[GitHub] [oodt] dependabot[bot] closed pull request #133: Bump minimist from 1.2.5 to 1.2.6 in /react-components/oodt_opsui_sample_app
dependabot[bot] closed pull request #133: Bump minimist from 1.2.5 to 1.2.6 in /react-components/oodt_opsui_sample_app URL: https://github.com/apache/oodt/pull/133 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] commented on pull request #133: Bump minimist from 1.2.5 to 1.2.6 in /react-components/oodt_opsui_sample_app
dependabot[bot] commented on PR #133: URL: https://github.com/apache/oodt/pull/133#issuecomment-1457328415 Superseded by #161. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] opened a new pull request, #161: Bump minimist from 1.2.5 to 1.2.8 in /react-components/oodt_opsui_sample_app
dependabot[bot] opened a new pull request, #161: URL: https://github.com/apache/oodt/pull/161 Bumps [minimist](https://github.com/minimistjs/minimist) from 1.2.5 to 1.2.8. Changelog Sourced from https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md;>minimist's changelog. https://github.com/minimistjs/minimist/compare/v1.2.7...v1.2.8;>v1.2.8 - 2023-02-09 Merged [Fix] Fix long option followed by single dash https://github-redirect.dependabot.com/minimistjs/minimist/pull/17;>[#17](https://github.com/minimistjs/minimist/issues/17) [Tests] Remove duplicate test https://github-redirect.dependabot.com/minimistjs/minimist/pull/12;>[#12](https://github.com/minimistjs/minimist/issues/12) [Fix] opt.string works with multiple aliases https://github-redirect.dependabot.com/minimistjs/minimist/pull/10;>[#10](https://github.com/minimistjs/minimist/issues/10) Fixed [Fix] Fix long option followed by single dash (https://github-redirect.dependabot.com/minimistjs/minimist/issues/17;>#17) https://github-redirect.dependabot.com/minimistjs/minimist/issues/15;>[#15](https://github.com/minimistjs/minimist/issues/15) [Tests] Remove duplicate test (https://github-redirect.dependabot.com/minimistjs/minimist/issues/12;>#12) https://github-redirect.dependabot.com/minimistjs/minimist/issues/8;>[#8](https://github.com/minimistjs/minimist/issues/8) [Fix] Fix long option followed by single dash https://github-redirect.dependabot.com/minimistjs/minimist/issues/15;>[#15](https://github.com/minimistjs/minimist/issues/15) [Fix] opt.string works with multiple aliases (https://github-redirect.dependabot.com/minimistjs/minimist/issues/10;>#10) https://github-redirect.dependabot.com/minimistjs/minimist/issues/9;>[#9](https://github.com/minimistjs/minimist/issues/9) [Fix] Fix handling of short option with non-trivial equals https://github-redirect.dependabot.com/minimistjs/minimist/issues/5;>[#5](https://github.com/minimistjs/minimist/issues/5) [Tests] Remove duplicate test https://github-redirect.dependabot.com/minimistjs/minimist/issues/8;>[#8](https://github.com/minimistjs/minimist/issues/8) [Fix] opt.string works with multiple aliases https://github-redirect.dependabot.com/minimistjs/minimist/issues/9;>[#9](https://github.com/minimistjs/minimist/issues/9) Commits Merge tag 'v0.2.3' https://github.com/minimistjs/minimist/commit/a0267947c7870fc5847cf2d437fbe33f392767da;>a026794 [eslint] fix indentation and whitespace https://github.com/minimistjs/minimist/commit/5368ca4147e974138a54cc0dc4cea8f756546b70;>5368ca4 [eslint] fix indentation and whitespace https://github.com/minimistjs/minimist/commit/e5f5067259ceeaf0b098d14bec910f87e58708c7;>e5f5067 [eslint] more cleanup https://github.com/minimistjs/minimist/commit/62fde7d935f83417fb046741531a9e2346a36976;>62fde7d [eslint] more cleanup https://github.com/minimistjs/minimist/commit/36ac5d0d95e4947d074e5737d94814034ca335d1;>36ac5d0 [meta] add auto-changelog https://github.com/minimistjs/minimist/commit/73923d223553fca08b1ba77e3fbc2a492862ae4c;>73923d2 [actions] add reusable