[jira] [Created] (ARIES-2071) [spi-fly] Support dynamic registration of SPIs as services through a bundle header
Christoph Läubrich created ARIES-2071: - Summary: [spi-fly] Support dynamic registration of SPIs as services through a bundle header Key: ARIES-2071 URL: https://issues.apache.org/jira/browse/ARIES-2071 Project: Aries Issue Type: Improvement Components: SPI Fly Reporter: Christoph Läubrich This was already described [here|https://github.com/osgi/osgi/issues/372#issuecomment-1086917222] to give more context: Sometimes I would like to use an SPI but in a more OSGi way, where calling the ServiceLoader directly does not suffice: # Bundles can come and go, so even if I have called the ServiceLoader once, there might be more because of new installed bundles, or some might go # Currently I need to know the bundle names in advance when using [auto-properties|https://aries.apache.org/documentation/modules/spi-fly.html#_dynamic_weaving_by_auto_properties] or I need to configure very *broad* filters that might affect more parts of the system as desired, also changing these properties most ly require a reboot of the framework to be detected # I always has to know beforehand what/if a bundle requires an SPI, there is no way of a bundle to tell its requirements # I can't tell if only certain SPI should be registered On the other way OSGi aware bundles has well known techniques to solve such problems: * OSGi Services can be tracked if the come and go * Bundles can declare requirements that are then fetched by extenders to do the work on behalf of the bundle What would be useful I think would be the following: * I can define a Requirement in the Bundle-Manifest e.g. Require-Capability: java.util.ServiceLoader:="(service=my.spi.ServiceInterface)", maybe wildcards or a multi-property would be useful here. This would then be similar to DS. * Aries SPI-Fly could track all bundles in the framework for any META-INF/services/javax.persistence.spi.PersistenceProvider and registers a ServiceFactory for each whose getService returns an instance for any bundle defining a matching header (and null for all other bundles without that header) This has the advantage that a bundle can declare its intend to use SPI as regular service, and Aries takes care of tracking bundles, offering services and the consumer bundle only needs to use regular servicetrackers, DS, Blueprint, .. to track the service. Even better, OSGi first approaches could simply register such a service and don't need to care about SPI at all if the like to enhance such a bundle. One example where it would be usefull is [pax-jpa|https://github.com/ops4j/org.ops4j.pax.jpa] where we need to track javax.persistence.spi.PersistenceProvider's. The implementation can't know beforehand how these bundles are named, and we can't know when they are started or stopped, but because the PeristencaManagerFactory depends on the PersistenceProvider is crucial to unregister/shutdown PeristencaManagerFactory whenever the suppling bundle goes, or boot them up if a suitable one is installed. Beside that they are most of the time registered through the servicloader mechanism so a first approach was to provide a "wrapper" that for each persistence provider register it as a service, but this is a maintenance nightmare, as one need to know of course all the providers, need to write an additional bundle for each, update the dependencies on new version and so on. Becuase of this, pax-jpa includes a [PersistenceProviderBundleTrackerCustomizer|https://github.com/ops4j/org.ops4j.pax.jpa/blob/master/pax-jpa/src/main/java/org/ops4j/pax/jpa/impl/tracker/PersistenceProviderBundleTrackerCustomizer.java] that might can be used as a starting point here for a more generic implementation. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Commented] (ARIES-2067) Avoid NPE during startup
