[jira] [Created] (MYFACES-4641) MyFaces bundle MANIFEST file contains "jakarta.servlet.*;version="[3,5)" imports
Maxime Leur created MYFACES-4641: Summary: MyFaces bundle MANIFEST file contains "jakarta.servlet.*;version="[3,5)" imports Key: MYFACES-4641 URL: https://issues.apache.org/jira/browse/MYFACES-4641 Project: MyFaces Core Issue Type: Bug Affects Versions: 3.0.2 Reporter: Maxime Leur Hi, In MyFaces web site, version "3.0.x" is supposed to be compatible with: * Java 1.8 * Servlet 5.0 * EL 4.0 * CDI 3.0 (optional) * JSTL 2.0 (optional) * BV 2.0 (optional) But I see that in "MyFaces bundle" the MANIFEST file contains "jakarta.servlet.*;version="[3,5)" imports: {noformat} jakarta.servlet.annotation;version="[3,5)";resolution:=optional jakarta.servlet.http;version="[3,5)" jakarta.servlet.jsp.jstl.core;version="[1.1.2,2.0.0)" jakarta.servlet.jsp.jstl.sql jakarta.servlet.jsp.tagext;version="[2.1.0,3.1)" jakarta.servlet.jsp;version="[2.1.0,3.1)" jakarta.servlet;version="[3,5)" {noformat} So it seems not compatible on OSGI environment with "Servlet 5.0". Regards, Maxime -- This message was sent by Atlassian Jira (v8.20.10#820010)
[PR] fix(command): stop event propagation [myfaces-tobago]
henningn opened a new pull request, #4527: URL: https://github.com/apache/myfaces-tobago/pull/4527 (no comment) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Resolved] (TOBAGO-2263) Click on a button inside a sheet should not select row
[ https://issues.apache.org/jira/browse/TOBAGO-2263?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Henning Nöth resolved TOBAGO-2263. -- Resolution: Fixed > Click on a button inside a sheet should not select row > -- > > Key: TOBAGO-2263 > URL: https://issues.apache.org/jira/browse/TOBAGO-2263 > Project: MyFaces Tobago > Issue Type: Bug > Components: JavaScript >Affects Versions: 5.8.0, 6.0.0 >Reporter: Bernd Bohmann >Assignee: Henning Nöth >Priority: Major > Fix For: 5.9.0, 6.1.0 > > > Using a button inside a sheet is causing a selection change. The click event > is captured by the button clicl handler and the row sheet selection handler. > Ajax and non ajax calls should call _stopPropagation()_ on the event. > -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (MYFACES-4606) Missing source button id:value pair from request parameters in ajax requests
[ https://issues.apache.org/jira/browse/MYFACES-4606?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17788716#comment-17788716 ] Thomas Andraschko commented on MYFACES-4606: we are done with this now? > Missing source button id:value pair from request parameters in ajax requests > > > Key: MYFACES-4606 > URL: https://issues.apache.org/jira/browse/MYFACES-4606 > Project: MyFaces Core > Issue Type: Improvement >Affects Versions: 2.0.24, 2.2.15, 2.3.10, 3.0.2, 2.3-next-M8, 4.0.1 >Reporter: Volodymyr Siedlecki >Assignee: Werner Punz >Priority: Major > Fix For: 2.3.11, 3.0.3, 2.2.16, 4.0.2 > > > When the non-ajax submit button is pressed, its id and value is sent as a > request parameter. If the ajax equivalent button is pressed, the id-value > pair is missing. However, the id is included under the "javax.faces.source" > attribute, per the spec. > This becomes a problem if you do some param checks (via binding attr.) to see > if a particular button is pressed. See more info about this here: > [https://stackoverflow.com/a/14730658/11402059] > Here's a sample of the behaviors for ajax and non ajax submissions. The > required parts are in red (which should appear in both requests): > {code:java} > > Ajax Checkboxes: > > > > > Message for ajaxCheckbox -> > > Non-Ajax Checkboxes: > > > > > Message for nonajaxCheckbox -> : > > > > > > binding="#{nonajaxbtn}"/> > > value="#{entry.key}" /> : > > > {code} > > It used to work in 2.0, but now fails after refactoring. Haven't tested on > 4.0, but I think it's also affected. > 2.3.x: > [https://github.com/apache/myfaces/blob/2.3.x/api/src/main/javascript/META-INF/resources/myfaces/_impl/xhrCore/_AjaxUtils.js#L38-L63] > > > 2.0.5: > [https://github.com/apache/myfaces/blob/myfaces-core-project-2.0.5/api/src/main/javascript/META-INF/resources/myfaces/_impl/xhrCore/_AjaxUtils.js#L57] > -- This message was sent by Atlassian Jira (v8.20.10#820010)
