[jira] [Work logged] (CSV-280) Use New OpenCSV Builder in CSVBenchmark
[ https://issues.apache.org/jira/browse/CSV-280?focusedWorklogId=621819=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621819 ] ASF GitHub Bot logged work on CSV-280: -- Author: ASF GitHub Bot Created on: 13/Jul/21 05:11 Start Date: 13/Jul/21 05:11 Worklog Time Spent: 10m Work Description: coveralls commented on pull request #164: URL: https://github.com/apache/commons-csv/pull/164#issuecomment-878784732 [![Coverage Status](https://coveralls.io/builds/41315725/badge)](https://coveralls.io/builds/41315725) Coverage remained the same at 98.31% when pulling **b342dcedd4f5f642f47ce014ae8683e7be38d6c9 on belugabehr:CSV-280** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621819) Time Spent: 20m (was: 10m) > Use New OpenCSV Builder in CSVBenchmark > --- > > Key: CSV-280 > URL: https://issues.apache.org/jira/browse/CSV-280 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Minor > Time Spent: 20m > Remaining Estimate: 0h > > Profile wouldn't run for me without updating OpenCSV API calls. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] coveralls commented on pull request #164: CSV-280: Use New OpenCSV Builder in CSVBenchmark
coveralls commented on pull request #164: URL: https://github.com/apache/commons-csv/pull/164#issuecomment-878784732 [![Coverage Status](https://coveralls.io/builds/41315725/badge)](https://coveralls.io/builds/41315725) Coverage remained the same at 98.31% when pulling **b342dcedd4f5f642f47ce014ae8683e7be38d6c9 on belugabehr:CSV-280** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Work logged] (CSV-278) Reuse Buffers in Lexer for Delimiter Detection
[ https://issues.apache.org/jira/browse/CSV-278?focusedWorklogId=621818=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621818 ] ASF GitHub Bot logged work on CSV-278: -- Author: ASF GitHub Bot Created on: 13/Jul/21 05:10 Start Date: 13/Jul/21 05:10 Worklog Time Spent: 10m Work Description: coveralls edited a comment on pull request #162: URL: https://github.com/apache/commons-csv/pull/162#issuecomment-878688255 [![Coverage Status](https://coveralls.io/builds/41315706/badge)](https://coveralls.io/builds/41315706) Coverage increased (+0.003%) to 98.313% when pulling **c7dec1c0be50f48e3d7f8df156f4a114905ae46b on belugabehr:CSV-278** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621818) Time Spent: 50m (was: 40m) > Reuse Buffers in Lexer for Delimiter Detection > -- > > Key: CSV-278 > URL: https://issues.apache.org/jira/browse/CSV-278 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Minor > Time Spent: 50m > Remaining Estimate: 0h > -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] coveralls edited a comment on pull request #162: CSV-278: Reuse Buffers in Lexer for Delimiter Detection
coveralls edited a comment on pull request #162: URL: https://github.com/apache/commons-csv/pull/162#issuecomment-878688255 [![Coverage Status](https://coveralls.io/builds/41315706/badge)](https://coveralls.io/builds/41315706) Coverage increased (+0.003%) to 98.313% when pulling **c7dec1c0be50f48e3d7f8df156f4a114905ae46b on belugabehr:CSV-278** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Work logged] (CSV-279) Optimize Lexer Delimiter Check for One Character Delimiter
[ https://issues.apache.org/jira/browse/CSV-279?focusedWorklogId=621817=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621817 ] ASF GitHub Bot logged work on CSV-279: -- Author: ASF GitHub Bot Created on: 13/Jul/21 05:09 Start Date: 13/Jul/21 05:09 Worklog Time Spent: 10m Work Description: coveralls commented on pull request #163: URL: https://github.com/apache/commons-csv/pull/163#issuecomment-878784086 [![Coverage Status](https://coveralls.io/builds/41315707/badge)](https://coveralls.io/builds/41315707) Coverage increased (+0.003%) to 98.313% when pulling **7d2bb6a0f152254b04ddd6e975b29bbc6d638068 on belugabehr:CSV-279** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621817) Time Spent: 20m (was: 10m) > Optimize Lexer Delimiter Check for One Character Delimiter > -- > > Key: CSV-279 > URL: https://issues.apache.org/jira/browse/CSV-279 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Major > Time Spent: 20m > Remaining Estimate: 0h > > Can break-out earlier if the delimiter is only one character (common use > case). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] coveralls commented on pull request #163: CSV-279: Optimize Lexer Delimiter Check for One Character Delimiter
