[GitHub] [sling-org-apache-sling-app-cms] sonarcloud[bot] commented on pull request #22: Bump jsoup from 1.15.1 to 1.15.3
sonarcloud[bot] commented on PR #22: URL: https://github.com/apache/sling-org-apache-sling-app-cms/pull/22#issuecomment-1234933232 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-app-cms&pullRequest=22) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-app-cms&pullRequest=22&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-scripting-core] sonarcloud[bot] commented on pull request #21: Bump jsoup from 1.15.1 to 1.15.3
sonarcloud[bot] commented on PR #21: URL: https://github.com/apache/sling-org-apache-sling-scripting-core/pull/21#issuecomment-1234930180 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-core&pullRequest=21&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-scripting-groovy] sonarcloud[bot] commented on pull request #1: Bump jsoup from 1.15.1 to 1.15.3
sonarcloud[bot] commented on PR #1: URL: https://github.com/apache/sling-org-apache-sling-scripting-groovy/pull/1#issuecomment-1234927661 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-groovy&pullRequest=1&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-scripting-groovy] dependabot[bot] opened a new pull request, #1: Bump jsoup from 1.15.1 to 1.15.3
dependabot[bot] opened a new pull request, #1: URL: https://github.com/apache/sling-org-apache-sling-scripting-groovy/pull/1 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.15.1 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace awareness. This makes it possible to always select elements by their simple local name, regardless of whether an xmlns attribute was set. https://github-redirect.dependabot.com/jhy/jsoup/issues/1801";>jhy/jsoup#1801 Bugfix: when using the readToByteBuffer method, such as in Connection.Response.body(), if the document has not already been parsed and must be read fully, and there is any maximum buffer size being applied, only the default internal buffer size is read. https://github-redirect.dependabot.com/jhy/jsoup/issues/1774";>jhy/jsoup#1774 ... (truncated) Commits https://github.com/jhy/jsoup/commit/c5964172763e1495786ad584c368ac3346d0ca8c";>c596417 [maven-release-plugin] prepare release jsoup-1.15.3 https://github.com/jhy/jsoup/commit/d2d9ac341dbd48e75c6dd09c571216a81939604f";>d2d9ac3 Changelog for URL cleaner improvement https://github.com/jhy/jsoup/commit/4ea768d96b3d232e63edef9594766d44597b3882";>4ea768d Strip control characters from URLs when resolving absolute URLs https://github.com/jhy/jsoup/commit/985f1fe13aa0b1d37c6f6f17a948fc240a03dcef";>985f1fe Include help link for malformed URLs https://github.com/jhy/jsoup/commit/6b67d05d883fdfe0f978d77d219e80324e0a223d";>6b67d05 Improved Validate error messages https://github.com/jhy/jsoup/commit/653da57a
[GitHub] [sling-org-apache-sling-scripting-core] dependabot[bot] opened a new pull request, #21: Bump jsoup from 1.15.1 to 1.15.3
dependabot[bot] opened a new pull request, #21: URL: https://github.com/apache/sling-org-apache-sling-scripting-core/pull/21 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.15.1 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace awareness. This makes it possible to always select elements by their simple local name, regardless of whether an xmlns attribute was set. https://github-redirect.dependabot.com/jhy/jsoup/issues/1801";>jhy/jsoup#1801 Bugfix: when using the readToByteBuffer method, such as in Connection.Response.body(), if the document has not already been parsed and must be read fully, and there is any maximum buffer size being applied, only the default internal buffer size is read. https://github-redirect.dependabot.com/jhy/jsoup/issues/1774";>jhy/jsoup#1774 ... (truncated) Commits https://github.com/jhy/jsoup/commit/c5964172763e1495786ad584c368ac3346d0ca8c";>c596417 [maven-release-plugin] prepare release jsoup-1.15.3 https://github.com/jhy/jsoup/commit/d2d9ac341dbd48e75c6dd09c571216a81939604f";>d2d9ac3 Changelog for URL cleaner improvement https://github.com/jhy/jsoup/commit/4ea768d96b3d232e63edef9594766d44597b3882";>4ea768d Strip control characters from URLs when resolving absolute URLs https://github.com/jhy/jsoup/commit/985f1fe13aa0b1d37c6f6f17a948fc240a03dcef";>985f1fe Include help link for malformed URLs https://github.com/jhy/jsoup/commit/6b67d05d883fdfe0f978d77d219e80324e0a223d";>6b67d05 Improved Validate error messages https://github.com/jhy/jsoup/commit/653da57a