[ https://issues.apache.org/jira/browse/ARIES-2067?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17517182#comment-17517182 ] Raymond Augé commented on ARIES-2067: - The release is in progress. Currently the vote is open. > Avoid NPE during startup > > > Key: ARIES-2067 > URL: https://issues.apache.org/jira/browse/ARIES-2067 > Project: Aries > Issue Type: Bug > Components: CDI >Reporter: Raymond Augé >Assignee: Raymond Augé >Priority: Major > Fix For: cdi-1.1.5 > > > When starting a minimal use case there may be NPE during init. > {code} > java.lang.NullPointerException: A prototype scope > org.apache.aries.cdi.spi.CDIContainerInitializer service must be available. > at java.util.Objects.requireNonNull(Objects.java:228) > at > org.apache.aries.cdi.container.internal.container.ContainerBootstrap.(ContainerBootstrap.java:78) > at > org.apache.aries.cdi.container.internal.Activator.doCreateExtension(Activator.java:212) > at > org.apache.felix.utils.extender.AbstractExtender.createExtension(AbstractExtender.java:242) > at > org.apache.felix.utils.extender.AbstractExtender.modifiedBundle(AbstractExtender.java:227) > at > org.apache.felix.utils.extender.AbstractExtender.addingBundle(AbstractExtender.java:187) > at > org.osgi.util.tracker.BundleTracker$Tracked.customizerAdding(BundleTracker.java:475) > at > org.osgi.util.tracker.BundleTracker$Tracked.customizerAdding(BundleTracker.java:1) > at > org.osgi.util.tracker.AbstractTracked.trackAdding(AbstractTracked.java:256) > at > org.osgi.util.tracker.AbstractTracked.trackInitial(AbstractTracked.java:183) > at org.osgi.util.tracker.BundleTracker.open(BundleTracker.java:159) > at > org.apache.felix.utils.extender.AbstractExtender.startTracking(AbstractExtender.java:150) > at > org.apache.felix.utils.extender.AbstractExtender.doStart(AbstractExtender.java:142) > at > org.apache.felix.utils.extender.AbstractExtender.start(AbstractExtender.java:114) > at > org.apache.aries.cdi.container.internal.Activator.start(Activator.java:140) > at > org.eclipse.osgi.internal.framework.BundleContextImpl$2.run(BundleContextImpl.java:814) > at > org.eclipse.osgi.internal.framework.BundleContextImpl$2.run(BundleContextImpl.java:1) > at java.security.AccessController.doPrivileged(Native Method) > at > org.eclipse.osgi.internal.framework.BundleContextImpl.startActivator(BundleContextImpl.java:806) > at > org.eclipse.osgi.internal.framework.BundleContextImpl.start(BundleContextImpl.java:763) > at > org.eclipse.osgi.internal.framework.EquinoxBundle.startWorker0(EquinoxBundle.java:1028) > at > org.eclipse.osgi.internal.framework.EquinoxBundle$EquinoxModule.startWorker(EquinoxBundle.java:371) > at org.eclipse.osgi.container.Module.doStart(Module.java:605) > at org.eclipse.osgi.container.Module.start(Module.java:468) > at > org.eclipse.osgi.internal.framework.EquinoxBundle.start(EquinoxBundle.java:445) > at aQute.launcher.Launcher.start(Launcher.java:686) > at aQute.launcher.Launcher.startBundles(Launcher.java:666) > at aQute.launcher.Launcher.activate(Launcher.java:572) > at aQute.launcher.Launcher.launch(Launcher.java:402) > at aQute.launcher.Launcher.run(Launcher.java:184) > at aQute.launcher.Launcher.main(Launcher.java:160) > at > aQute.launcher.pre.EmbeddedLauncher.executeWithRunPath(EmbeddedLauncher.java:170) > at > aQute.launcher.pre.EmbeddedLauncher.findAndExecute(EmbeddedLauncher.java:135) > at aQute.launcher.pre.EmbeddedLauncher.main(EmbeddedLauncher.java:52) > {code} -- This message was sent by Atlassian Jira (v8.20.1#820001)