coveralls commented on pull request #163: URL: https://github.com/apache/commons-csv/pull/163#issuecomment-878784086 [![Coverage Status](https://coveralls.io/builds/41315707/badge)](https://coveralls.io/builds/41315707) Coverage increased (+0.003%) to 98.313% when pulling **7d2bb6a0f152254b04ddd6e975b29bbc6d638068 on belugabehr:CSV-279** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (COMPRESS-542) Corrupt 7z allocates huge amount of SevenZEntries
[ https://issues.apache.org/jira/browse/COMPRESS-542?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17379573#comment-17379573 ] Stefan Bodewig commented on COMPRESS-542: - This issue has been assigned the name [CVE-2021-35516|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35516] > Corrupt 7z allocates huge amount of SevenZEntries > - > > Key: COMPRESS-542 > URL: https://issues.apache.org/jira/browse/COMPRESS-542 > Project: Commons Compress > Issue Type: Bug >Affects Versions: 1.20 >Reporter: Robin Schimpf >Priority: Major > Fix For: 1.21 > > Attachments: > Reduced_memory_allocation_for_corrupted_7z_archives.patch, > endheadercorrupted.7z, endheadercorrupted2.7z > > Time Spent: 3h 10m > Remaining Estimate: 0h > > We ran into a problem where a 1.43GB corrupt 7z file tried to allocate about > 138 million SevenZArchiveEntries which will use about 12GB of memory. Sadly > I'm unable to share the file. If you have enough Memory available the > following exception is thrown. > {code:java} > java.io.IOException: Start header corrupt and unable to guess end Header > at > org.apache.commons.compress.archivers.sevenz.SevenZFile.tryToLocateEndHeader(SevenZFile.java:511) > at > org.apache.commons.compress.archivers.sevenz.SevenZFile.readHeaders(SevenZFile.java:470) > at > org.apache.commons.compress.archivers.sevenz.SevenZFile.(SevenZFile.java:336) > at > org.apache.commons.compress.archivers.sevenz.SevenZFile.(SevenZFile.java:128) > at > org.apache.commons.compress.archivers.sevenz.SevenZFile.(SevenZFile.java:369) > {code} > 7z itself aborts really quick when I'm trying to list the content of the file. > {code:java} > 7z l "corrupt.7z" > 7-Zip 18.01 (x64) : Copyright (c) 1999-2018 Igor Pavlov : 2018-01-28 > Scanning the drive for archives: > 1 file, 1537752212 bytes (1467 MiB) > Listing archive: corrupt.7z > ERROR: corrupt.7z : corrupt.7z > Open ERROR: Can not open the file as [7z] archive > ERRORS: > Is not archive > Errors: 1 > {code} > I hacked together the attached patch which will reduce the memory allocation > to about 1GB. So lazy instantiation of the entries could be a good solution > to the problem. Optimal would be to only create the entries if the headers > could be parsed correctly. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (NET-419) Not possible to call FTPClient.abort() method correctly
[ https://issues.apache.org/jira/browse/NET-419?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17379554#comment-17379554 ] xiongmaozhijin commented on NET-419: I had the same problem, but I found that if the code was written like this, it would not block: final FtpClient ftpClient; // final OutputStream os = ftpClient.storeFileStream(remote); while (condition) { if (condition) break; os.write(..); } // it do close outputstream and socket first if (os != null) { os.close(); } ftpClient.abort(); ftpClient.logout(); ftpClient.disconnect(); > Not possible to call FTPClient.abort() method correctly > --- > > Key: NET-419 > URL: https://issues.apache.org/jira/browse/NET-419 > Project: Commons Net > Issue Type: Bug > Components: FTP >Affects Versions: 3.0 > Environment: java version "1.6.0_26" > Java(TM) SE Runtime