[GitHub] [juddi] spyhunter99 merged pull request #22: Bump mysql-connector-java from 6.0.5 to 8.0.16
spyhunter99 merged PR #22: URL: https://github.com/apache/juddi/pull/22 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Created] (JUDDI-1022) Address codeql warnings
Alex O'Ree created JUDDI-1022: - Summary: Address codeql warnings Key: JUDDI-1022 URL: https://issues.apache.org/jira/browse/JUDDI-1022 Project: jUDDI Issue Type: Improvement Reporter: Alex O'Ree i finally got codeql up and running at github. it found a few things that should be addressed. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Work stopped] (JUDDI-651) Create unit tests for juddi-gui functions
[ https://issues.apache.org/jira/browse/JUDDI-651?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Work on JUDDI-651 stopped by Alex O'Ree. > Create unit tests for juddi-gui functions > - > > Key: JUDDI-651 > URL: https://issues.apache.org/jira/browse/JUDDI-651 > Project: jUDDI > Issue Type: Improvement > Components: juddi-gui >Reporter: Alex O'Ree >Assignee: Alex O'Ree >Priority: Major > Fix For: FUTURE > > -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Resolved] (JUDDI-1005) Need To have correct options to upgrade JUDDI DB Schema
[ https://issues.apache.org/jira/browse/JUDDI-1005?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Alex O'Ree resolved JUDDI-1005. --- Resolution: Fixed > Need To have correct options to upgrade JUDDI DB Schema > --- > > Key: JUDDI-1005 > URL: https://issues.apache.org/jira/browse/JUDDI-1005 > Project: jUDDI > Issue Type: Bug > Components: juddi-tomcat >Affects Versions: 3.3.6, 3.3.7 >Reporter: Amol Bhonsle >Priority: Major > Fix For: 3.3.7 > > Attachments: > uddi-migration-tool-3.3.8-SNAPSHOT-jar-with-dependencies.jar > > > We are trying to update JUDDI DB from JUDDI-3.0.4 to JUDDI-3.3.7. JUDDI DB is > hosted on SQL Server. We use openjpa-2.3.0 which is provided by juddi-3.3.7 > distribution. > > As per openjpa-2.3.0 documentation: > {{drop option of SchemaTool should do following:}} > {{drop}}: Drop all schema components in the schema XML. Tables will only be > dropped if they would have 0 columns after dropping all columns listed in the > XML. > and add option should do following: > {{add}}: This is the default action if you do not specify one. It brings the > schema up-to-date with the given XML document by adding tables, columns, > indexes, etc. This action never drops any schema components. > Also it is allowed in persistence.xml to use options as comma separated, so > we tried following option in persistence.xml to drop old tables and create > new tables as per juddi-3.3.7 schema but it did not work: > value="buildSchema(SchemaAction='drop,add')"/> > > This gives following Exception when JUDDI is deployed by tomcat : > > {code:java} > SEVERE: Exception sending context initialized event to listener instance of > class org.springframework.web.context.ContextLoaderListenerSEVERE: Exception > sending context initialized event to listener instance of class > org.springframework.web.context.ContextLoaderListenerorg.springframework.beans.factory.BeanCreationException: > Error creating bean with name 'inquiry': Cannot create inner bean '(inner > bean)#fa6535a' of type [org.apache.juddi.api.impl.UDDIInquiryImpl] while > setting constructor argument; nested exception is > org.springframework.beans.factory.BeanCreationException: Error creating bean > with name '(inner bean)#fa6535a': Instantiation of bean failed; nested > exception is org.springframework.beans.BeanInstantiationException: Failed to > instantiate [org.apache.juddi.api.impl.UDDIInquiryImpl]: Constructor threw > exception; nested exception is general error> org.apache.openjpa.persistence.PersistenceException: The > object 'PK__j3_clerk__5609ADDDCF01D08E' is dependent on column 'clerk_name'. > \{stmnt 1807668378 ALTER TABLE j3_clerk DROP COLUMN clerk_name} [code=5074, > state=S0001] at > org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveInnerBean(BeanDefinitionValueResolver.java:389) > at > org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:134) > at > org.springframework.beans.factory.support.ConstructorResolver.resolveConstructorArguments(ConstructorResolver.java:691) > at > org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:196) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.autowireConstructor(AbstractAutowireCapableBeanFactory.java:1358) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:1204) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:557) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:517) > at > org.springframework.beans.factory.support.AbstractBeanFactory.lambda$doGetBean$0(AbstractBeanFactory.java:323) > at > org.springframework.beans.factory.support.AbstractBeanFactory$$Lambda$208/1654431226.getObject(Unknown > Source) at > org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222) > at > org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:321) > at > org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:202) > at > org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:879) > at > org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:878) > at > org.springframework.context.support.AbstractApplicationContex