Re: [PR] build(deps-dev): bump testcontainers.version from 1.19.2 to 1.19.3 [myfaces-tobago]
henningn merged PR #4523: URL: https://github.com/apache/myfaces-tobago/pull/4523 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] build(deps): bump com.fasterxml.jackson.core:jackson-core from 2.15.3 to 2.16.0 [myfaces-tobago]
henningn merged PR #4516: URL: https://github.com/apache/myfaces-tobago/pull/4516 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.0 [myfaces-tobago]
dependabot[bot] opened a new pull request, #4529: URL: https://github.com/apache/myfaces-tobago/pull/4529 Bumps [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 8.4.3 to 9.0.0. Release notes Sourced from https://github.com/jeremylong/DependencyCheck/releases;>org.owasp:dependency-check-maven's releases. Version 9.0.0 breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Changelog Sourced from https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md;>org.owasp:dependency-check-maven's changelog. https://github.com/jeremylong/DependencyCheck/releases/tag/v9.0.0;>Version 9.0.0 (2023-11-22) breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Commits https://github.com/jeremylong/DependencyCheck/commit/c12375ba837c2284cb75b2b50c37ab63a7d2a466;>c12375b build: prepare release v9.0.0 https://github.com/jeremylong/DependencyCheck/commit/ae975697ec2186eedda09738eb4153fe4f050c55;>ae97569 docs: release 9.0.0 https://github.com/jeremylong/DependencyCheck/commit/e52f8ad759c5867b0e89d3944bfec59e356d3090;>e52f8ad fix: use fake NVD datafeed for testing (https://redirect.github.com/jeremylong/DependencyCheck/issues/6093;>#6093) https://github.com/jeremylong/DependencyCheck/commit/f658d5f3f840124cc1c6744566518835dba9d2b3;>f658d5f fix: remove leading slash from data feed prefix (https://redirect.github.com/jeremylong/DependencyCheck/issues/6096;>#6096) https://github.com/jeremylong/DependencyCheck/commit/fb88573459003cfec3bc766b6fedfc56abfa4f95;>fb88573 fix: correct import (https://redirect.github.com/jeremylong/DependencyCheck/issues/6094;>#6094) https://github.com/jeremylong/DependencyCheck/commit/25f60ec8bd23ae89d0183ee57ba7f8223d4f230a;>25f60ec build(deps): bump jackson.version from 2.15.3 to 2.16.0 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6080;>#6080) https://github.com/jeremylong/DependencyCheck/commit/b30c68a1b102b42f3c037b584d087688a19120db;>b30c68a feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) https://github.com/jeremylong/DependencyCheck/commit/d3a6797c7f558fdabc324f40e5d8c05cb0336094;>d3a6797 feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) https://github.com/jeremylong/DependencyCheck/commit/42ca1e7e8c6543c1822fa299dd627513fec5cd86;>42ca1e7 build(deps): bump com.h2database:h2 from 2.1.214 to 2.2.224 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5940;>#5940) https://github.com/jeremylong/DependencyCheck/commit/d80c3c3646ceeb5c3c3e970d4f41cd75f3b8bbd9;>d80c3c3 fix: dependabot configuration (https://redirect.github.com/jeremylong/DependencyCheck/issues/6089;>#6089) Additional commits viewable in https://github.com/jeremylong/DependencyCheck/compare/v8.4.3...v9.0.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.owasp:dependency-check-maven=maven=8.4.3=9.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate`
[PR] build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.0 [myfaces-tobago]
dependabot[bot] opened a new pull request, #4531: URL: https://github.com/apache/myfaces-tobago/pull/4531 Bumps [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 8.4.3 to 9.0.0. Release notes Sourced from https://github.com/jeremylong/DependencyCheck/releases;>org.owasp:dependency-check-maven's releases. Version 9.0.0 breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Changelog Sourced from https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md;>org.owasp:dependency-check-maven's changelog. https://github.com/jeremylong/DependencyCheck/releases/tag/v9.0.0;>Version 9.0.0 (2023-11-22) breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Commits