Environment (build 1.6.0_26-b03) > Java HotSpot(TM) 64-Bit Server VM (build 20.1-b02, mixed mode) > Linux cattie 2.6.38-10-generic #46-Ubuntu SMP Tue Jun 28 15:07:17 UTC 2011 > x86_64 x86_64 x86_64 GNU/Linux >Reporter: Tomas Mysik >Priority: Major > Attachments: ftp-synchro.diff > > > Unfortunately, it seems that there are difficulties of using FTPClient.abort() > method [1][2]. Also, it is really not clear how the abort() method should be > called/used at all - if from another thread (as I would expect) then there is > a problem with > thread-safety: FTPClient itself is not thread-safe so it means that some > custom lock/monitor must be used; but this lock will prevent calling abort() > on > the FTPClient while it is downloading/uploading file since file > upload/download > itself is blocking... > If I'm wrong and the abort() method works then an example in Javadoc would be > more than welcome. > Thanks a lot. > [1] > http://apache-commons.680414.n4.nabble.com/Net-FTPClient-abort-problem-td739542.html > [2] http://www.tikalk.com/java/forums/apache-ftp-client-abort-transfer -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Work logged] (CSV-280) Use New OpenCSV Builder in CSVBenchmark
[ https://issues.apache.org/jira/browse/CSV-280?focusedWorklogId=621789=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621789 ] ASF GitHub Bot logged work on CSV-280: -- Author: ASF GitHub Bot Created on: 13/Jul/21 02:37 Start Date: 13/Jul/21 02:37 Worklog Time Spent: 10m Work Description: belugabehr opened a new pull request #164: URL: https://github.com/apache/commons-csv/pull/164 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621789) Remaining Estimate: 0h Time Spent: 10m > Use New OpenCSV Builder in CSVBenchmark > --- > > Key: CSV-280 > URL: https://issues.apache.org/jira/browse/CSV-280 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Minor > Time Spent: 10m > Remaining Estimate: 0h > > Profile wouldn't run for me without updating OpenCSV API calls. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] belugabehr opened a new pull request #164: CSV-280: Use New OpenCSV Builder in CSVBenchmark
belugabehr opened a new pull request #164: URL: https://github.com/apache/commons-csv/pull/164 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Created] (CSV-280) Use New OpenCSV Builder in CSVBenchmark
David Mollitor created CSV-280: -- Summary: Use New OpenCSV Builder in CSVBenchmark Key: CSV-280 URL: https://issues.apache.org/jira/browse/CSV-280 Project: Commons CSV Issue Type: Improvement Reporter: David Mollitor Profile wouldn't run for me without updating OpenCSV API calls. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Work logged] (CSV-278) Reuse Buffers in Lexer for Delimiter Detection
[ https://issues.apache.org/jira/browse/CSV-278?focusedWorklogId=621786=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621786 ] ASF GitHub Bot logged work on CSV-278: -- Author: ASF GitHub Bot Created on: 13/Jul/21 02:27 Start Date: 13/Jul/21 02:27 Worklog Time Spent: 10m Work Description: belugabehr commented on a change in pull request #162: URL: https://github.com/apache/commons-csv/pull/162#discussion_r668380832 ## File path: src/main/java/org/apache/commons/csv/ExtendedBufferedReader.java ## @@ -132,10 +132,24 @@ int lookAhead() throws IOException { */ char[] lookAhead(final int n) throws IOException { final char[] buf = new char[n]; Review comment: Actually, it's still used in `CSVFormat#printWithEscapes`. I am happy to remove fully in another PR, but wanted to keep change as small as possible. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621786) Time Spent: 40m (was: 0.5h) > Reuse Buffers in Lexer for Delimiter Detection > -- > > Key: CSV-278 > URL: https://issues.apache.org/jira/browse/CSV-278 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Minor > Time Spent: 40m > Remaining Estimate: 0h > -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] belugabehr commented on a change in pull request #162: CSV-278: Reuse Buffers in Lexer for Delimiter Detection