[jira] [Updated] (JUDDI-1005) Need To have correct options to upgrade JUDDI DB Schema
[ https://issues.apache.org/jira/browse/JUDDI-1005?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Alex O'Ree updated JUDDI-1005: -- Fix Version/s: 3.3.7 > Need To have correct options to upgrade JUDDI DB Schema > --- > > Key: JUDDI-1005 > URL: https://issues.apache.org/jira/browse/JUDDI-1005 > Project: jUDDI > Issue Type: Bug > Components: juddi-tomcat >Affects Versions: 3.3.6, 3.3.7 >Reporter: Amol Bhonsle >Priority: Major > Fix For: 3.3.7 > > Attachments: > uddi-migration-tool-3.3.8-SNAPSHOT-jar-with-dependencies.jar > > > We are trying to update JUDDI DB from JUDDI-3.0.4 to JUDDI-3.3.7. JUDDI DB is > hosted on SQL Server. We use openjpa-2.3.0 which is provided by juddi-3.3.7 > distribution. > > As per openjpa-2.3.0 documentation: > {{drop option of SchemaTool should do following:}} > {{drop}}: Drop all schema components in the schema XML. Tables will only be > dropped if they would have 0 columns after dropping all columns listed in the > XML. > and add option should do following: > {{add}}: This is the default action if you do not specify one. It brings the > schema up-to-date with the given XML document by adding tables, columns, > indexes, etc. This action never drops any schema components. > Also it is allowed in persistence.xml to use options as comma separated, so > we tried following option in persistence.xml to drop old tables and create > new tables as per juddi-3.3.7 schema but it did not work: > value="buildSchema(SchemaAction='drop,add')"/> > > This gives following Exception when JUDDI is deployed by tomcat : > > {code:java} > SEVERE: Exception sending context initialized event to listener instance of > class org.springframework.web.context.ContextLoaderListenerSEVERE: Exception > sending context initialized event to listener instance of class > org.springframework.web.context.ContextLoaderListenerorg.springframework.beans.factory.BeanCreationException: > Error creating bean with name 'inquiry': Cannot create inner bean '(inner > bean)#fa6535a' of type [org.apache.juddi.api.impl.UDDIInquiryImpl] while > setting constructor argument; nested exception is > org.springframework.beans.factory.BeanCreationException: Error creating bean > with name '(inner bean)#fa6535a': Instantiation of bean failed; nested > exception is org.springframework.beans.BeanInstantiationException: Failed to > instantiate [org.apache.juddi.api.impl.UDDIInquiryImpl]: Constructor threw > exception; nested exception is general error> org.apache.openjpa.persistence.PersistenceException: The > object 'PK__j3_clerk__5609ADDDCF01D08E' is dependent on column 'clerk_name'. > \{stmnt 1807668378 ALTER TABLE j3_clerk DROP COLUMN clerk_name} [code=5074, > state=S0001] at > org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveInnerBean(BeanDefinitionValueResolver.java:389) > at > org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:134) > at > org.springframework.beans.factory.support.ConstructorResolver.resolveConstructorArguments(ConstructorResolver.java:691) > at > org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:196) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.autowireConstructor(AbstractAutowireCapableBeanFactory.java:1358) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:1204) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:557) > at > org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:517) > at > org.springframework.beans.factory.support.AbstractBeanFactory.lambda$doGetBean$0(AbstractBeanFactory.java:323) > at > org.springframework.beans.factory.support.AbstractBeanFactory$$Lambda$208/1654431226.getObject(Unknown > Source) at > org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222) > at > org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:321) > at > org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:202) > at > org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:879) > at > org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:878) > at > org.springframework.context.support.AbstractApplicationConte
[GitHub] [juddi] spyhunter99 merged pull request #17: Bump postgresql from 9.4.1212 to 42.3.3
spyhunter99 merged PR #17: URL: https://github.com/apache/juddi/pull/17 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [juddi] spyhunter99 merged pull request #15: Bump httpclient from 4.5.2 to 4.5.13