[VOTE] Release Aries CDI version 1.1.5
Hi, I'd like to call a vote to release Aries CDI version 1.1.5. We fixed 3 issues in this release, Changelog: https://issues.apache.org/jira/browse/ARIES-2069?jql=project%20%3D%20ARIES%20AND%20fixVersion%20%3D%20cdi-1.1.5 Staging repository: https://repository.apache.org/content/repositories/orgapachearies-1206 Please vote to approve this release: [ ] +1 Approve the release [ ] -1 Veto the release (please provide specific comments) This vote will be open for 72 hours. Ray
[GitHub] [aries-cdi] rotty3000 merged pull request #130: Bump owb.version from 2.0.25 to 2.0.26
rotty3000 merged PR #130: URL: https://github.com/apache/aries-cdi/pull/130 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@aries.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [aries-cdi] rotty3000 merged pull request #129: Bump build-helper-maven-plugin from 3.2.0 to 3.3.0
rotty3000 merged PR #129: URL: https://github.com/apache/aries-cdi/pull/129 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@aries.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Vulnerable Dependency Versions (karaf 4.0.4 Snyk warning)
Hello, I got a lot of security issues of karaf 4.0.4 (mostly embedded Tomcat) reported by the Snyk scan service for Aries-rsa dependency (feature/pom.xml). Snyk claims it is fixed with karaf 4.1.1. I understand that this minimum version is mostly to be compatible with older karaf versions api. So I Wonder do you have a policy when to bump up those versions, especially if the existing ones are with known vulnerabilities? It’s not so much an issue of the delivery, I guess - given that users would have to pick unsafe old karaf versions and can easily deploy into an up-to-date container - if I see that correctly? But it does endorse somewhat know-bad versions. I have here in our ‘fork’ the open Snyk reports (not sure if they all apply to upstream master but they do apply for feature/Pom.xml (karaf 4.0.4): https://github.com/seeburger-ag/aries-rsa/pulls Is it also an option to enable that directly on the asf Repo? Gruss Bernd -- http://bernd.eckenfels.net
[GitHub] [aries-cdi] dependabot[bot] opened a new pull request, #130: Bump owb.version from 2.0.25 to 2.0.26
dependabot[bot] opened a new pull request, #130: URL: https://github.com/apache/aries-cdi/pull/130 Bumps `owb.version` from 2.0.25 to 2.0.26. Updates `openwebbeans-web` from 2.0.25 to 2.0.26 Commits https://github.com/apache/openwebbeans/commit/0f06ed15bfe3e53923971188e96ecc721242c2e0;>0f06ed1 [maven-release-plugin] prepare release openwebbeans-2.0.26 https://github.com/apache/openwebbeans/commit/0da7a3cfa262f7206fee11953a6d3468e493ab52;>0da7a3c [OWB-1402] ensure Instance#select uses an append logic for qualifiers https://github.com/apache/openwebbeans/commit/8ccda9326d6c1cb340d48d6a6cbce4390133d8dc;>8ccda93 upgrade log4j-core to 2.17.1 in webbeans-gradle - no user impact https://github.com/apache/openwebbeans/commit/0d022c1ef8a76f02e4d7b3efe294ad877e2732a2;>0d022c1 [OWB-1401] sort intercepted methods https://github.com/apache/openwebbeans/commit/3d665bf864b4296181819342ea0a46379c610cfc;>3d665bf [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/openwebbeans/compare/openwebbeans-2.0.25...openwebbeans-2.0.26;>compare view Updates `openwebbeans-impl` from 2.0.25 to 2.0.26 Commits https://github.com/apache/openwebbeans/commit/0f06ed15bfe3e53923971188e96ecc721242c2e0;>0f06ed1 [maven-release-plugin] prepare release openwebbeans-2.0.26 