belugabehr commented on a change in pull request #162: URL: https://github.com/apache/commons-csv/pull/162#discussion_r668380832 ## File path: src/main/java/org/apache/commons/csv/ExtendedBufferedReader.java ## @@ -132,10 +132,24 @@ int lookAhead() throws IOException { */ char[] lookAhead(final int n) throws IOException { final char[] buf = new char[n]; Review comment: Actually, it's still used in `CSVFormat#printWithEscapes`. I am happy to remove fully in another PR, but wanted to keep change as small as possible. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Work logged] (CSV-279) Optimize Lexer Delimiter Check for One Character Delimiter
[ https://issues.apache.org/jira/browse/CSV-279?focusedWorklogId=621785=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621785 ] ASF GitHub Bot logged work on CSV-279: -- Author: ASF GitHub Bot Created on: 13/Jul/21 02:26 Start Date: 13/Jul/21 02:26 Worklog Time Spent: 10m Work Description: belugabehr opened a new pull request #163: URL: https://github.com/apache/commons-csv/pull/163 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621785) Remaining Estimate: 0h Time Spent: 10m > Optimize Lexer Delimiter Check for One Character Delimiter > -- > > Key: CSV-279 > URL: https://issues.apache.org/jira/browse/CSV-279 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Major > Time Spent: 10m > Remaining Estimate: 0h > > Can break-out earlier if the delimiter is only one character (common use > case). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] belugabehr opened a new pull request #163: CSV-279: Optimize Lexer Delimiter Check for One Character Delimiter
belugabehr opened a new pull request #163: URL: https://github.com/apache/commons-csv/pull/163 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Commented] (CSV-279) Optimize Lexer Delimiter Check for One Character Delimiter
[ https://issues.apache.org/jira/browse/CSV-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17379527#comment-17379527 ] David Mollitor commented on CSV-279: {code:none} Benchmark (lower is better)Mode Cnt Score Error Units -- With Early-Exit For One Character Delimiter CSVBenchmark.parseCommonsCSV avgt 20 4321.901 ± 283.269 ms/op -- Without Early-Exit For One Character Delimiter CSVBenchmark.parseCommonsCSV avgt 20 5953.654 ± 114.261 ms/op {code} Good return on investment. > Optimize Lexer Delimiter Check for One Character Delimiter > -- > > Key: CSV-279 > URL: https://issues.apache.org/jira/browse/CSV-279 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Major > > Can break-out earlier if the delimiter is only one character (common use > case). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (CSV-279) Optimize Lexer Delimiter Check for One Character Delimiter
David Mollitor created CSV-279: -- Summary: Optimize Lexer Delimiter Check for One Character Delimiter Key: CSV-279 URL: https://issues.apache.org/jira/browse/CSV-279 Project: Commons CSV Issue Type: Sub-task Reporter: David Mollitor Can break-out earlier if the delimiter is only one character (common use case). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Closed] (CSV-276) Supply Big Data Test File
[ https://issues.apache.org/jira/browse/CSV-276?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] David Mollitor closed CSV-276. -- Resolution: Information Provided File is provided, but I think the project needs to update paths. Will check later. > Supply Big Data Test File > - > > Key: CSV-276 > URL: https://issues.apache.org/jira/browse/CSV-276 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Minor > > In {{PerformanceTest.java}} it says: > bq. Requires test file to be downloaded separately. > But from where? -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Work logged] (CSV-278) Reuse Buffers in Lexer for Delimiter Detection