[GitHub] [sling-org-apache-sling-app-cms] dependabot[bot] opened a new pull request, #22: Bump jsoup from 1.15.1 to 1.15.3
dependabot[bot] opened a new pull request, #22: URL: https://github.com/apache/sling-org-apache-sling-app-cms/pull/22 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.15.1 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace awareness. This makes it possible to always select elements by their simple local name, regardless of whether an xmlns attribute was set. https://github-redirect.dependabot.com/jhy/jsoup/issues/1801";>jhy/jsoup#1801 Bugfix: when using the readToByteBuffer method, such as in Connection.Response.body(), if the document has not already been parsed and must be read fully, and there is any maximum buffer size being applied, only the default internal buffer size is read. https://github-redirect.dependabot.com/jhy/jsoup/issues/1774";>jhy/jsoup#1774 ... (truncated) Commits https://github.com/jhy/jsoup/commit/c5964172763e1495786ad584c368ac3346d0ca8c";>c596417 [maven-release-plugin] prepare release jsoup-1.15.3 https://github.com/jhy/jsoup/commit/d2d9ac341dbd48e75c6dd09c571216a81939604f";>d2d9ac3 Changelog for URL cleaner improvement https://github.com/jhy/jsoup/commit/4ea768d96b3d232e63edef9594766d44597b3882";>4ea768d Strip control characters from URLs when resolving absolute URLs https://github.com/jhy/jsoup/commit/985f1fe13aa0b1d37c6f6f17a948fc240a03dcef";>985f1fe Include help link for malformed URLs https://github.com/jhy/jsoup/commit/6b67d05d883fdfe0f978d77d219e80324e0a223d";>6b67d05 Improved Validate error messages https://github.com/jhy/jsoup/commit/653da57a61dc6fc
[GitHub] [sling-org-apache-sling-commons-crypto] sonarcloud[bot] commented on pull request #2: Bump jsoup from 1.14.3 to 1.15.3
sonarcloud[bot] commented on PR #2: URL: https://github.com/apache/sling-org-apache-sling-commons-crypto/pull/2#issuecomment-1234918508 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-commons-crypto&pullRequest=2&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-commons-crypto] dependabot[bot] opened a new pull request, #2: Bump jsoup from 1.14.3 to 1.15.3
dependabot[bot] opened a new pull request, #2: URL: https://github.com/apache/sling-org-apache-sling-commons-crypto/pull/2 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.14.3 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. jsoup 1.15.1 is out now with a bunch of https://jsoup.org/news/release-1.15.1";>improvements and bug fixes. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace awareness. This makes it possible to always select elements by their simple local name, regardless of whether an xmlns attribute was set. https://github-redirect.dependabot.com/jhy/jsoup/issues/1801";>jhy/jsoup#1801 Bugfix: when using the readToByteBuffer method, such as in Connection.Response.body(), if the document has not already been parsed and must be read fully, and there is any maximum buffer size being applied, only the default internal buffer size is read. https://github-redirect.dependabot.com/jhy/jsoup/issues/1774";>jhy/jsoup#1774 ... (truncated) Commits https://github.com/jhy/jsoup/commit/c5964172763e1495786ad584c368ac3346d0ca8c";>c596417 [maven-release-plugin] prepare release jsoup-1.15.3 https://github.com/jhy/jsoup/commit/d2d9ac341dbd48e75c6dd09c571216a81939604f";>d2d9ac3 Changelog for URL cleaner improvement https://github.com/jhy/jsoup/commit/4ea768d96b3d232e63edef9594766d44597b3882";>4ea768d Strip control characters from URLs when resolving absolute URLs https://github.com/jhy/jsoup/commit/985f1fe13aa0b1d37c6f6f17a948fc240a03dcef";>985f1fe Include help link for malformed URLs https://github.com/jhy/jsoup/commit/6b67d05d883fdfe0f978d77
[GitHub] [sling-org-apache-sling-scripting-bundle-tracker-it] dependabot[bot] opened a new pull request, #8: build(deps-dev): bump jsoup from 1.7.3 to 1.15.3 in /it