https://github.com/jeremylong/DependencyCheck/commit/c12375ba837c2284cb75b2b50c37ab63a7d2a466;>c12375b build: prepare release v9.0.0 https://github.com/jeremylong/DependencyCheck/commit/ae975697ec2186eedda09738eb4153fe4f050c55;>ae97569 docs: release 9.0.0 https://github.com/jeremylong/DependencyCheck/commit/e52f8ad759c5867b0e89d3944bfec59e356d3090;>e52f8ad fix: use fake NVD datafeed for testing (https://redirect.github.com/jeremylong/DependencyCheck/issues/6093;>#6093) https://github.com/jeremylong/DependencyCheck/commit/f658d5f3f840124cc1c6744566518835dba9d2b3;>f658d5f fix: remove leading slash from data feed prefix (https://redirect.github.com/jeremylong/DependencyCheck/issues/6096;>#6096) https://github.com/jeremylong/DependencyCheck/commit/fb88573459003cfec3bc766b6fedfc56abfa4f95;>fb88573 fix: correct import (https://redirect.github.com/jeremylong/DependencyCheck/issues/6094;>#6094) https://github.com/jeremylong/DependencyCheck/commit/25f60ec8bd23ae89d0183ee57ba7f8223d4f230a;>25f60ec build(deps): bump jackson.version from 2.15.3 to 2.16.0 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6080;>#6080) https://github.com/jeremylong/DependencyCheck/commit/b30c68a1b102b42f3c037b584d087688a19120db;>b30c68a feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) https://github.com/jeremylong/DependencyCheck/commit/d3a6797c7f558fdabc324f40e5d8c05cb0336094;>d3a6797 feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) https://github.com/jeremylong/DependencyCheck/commit/42ca1e7e8c6543c1822fa299dd627513fec5cd86;>42ca1e7 build(deps): bump com.h2database:h2 from 2.1.214 to 2.2.224 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5940;>#5940) https://github.com/jeremylong/DependencyCheck/commit/d80c3c3646ceeb5c3c3e970d4f41cd75f3b8bbd9;>d80c3c3 fix: dependabot configuration (https://redirect.github.com/jeremylong/DependencyCheck/issues/6089;>#6089) Additional commits viewable in https://github.com/jeremylong/DependencyCheck/compare/v8.4.3...v9.0.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.owasp:dependency-check-maven=maven=8.4.3=9.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate`
[PR] build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.0 [myfaces-tobago]
dependabot[bot] opened a new pull request, #4528: URL: https://github.com/apache/myfaces-tobago/pull/4528 Bumps [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 8.4.3 to 9.0.0. Release notes Sourced from https://github.com/jeremylong/DependencyCheck/releases;>org.owasp:dependency-check-maven's releases. Version 9.0.0 breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Changelog Sourced from https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md;>org.owasp:dependency-check-maven's changelog. https://github.com/jeremylong/DependencyCheck/releases/tag/v9.0.0;>Version 9.0.0 (2023-11-22) breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Commits https://github.com/jeremylong/DependencyCheck/commit/c12375ba837c2284cb75b2b50c37ab63a7d2a466;>c12375b build: prepare release v9.0.0 https://github.com/jeremylong/DependencyCheck/commit/ae975697ec2186eedda09738eb4153fe4f050c55;>ae97569 docs: release 9.0.0 https://github.com/jeremylong/DependencyCheck/commit/e52f8ad759c5867b0e89d3944bfec59e356d3090;>e52f8ad fix: use fake NVD datafeed for testing (https://redirect.github.com/jeremylong/DependencyCheck/issues/6093;>#6093) https://github.com/jeremylong/DependencyCheck/commit/f658d5f3f840124cc1c6744566518835dba9d2b3;>f658d5f fix: remove leading slash from data feed prefix (https://redirect.github.com/jeremylong/DependencyCheck/issues/6096;>#6096) https://github.com/jeremylong/DependencyCheck/commit/fb88573459003cfec3bc766b6fedfc56abfa4f95;>fb88573 fix: correct import (https://redirect.github.com/jeremylong/DependencyCheck/issues/6094;>#6094) https://github.com/jeremylong/DependencyCheck/commit/25f60ec8bd23ae89d0183ee57ba7f8223d4f230a;>25f60ec build(deps): bump jackson.version from 2.15.3 to 2.16.0 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6080;>#6080) https://github.com/jeremylong/DependencyCheck/commit/b30c68a1b102b42f3c037b584d087688a19120db;>b30c68a feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) https://github.com/jeremylong/DependencyCheck/commit/d3a6797c7f558fdabc324f40e5d8c05cb0336094;>d3a6797 feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) https://github.com/jeremylong/DependencyCheck/commit/42ca1e7e8c6543c1822fa299dd627513fec5cd86;>42ca1e7 build(deps): bump com.h2database:h2 from 2.1.214 to 2.2.224 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5940;>#5940) https://github.com/jeremylong/DependencyCheck/commit/d80c3c3646ceeb5c3c3e970d4f41cd75f3b8bbd9;>d80c3c3 fix: dependabot configuration (https://redirect.github.com/jeremylong/DependencyCheck/issues/6089;>#6089) Additional commits viewable in https://github.com/jeremylong/DependencyCheck/compare/v8.4.3...v9.0.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.owasp:dependency-check-maven=maven=8.4.3=9.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate`
[PR] build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.0 [myfaces-tobago]
dependabot[bot] opened a new pull request, #4530: URL: https://github.com/apache/myfaces-tobago/pull/4530 Bumps [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 8.4.3 to 9.0.0. Release notes Sourced from https://github.com/jeremylong/DependencyCheck/releases;>org.owasp:dependency-check-maven's releases. Version 9.0.0 breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Changelog Sourced from https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md;>org.owasp:dependency-check-maven's changelog. https://github.com/jeremylong/DependencyCheck/releases/tag/v9.0.0;>Version 9.0.0 (2023-11-22) breaking changes: See the https://github.com/jeremylong/DependencyCheck#900-upgrade-notice;>upgrade notice feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) fix: Use ASCII apostrophe for console message (https://redirect.github.com/jeremylong/DependencyCheck/issues/6076;>#6076) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/68?closed=1;>changes. Commits https://github.com/jeremylong/DependencyCheck/commit/c12375ba837c2284cb75b2b50c37ab63a7d2a466;>c12375b build: prepare release v9.0.0 https://github.com/jeremylong/DependencyCheck/commit/ae975697ec2186eedda09738eb4153fe4f050c55;>ae97569 docs: release 9.0.0 https://github.com/jeremylong/DependencyCheck/commit/e52f8ad759c5867b0e89d3944bfec59e356d3090;>e52f8ad fix: use fake NVD datafeed for testing (https://redirect.github.com/jeremylong/DependencyCheck/issues/6093;>#6093) https://github.com/jeremylong/DependencyCheck/commit/f658d5f3f840124cc1c6744566518835dba9d2b3;>f658d5f fix: remove leading slash from data feed prefix (https://redirect.github.com/jeremylong/DependencyCheck/issues/6096;>#6096) https://github.com/jeremylong/DependencyCheck/commit/fb88573459003cfec3bc766b6fedfc56abfa4f95;>fb88573 fix: correct import (https://redirect.github.com/jeremylong/DependencyCheck/issues/6094;>#6094) https://github.com/jeremylong/DependencyCheck/commit/25f60ec8bd23ae89d0183ee57ba7f8223d4f230a;>25f60ec build(deps): bump jackson.version from 2.15.3 to 2.16.0 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6080;>#6080) https://github.com/jeremylong/DependencyCheck/commit/b30c68a1b102b42f3c037b584d087688a19120db;>b30c68a feat: Utilize NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/5978;>#5978) https://github.com/jeremylong/DependencyCheck/commit/d3a6797c7f558fdabc324f40e5d8c05cb0336094;>d3a6797 feat: gitlab dependency scanner report format https://redirect.github.com/jeremylong/DependencyCheck/issues/5919;>#5919 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5920;>#5920) https://github.com/jeremylong/DependencyCheck/commit/42ca1e7e8c6543c1822fa299dd627513fec5cd86;>42ca1e7 build(deps): bump com.h2database:h2 from 2.1.214 to 2.2.224 (https://redirect.github.com/jeremylong/DependencyCheck/issues/5940;>#5940) https://github.com/jeremylong/DependencyCheck/commit/d80c3c3646ceeb5c3c3e970d4f41cd75f3b8bbd9;>d80c3c3 fix: dependabot configuration (https://redirect.github.com/jeremylong/DependencyCheck/issues/6089;>#6089) Additional commits viewable in https://github.com/jeremylong/DependencyCheck/compare/v8.4.3...v9.0.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.owasp:dependency-check-maven=maven=8.4.3=9.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate`