workflows https://github.com/minimistjs/minimist/commit/d80727df77bfa9e631044d7f16368d8f09242c91;>d80727d [eslint] add eslint; rules to enable later are warnings https://github.com/minimistjs/minimist/commit/48bc06a1b41f00e9cdf183db34f7a51ba70e98d4;>48bc06a [eslint] fix indentation https://github.com/minimistjs/minimist/commit/34b0f1ccaa45183c3c4f06a91f9b405180a6f982;>34b0f1c [readme] rename and add badges https://github.com/minimistjs/minimist/commit/5df0fe49211bd09a3636f8686a7cb3012c3e98f0;>5df0fe4 [Dev Deps] switch from covert to nyc https://github.com/minimistjs/minimist/commit/a48b128fdb8d427dfb20a15273f83e38d97bef07;>a48b128 [Dev Deps] update covert, tape; remove unnecessary tap https://github.com/minimistjs/minimist/commit/f0fb958e9a1fe980cdffc436a211b0bda58f621b;>f0fb958 [meta] create FUNDING.yml; add funding in package.json https://github.com/minimistjs/minimist/commit/3639e0c819359a366387e425ab6eabf4c78d3caa;>3639e0c [meta] use npmignore to autogenerate an npmignore file https://github.com/minimistjs/minimist/commit/be2e038c342d8333b32f0fde67a0026b79c8150e;>be2e038 Only apps should have lockfiles https://github.com/minimistjs/minimist/commit/282b570e7489d01b03f2d6d3dabf79cd3e5f84cf;>282b570 isConstructorOrProto adapted from PR https://github.com/minimistjs/minimist/commit/ef9153fc52b6cea0744b2239921c5dcae4697f11;>ef9153f [Dev Deps] update @ljharb/eslint-config, aud https://github.com/minimistjs/minimist/commit/098873c213cdb7c92e55ae1ef5aa1af3a8192a79;>098873c [Dev Deps] update @ljharb/eslint-config, aud https://github.com/minimistjs/minimist/commit/3124ed3e46306301ebb3c834874ce0241555c2c4;>3124ed3 [meta] add safe-publish-latest https://github.com/minimistjs/minimist/commit/4b927de696d561c636b4f43bf49d4597cb36d6d6;>4b927de [Tests] add aud in posttest
[GitHub] [oodt] dependabot[bot] opened a new pull request, #162: Bump jettison from 1.3.4 to 1.5.4 in /core
dependabot[bot] opened a new pull request, #162: URL: https://github.com/apache/oodt/pull/162 Bumps [jettison](https://github.com/jettison-json/jettison) from 1.3.4 to 1.5.4. Release notes Sourced from https://github.com/jettison-json/jettison/releases;>jettison's releases. Jettison 1.5.4 What's Changed Fixing issue 60 by https://github.com/coheigea;>@coheigea in https://redirect.github.com/jettison-json/jettison/pull/62;>jettison-json/jettison#62 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.3...jettison-1.5.4;>https://github.com/jettison-json/jettison/compare/jettison-1.5.3...jettison-1.5.4 Jettison 1.5.3 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.2...jettison-1.5.3;>https://github.com/jettison-json/jettison/compare/jettison-1.5.2...jettison-1.5.3 Jettison 1.5.2 What's Changed Bump woodstox-core from 6.2.8 to 6.4.0 by https://github.com/dependabot;>@dependabot in https://redirect.github.com/jettison-json/jettison/pull/51;>jettison-json/jettison#51 Fixing StackOverflow error by https://github.com/coheigea;>@coheigea in https://redirect.github.com/jettison-json/jettison/pull/53;>jettison-json/jettison#53 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.1...jettison-1.5.2;>https://github.com/jettison-json/jettison/compare/jettison-1.5.1...jettison-1.5.2 Jettison 1.5.1 What's Changed Stack Overflow fix on malformed JSON by https://github.com/coheigea;>@coheigea in https://redirect.github.com/jettison-json/jettison/pull/48;>jettison-json/jettison#48 Prevent infinite loop when a /* comment is not terminated by https://github.com/coheigea;>@coheigea in https://redirect.github.com/jettison-json/jettison/pull/49;>jettison-json/jettison#49 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1;>https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1 Commits https://github.com/jettison-json/jettison/commit/a77ffc4a70e91945603f4947828cd7d4633a3cdb;>a77ffc4 [maven-release-plugin] prepare release jettison-1.5.4 https://github.com/jettison-json/jettison/commit/c20a8be23f698d7d89b7ccf8d328971cf4709b9f;>c20a8be Fixing issue 60 https://github.com/jettison-json/jettison/commit/3e1a913eaeda4bbebc972a731330d8f697eba95c;>3e1a913 [maven-release-plugin] prepare for next development iteration https://github.com/jettison-json/jettison/commit/da6d8bc48a1f5d840ad54b3269297f6636f41f04;>da6d8bc [maven-release-plugin] prepare release jettison-1.5.3 https://github.com/jettison-json/jettison/commit/9e3ec6fe002f635c11f2d7ae5f04c722e2771406;>9e3ec6f Remove commented out code https://github.com/jettison-json/jettison/commit/b3c40001b92f5153ace0687e4ef6fb488d655d0c;>b3c4000 Adding another test for backslashes https://github.com/jettison-json/jettison/commit/631c21e9c467c310a22f5276a2ee0f1aa65359ce;>631c21e Try and fix backslash escaping. Throw syntax exception on invalid json sooner https://github.com/jettison-json/jettison/commit/d9da8084b221dfbc8752e35e006c10ca468dc9d7;>d9da808 Introducing new static methods to set the recursion depth limit https://github.com/jettison-json/jettison/commit/888eec8ea8ef97c0d01a86550589ee7c81896f45;>888eec8 Incorrect recursion depth check in JSONTokener https://github.com/jettison-json/jettison/commit/677aba586094fafbf53f7588aec6218d93933997;>677aba5 [maven-release-plugin] prepare for next development iteration Additional commits viewable in https://github.com/jettison-json/jettison/compare/jettison-1.3.4...jettison-1.5.4;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.codehaus.jettison:jettison=maven=1.3.4=1.5.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve
[GitHub] [oodt] dependabot[bot] commented on pull request #158: Bump jettison from 1.3.4 to 1.5.2 in /core
dependabot[bot] commented on PR #158: URL: https://github.com/apache/oodt/pull/158#issuecomment-1480284752 Superseded by #162. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] closed pull request #158: Bump jettison from 1.3.4 to 1.5.2 in /core
dependabot[bot] closed pull request #158: Bump jettison from 1.3.4 to 1.5.2 in /core URL: https://github.com/apache/oodt/pull/158 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] opened a new pull request, #163: Bump spring-core from 2.5.4 to 5.2.23.RELEASE in /core
dependabot[bot] opened a new pull request, #163: URL: https://github.com/apache/oodt/pull/163 Bumps [spring-core](https://github.com/spring-projects/spring-framework) from 2.5.4 to 5.2.23.RELEASE. Release notes Sourced from https://github.com/spring-projects/spring-framework/releases;>spring-core's releases. 5.2.23.RELEASE :star: New Features Improve diagnostics in SpEL for matches operator https://redirect.github.com/spring-projects/spring-framework/issues/30150;>#30150 Improve diagnostics in SpEL for repeated text https://redirect.github.com/spring-projects/spring-framework/issues/30149;>#30149 Increase scope of regex pattern cache for the SpEL matches operator https://redirect.github.com/spring-projects/spring-framework/issues/30148;>#30148 v5.2.22.RELEASE :star: New Features Refine CachedIntrospectionResults property introspection https://redirect.github.com/spring-projects/spring-framework/issues/28446;>#28446 :lady_beetle: Bug Fixes Ignore invalid STOMP frame https://redirect.github.com/spring-projects/spring-framework/issues/28444;>#28444 v5.2.21.RELEASE :star: New Features Remove DNS lookups during websocket connection initiation https://redirect.github.com/spring-projects/spring-framework/issues/28281;>#28281 :lady_beetle: Bug Fixes Improve documentation and matching algorithm in data binders https://redirect.github.com/spring-projects/spring-framework/issues/28334;>#28334 CodeGenerationException thrown when using AnnotationMBeanExporter on JDK 17 