https://github.com/apache/openwebbeans/commit/0da7a3cfa262f7206fee11953a6d3468e493ab52;>0da7a3c [OWB-1402] ensure Instance#select uses an append logic for qualifiers https://github.com/apache/openwebbeans/commit/8ccda9326d6c1cb340d48d6a6cbce4390133d8dc;>8ccda93 upgrade log4j-core to 2.17.1 in webbeans-gradle - no user impact https://github.com/apache/openwebbeans/commit/0d022c1ef8a76f02e4d7b3efe294ad877e2732a2;>0d022c1 [OWB-1401] sort intercepted methods https://github.com/apache/openwebbeans/commit/3d665bf864b4296181819342ea0a46379c610cfc;>3d665bf [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/openwebbeans/compare/openwebbeans-2.0.25...openwebbeans-2.0.26;>compare view Updates `openwebbeans-spi` from 2.0.25 to 2.0.26 Commits https://github.com/apache/openwebbeans/commit/0f06ed15bfe3e53923971188e96ecc721242c2e0;>0f06ed1 [maven-release-plugin] prepare release openwebbeans-2.0.26 https://github.com/apache/openwebbeans/commit/0da7a3cfa262f7206fee11953a6d3468e493ab52;>0da7a3c [OWB-1402] ensure Instance#select uses an append logic for qualifiers https://github.com/apache/openwebbeans/commit/8ccda9326d6c1cb340d48d6a6cbce4390133d8dc;>8ccda93 upgrade log4j-core to 2.17.1 in webbeans-gradle - no user impact https://github.com/apache/openwebbeans/commit/0d022c1ef8a76f02e4d7b3efe294ad877e2732a2;>0d022c1 [OWB-1401] sort intercepted methods https://github.com/apache/openwebbeans/commit/3d665bf864b4296181819342ea0a46379c610cfc;>3d665bf [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/openwebbeans/compare/openwebbeans-2.0.25...openwebbeans-2.0.26;>compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@aries.apache.org For queries about this service, please contact Infrastructure at:
[GitHub] [aries-cdi] dependabot[bot] opened a new pull request, #129: Bump build-helper-maven-plugin from 3.2.0 to 3.3.0
dependabot[bot] opened a new pull request, #129: URL: https://github.com/apache/aries-cdi/pull/129 Bumps [build-helper-maven-plugin](https://github.com/mojohaus/build-helper-maven-plugin) from 3.2.0 to 3.3.0. Release notes Sourced from https://github.com/mojohaus/build-helper-maven-plugin/releases;>build-helper-maven-plugin's releases. 3.3.0 Changes Fixes https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/108;>#108 - released-version does not detect version if maven repository is not configured to look for snapshot (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/109;>#109) https://github.com/stefanseifert;>@stefanseifert Add missing whitespace to output of reserve-network-port (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/101;>#101) https://github.com/albers;>@albers New features and improvements Provide the Mojos logger as variable in the Interpreter context (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/72;>#72) https://github.com/MeyerNils;>@MeyerNils Dependency updates Bump testng from 6.9.9 to 7.4.0 (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/116;>#116) https://github.com/dependabot;>@dependabot Bump assertj-core from 1.7.1 to 3.22.0 (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/115;>#115) https://github.com/dependabot;>@dependabot Bump maven-plugin-annotations from 3.5 to 3.6.2 (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/117;>#117) https://github.com/dependabot;>@dependabot Bump mojo-parent from 61 to 65 (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/118;>#118) https://github.com/dependabot;>@dependabot Bump junit from 3.8.1 to 4.13.1 in /src/it/surefire (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/104;>#104) https://github.com/dependabot;>@dependabot Use