spyhunter99 merged PR #15: URL: https://github.com/apache/juddi/pull/15 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [juddi] spyhunter99 merged pull request #9: Bump maven-compiler-plugin from 3.1 to 3.10.1
spyhunter99 merged PR #9: URL: https://github.com/apache/juddi/pull/9 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [juddi] spyhunter99 merged pull request #13: Bump maven-javadoc-plugin from 3.3.0 to 3.3.2
spyhunter99 merged PR #13: URL: https://github.com/apache/juddi/pull/13 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [juddi] spyhunter99 merged pull request #16: Bump junit from 4.12 to 4.13.1
spyhunter99 merged PR #16: URL: https://github.com/apache/juddi/pull/16 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (JUDDI-1021) Remove the digital signature applet
[ https://issues.apache.org/jira/browse/JUDDI-1021?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17523429#comment-17523429 ] ASF subversion and git services commented on JUDDI-1021: Commit 36c51732ff7162b47f426a7e5e084bc76047e8a0 in juddi's branch refs/heads/master from Alex O'Ree [ https://gitbox.apache.org/repos/asf?p=juddi.git;h=36c51732f ] JUDDI-1021 remove the digital signature applet > Remove the digital signature applet > --- > > Key: JUDDI-1021 > URL: https://issues.apache.org/jira/browse/JUDDI-1021 > Project: jUDDI > Issue Type: Improvement >Reporter: Alex O'Ree >Assignee: Alex O'Ree >Priority: Major > > looks like this was removed in jdk8 at some point (it is no longer available > in 1.8.302 on ubuntu, plugin.jar is missing entirely even with icedtea > installed). It's currently deprecated and marked for removal in jdk17. See > also JUDDI-990 -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Resolved] (JUDDI-1021) Remove the digital signature applet
[ https://issues.apache.org/jira/browse/JUDDI-1021?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Alex O'Ree resolved JUDDI-1021. --- Resolution: Fixed > Remove the digital signature applet > --- > > Key: JUDDI-1021 > URL: https://issues.apache.org/jira/browse/JUDDI-1021 > Project: jUDDI > Issue Type: Improvement >Reporter: Alex O'Ree >Assignee: Alex O'Ree >Priority: Major > > looks like this was removed in jdk8 at some point (it is no longer available > in 1.8.302 on ubuntu, plugin.jar is missing entirely even with icedtea > installed). It's currently deprecated and marked for removal in jdk17. See > also JUDDI-990 -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Work started] (JUDDI-1021) Remove the digital signature applet
[ https://issues.apache.org/jira/browse/JUDDI-1021?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Work on JUDDI-1021 started by Alex O'Ree. - > Remove the digital signature applet > --- > > Key: JUDDI-1021 > URL: https://issues.apache.org/jira/browse/JUDDI-1021 > Project: jUDDI > Issue Type: Improvement >Reporter: Alex O'Ree >Assignee: Alex O'Ree >Priority: Major > > looks like this was removed in jdk8 at some point (it is no longer available > in 1.8.302 on ubuntu, plugin.jar is missing entirely even with icedtea > installed). It's currently deprecated and marked for removal in jdk17. See > also JUDDI-990 -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Assigned] (JUDDI-1021) Remove the digital signature applet
[ https://issues.apache.org/jira/browse/JUDDI-1021?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Alex O'Ree reassigned JUDDI-1021: - Assignee: Alex O'Ree > Remove the digital signature applet > --- > > Key: JUDDI-1021 > URL: https://issues.apache.org/jira/browse/JUDDI-1021 > Project: jUDDI > Issue Type: Improvement >Reporter: Alex O'Ree >Assignee: Alex O'Ree >Priority: Major > > looks like this was removed in jdk8 at some point (it is no longer available > in 1.8.302 on ubuntu, plugin.jar is missing entirely even with icedtea > installed). It's currently deprecated and marked for removal in jdk17. See > also JUDDI-990 -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Created] (JUDDI-1021) Remove the digital signature applet
Alex O'Ree created JUDDI-1021: - Summary: Remove the digital signature applet Key: JUDDI-1021 URL: https://issues.apache.org/jira/browse/JUDDI-1021 Project: jUDDI Issue Type: Improvement Reporter: Alex O'Ree looks like this was removed in jdk8 at some point (it is no longer available in 1.8.302 on ubuntu, plugin.jar is missing entirely even with icedtea installed). It's currently deprecated and marked for removal in jdk17. See also JUDDI-990 -- This message was sent by Atlassian Jira (v8.20.1#820001)
[GitHub] [juddi] dependabot[bot] opened a new pull request, #22: Bump mysql-connector-java from 6.0.5 to 8.0.16