https://redirect.github.com/spring-projects/spring-framework/issues/28279;>#28279 ResponseEntity objects are accumulated in ConcurrentReferenceHashMap https://redirect.github.com/spring-projects/spring-framework/issues/28273;>#28273 NotWritablePropertyException when attempting to declaratively configure ClassLoader properties https://redirect.github.com/spring-projects/spring-framework/issues/28272;>#28272 v5.2.20.RELEASE :star: New Features Restrict access to property paths on Class references https://redirect.github.com/spring-projects/spring-framework/issues/28262;>#28262 Improve diagnostics in SpEL for large array creation https://redirect.github.com/spring-projects/spring-framework/issues/28257;>#28257 v5.2.19.RELEASE :star: New Features Declare serialVersionUID on DefaultAopProxyFactory https://redirect.github.com/spring-projects/spring-framework/issues/27785;>#27785 Use ByteArrayDecoder in DefaultClientResponse::createException https://redirect.github.com/spring-projects/spring-framework/issues/27667;>#27667 :lady_beetle: Bug Fixes ProxyFactoryBean getObject called before setInterceptorNames, silently creating an invalid proxy [SPR-7582] https://redirect.github.com/spring-projects/spring-framework/issues/27817;>#27817 Possible NPE in Spring MVC LogFormatUtils https://redirect.github.com/spring-projects/spring-framework/issues/27783;>#27783 UndertowHeadersAdapter's remove() method violates Map contract https://redirect.github.com/spring-projects/spring-framework/issues/27593;>#27593 Fix assertion failure messages in DefaultDataBuffer.checkIndex() https://redirect.github.com/spring-projects/spring-framework/issues/27577;>#27577 :notebook_with_decorative_cover: Documentation Lazy annotation throws exception if non-required bean does not exist https://redirect.github.com/spring-projects/spring-framework/issues/27660;>#27660 ... (truncated) Commits See full diff in https://github.com/spring-projects/spring-framework/commits/v5.2.23.RELEASE;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework:spring-core=maven=2.5.4=5.2.23.RELEASE)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by
[GitHub] [oodt] dependabot[bot] commented on pull request #137: Bump spring-core from 2.5.4 to 5.2.22.RELEASE in /core
dependabot[bot] commented on PR #137: URL: https://github.com/apache/oodt/pull/137#issuecomment-1482030774 Superseded by #163. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] closed pull request #137: Bump spring-core from 2.5.4 to 5.2.22.RELEASE in /core
dependabot[bot] closed pull request #137: Bump spring-core from 2.5.4 to 5.2.22.RELEASE in /core URL: https://github.com/apache/oodt/pull/137 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] opened a new pull request, #160: Bump tika-parsers from 1.13 to 1.18 in /core
dependabot[bot] opened a new pull request, #160: URL: https://github.com/apache/oodt/pull/160 Bumps [tika-parsers](https://github.com/apache/tika) from 1.13 to 1.18. Changelog Sourced from https://github.com/apache/tika/blob/main/CHANGES.txt;>tika-parsers's changelog. Release 2.7.1 - ??? Users may now avoid the ZeroByteFileException via a setting on the AutoDetectParserConfig (TIKA-3976). Fix bug in closing elements in the presence of elements in RTF files (TIKA-3972). Improve extraction of embedded file names in .docx (TIKA-3968). Normalize author, title, subject and description to their Dublin Core properties in the HTMLParser (TIKA-3963). Release 2.7.0 - 1/31/2023 Add SVG detection for svg files that lack the xml header (TIKA-3308). Migrate to a live fork of Universal Charset Detector (TIKA-3213). Improve handling of text-based attachments inside .eml files (TIKA-3959). Add tika-parser-nlp-package to release artifacts (TIKA-3958). Remove need for element in classes that extend ConfigBase (TIKA-3946). Add