Re: [PR] fix(command): stop event propagation [myfaces-tobago]
henningn merged PR #4527: URL: https://github.com/apache/myfaces-tobago/pull/4527 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] fix(command): stop event propagation [myfaces-tobago]
henningn merged PR #4526: URL: https://github.com/apache/myfaces-tobago/pull/4526 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] build(deps): bump org.codehaus.mojo:versions-maven-plugin from 2.16.1 to 2.16.2 [myfaces-tobago]
henningn merged PR #4518: URL: https://github.com/apache/myfaces-tobago/pull/4518 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] build(deps): bump org.codehaus.mojo:exec-maven-plugin from 3.1.0 to 3.1.1 [myfaces-tobago]
henningn merged PR #4519: URL: https://github.com/apache/myfaces-tobago/pull/4519 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] build(deps): bump org.codehaus.mojo:versions-maven-plugin from 2.16.1 to 2.16.2 [myfaces-tobago]
henningn merged PR #4520: URL: https://github.com/apache/myfaces-tobago/pull/4520 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] build(deps): bump org.codehaus.mojo:versions-maven-plugin from 2.16.1 to 2.16.2 [myfaces-tobago]
henningn merged PR #4517: URL: https://github.com/apache/myfaces-tobago/pull/4517 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] build(deps): bump org.codehaus.mojo:exec-maven-plugin from 3.1.0 to 3.1.1 [myfaces-tobago]
henningn merged PR #4521: URL: https://github.com/apache/myfaces-tobago/pull/4521 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] build(deps-dev): bump testcontainers.version from 1.19.2 to 1.19.3 [myfaces-tobago]
henningn merged PR #4524: URL: https://github.com/apache/myfaces-tobago/pull/4524 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] fix(command): stop event propagation [myfaces-tobago]
henningn opened a new pull request, #4526: URL: https://github.com/apache/myfaces-tobago/pull/4526 (no comment) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@myfaces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (MYFACES-4606) Missing source button id:value pair from request parameters in ajax requests
[ https://issues.apache.org/jira/browse/MYFACES-4606?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17788798#comment-17788798 ] Volodymyr Siedlecki commented on MYFACES-4606: -- I believe so. Closing > Missing source button id:value pair from request parameters in ajax requests > > > Key: MYFACES-4606 > URL: https://issues.apache.org/jira/browse/MYFACES-4606 > Project: MyFaces Core > Issue Type: Improvement >Affects Versions: 2.0.24, 2.2.15, 2.3.10, 3.0.2, 2.3-next-M8, 4.0.1 >Reporter: Volodymyr Siedlecki >Assignee: Werner Punz >Priority: Major > Fix For: 2.3.11, 3.0.3, 2.2.16, 4.0.2 > > > When the non-ajax submit button is pressed, its id and value is sent as a > request parameter. If the ajax equivalent button is pressed, the id-value > pair is missing. However, the id is included under the "javax.faces.source" > attribute, per the spec. > This becomes a problem if you do some param checks (via binding attr.) to see > if a particular button is pressed. See more info about this here: > [https://stackoverflow.com/a/14730658/11402059] > Here's a sample of the behaviors for ajax and non ajax submissions. The > required parts are in red (which should appear in both requests): > {code:java} > > Ajax Checkboxes: > > > > > Message for ajaxCheckbox -> > > Non-Ajax Checkboxes: > > > > > Message for nonajaxCheckbox -> : > > > > > > binding="#{nonajaxbtn}"/> > > value="#{entry.key}" /> : > > > {code} > > It used to work in 2.0, but now fails after refactoring. Haven't tested on > 4.0, but I think it's also affected. > 2.3.x: > [https://github.com/apache/myfaces/blob/2.3.x/api/src/main/javascript/META-INF/resources/myfaces/_impl/xhrCore/_AjaxUtils.js#L38-L63] > > > 2.0.5: > [https://github.com/apache/myfaces/blob/myfaces-core-project-2.0.5/api/src/main/javascript/META-INF/resources/myfaces/_impl/xhrCore/_AjaxUtils.js#L57] > -- This message was sent by Atlassian Jira (v8.20.10#820010)