dependabot[bot] opened a new pull request, #22: URL: https://github.com/apache/juddi/pull/22 Bumps [mysql-connector-java](https://github.com/mysql/mysql-connector-j) from 6.0.5 to 8.0.16. Changelog Sourced from https://github.com/mysql/mysql-connector-j/blob/release/8.0/CHANGES";>mysql-connector-java's changelog. Changelog https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/";>https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/ Version 8.0.28 Fix for Bug#99260 (31189960), statement.setQueryTimeout,creates a database connection and does not close. Fix for Bug#103324 (32770013), X DevAPI Collection.replaceOne() missing matching _id check. Fix for Bug#105197 (33461744), Statement.executeQuery() may return non-navigable ResultSet. Fix for Bug#105323 (33507321), README.md contains broken links. Fix for Bug#96900 (30355150), STATEMENT.CANCEL()CREATE A DATABASE CONNECTION BUT DOES NOT CLOSE THE CONNECTION. Fix for Bug#104067 (33054827), No reset autoCommit after unknown issue occurs. Thanks to Tingyu Wei for his contribution. Fix for Bug#85223 (25656020), MYSQLSQLXML SETSTRING CRASH. Fix for Bug#84365 (33425867), INSERT..VALUE with VALUES function lead to a StringIndexOutOfBoundsException. Fix for Bug#105211 (33468860), class java.time.LocalDate cannot be cast to class java.sql.Date. Fix for Bug#101389 (32089018), GETWARNINGS SHOULD CHECK WARNING COUNT BEFORE SENDING SHOW. Fix for Bug#33488091, Remove all references to xdevapi.useAsyncProtocol from properties and code. WL#14805, Remove support for TLS 1.0 and 1.1. WL#14650, Support for MFA (multi factor authentication) authentication. Version 8.0.27 Fix for Bug#103612 (32902019), Incorrectly identified WITH...SELECT as unsafe for read-only connections. Fix for Bug#71929 (18346501), Prefixing query with double comments cancels query DML validation. Fix for Bug#23204652, CURSOR POSITIONING API'S DOESNOT CHECK THE VALIDITY OF RESULTSET. Fix for Bug#28725534, MULTI HOST CONNECTION WOULD BLOCK IN CONNECTION POOLING. Fix for Bug#95139 (29807572), CACHESERVERCONFIGURATION APPEARS TO THWART CHARSET DETECTION. Fix for Bug#104641 (33237255), DatabaseMetaData.getImportedKeys can return duplicated foreign keys. Fix for Bug#33185116, Have method ResultSet.getBoolean() supporting conversion of 'T' and 'F' in a VARCHAR to True/False (boolean). Fix for Bug#31117686, PROTOCOL ALLOWLIST NOT COMPATIBLE WITH IBM JAVA. ... (truncated) Commits https://github.com/mysql/mysql-connector-j/commit/34cbc6bc61f72836e26327537a432d6db7c77de6";>34cbc6b License book updated. https://github.com/mysql/mysql-connector-j/commit/793bd554e7e815607a1f325ef998efa8d4a4bef7";>793bd55 Minor fix for tests failing with URL without parameters. https://github.com/mysql/mysql-connector-j/commit/58600ccd78f6eeec3a15888f943a0475cd1d470f";>58600cc WL#12825, Remove third-party libraries from sources and bundles. https://github.com/mysql/mysql-connector-j/commit/5aa15d557811bbdf0f23b150f361bb42fb7591cb";>5aa15d5 Fix for Bug#93590 (29054329), javax.net.ssl.SSLException: closing inbound bef... https://github.com/mysql/mysql-connector-j/commit/1fecc2ba0dd7e9275fc1961ba8900e9d312bd351";>1fecc2b Fix for Bug#94414 (29384853), Connector/J RPM package have version number in ... https://github.com/mysql/mysql-connector-j/commit/f5d24e32b05337320624788ccb99830171026483";>f5d24e3 Fix for Bug#27786499, REDUNDANT FILES IN DEBIAN PACKAGE FOR DEBIAN9(COMMUNITY... https://github.com/mysql/mysql-connector-j/commit/c49db58bbc8b29d0c1cd1bbfeb086b2e3dfa74e6";>c49db58 WL#12246, DevAPI: Prepared statement support. https://github.com/mysql/mysql-connector-j/commit/a5c3d29931a43429df84564d9e0c578468711a0d";>a5c3d29 Added definition file for msi building tools. https://github.com/mysql/mysql-connector-j/commit/13045c22524afd757de1f1d56339211801aec99e";>13045c2 WL#10839, Adjust c/J tests to the new "ON" default for https://github.com/mysql/mysql-connector-j/commit/2e350a5d66cda9317aa308954bafaf952e8054cb";>2e350a5 Fix for Bug#29329326, PLEASE AVOID SHOW PROCESSLIST IF POSSIBLE. Additional commits viewable in https://github.com/mysql/mysql-connector-j/compare/6.0.5...8.0.16";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mysql:mysql-connector-java&package-manager=maven&previous-version=6.0.5&new-version=8.0.16)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a reba
[jira] [Created] (JUDDI-1020) Use an alternate documentation mechanism than the jboss docbook plugin
Alex O'Ree created JUDDI-1020: - Summary: Use an alternate documentation mechanism than the jboss docbook plugin Key: JUDDI-1020 URL: https://issues.apache.org/jira/browse/JUDDI-1020 Project: jUDDI Issue Type: Improvement Components: build Reporter: Alex O'Ree long story short, maven frequently has issues resolving either xlts or the docbook plugins. I think it's an issue on the jboss maven repo either blocking too many concurrent requests or some kind of quote or bandwidth cap, etc. Maybe we can use the maven site plugin + pdf plugins to get a near equivalent setup or maybe there are some other alternatives out there -- This message was sent by Atlassian Jira (v8.20.1#820001)
[GitHub] [juddi] dependabot[bot] opened a new pull request, #21: Bump hibernate-core from 5.4.18.Final to 5.4.24.Final