dependabot[bot] opened a new pull request, #8: URL: https://github.com/apache/sling-org-apache-sling-scripting-bundle-tracker-it/pull/8 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.7.3 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. jsoup 1.15.1 is out now with a bunch of https://jsoup.org/news/release-1.15.1";>improvements and bug fixes. jsoup 1.14.3 jsoup 1.14.3 is out now, adding native XPath selector support, improved \ support, and also includes a bunch of bug fixes, improvements, and performance enhancements. See the https://jsoup.org/news/release-1.14.3";>release announcement for the full changelog. jsoup 1.14.2 Caught by the fuzz! jsoup 1.14.2 is out now, and includes a set of parser bug fixes and improvements for handling rough HTML and XML, as identified by the Jazzer JVM fuzzer. This release also includes other fixes and improvements. See the https://jsoup.org/news/release-1.14.2";>release announcement for the full changelog. jsoup 1.14.1 jsoup 1.14.1 is out now, with simple request session management, increased parse robustness, and a ton of other improvements, speed-ups, and bug fixes. See the full https://jsoup.org/news/release-1.14.1";>announcement for all the details on what's changed. jsoup 1.13.1 See the https://jsoup.org/news/release-1.13.1";>release notes.jsoup-1.12.2 No release notes provided. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), d org.jsoup jsoup 1.13.1
[GitHub] [sling-org-apache-sling-rewriter] sonarcloud[bot] commented on pull request #8: Bump jsoup from 1.12.1 to 1.15.3
sonarcloud[bot] commented on PR #8: URL: https://github.com/apache/sling-org-apache-sling-rewriter/pull/8#issuecomment-1234864600 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-rewriter&pullRequest=8) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-rewriter&pullRequest=8&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-testing-clients] sonarcloud[bot] commented on pull request #36: Bump jsoup from 1.14.3 to 1.15.3
sonarcloud[bot] commented on PR #36: URL: https://github.com/apache/sling-org-apache-sling-testing-clients/pull/36#issuecomment-1234864004 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-testing-clients&pullRequest=36&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-testing-clients] dependabot[bot] opened a new pull request, #36: Bump jsoup from 1.14.3 to 1.15.3
dependabot[bot] opened a new pull request, #36: URL: https://github.com/apache/sling-org-apache-sling-testing-clients/pull/36 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.14.3 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. jsoup 1.15.1 is out now with a bunch of https://jsoup.org/news/release-1.15.1";>improvements and bug fixes. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace awareness. This makes it possible to always select elements by their simple local name, regardless of whether an xmlns attribute was set. https://github-redirect.dependabot.com/jhy/jsoup/issues/1801";>jhy/jsoup#1801 Bugfix: when using the readToByteBuffer method, such as in Connection.Response.body(), if the document has not already been parsed and must be read fully, and there is any maximum buffer size being applied, only the default internal buffer size is read. https://github-redirect.dependabot.com/jhy/jsoup/issues/1774";>jhy/jsoup#1774 ... (truncated) Commits https://github.com/jhy/jsoup/commit/c5964172763e1495786ad584c368ac3346d0ca8c";>c596417 [maven-release-plugin] prepare release jsoup-1.15.3 https://github.com/jhy/jsoup/commit/d2d9ac341dbd48e75c6dd09c571216a81939604f";>d2d9ac3 Changelog for URL cleaner improvement https://github.com/jhy/jsoup/commit/4ea768d96b3d232e63edef9594766d44597b3882";>4ea768d Strip control characters from URLs when resolving absolute URLs https://github.com/jhy/jsoup/commit/985f1fe13aa0b1d37c6f6f17a948fc240a03dcef";>985f1fe Include help link for malformed URLs https://github.com/jhy/jsoup/commit/6b67d05d883fdfe0f978
[GitHub] [sling-org-apache-sling-rewriter] dependabot[bot] opened a new pull request, #8: Bump jsoup from 1.12.1 to 1.15.3