[ https://issues.apache.org/jira/browse/CSV-278?focusedWorklogId=621764=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621764 ] ASF GitHub Bot logged work on CSV-278: -- Author: ASF GitHub Bot Created on: 13/Jul/21 00:34 Start Date: 13/Jul/21 00:34 Worklog Time Spent: 10m Work Description: garydgregory commented on a change in pull request #162: URL: https://github.com/apache/commons-csv/pull/162#discussion_r668343890 ## File path: src/main/java/org/apache/commons/csv/ExtendedBufferedReader.java ## @@ -132,10 +132,24 @@ int lookAhead() throws IOException { */ char[] lookAhead(final int n) throws IOException { final char[] buf = new char[n]; Review comment: The local var is not needed anymore right? ## File path: src/main/java/org/apache/commons/csv/Lexer.java ## @@ -153,25 +156,26 @@ boolean isEscape(final int ch) { } /** - * Tests if the next characters constitute a escape delimiter through {@link ExtendedBufferedReader#lookAhead(int)}. + * Tests if the next characters constitute a escape delimiter through + * {@link ExtendedBufferedReader#lookAhead(char[])}. * Review comment: Same comment. ## File path: src/main/java/org/apache/commons/csv/Lexer.java ## @@ -112,25 +116,24 @@ boolean isCommentStart(final int ch) { } /** - * Determine whether the next characters constitute a delimiter through {@link ExtendedBufferedReader#lookAhead(int)} + * Determine whether the next characters constitute a delimiter through Review comment: No need to change for formatted, it makes more noise to review. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621764) Time Spent: 20m (was: 10m) > Reuse Buffers in Lexer for Delimiter Detection > -- > > Key: CSV-278 > URL: https://issues.apache.org/jira/browse/CSV-278 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Minor > Time Spent: 20m > Remaining Estimate: 0h > -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Work logged] (CSV-278) Reuse Buffers in Lexer for Delimiter Detection
[ https://issues.apache.org/jira/browse/CSV-278?focusedWorklogId=621765=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621765 ] ASF GitHub Bot logged work on CSV-278: -- Author: ASF GitHub Bot Created on: 13/Jul/21 00:34 Start Date: 13/Jul/21 00:34 Worklog Time Spent: 10m Work Description: coveralls commented on pull request #162: URL: https://github.com/apache/commons-csv/pull/162#issuecomment-878688255 [![Coverage Status](https://coveralls.io/builds/41311495/badge)](https://coveralls.io/builds/41311495) Coverage increased (+0.003%) to 98.313% when pulling **7c2427be579ea39d3a815421200495a0a23df578 on belugabehr:CSV-278** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621765) Time Spent: 0.5h (was: 20m) > Reuse Buffers in Lexer for Delimiter Detection > -- > > Key: CSV-278 > URL: https://issues.apache.org/jira/browse/CSV-278 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Minor > Time Spent: 0.5h > Remaining Estimate: 0h > -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] coveralls commented on pull request #162: CSV-278: Reuse Buffers in Lexer for Delimiter Detection
coveralls commented on pull request #162: URL: https://github.com/apache/commons-csv/pull/162#issuecomment-878688255 [![Coverage Status](https://coveralls.io/builds/41311495/badge)](https://coveralls.io/builds/41311495) Coverage increased (+0.003%) to 98.313% when pulling **7c2427be579ea39d3a815421200495a0a23df578 on belugabehr:CSV-278** into **3b959626f4c1ad31a4f8fbdcba513e12fc6f7f3d on apache:master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] garydgregory commented on a change in pull request #162: CSV-278: Reuse Buffers in Lexer for Delimiter Detection
garydgregory commented on a change in pull request #162: URL: https://github.com/apache/commons-csv/pull/162#discussion_r668343890 ## File path: src/main/java/org/apache/commons/csv/ExtendedBufferedReader.java ## @@ -132,10 +132,24 @@ int lookAhead() throws IOException { */ char[] lookAhead(final int n) throws IOException { final char[] buf = new char[n]; Review comment: The local var is not needed anymore right? ## File path: src/main/java/org/apache/commons/csv/Lexer.java ## @@ -153,25 +156,26 @@ boolean isEscape(final int ch) { } /** - * Tests if the next characters constitute a escape delimiter through {@link ExtendedBufferedReader#lookAhead(int)}. + * Tests if the next characters constitute a escape delimiter through + * {@link ExtendedBufferedReader#lookAhead(char[])}. * Review comment: Same comment. ## File path: src/main/java/org/apache/commons/csv/Lexer.java ## @@ -112,25 +116,24 @@ boolean isCommentStart(final int ch) { } /** - * Determine whether the next characters constitute a delimiter through {@link ExtendedBufferedReader#lookAhead(int)} + * Determine whether the next characters constitute a delimiter through Review comment: No need to change for formatted, it makes more noise to review. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Work logged] (CSV-278) Reuse Buffers in Lexer for Delimiter Detection
[ https://issues.apache.org/jira/browse/CSV-278?focusedWorklogId=621755=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-621755 ] ASF GitHub Bot logged work on CSV-278: -- Author: ASF GitHub Bot Created on: 13/Jul/21 00:00 Start Date: 13/Jul/21 00:00 Worklog Time Spent: 10m Work Description: belugabehr opened a new pull request #162: URL: https://github.com/apache/commons-csv/pull/162 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org Issue Time Tracking --- Worklog Id: (was: 621755) Remaining Estimate: 0h Time Spent: 10m > Reuse Buffers in Lexer for Delimiter Detection > -- > > Key: CSV-278 > URL: https://issues.apache.org/jira/browse/CSV-278 > Project: Commons CSV > Issue Type: Sub-task >Reporter: David Mollitor >Priority: Minor > Time Spent: 10m > Remaining Estimate: 0h > -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-csv] belugabehr opened a new pull request #162: CSV-278: Reuse Buffers in Lexer for Delimiter Detection
belugabehr opened a new pull request #162: URL: https://github.com/apache/commons-csv/pull/162 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Created] (CSV-278) Reuse Buffers in Lexer for Delimiter Detection
David Mollitor created CSV-278: -- Summary: Reuse Buffers in Lexer for Delimiter Detection Key: CSV-278 URL: https://issues.apache.org/jira/browse/CSV-278 Project: Commons CSV Issue Type: Sub-task Reporter: David Mollitor -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (MATH-1616) Refactor "EmpiricalDistribution" class
Gilles Sadowski created MATH-1616: - Summary: Refactor "EmpiricalDistribution" class Key: MATH-1616 URL: https://issues.apache.org/jira/browse/MATH-1616 Project: Commons Math Issue Type: Improvement Affects Versions: 3.6.1 Reporter: Gilles Sadowski Fix For: 4.0 [API|https://gitbox.apache.org/repos/asf?p=commons-math.git;a=blob;f=commons-math-legacy/src/main/java/org/apache/commons/math4/legacy/distribution/EmpiricalDistribution.java;h=65e580883c5e7c755bb9b4ec028fc048b66a24cc;hb=HEAD] is error-prone. An example of this is described in MATH-1462. It is proposed that the class be immutable, ensuring that the user's attention is focused on providing consistent input at construction. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-text] dependabot[bot] commented on pull request #250: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] commented on pull request #250: URL: https://github.com/apache/commons-text/pull/250#issuecomment-878649647 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-text] kinow closed pull request #250: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
kinow closed pull request #250: URL: https://github.com/apache/commons-text/pull/250 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] dependabot[bot] commented on pull request #157: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] commented on pull request #157: URL: https://github.com/apache/commons-imaging/pull/157#issuecomment-878648452 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] kinow closed pull request #157: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
kinow closed pull request #157: URL: https://github.com/apache/commons-imaging/pull/157 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Comment Edited] (CSV-277) Review Lexer simpleToken for Performance