maven-plugin-plugin in version managed in parent (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/97;>#97) https://github.com/pzygielo;>@pzygielo Maintenance Set min. java version to java 8 (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/120;>#120) https://github.com/stefanseifert;>@stefanseifert Switch from Travis to GitHub Actions (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/114;>#114) https://github.com/stefanseifert;>@stefanseifert Fix links to examples (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/100;>#100) https://github.com/djarnis73;>@djarnis73 Use primitive to allow it to be resolved by https://github.com/value;>@value in javadoc (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/99;>#99) https://github.com/pzygielo;>@pzygielo Fix javadoc errors and warning (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/98;>#98) https://github.com/pzygielo;>@pzygielo Commits https://github.com/mojohaus/build-helper-maven-plugin/commit/f1fac8ca03e5f6cc2d118b1925b00a8164e76f56;>f1fac8c [maven-release-plugin] prepare release build-helper-maven-plugin-3.3.0 https://github.com/mojohaus/build-helper-maven-plugin/commit/3fed18ca8cd47b352e0c9bfc37d03bb7e1337aa1;>3fed18c use version-resolver for release drafter to apply semantic versioning e.g. if... https://github.com/mojohaus/build-helper-maven-plugin/commit/4d6ca94c3d4ad1c301dff68ac9eeb3e395c9c180;>4d6ca94 allow to run release-drafter on workflow_dispatch for testing https://github.com/mojohaus/build-helper-maven-plugin/commit/b4e5d5aea751b2223eced9e0bf3e43367b3a1fff;>b4e5d5a Provide the Mojos logger as variable in the Interpreter context (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/72;>#72) https://github.com/mojohaus/build-helper-maven-plugin/commit/bda39bc21a0e4c9f8e629907ed82d6f552c3edc1;>bda39bc set min. java version to java 8 https://github.com/mojohaus/build-helper-maven-plugin/commit/5f6943185f6ce9615d0fd1452389815e033302f2;>5f69431 Bump testng from 6.9.9 to 7.4.0 (https://github-redirect.dependabot.com/mojohaus/build-helper-maven-plugin/issues/116;>#116) https://github.com/mojohaus/build-helper-maven-plugin/commit/579683929e001fd510eaae79394c3e7866abc24d;>5796839 Bump assertj-core from 1.7.1 to 3.22.0 https://github.com/mojohaus/build-helper-maven-plugin/commit/e916f5775f154134ff1fb3aafe3c8563fc1e8bcb;>e916f57 Bump maven-plugin-annotations from 3.5 to 3.6.2 https://github.com/mojohaus/build-helper-maven-plugin/commit/158475c63534a511fb5cbb2b44682c4b86e85455;>158475c Bump mojo-parent from 61 to 65
[GitHub] [aries] dependabot[bot] opened a new pull request, #149: Bump org.apache.felix.logback from 1.0.2 to 1.0.6 in /spi-fly
dependabot[bot] opened a new pull request, #149: URL: https://github.com/apache/aries/pull/149 Bumps org.apache.felix.logback from 1.0.2 to 1.0.6. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.felix:org.apache.felix.logback=maven=1.0.2=1.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@aries.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [aries] dependabot[bot] opened a new pull request, #148: Bump assertj-core from 3.20.2 to 3.22.0 in /spi-fly