dependabot[bot] opened a new pull request, #8: URL: https://github.com/apache/sling-org-apache-sling-rewriter/pull/8 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.12.1 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. jsoup 1.15.1 is out now with a bunch of https://jsoup.org/news/release-1.15.1";>improvements and bug fixes. jsoup 1.14.3 jsoup 1.14.3 is out now, adding native XPath selector support, improved \ support, and also includes a bunch of bug fixes, improvements, and performance enhancements. See the https://jsoup.org/news/release-1.14.3";>release announcement for the full changelog. jsoup 1.14.2 Caught by the fuzz! jsoup 1.14.2 is out now, and includes a set of parser bug fixes and improvements for handling rough HTML and XML, as identified by the Jazzer JVM fuzzer. This release also includes other fixes and improvements. See the https://jsoup.org/news/release-1.14.2";>release announcement for the full changelog. jsoup 1.14.1 jsoup 1.14.1 is out now, with simple request session management, increased parse robustness, and a ton of other improvements, speed-ups, and bug fixes. See the full https://jsoup.org/news/release-1.14.1";>announcement for all the details on what's changed. jsoup 1.13.1 See the https://jsoup.org/news/release-1.13.1";>release notes.jsoup-1.12.2 No release notes provided. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace aw org.jsoup jsoup 1.13.1
[GitHub] [sling-org-apache-sling-hapi-client] sonarcloud[bot] commented on pull request #2: Bump jsoup from 1.9.2 to 1.15.3
sonarcloud[bot] commented on PR #2: URL: https://github.com/apache/sling-org-apache-sling-hapi-client/pull/2#issuecomment-1234857248 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-hapi-client&pullRequest=2&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-scripting-freemarker] sonarcloud[bot] commented on pull request #1: Bump jsoup from 1.13.1 to 1.15.3
sonarcloud[bot] commented on PR #1: URL: https://github.com/apache/sling-org-apache-sling-scripting-freemarker/pull/1#issuecomment-1234856952 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-freemarker&pullRequest=1&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-scripting-thymeleaf] sonarcloud[bot] commented on pull request #1: Bump jsoup from 1.11.3 to 1.15.3
sonarcloud[bot] commented on PR #1: URL: https://github.com/apache/sling-org-apache-sling-scripting-thymeleaf/pull/1#issuecomment-1234856517 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&metric=coverage&view=list) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-scripting-thymeleaf&pullRequest=1&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-hapi-client] dependabot[bot] opened a new pull request, #2: Bump jsoup from 1.9.2 to 1.15.3
dependabot[bot] opened a new pull request, #2: URL: https://github.com/apache/sling-org-apache-sling-hapi-client/pull/2 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.9.2 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. jsoup 1.15.1 is out now with a bunch of https://jsoup.org/news/release-1.15.1";>improvements and bug fixes. jsoup 1.14.3 jsoup 1.14.3 is out now, adding native XPath selector support, improved \ support, and also includes a bunch of bug fixes, improvements, and performance enhancements. See the https://jsoup.org/news/release-1.14.3";>release announcement for the full changelog. jsoup 1.14.2 Caught by the fuzz! jsoup 1.14.2 is out now, and includes a set of parser bug fixes and improvements for handling rough HTML and XML, as identified by the Jazzer JVM fuzzer. This release also includes other fixes and improvements. See the https://jsoup.org/news/release-1.14.2";>release announcement for the full changelog. jsoup 1.14.1 jsoup 1.14.1 is out now, with simple request session management, increased parse robustness, and a ton of other improvements, speed-ups, and bug fixes. See the full https://jsoup.org/news/release-1.14.1";>announcement for all the details on what's changed. jsoup 1.13.1 See the https://jsoup.org/news/release-1.13.1";>release notes.jsoup-1.12.2 No release notes provided. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace org.jsoup jsoup 1.13.1
[GitHub] [sling-org-apache-sling-scripting-freemarker] dependabot[bot] opened a new pull request, #1: Bump jsoup from 1.13.1 to 1.15.3
dependabot[bot] opened a new pull request, #1: URL: https://github.com/apache/sling-org-apache-sling-scripting-freemarker/pull/1 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.13.1 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. jsoup 1.15.1 is out now with a bunch of https://jsoup.org/news/release-1.15.1";>improvements and bug fixes. jsoup 1.14.3 jsoup 1.14.3 is out now, adding native XPath selector support, improved \ support, and also includes a bunch of bug fixes, improvements, and performance enhancements. See the https://jsoup.org/news/release-1.14.3";>release announcement for the full changelog. jsoup 1.14.2 Caught by the fuzz! jsoup 1.14.2 is out now, and includes a set of parser bug fixes and improvements for handling rough HTML and XML, as identified by the Jazzer JVM fuzzer. This release also includes other fixes and improvements. See the https://jsoup.org/news/release-1.14.2";>release announcement for the full changelog. jsoup 1.14.1 jsoup 1.14.1 is out now, with simple request session management, increased parse robustness, and a ton of other improvements, speed-ups, and bug fixes. See the full https://jsoup.org/news/release-1.14.1";>announcement for all the details on what's changed. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable namespace awareness. This makes it possible to always select elements by their simple local name, regardless of whether an xmlns attribute was set. https://github-redirect.dependabot.com/jhy/jsoup/issues/1801";>jhy/jsoup#1801 Bugfix: when using the readToByteBuffer method, such as in Connection.Response.bod
[GitHub] [sling-org-apache-sling-scripting-thymeleaf] dependabot[bot] opened a new pull request, #1: Bump jsoup from 1.11.3 to 1.15.3
dependabot[bot] opened a new pull request, #1: URL: https://github.com/apache/sling-org-apache-sling-scripting-thymeleaf/pull/1 Bumps [jsoup](https://github.com/jhy/jsoup) from 1.11.3 to 1.15.3. Release notes Sourced from https://github.com/jhy/jsoup/releases";>jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with other bug fixes and improvements, including more descriptive validation error messages. Details: https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>Security advisory https://jsoup.org/news/release-1.15.3";>Release notes https://jsoup.org/download";>Download jsoup 1.15.2 is out now with a bunch of https://jsoup.org/news/release-1.15.2";>improvements and bug fixes. jsoup 1.15.1 is out now with a bunch of https://jsoup.org/news/release-1.15.1";>improvements and bug fixes. jsoup 1.14.3 jsoup 1.14.3 is out now, adding native XPath selector support, improved \ support, and also includes a bunch of bug fixes, improvements, and performance enhancements. See the https://jsoup.org/news/release-1.14.3";>release announcement for the full changelog. jsoup 1.14.2 Caught by the fuzz! jsoup 1.14.2 is out now, and includes a set of parser bug fixes and improvements for handling rough HTML and XML, as identified by the Jazzer JVM fuzzer. This release also includes other fixes and improvements. See the https://jsoup.org/news/release-1.14.2";>release announcement for the full changelog. jsoup 1.14.1 jsoup 1.14.1 is out now, with simple request session management, increased parse robustness, and a ton of other improvements, speed-ups, and bug fixes. See the full https://jsoup.org/news/release-1.14.1";>announcement for all the details on what's changed. jsoup 1.13.1 See the https://jsoup.org/news/release-1.13.1";>release notes.jsoup-1.12.2 No release notes provided. Changelog Sourced from https://github.com/jhy/jsoup/blob/master/CHANGES";>jsoup's changelog. jsoup changelog Release 1.15.3 [2022-Aug-24] Security: fixed an issue where the jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled. https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369";>https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 Improvement: the Cleaner will preserve the source position of cleaned elements, if source tracking is enabled in the original parse. Improvement: the error messages output from Validate are more descriptive. Exceptions are now ValidationExceptions (extending IllegalArgumentException). Stack traces do not include the Validate class, to make it simpler to see where the exception originated. Common validation errors including malformed URLs and empty selector results have more explicit error messages. Bugfix: the DataUtil would incorrectly read from InputStreams that emitted reads less than the requested size. This lead to incorrect results when parsing from chunked server responses, for e.g. https://github-redirect.dependabot.com/jhy/jsoup/issues/1807";>jhy/jsoup#1807 Build Improvement: added implementation version and related fields to the jar manifest. https://github-redirect.dependabot.com/jhy/jsoup/issues/1809";>jhy/jsoup#1809 *** Release 1.15.2 [2022-Jul-04] Improvement: added the ability to track the position (line, column, index) in the original input source from where a given node was parsed. Accessible via