dependabot[bot] opened a new pull request, #21: URL: https://github.com/apache/juddi/pull/21 Bumps [hibernate-core](https://github.com/hibernate/hibernate-orm) from 5.4.18.Final to 5.4.24.Final. Changelog Sourced from https://github.com/hibernate/hibernate-orm/blob/5.4.24/changelog.txt";>hibernate-core's changelog. Changes in 5.4.24.Final (November 17, 2020) https://hibernate.atlassian.net/projects/HHH/versions/31892";>https://hibernate.atlassian.net/projects/HHH/versions/31892 ** Bug * [HHH-14333] - Pessimistic Lock causes FOR UPDATE on outer join statements * [HHH-14329] - DirtinessTracker usage for enhanced entities doesn't respect mutable types * [HHH-14322] - HBM many-to-one property-ref broken since 5.3.2 due to HHH-12684 * [HHH-14317] - Avoid closing datasource in AgroalConnectionProvider if datasource is not initialized * [HHH-14316] - Avoid accessing state in DriverManagerConnectionProviderImpl if null * [HHH-14312] - Padded batch style entity loader ignores entity graph * [HHH-14310] - Document hibernate.query.in_clause_parameter_padding * [HHH-14288] - Complex batch insert query stopped to work * [HHH-14279] - Broken 'with key(...)' operator on entity-key maps * [HHH-14276] - Nested ID class using derived identifiers fails with strange AnnotationException: unable to find column reference in the https://github.com/MapsId";>@MapsId mapping: game_id * [HHH-14257] - An Entity A with a map collection having as index an Embeddable with a an association to the Entity A fails with a NPE * [HHH-13310] - getParameterValue() not working for collections ** Improvement * [HHH-14332] - Make it easier for Quarkus SPI to avoid loading XML * [HHH-14325] - Add Query hint for specifying "query spaces" for native queries * [HHH-14158] - Upgrade Javassist to the latest version ** Task * [HHH-14324] - Add .gradletasknamecache to .gitignore * [HHH-14309] - Improve BulkOperationCleanupAction#affectedEntity * [HHH-14225] - CVE-2020-25638 Potential for SQL injection on use_sql_comments logging enabled Changes in 5.4.23.Final (November 01, 2020) https://hibernate.atlassian.net/projects/HHH/versions/31887";>https://hibernate.atlassian.net/projects/HHH/versions/31887 ** Bug * [HHH-14279] - Broken 'with key(...)' operator on entity-key maps * [HHH-14275] - Broken link to Infinispan User Guide in Hibernate 5.3 User Guide * [HHH-14260] - Dead links in user guide * [HHH-14259] - HHH-13980 is not merged into 5.4 * [HHH-14249] - MultiLineImport fails when script contains blank spaces or tabs at the end of the last sql statement * [HHH-14247] - Automatic release scripts, wrong Jira release url * [HHH-14227] - Insert statements are not ordered with entities that use inheritance and reference a subclass ** Improvement * [HHH-14305] - Analyse retained heap after bootstrap to trim memory consumption * [HHH-14304] - Replacing eager initialization of LockingStrategy within AbstractEntityPersister * [HHH-14303] - Upgrade to JBoss Loging 3.4.1.Final * [HHH-14302] - Upgrade to Agroal 1.9 * [HHH-14301] - Upgrade to Byte Buddy 1.10.17 ... (truncated) Commits https://github.com/hibernate/hibernate-orm/commit/0b5d3a2acc9e0fa0a83fa69a1a0146b5a6eda61b";>0b5d3a2 5.4.24.Final https://github.com/hibernate/hibernate-orm/commit/33123d267f64298f3f40e7c3671f7f15849831a9";>33123d2 HHH-14333 Pessimistic Lock causes FOR UPDATE on outer join statements https://github.com/hibernate/hibernate-orm/commit/84e37c15eb757d8a58ee67822259d84931ae6e80";>84e37c1 HHH-14332 Make it easier for Quarkus SPI to avoid loading XML related resources https://github.com/hibernate/hibernate-orm/commit/da8706e5eb75582b0d917ca648ae04e418412c48";>da8706e HHH-14329 Amend existing DirtyTrackingTest https://github.com/hibernate/hibernate-orm/commit/2669848ca448ee14660350d707f60b23fd46eea6";>2669848 HHH-14329 consider mutable types always as potentially dirty when using Dirti... https://github.com/hibernate/hibernate-orm/commit/5ea0d92c370c5069050dcfc51b5157bdc35f7a69";>5ea0d92 HHH-14329 test case showing that DirtinessTracker usage for enhanced entities... https://github.com/hibernate/hibernate-orm/commit/c444d5f9e509ac58fa602c0a2993e69f181c7d2f";>c444d5f HHH-14325 - Add Query hint for specifying "query spaces" for native queries https://github.com/hibernate/hibernate-orm/commit/49ae7bdff073c7078fea72e5650bddaa96be988a";>49ae7bd HHH-14325 - Add Query hint for specifying "query spaces" for native queries https://github.com/hibernate/hibernate-orm/commit/fe2230f813983554b404f1ec0548d4a28edfc210";>fe2230f HHH-14276 Amend style and formatting https://github.com/hibernate/hibernate-orm/commit/a8fdb4d2d568e450ab665828ade05014862de3b2";>a8fdb4d HHH-14276 Avoid quoting column name for looking up references during composit... Additional commits viewable in https://git