dependabot[bot] opened a new pull request, #148: URL: https://github.com/apache/aries/pull/148 Bumps [assertj-core](https://github.com/assertj/assertj-core) from 3.20.2 to 3.22.0. Commits https://github.com/assertj/assertj-core/commit/5e4779c76ae0fffc6c44f174cd54dfbdefa9b57f;>5e4779c [maven-release-plugin] prepare release assertj-core-3.22.0 https://github.com/assertj/assertj-core/commit/2213028a9fa12dd35ac9f8235465d5ef1a23ba89;>2213028 Fix javadoc https://github.com/assertj/assertj-core/commit/1b3c46d0455c4c489196ffa0ed977f1cddfbcf44;>1b3c46d Update bdnrun version https://github.com/assertj/assertj-core/commit/83c6e071333058fce3fbbed58159d5684c348f2d;>83c6e07 Add a default implementation for unambiguousToStringOf in Representation. https://github.com/assertj/assertj-core/commit/35bed614bbe9f9db2d69d4f14280b44f79a69ec0;>35bed61 Javadoc improvements https://github.com/assertj/assertj-core/commit/ab9cb2228c6865ff0f3cddd604cde5edaf6dbdd8;>ab9cb22 Bump project version to 3.22.0-SNAPSHOT https://github.com/assertj/assertj-core/commit/6cd581150bcf2a2527378578d6c548f2071489b9;>6cd5811 Add catchThrowableOfType enriched alternatives (https://github-redirect.dependabot.com/assertj/assertj-core/issues/2410;>#2410) https://github.com/assertj/assertj-core/commit/367d1104a80c8b562db90e0105c796dd5e48ac84;>367d110 Javadoc typo https://github.com/assertj/assertj-core/commit/0a5bf8d5aac46d24d2bdc1e10595e507ece3ddbc;>0a5bf8d Add doesNotReturn to Object assertions (https://github-redirect.dependabot.com/assertj/assertj-core/issues/2453;>#2453) https://github.com/assertj/assertj-core/commit/471e8a80347dc6e759e58a5ead7f700532e00dc6;>471e8a8 Switch to the official Maven Wrapper by Apache (https://github-redirect.dependabot.com/assertj/assertj-core/issues/2452;>#2452) Additional commits viewable in https://github.com/assertj/assertj-core/compare/assertj-core-3.20.2...assertj-core-3.22.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.assertj:assertj-core=maven=3.20.2=3.22.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@aries.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [aries] dependabot[bot] opened a new pull request, #147: Bump junit-jupiter.version from 5.7.2 to 5.8.2 in /spi-fly
dependabot[bot] opened a new pull request, #147: URL: https://github.com/apache/aries/pull/147 Bumps `junit-jupiter.version` from 5.7.2 to 5.8.2. Updates `junit-jupiter-api` from 5.7.2 to 5.8.2 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter-api's releases. JUnit 5.8.2 = Platform 1.8.2 + Jupiter 5.8.2 + Vintage 5.8.2 See http://junit.org/junit5/docs/5.8.2/release-notes/;>Release Notes. JUnit 5.8.1 = Platform 1.8.1 + Jupiter 5.8.1 + Vintage 5.8.1 See http://junit.org/junit5/docs/5.8.1/release-notes/;>Release Notes. JUnit 5.8.0 = Platform 1.8.0 + Jupiter 5.8.0 + Vintage 5.8.0 See http://junit.org/junit5/docs/5.8.0/release-notes/;>Release Notes. JUnit 5.8.0-RC1 = Platform 1.8.0-RC1 + Jupiter 5.8.0-RC1 + Vintage 5.8.0-RC1 See http://junit.org/junit5/docs/5.8.0-RC1/release-notes/;>Release Notes. JUnit 5.8.0-M1 = Platform 1.8.0-M1 + Jupiter 5.8.0-M1 + Vintage 5.8.0-M1 See http://junit.org/junit5/docs/5.8.0-M1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/f58cd419755846f1476e8d15783438de8d7aede4;>f58cd41 Release 5.8.2 https://github.com/junit-team/junit5/commit/893617c8bcfd50a9c22023177c80db9973e36d8f;>893617c Fix Javadoc of DEFAULT_DISCOVERY_LISTENER_CONFIGURATION_PROPERTY_NAME https://github.com/junit-team/junit5/commit/3d75f99bf78fa386c17a52009670d6bcfa3f3168;>3d75f99 Use Gradle because to document junit-platform-launcher dependency https://github.com/junit-team/junit5/commit/4ef6e70989fb9ad9efef7bb45996854d876503b1;>4ef6e70 Support CSV headers in display names in parameterized tests https://github.com/junit-team/junit5/commit/69aed70d38b2b2ca3bb51b7a4f29c909573c0544;>69aed70 Polish Overview section of User Guide https://github.com/junit-team/junit5/commit/4181b9c05d5ac8ea056e3c06d35503f99403157a;>4181b9c Make quote character in https://github.com/CsvFileSource;>@CsvFileSource configurable https://github.com/junit-team/junit5/commit/e27058ec5c283bce2f495d0d0b4d328abc16d6e1;>e27058e