Node.sourceRange() and Element.endSourceRange(). https://github-redirect.dependabot.com/jhy/jsoup/pull/1790";>jhy/jsoup#1790 Improvement: added Element.firstElementChild(), Element.lastElementChild(), Node.firstChild(), Node.lastChild(), as convenient accessors to those child nodes and elements. Improvement: added Element.expectFirst(cssQuery), which is just like Element.selectFirst(), but instead of returning a null if there is no match, will throw an IllegalArgumentException. This is useful if you want to simply abort processing if an expected match is not found. Improvement: when pretty-printing HTML, doctypes are emitted on a newline if there is a preceding comment. https://github-redirect.dependabot.com/jhy/jsoup/pull/1664";>jhy/jsoup#1664 Improvement: when pretty-printing, trim the leading and trailing spaces of textnodes in block tags when possible, so that they are indented correctly. https://github-redirect.dependabot.com/jhy/jsoup/issues/1798";>jhy/jsoup#1798 Improvement: in Element#selectXpath(), disable n org.jsoup jsoup 1.13.1
[GitHub] [sling-org-apache-sling-caconfig-integration-tests] sonarcloud[bot] commented on pull request #1: SLING-11114 update SLING API to 2.21.0
sonarcloud[bot] commented on PR #1: URL: https://github.com/apache/sling-org-apache-sling-caconfig-integration-tests/pull/1#issuecomment-1234595931 Kudos, SonarCloud Quality Gate passed! [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1) No Coverage information [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-caconfig-integration-tests&pullRequest=1&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-auth-xing-login] sonarcloud[bot] commented on pull request #2: Upgrade to sling 48
sonarcloud[bot] commented on PR #2: URL: https://github.com/apache/sling-org-apache-sling-auth-xing-login/pull/2#issuecomment-1234570696 SonarCloud Quality Gate failed. [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=CODE_SMELL) [6 Code Smells](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&metric=new_coverage&view=list) [0.0% Coverage](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&metric=new_coverage&view=list) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&metric=new_duplicated_lines_density&view=list) [0.0% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-login&pullRequest=2&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [sling-org-apache-sling-auth-xing-oauth] sonarcloud[bot] commented on pull request #2: Upgrade to sling 48
sonarcloud[bot] commented on PR #2: URL: https://github.com/apache/sling-org-apache-sling-auth-xing-oauth/pull/2#issuecomment-1234570256 SonarCloud Quality Gate failed. [](https://sonarcloud.io/dashboard?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=CODE_SMELL) [1 Code Smell](https://sonarcloud.io/project/issues?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&metric=new_coverage&view=list) [0.0% Coverage](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&metric=new_coverage&view=list) [](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&metric=new_duplicated_lines_density&view=list) [7.3% Duplication](https://sonarcloud.io/component_measures?id=apache_sling-org-apache-sling-auth-xing-oauth&pullRequest=2&metric=new_duplicated_lines_density&view=list) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@sling.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [VOTE] Release Apache Sling GraphQL Core 0.0.14
Le mar. 30 août 2022 à 18:25, Radu Cotescu a écrit : > ...Please vote to approve this release.. +1 -Bertrand
Re: [VOTE] Release Apache Sling GraphQL Core 0.0.14
+1 Le jeu. 1 sept. 2022 à 17:13, Karl Pauls a écrit : > +1 > > regards, > > Karl > > On Tue, Aug 30, 2022 at 6:26 PM Radu Cotescu wrote: > > > +1 > > > > > On 30 Aug 2022, at 18:24, Radu Cotescu wrote: > > > > > > Please vote to approve this release: > > > > > > [ ] +1 Approve the release > > > [ ] 0 Don't care > > > [ ] -1 Don't release, because ... > > > > > > -- > Karl Pauls > karlpa...@gmail.com >
Re: [VOTE] Release Apache Sling GraphQL Core 0.0.14
+1 regards, Karl On Tue, Aug 30, 2022 at 6:26 PM Radu Cotescu wrote: > +1 > > > On 30 Aug 2022, at 18:24, Radu Cotescu wrote: > > > > Please vote to approve this release: > > > > [ ] +1 Approve the release > > [ ] 0 Don't care > > [ ] -1 Don't release, because ... > > -- Karl Pauls karlpa...@gmail.com