[GitHub] [juddi] dependabot[bot] opened a new pull request, #20: Bump hibernate-core from 4.3.6.Final to 5.4.24.Final in /juddi-rest-cxf
dependabot[bot] opened a new pull request, #20: URL: https://github.com/apache/juddi/pull/20 Bumps [hibernate-core](https://github.com/hibernate/hibernate-orm) from 4.3.6.Final to 5.4.24.Final. Release notes Sourced from https://github.com/hibernate/hibernate-orm/releases";>hibernate-core's releases. Hibernate ORM 5.2.0 5.2.0 includes many improvements and bug-fixes. For a complete list of changes, see https://hibernate.atlassian.net/projects/HHH/versions/23150/tab/release-report-done";>https://hibernate.atlassian.net/projects/HHH/versions/23150/tab/release-report-done. Many of the changes in 5.2.0 have important ramifications in terms of both usage and extension. Be sure to read the 5.2 Migration Guide for details. Below is a discussion of the major changes. Java 8 baseline 5.2 moves to Java 8 as its baseline. This means: The hibernate-java8 module has been removed, and that functionality has been moved into hibernate-core. Native support for Java 8 date/time types as Query parameters. Support for streaming (java.util.stream.Stream) query results. Support for java.util.Optional as return from methods that may return null. Leveraging Java 8 "default methods" when introducing new methods to extension points. Consolidating JPA support into hibernate-core. That effectively means that the hibernate-entitymanager module no longer exists. Its functionality being consumed into hibernate-core. JCache support Support for using any JCache-compliant cache impl as a second-level caching provider. Session-level batch size support Support has been added for specifying a batch size for write operations per Session. 5th bug-fix release for 5.0 The 5th bug-fix release for Hibernate ORM 5.0. This release and the upcoming 5.0.6 release have been done on an accelerated time-box of 2 weeks (from the normal 4 weeks for bug-fix releases) due to US holidays. The complete list of changes can be found http://hibernate.atlassian.net/projects/HHH/versions/21750";>here (or https://hibernate.atlassian.net/secure/ReleaseNote.jspa?projectId=10031&version=21850";>here for people without a Hibernate Jira account). For information on consuming the release via your favorite dependency-management-capable build tool, see http://hibernate.org/orm/downloads/";>http://hibernate.org/orm/downloads/ For those of you allergic to dependency-management-capable build tools, the release bundles can be obtained from http://sourceforge.net/projects/hibernate/files/hibernate-orm/5.0.5.Final/";>SourceForge or http://bintray.com/hibernate/bundles/hibernate-orm/5.0.5.Final";>BinTray. Fourth bug-fix release for 5.0 The fourth bug-fix release for Hibernate ORM 5.0 There are 52 issues resolved in this release. 20 of those came out of the recent http://in.relation.to/2015/10/27/great-jira-cleanup-2015/";>Jira cleanup. Initially that initiative pulled in roughly 750 issues. To date, 66 of those have been resolved - fixed or verified as out-of-date, unable-to-reproduce, etc. An additional 14 have been more properly reclassified as feature or enhancement requests rather than bugs. The really cool part is the amount of community help we have gotten in making that happen! Thanks to everyone responding, verifying and even fixing alot of these bugs! The complete list of changes can be found http://hibernate.atlassian.net/projects/HHH/versions/21750";>here. People without a Hibernate Jira account will not be able to access the previous link and can access the changelog in GitHub; the issue I reported with Atlassian has been resolved and is ready for deployment into our hosted environment, I just do not know when that will happen. For information on consuming the release via your favorite dependency-management-capable build tool, see http://hibernate.org/orm/downloads/";>http://hibernate.org/orm/downloads/ For those of you allergic to dependency-management-capable build tools, the release bundles can be obtained from http://sourceforge.net/projects/hibernate/files/hibernate-orm/5.0.4.Final/";>SourceForge or http://bintray.com/hibernate/bundles/hibernate-orm/5.0.4.Final";>BinTray. Third bug-fix release for 5.0 http://in.relation.to/2015/10/28/hibernate-orm-503-final-release/";>http://in.relation.to/2015/10/28/hibernate-orm-503-final-release/ ... (truncated) Changelog Sourced from https://github.com/hibernate/hibernate-orm/blob/5.4.24/changelog.txt";>hibernate-core's changelog. Changes in 5.4.24.Final (November 17, 2020) https://hibernate.atlassian.net/projects/HHH/versions/31892";>https://hibernate.atlassian.net/projects/HHH/versions/31892 ** Bug * [HHH-14333] - Pessimistic Lock causes FOR UPDATE on outer join statements * [HHH-14329] - DirtinessTracker usage for enhanced entities doesn't respect mutable types * [HHH-14322] - HBM many-to-one property-ref broken since 5.3.