Stop publishing to scans.gradle.com for PR builds https://github.com/junit-team/junit5/commit/d455b9894ae508d5aa859b7b8ae42debaadb8137;>d455b98 Always update snapshots https://github.com/junit-team/junit5/commit/938ab00d4db1f5ef074856907536bdec5ec414a1;>938ab00 Increase tool timeout to reduce flakiness https://github.com/junit-team/junit5/commit/cd257bd863cc63d32adbefe0c596b881eeabe099;>cd257bd Use longer timeouts to stabilize flaky tests Additional commits viewable in https://github.com/junit-team/junit5/compare/r5.7.2...r5.8.2;>compare view Updates `junit-jupiter-params` from 5.7.2 to 5.8.2 Release notes Sourced from https://github.com/junit-team/junit5/releases;>junit-jupiter-params's releases. JUnit 5.8.2 = Platform 1.8.2 + Jupiter 5.8.2 + Vintage 5.8.2 See http://junit.org/junit5/docs/5.8.2/release-notes/;>Release Notes. JUnit 5.8.1 = Platform 1.8.1 + Jupiter 5.8.1 + Vintage 5.8.1 See http://junit.org/junit5/docs/5.8.1/release-notes/;>Release Notes. JUnit 5.8.0 = Platform 1.8.0 + Jupiter 5.8.0 + Vintage 5.8.0 See http://junit.org/junit5/docs/5.8.0/release-notes/;>Release Notes. JUnit 5.8.0-RC1 = Platform 1.8.0-RC1 + Jupiter 5.8.0-RC1 + Vintage 5.8.0-RC1 See http://junit.org/junit5/docs/5.8.0-RC1/release-notes/;>Release Notes. JUnit 5.8.0-M1 = Platform 1.8.0-M1 + Jupiter 5.8.0-M1 + Vintage 5.8.0-M1 See http://junit.org/junit5/docs/5.8.0-M1/release-notes/;>Release Notes. Commits https://github.com/junit-team/junit5/commit/f58cd419755846f1476e8d15783438de8d7aede4;>f58cd41 Release 5.8.2 https://github.com/junit-team/junit5/commit/893617c8bcfd50a9c22023177c80db9973e36d8f;>893617c Fix Javadoc of DEFAULT_DISCOVERY_LISTENER_CONFIGURATION_PROPERTY_NAME https://github.com/junit-team/junit5/commit/3d75f99bf78fa386c17a52009670d6bcfa3f3168;>3d75f99 Use Gradle because to document junit-platform-launcher dependency https://github.com/junit-team/junit5/commit/4ef6e70989fb9ad9efef7bb45996854d876503b1;>4ef6e70 Support CSV headers in display names in parameterized tests https://github.com/junit-team/junit5/commit/69aed70d38b2b2ca3bb51b7a4f29c909573c0544;>69aed70 Polish Overview section of User Guide https://github.com/junit-team/junit5/commit/4181b9c05d5ac8ea056e3c06d35503f99403157a;>4181b9c Make quote character in https://github.com/CsvFileSource;>@CsvFileSource configurable https://github.com/junit-team/junit5/commit/e27058ec5c283bce2f495d0d0b4d328abc16d6e1;>e27058e Stop publishing to scans.gradle.com for PR builds https://github.com/junit-team/junit5/commit/d455b9894ae508d5aa859b7b8ae42debaadb8137;>d455b98 Always update snapshots https://github.com/junit-team/junit5/commit/938ab00d4db1f5ef074856907536bdec5ec414a1;>938ab00 Increase tool timeout to reduce flakiness
[GitHub] [aries] dependabot[bot] opened a new pull request, #146: Bump maven-compiler-plugin from 3.8.1 to 3.10.1 in /spi-fly
dependabot[bot] opened a new pull request, #146: URL: https://github.com/apache/aries/pull/146 Bumps [maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) from 3.8.1 to 3.10.1. Release notes Sourced from https://github.com/apache/maven-compiler-plugin/releases;>maven-compiler-plugin's releases. 