X-TIKA:embedded_id_path to ensure unique embedded file paths (TIKA-3942). Fix bug that prevented digests when the fallback/EmptyParser was called (TIKA-3939). Remove log4j 1.2.x (and slf4j-log4j12 which now redirects to slf4j-reload4j) from all modules (TIKA-3935). Upgrade mime4j to 0.8.9 (TIKA-3950). Refactor date parsing for emails (TIKA-3957) Upgrade to Bouncy Castle 1.71 and jdk18on jars (TIKA-3933). Add a JDBCPipesReporter (TIKA-3931). Add multivalued field strategy option in jdbc-emitter (TIKA-3930). Default is now 'concatenate' with ', ' as the delimiter. Downgrade logging in PipesClient for each parse from info to debug. Release 2.6.0 - 11/3/2022 Add optional Siegfried detector (TIKA-3901). ... (truncated) Commits https://github.com/apache/tika/commit/38ff2a986af24ee255f1f91d654ea402f4016696;>38ff2a9 [maven-release-plugin] prepare release 1.18-rc3 https://github.com/apache/tika/commit/24cd1768c999486ab967b680ab28331fe643ba1c;>24cd176 update CHANGES.txt in prep for RC3 https://github.com/apache/tika/commit/15410ed36beb550982cabf2b7a47ab96765a8e9a;>15410ed roll back to 1.18-SNAPSHOT in prep for RC3 https://github.com/apache/tika/commit/e84d0d56ada5f156ae308347b0c77c0ff281a9b7;>e84d0d5 TIKA-2635 -- require that user specify path for imagemagick on windows to avo... https://github.com/apache/tika/commit/c68994fecc3c2b10e433c1a1306c794f52e99def;>c68994f fix broken build on *nix caused by recent fixes; improve documentation; ensur... https://github.com/apache/tika/commit/85b2504bc91462f0dd20ec9362661b5c4384ec11;>85b2504 Merge remote-tracking branch 'origin/branch_1x' into branch_1x https://github.com/apache/tika/commit/a8b41d30e2d2065f53f6c0707980586d64f246f2;>a8b41d3 TIKA-2634 upgrade Jackson to 2.9.5 https://github.com/apache/tika/commit/bb7adacb2b19e7d5f645ed3d6dbcde4d461f1f44;>bb7adac TIKA-2634 upgrade Jackson to 2.9.5 https://github.com/apache/tika/commit/a39b32566d5bc2c4854f6ac0e1f78daf7c26fcd0;>a39b325 [maven-release-plugin] prepare for next development iteration https://github.com/apache/tika/commit/12038624ef54ca76c07be7026f9624d7f8d390d9;>1203862 [maven-release-plugin] prepare release 1.18-rc2 Additional commits viewable in https://github.com/apache/tika/compare/1.13...1.18;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.tika:tika-parsers=maven=1.13=1.18)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop
[GitHub] [oodt] dependabot[bot] opened a new pull request, #164: Bump shell-quote and react-scripts in /react-components/oodt_opsui_sample_app
dependabot[bot] opened a new pull request, #164: URL: https://github.com/apache/oodt/pull/164 Bumps [shell-quote](https://github.com/ljharb/shell-quote) to 1.8.1 and updates ancestor dependency [react-scripts](https://github.com/facebook/create-react-app/tree/HEAD/packages/react-scripts). These dependencies need to be updated together. Updates `shell-quote` from 1.7.2 to 1.8.1 Changelog Sourced from https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md;>shell-quote's changelog. https://github.com/ljharb/shell-quote/compare/v1.8.0...v1.8.1;>v1.8.1 - 2023-04-07 Fixed [Fix] parse: preserve whitespace in comments https://redirect.github.com/ljharb/shell-quote/issues/6;>[#6](https://github.com/ljharb/shell-quote/issues/6) [Fix] properly support the escape option https://redirect.github.com/ljharb/shell-quote/issues/5;>[#5](https://github.com/ljharb/shell-quote/issues/5) Commits [Refactor] parse: hoist getVar to module level https://github.com/ljharb/shell-quote/commit/b42ac73e39e566cfc355a4addc4bd2df2652556c;>b42ac73 [Refactor] hoist some vars to module level https://github.com/ljharb/shell-quote/commit/8f0c5c3c9df3a10e32f1972636675af6fffef998;>8f0c5c3 [Refactor] parse: use slice over substr, cache some values https://github.com/ljharb/shell-quote/commit/fcb2e1acd5312a1a1a4e6c66ec688aab383023b5;>fcb2e1a [Refactor] parse: a bit of cleanup https://github.com/ljharb/shell-quote/commit/6780ec5194e36e2a696bfbaaf85169682a21;>6780ec5 [Refactor] parse: tweak the regex to not match nothing https://github.com/ljharb/shell-quote/commit/227d4742a006e81ec3fde1eee103731a6f7ea920;>227d474 [Tests] increase coverage https://github.com/ljharb/shell-quote/commit/a66de943555e49fbb1b657cbe3c5b2c703ae507d;>a66de94 [Refactor] parse: avoid shadowing a function arg https://github.com/ljharb/shell-quote/commit/1d5867907ecbf553556fe6ad790b6d6658aedba3;>1d58679 https://github.com/ljharb/shell-quote/compare/v1.7.4...v1.8.0;>v1.8.0 - 2023-01-30 Commits [New] extract parse and quote to their own deep imports https://github.com/ljharb/shell-quote/commit/553fdfc32cc41b4c2f77e061b6957703958ca575;>553fdfc [Tests] add nyc coverage https://github.com/ljharb/shell-quote/commit/fd7ddcdd84bfef064c6d9a06b055a95531b26897;>fd7ddcd [New] Add support for here strings (lt;lt;lt;) https://github.com/ljharb/shell-quote/commit/9802fb37c7946e18c672b81122520dc296bde271;>9802fb3 [New] parse: Add syntax support for duplicating input file descriptors https://github.com/ljharb/shell-quote/commit/216b19894f76b14d164c4c5a68f05a51b06336c4;>216b198 [Dev Deps] update @ljharb/eslint-config, aud, tape https://github.com/ljharb/shell-quote/commit/85f8e31dd80e1dde63d58204b653e497a53857e6;>85f8e31 [Tests] add evalmd https://github.com/ljharb/shell-quote/commit/c5549fcd82d70046bdc2b1c34184ae9f9d0191f9;>c5549fc [actions] update checkout action https://github.com/ljharb/shell-quote/commit/62e9b4958cfa2f9009b7069076612fe33528c1fb;>62e9b49 https://github.com/ljharb/shell-quote/compare/1.7.3...v1.7.4;>v1.7.4 - 2022-10-12 Merged Add node_modules to .gitignore https://redirect.github.com/ljharb/shell-quote/pull/48;>[#48](https://github.com/ljharb/shell-quote/issues/48) Commits [eslint] fix indentation and whitespace https://github.com/ljharb/shell-quote/commit/aaa9d1f65bf3445e6af1efaa4a8f8c13a21aa593;>aaa9d1f [eslint] additional cleanup https://github.com/ljharb/shell-quote/commit/397cb628f3d96e4e47763147c0d6074997a13880;>397cb62 [meta] add auto-changelog https://github.com/ljharb/shell-quote/commit/497fca509af3b7d6daaba459bad1f45ac0af3ff1;>497fca5 [actions] add reusable workflows https://github.com/ljharb/shell-quote/commit/4763c36274c5881a2d141ce9f2b17b7d1d95e8cd;>4763c36 [eslint] add eslint https://github.com/ljharb/shell-quote/commit/6ee1437df1b10a79bdf2aaa04f2bacc9f420dc15;>6ee1437 [readme] rename, add badges https://github.com/ljharb/shell-quote/commit/7eb513483d931602452ec572ed456714148acd2b;>7eb5134 [meta] update URLs https://github.com/ljharb/shell-quote/commit/67381b61fa95e57819333463f491428747893186;>67381b6 [meta] create FUNDING.yml; add funding in package.json https://github.com/ljharb/shell-quote/commit/86415722d875578adf1f95f9e649ba42c805bc32;>8641572 [meta] use npmignore to autogenerate an npmignore file https://github.com/ljharb/shell-quote/commit/2e2007a393f90bf079fc556a921120b3508c4fc3;>2e2007a Only apps should have lockfiles https://github.com/ljharb/shell-quote/commit/f97411ef4d2f183200fc8a28beca9faf9b08a640;>f97411e [Dev Deps] update tape https://github.com/ljharb/shell-quote/commit/051f60857ad5035280208abdc348bf5ba42a6254;>051f608 [meta] add safe-publish-latest https://github.com/ljharb/shell-quote/commit/18cadf95357392fcd78ea8619956fd41eed62649;>18cadf9 [Tests] add aud in posttest
[GitHub] [oodt] dependabot[bot] commented on pull request #163: Bump spring-core from 2.5.4 to 5.2.23.RELEASE in /core
dependabot[bot] commented on PR #163: URL: https://github.com/apache/oodt/pull/163#issuecomment-1511799512 Superseded by #165. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] closed pull request #163: Bump spring-core from 2.5.4 to 5.2.23.RELEASE in /core