[GitHub] [juddi] dependabot[bot] opened a new pull request, #19: Bump xmlbeans from 2.4.0 to 3.0.0 in /juddiv3-war-repl
dependabot[bot] opened a new pull request, #19: URL: https://github.com/apache/juddi/pull/19 Bumps xmlbeans from 2.4.0 to 3.0.0. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.xmlbeans:xmlbeans&package-manager=maven&previous-version=2.4.0&new-version=3.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/juddi/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [juddi] dependabot[bot] opened a new pull request, #18: Bump xmlbeans from 2.4.0 to 3.0.0
dependabot[bot] opened a new pull request, #18: URL: https://github.com/apache/juddi/pull/18 Bumps xmlbeans from 2.4.0 to 3.0.0. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.xmlbeans:xmlbeans&package-manager=maven&previous-version=2.4.0&new-version=3.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/juddi/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (JUDDI-990) Find a better solution for in browser digital signatures than a java applet
[ https://issues.apache.org/jira/browse/JUDDI-990?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17523353#comment-17523353 ] Alex O'Ree commented on JUDDI-990: -- [https://github.com/PeculiarVentures/xadesjs] this seems like a potential solution > Find a better solution for in browser digital signatures than a java applet > --- > > Key: JUDDI-990 > URL: https://issues.apache.org/jira/browse/JUDDI-990 > Project: jUDDI > Issue Type: Improvement > Components: juddi-gui >Reporter: Alex O'Ree >Assignee: Alex O'Ree >Priority: Major > > this might work... > https://github.com/PeculiarVentures/xadesjs -- This message was sent by Atlassian Jira (v8.20.1#820001)
[GitHub] [juddi] dependabot[bot] opened a new pull request, #17: Bump postgresql from 9.4.1212 to 42.3.3
dependabot[bot] opened a new pull request, #17: URL: https://github.com/apache/juddi/pull/17 Bumps [postgresql](https://github.com/pgjdbc/pgjdbc) from 9.4.1212 to 42.3.3. Changelog Sourced from https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md";>postgresql's changelog. [42.3.3] (2022-02-15 11:32:24 -0500) Changed fix: Removed loggerFile and loggerLevel configuration. While the properties still exist. They can no longer be used to configure the driver logging. Instead use java.util.logging configuration mechanisms such as logging.properties. Added Fixed [42.3.2] (2022-02-01 07:35:41 -0500) Security CVE-2022-21724 pgjdbc instantiates plugin instances based on class names provided via authenticationPluginClassName, sslhostnameverifier, socketFactory, sslfactory, sslpasswordcallback connection properties. However, the driver did not verify if the class implements the expected interface before instantiating the class. This would allow a malicious class to be instantiated that could execute arbitrary code from the JVM. Fixed in https://github.com/pgjdbc/pgjdbc/commit/f4d0ed69c0b3aae8531d83d6af4c57f22312c813";>commit Changed perf: read in_hot_standby GUC on connection [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2334";>#2334](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2334";>pgjdbc/pgjdbc#2334) test: materialized view privileges [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2209";>#2209](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2209";>pgjdbc/pgjdbc#2209) fixes [Issue https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2060";>#2060](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2060";>pgjdbc/pgjdbc#2060) docs: add info about convenience maven project [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2407";>#2407](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2407";>pgjdbc/pgjdbc#2407) docs: Document timezone reversal from POSIX to ISO [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2413";>#2413](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2413";>pgjdbc/pgjdbc#2413) fix: we will ask the server if it supports GSS Encryption if gssEncryption is prefer or require [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2396";>#2396](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2396";>pgjdbc/pgjdbc#2396) remove the need to have a ticket in the cache before asking the server if gss encryptions are supported docs: remove Java 6 and 7 references from contributing [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2385";>#2385](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2385";>pgjdbc/pgjdbc#2385) style: remove Java 8 / JDBC 4.2 checks [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2383";>#2383](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2383";>pgjdbc/pgjdbc#2383) Remove all remaining checks whether the source is lower than Java 8 or JDBC 4.2. fix: throw SQLException for #getBoolean BIT(>1) [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2386";>#2386](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2386";>pgjdbc/pgjdbc#2386) Throw