3.10.1 New features and improvements https://issues.apache.org/jira/browse/MCOMPILER-426;>[MCOMPILER-426] - add flag to enable-preview java compiler feature (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/98;>#98) https://github.com/olamy;>@olamy Bug Fixes https://issues.apache.org/jira/browse/MCOMPILER-346;>[MCOMPILER-346] - workaround to jdk bug: assertion error from javaxcompiler javax.tools API (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/97;>#97) https://github.com/olamy;>@olamy https://issues.apache.org/jira/browse/MCOMPILER-485;>[MCOMPILER-485] - Fixes internal string format in generated package-info.class (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/95;>#95) https://github.com/dbwiddis;>@dbwiddis Dependency updates Bump maven-javadoc-plugin from 3.3.1 to 3.3.2 (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/94;>#94) https://github.com/dependabot;>@dependabot Other contributions thanks to https://github.com/basil;>@basil for providing an IT test for the fix of https://issues.apache.org/jira/browse/MCOMPILER-346;>[MCOMPILER-346] 3.10.0 Removed https://issues.apache.org/jira/browse/MCOMPILER-484;>[MCOMPILER-484] - Remove deprecated mojos (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/87;>#87) https://github.com/gnodet;>@gnodet New features and improvements https://issues.apache.org/jira/browse/MCOMPILER-205;>[MCOMPILER-205] - Add a boolean to generate missing package-info classes by default (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/88;>#88) https://github.com/gnodet;>@gnodet https://issues.apache.org/jira/browse/MCOMPILER-474;>[MCOMPILER-474] - Also check jar files when determining if dependencies changed (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/73;>#73) https://github.com/Powerrr;>@Powerrr Bug Fixes https://issues.apache.org/jira/browse/MCOMPILER-225;>[MCOMPILER-225] - javac.sh/javac.bat added to archive (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/91;>#91) https://github.com/olamy;>@olamy https://issues.apache.org/jira/browse/MCOMPILER-481;>[MCOMPILER-481] - compiler plugin should include static module for compilation (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/82;>#82) https://github.com/olamy;>@olamy https://issues.apache.org/jira/browse/MCOMPILER-470;>[MCOMPILER-470] -parameters doesn't work with --release https://issues.apache.org/jira/browse/MCOMPILER-460;>[MCOMPILER-460] - Compiler doesn't show detailed information with the Maven Toolchains Dependency updates use plexus-compiler 2.10.0 (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/92;>#92) https://github.com/olamy;>@olamy Bump mockito-core from 4.2.0 to 4.3.1 (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/83;>#83) https://github.com/dependabot;>@dependabot Documentation updates https://issues.apache.org/jira/browse/MCOMPILER-479;>[MCOMPILER-479] - Clarify compiler arguments Javadoc (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/90;>#90) https://github.com/hisener;>@hisener (doc) Fix typo and follow xml block style used for other parameters (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/89;>#89) https://github.com/pzygielo;>@pzygielo Build add more jdk for testing (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/93;>#93) https://github.com/olamy;>@olamy ... (truncated) Commits https://github.com/apache/maven-compiler-plugin/commit/4e08e2b9518fbbda7252236315b2ce03edcef505;>4e08e2b [maven-release-plugin] prepare release maven-compiler-plugin-3.10.1 https://github.com/apache/maven-compiler-plugin/commit/6795b0f508343dbc64dba384b85af2f1f3684b7a;>6795b0f [MCOMPILER-426] add flag to enable-preview java compiler feature (https://github-redirect.dependabot.com/apache/maven-compiler-plugin/issues/98;>#98) https://github.com/apache/maven-compiler-plugin/commit/1de8c91fba76fc345dca64cea300839bef436cba;>1de8c91 MCOMPILER 346 workaround to jdk bug: assertion error from javaxcompiler javax... https://github.com/apache/maven-compiler-plugin/commit/96ed94f5bcc0de6b6bd36816ce5caf3100dcd840;>96ed94f use shared release drafter