacing it with a Maven build system;</p> </li> <li> <p>deprecated code removed;</p> </li> <li> <p>breaking backward compatibility of serialized/compiled *.jasper report template files, mostly because of historical deprecated serialization code removal/cleanup mentioned above (source *.jrxml report templates need to be recompiled to *.jasper using the new version of the library);</p> </li> <li> <p>breaking backward compatibility of source *.jrxml report template files and *.jrtx style template files by replacing the Apache Commons Digester based parsers with Jackson XML object serialization. *.jrxml and *.jrtx files created with version 6 or older can no longer be loaded with version 7 or newer of the library alone. The conversion from the old file formats to the new file formats and back can be made using Jaspersoft Studio 7 and later versions of it;</p> </li> <li> <p>extracting various optional extension JAR artifacts from the the core library JAR artifact</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Jaspersoft/jasperreports/blob/master/changes.txt";>net.sf.jasperreports:jasperreports's changelog</a>.</em></p> <blockquote> <h2>JasperReports 7.0.5 (2026-02-27)</h2> <ul> <li> <p>support for proportional table column resize using negative weight values convention;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.4 (2025-11-03)</h2> <ul> <li> <p>add deserialization class filter to fix the CVE-2025-10492 security vulnerability;</p> </li> <li> <p>new net.sf.jasperreports.export.docx.size.page.to.content export configuration property added to support variable DOCX page size;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.3 (2025-05-02)</h2> <ul> <li>minor bug fixes and improvements;</li> </ul> <h2>JasperReports 7.0.2 (2025-03-10)</h2> <ul> <li> <p>added support for horizontalPosition and shrinkWidth properties to table component and weight property to table columns to better control table resize behavior when table columns are hidden or resized.</p> </li> <li> <p>removed the Google Maps component, the Chrome server side rendering of Javascript visualizations extension, the interactivity extension as well as the PL/SQL and Oracle stored procedure query executer;</p> </li> <li> <p>various dependencies upgrades including: Apache Batik 1.18, Apache POI 5.3.0 and Spring 6.2.3;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/f903d43c10df52c5fe2f4b411b58d35c785021c5";><code>f903d43</code></a> eula update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/4355b62c664a7760655b513bdd58950cb3365f54";><code>4355b62</code></a> version update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/bddfa1739de5fd1f3ea7545e73ac41e36889782c";><code>bddfa17</code></a> changes.txt update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/59ef4ffe42d5aa527857d7486d75d76d88a52b41";><code>59ef4ff</code></a> Merge tag '7.0.4' into release-7.0.5</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/2b24e9a9b5452f9c039e7b7292c57646079d7975";><code>2b24e9a</code></a> version update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/baf2cd30af0f607499adb7465b6ff4d526a8d95c";><code>baf2cd3</code></a> changes.txt update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/1628c41aaa8874689560d4ffe58cd3670199d612";><code>1628c41</code></a> bouncy castle upgrade in sample</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/b0480855602c8500d136e9b3464ce676bb6867d4";><code>b048085</code></a> Merge branch 'develop' into release-7.0.5</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/f00cb9343feb972ad68519469e74965610748fbe";><code>f00cb93</code></a> eula update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/515305b331798f481a2f64a605ac9b42142c64fc";><code>515305b</code></a> add cve to owasp suppression</li> <li>Additional commits viewable in <a href="https://github.com/Jaspersoft/jasperreports/compare/6.21.3...7.0.5";>compare view</a></li> </ul> </details> <br /> Updates `net.sf.jasperreports:jasperreports-pdf` from 7.0.3 to 7.0.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Jaspersoft/jasperreports/releases";>net.sf.jasperreports:jasperreports-pdf's releases</a>.</em></p> <blockquote> <h2>JasperReports 7.0.5</h2> <ul> <li> <p>support for proportional table column resize using negative weight values convention;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.4</h2> <ul> <li> <p>add deserialization class filter to fix the CVE-2025-10492 security vulnerability;</p> </li> <li> <p>new net.sf.jasperreports.export.docx.size.page.to.content export configuration property added to support variable DOCX page size;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Jaspersoft/jasperreports/blob/master/changes.txt";>net.sf.jasperreports:jasperreports-pdf's changelog</a>.</em></p> <blockquote> <h2>JasperReports 7.0.5 (2026-02-27)</h2> <ul> <li> <p>support for proportional table column resize using negative weight values convention;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> <h2>JasperReports 7.0.4 (2025-11-03)</h2> <ul> <li> <p>add deserialization class filter to fix the CVE-2025-10492 security vulnerability;</p> </li> <li> <p>new net.sf.jasperreports.export.docx.size.page.to.content export configuration property added to support variable DOCX page size;</p> </li> <li> <p>minor bug fixes and improvements;</p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/f903d43c10df52c5fe2f4b411b58d35c785021c5";><code>f903d43</code></a> eula update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/4355b62c664a7760655b513bdd58950cb3365f54";><code>4355b62</code></a> version update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/bddfa1739de5fd1f3ea7545e73ac41e36889782c";><code>bddfa17</code></a> changes.txt update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/59ef4ffe42d5aa527857d7486d75d76d88a52b41";><code>59ef4ff</code></a> Merge tag '7.0.4' into release-7.0.5</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/2b24e9a9b5452f9c039e7b7292c57646079d7975";><code>2b24e9a</code></a> version update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/baf2cd30af0f607499adb7465b6ff4d526a8d95c";><code>baf2cd3</code></a> changes.txt update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/1628c41aaa8874689560d4ffe58cd3670199d612";><code>1628c41</code></a> bouncy castle upgrade in sample</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/b0480855602c8500d136e9b3464ce676bb6867d4";><code>b048085</code></a> Merge branch 'develop' into release-7.0.5</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/f00cb9343feb972ad68519469e74965610748fbe";><code>f00cb93</code></a> eula update</li> <li><a href="https://github.com/Jaspersoft/jasperreports/commit/515305b331798f481a2f64a605ac9b42142c64fc";><code>515305b</code></a> add cve to owasp suppression</li> <li>Additional commits viewable in <a href="https://github.com/Jaspersoft/jasperreports/compare/7.0.3...7.0.5";>compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