SQLException instead of ClassCastException when calling CallableStatement#getBoolean(int) on BIT(>1). style: import java.time types in more classes [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2382";>#2382](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2382";>pgjdbc/pgjdbc#2382) Use imports for java.time types in all remaining classes. style: import java.time types in TimestampUtils [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2380";>#2380](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2380";>pgjdbc/pgjdbc#2380) Use imports for java.time types in TimestampUtils. refactor: Change internal constructors to pass only connection Properties Changes internal constructors for PgConnection and related classes to only accept the connection properties object and remove the user and password arguments. Any locations that required those fields can retrieve them from the properties map. test: Fix DatabaseMetadataTest to perform mview tests only on 9.3+ perf: read in_hot_standby GUC on connection [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2334";>#2334](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2334";>pgjdbc/pgjdbc#2334) doc: improv doc around binary decoding of numeric data https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2331";>#2331 Add cert key type checking to chooseClientAlias [PR https://github-redirect.dependabot.com/pgjdbc/pgjdbc/issues/2417";>#2417](https://github-redirect.dependabot.com/pgjdbc/pgjdbc/pull/2417";>pgjdbc/pgjdbc#2417) Added feat: Add authenticationPluginCla
[GitHub] [juddi] dependabot[bot] opened a new pull request, #16: Bump junit from 4.12 to 4.13.1
dependabot[bot] opened a new pull request, #16: URL: https://github.com/apache/juddi/pull/16 Bumps [junit](https://github.com/junit-team/junit4) from 4.12 to 4.13.1. Release notes Sourced from https://github.com/junit-team/junit4/releases";>junit's releases. JUnit 4.13.1 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.1.md";>release notes for details. JUnit 4.13 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.md";>release notes for details. JUnit 4.13 RC 2 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 RC 1 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 Beta 3 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 Beta 2 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 Beta 1 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. Commits https://github.com/junit-team/junit4/commit/1b683f4ec07bcfa40149f086d32240f805487e66";>1b683f4 [maven-release-plugin] prepare release r4.13.1 https://github.com/junit-team/junit4/commit/ce6ce3aadc070db2902698fe0d3dc6729cd631f2";>ce6ce3a Draft 4.13.1 release notes https://github.com/junit-team/junit4/commit/c29dd8239d6b353e699397eb090a1fd27411fa24";>c29dd82 Change version to 4.13.1-SNAPSHOT https://github.com/junit-team/junit4/commit/1d174861f0b64f97ab0722bb324a760bfb02f567";>1d17486 Add a link to assertThrows in exception testing https://github.com/junit-team/junit4/commit/543905df72ff10364b94dda27552efebf3dd04e9";>543905d Use separate line for annotation in Javadoc https://github.com/junit-team/junit4/commit/510e906b391e7e46a346e1c852416dc7be934944";>510e906 Add sub headlines to class Javadoc https://github.com/junit-team/junit4/commit/610155b8c22138329f0723eec22521627dbc52ae";>610155b Merge pull request from GHSA-269g-pwp5-87pp https://github.com/junit-team/junit4/commit/b6cfd1e3d736cc2106242a8be799615b472c7fec";>b6cfd1e Explicitly wrap float parameter for consistency (https://github-redirect.dependabot.com/junit-team/junit4/issues/1671";>#1671) https://github.com/junit-team/junit4/commit/a5d205c7956dbed302b3bb5ecde5ba4299f0b646";>a5d205c Fix GitHub link in FAQ (https://github-redirect.dependabot.com/junit-team/junit4/issues/1672";>#1672) https://github.com/junit-team/junit4/commit/3a5c6b4d08f408c8ca6a8e0bae71a9bc5a8f97e8";>3a5c6b4 Deprecated since jdk9 replacing constructor instance of Double and Float (https://github-redirect.dependabot.com/junit-team/junit4/issues/1660";>#1660) Additional commits viewable in https://github.com/junit-team/junit4/compare/r4.12...r4.13.1";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=junit:junit&package-manager=maven&previous-version=4.12&new-version=4.13.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/
[GitHub] [juddi] dependabot[bot] opened a new pull request, #15: Bump httpclient from 4.5.2 to 4.5.13
dependabot[bot] opened a new pull request, #15: URL: https://github.com/apache/juddi/pull/15 Bumps httpclient from 4.5.2 to 4.5.13. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.httpcomponents:httpclient&package-manager=maven&previous-version=4.5.2&new-version=4.5.13)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/juddi/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@juddi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org