dependabot[bot] closed pull request #163: Bump spring-core from 2.5.4 to 5.2.23.RELEASE in /core URL: https://github.com/apache/oodt/pull/163 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@oodt.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [oodt] dependabot[bot] opened a new pull request, #165: Bump spring-core from 2.5.4 to 5.2.24.RELEASE in /core
dependabot[bot] opened a new pull request, #165: URL: https://github.com/apache/oodt/pull/165 Bumps [spring-core](https://github.com/spring-projects/spring-framework) from 2.5.4 to 5.2.24.RELEASE. Release notes Sourced from https://github.com/spring-projects/spring-framework/releases;>spring-core's releases. v5.2.24.RELEASE :star: New Features Limit string concatenation in SpEL expressions https://redirect.github.com/spring-projects/spring-framework/issues/30332;>#30332 Limit SpEL expression length https://redirect.github.com/spring-projects/spring-framework/issues/30330;>#30330 Disable variable assignment in SimpleEvaluationContext https://redirect.github.com/spring-projects/spring-framework/issues/30328;>#30328 5.2.23.RELEASE :star: New Features Improve diagnostics in SpEL for matches operator https://redirect.github.com/spring-projects/spring-framework/issues/30150;>#30150 Improve diagnostics in SpEL for repeated text https://redirect.github.com/spring-projects/spring-framework/issues/30149;>#30149 Increase scope of regex pattern cache for the SpEL matches operator https://redirect.github.com/spring-projects/spring-framework/issues/30148;>#30148 v5.2.22.RELEASE :star: New Features Refine CachedIntrospectionResults property introspection https://redirect.github.com/spring-projects/spring-framework/issues/28446;>#28446 :lady_beetle: Bug Fixes Ignore invalid STOMP frame https://redirect.github.com/spring-projects/spring-framework/issues/28444;>#28444 v5.2.21.RELEASE :star: New Features Remove DNS lookups during websocket connection initiation https://redirect.github.com/spring-projects/spring-framework/issues/28281;>#28281 :lady_beetle: Bug Fixes Improve documentation and matching algorithm in data binders https://redirect.github.com/spring-projects/spring-framework/issues/28334;>#28334 CodeGenerationException thrown when using AnnotationMBeanExporter on JDK 17 https://redirect.github.com/spring-projects/spring-framework/issues/28279;>#28279 ResponseEntity objects are accumulated in ConcurrentReferenceHashMap https://redirect.github.com/spring-projects/spring-framework/issues/28273;>#28273 NotWritablePropertyException when attempting to declaratively configure ClassLoader properties https://redirect.github.com/spring-projects/spring-framework/issues/28272;>#28272 v5.2.20.RELEASE :star: New Features Restrict access to property paths on Class references https://redirect.github.com/spring-projects/spring-framework/issues/28262;>#28262 Improve diagnostics in SpEL for large array creation https://redirect.github.com/spring-projects/spring-framework/issues/28257;>#28257 v5.2.19.RELEASE :star: New Features Declare serialVersionUID on DefaultAopProxyFactory https://redirect.github.com/spring-projects/spring-framework/issues/27785;>#27785 Use ByteArrayDecoder in DefaultClientResponse::createException https://redirect.github.com/spring-projects/spring-framework/issues/27667;>#27667 :lady_beetle: Bug Fixes ProxyFactoryBean getObject called before setInterceptorNames, silently creating an invalid proxy [SPR-7582] https://redirect.github.com/spring-projects/spring-framework/issues/27817;>#27817 ... (truncated) Commits See full diff in https://github.com/spring-projects/spring-framework/commits/v5.2.24.RELEASE;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework:spring-core=maven=2.5.4=5.2.24.RELEASE)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)