[ https://issues.apache.org/jira/browse/CSV-277?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17379427#comment-17379427 ] Gary D. Gregory edited comment on CSV-277 at 7/12/21, 10:33 PM: You can try extending Commons IO's {{UnsynchronizedByteArrayInputStream}} to see if it makes a difference or you might have to write your own {{UnsynchronizedBufferedReader}}. was (Author: garydgregory): You can try extending Commons IO's {{UnsynchronizedByteArrayInputStream}} to see if it makes a difference. > Review Lexer simpleToken for Performance > > > Key: CSV-277 > URL: https://issues.apache.org/jira/browse/CSV-277 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Major > Attachments: CSVCapture.PNG > > > Running the Apache ORC benchmarks which has {{commons-csv}} as a dependency > and noticed the bulk of running time is in {{commons-csv}}. > I attached the VisualVM output and here is my test setup: > {code:none} > JVM: OpenJDK 64-Bit Server VM (25.292-b10, mixed mode) > Java: version 1.8.0_292, vendor Private Build > Java Home: /usr/lib/jvm/java-8-openjdk-amd64/jre > JVM Flags: > {code} > I suspect this is in part because {{ExtendedBufferedReader}} extends > {{BufferedReader}}. {{BufferedReader}} is a synchronized method class which > means that every call to {{read}} requires synchronization. Usually it's not > an issue, but for {{commons-csv}}, it adds a lot of overhead because it reads > each byte one-at-a-time. So even though it's buffered, it has to go through > a synchronization processes for each byte read. It also has to perform a > "jump" into the parent class for each byte. > Nothing else stands out to me as being "slow." -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Comment Edited] (CSV-277) Review Lexer simpleToken for Performance
[ https://issues.apache.org/jira/browse/CSV-277?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17379427#comment-17379427 ] Gary D. Gregory edited comment on CSV-277 at 7/12/21, 10:31 PM: You can try extending Commons IO's {{UnsynchronizedByteArrayInputStream}} to see if it makes a difference. was (Author: garydgregory): You can try extending Commons IO's unsynchronized version of the reader to see if it makes a difference. > Review Lexer simpleToken for Performance > > > Key: CSV-277 > URL: https://issues.apache.org/jira/browse/CSV-277 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Major > Attachments: CSVCapture.PNG > > > Running the Apache ORC benchmarks which has {{commons-csv}} as a dependency > and noticed the bulk of running time is in {{commons-csv}}. > I attached the VisualVM output and here is my test setup: > {code:none} > JVM: OpenJDK 64-Bit Server VM (25.292-b10, mixed mode) > Java: version 1.8.0_292, vendor Private Build > Java Home: /usr/lib/jvm/java-8-openjdk-amd64/jre > JVM Flags: > {code} > I suspect this is in part because {{ExtendedBufferedReader}} extends > {{BufferedReader}}. {{BufferedReader}} is a synchronized method class which > means that every call to {{read}} requires synchronization. Usually it's not > an issue, but for {{commons-csv}}, it adds a lot of overhead because it reads > each byte one-at-a-time. So even though it's buffered, it has to go through > a synchronization processes for each byte read. It also has to perform a > "jump" into the parent class for each byte. > Nothing else stands out to me as being "slow." -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (CSV-277) Review Lexer simpleToken for Performance
[ https://issues.apache.org/jira/browse/CSV-277?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17379427#comment-17379427 ] Gary D. Gregory commented on CSV-277: - You can try extending Commons IO's unsynchronized version of the reader to see if it makes a difference. > Review Lexer simpleToken for Performance > > > Key: CSV-277 > URL: https://issues.apache.org/jira/browse/CSV-277 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Major > Attachments: CSVCapture.PNG > > > Running the Apache ORC benchmarks which has {{commons-csv}} as a dependency > and noticed the bulk of running time is in {{commons-csv}}. > I attached the VisualVM output and here is my test setup: > {code:none} > JVM: OpenJDK 64-Bit Server VM (25.292-b10, mixed mode) > Java: version 1.8.0_292, vendor Private Build > Java Home: /usr/lib/jvm/java-8-openjdk-amd64/jre > JVM Flags: > {code} > I suspect this is in part because {{ExtendedBufferedReader}} extends > {{BufferedReader}}. {{BufferedReader}} is a synchronized method class which > means that every call to {{read}} requires synchronization. Usually it's not > an issue, but for {{commons-csv}}, it adds a lot of overhead because it reads > each byte one-at-a-time. So even though it's buffered, it has to go through > a synchronization processes for each byte read. It also has to perform a > "jump" into the parent class for each byte. > Nothing else stands out to me as being "slow." -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-text] coveralls commented on pull request #250: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
coveralls commented on pull request #250: URL: https://github.com/apache/commons-text/pull/250#issuecomment-878594978 [![Coverage Status](https://coveralls.io/builds/41306731/badge)](https://coveralls.io/builds/41306731) Coverage remained the same at 97.962% when pulling **aa832e7899efc40401552cd2db3fc06c08eb275b on dependabot/maven/com.github.spotbugs-spotbugs-maven-plugin-4.3.0** into **0ec85b01b043e0d838e706d14b0cd1d21dc48d54 on master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Updated] (CSV-277) Review Lexer simpleToken for Performance
[ https://issues.apache.org/jira/browse/CSV-277?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] David Mollitor updated CSV-277: --- Description: Running the Apache ORC benchmarks which has {{commons-csv}} as a dependency and noticed the bulk of running time is in {{commons-csv}}. I attached the VisualVM output and here is my test setup: {code:none} JVM: OpenJDK 64-Bit Server VM (25.292-b10, mixed mode) Java: version 1.8.0_292, vendor Private Build Java Home: /usr/lib/jvm/java-8-openjdk-amd64/jre JVM Flags: {code} I suspect this is in part because {{ExtendedBufferedReader}} extends {{BufferedReader}}. {{BufferedReader}} is a synchronized method class which means that every call to {{read}} requires synchronization. Usually it's not an issue, but for {{commons-csv}}, it adds a lot of overhead because it reads each byte one-at-a-time. So even though it's buffered, it has to go through a synchronization processes for each byte read. It also has to perform a "jump" into the parent class for each byte. Nothing else stands out to me as being "slow." was: {{BufferedReader}} is a synchronized method class which means that every call to {{read}} requires synchronization. Usually it's not an issue, but for {{commons-csv}}, it adds a lot of overhead because it reads each byte one at a time. So even though it's buffered, it has to go through a synchronization processes for each byte read. Change {{ExtendedBufferedReader}} to implement its own internal buffer. > Review Lexer simpleToken for Performance > > > Key: CSV-277 > URL: https://issues.apache.org/jira/browse/CSV-277 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Major > Attachments: CSVCapture.PNG > > > Running the Apache ORC benchmarks which has {{commons-csv}} as a dependency > and noticed the bulk of running time is in {{commons-csv}}. > I attached the VisualVM output and here is my test setup: > {code:none} > JVM: OpenJDK 64-Bit Server VM (25.292-b10, mixed mode) > Java: version 1.8.0_292, vendor Private Build > Java Home: /usr/lib/jvm/java-8-openjdk-amd64/jre > JVM Flags: > {code} > I suspect this is in part because {{ExtendedBufferedReader}} extends > {{BufferedReader}}. {{BufferedReader}} is a synchronized method class which > means that every call to {{read}} requires synchronization. Usually it's not > an issue, but for {{commons-csv}}, it adds a lot of overhead because it reads > each byte one-at-a-time. So even though it's buffered, it has to go through > a synchronization processes for each byte read. It also has to perform a > "jump" into the parent class for each byte. > Nothing else stands out to me as being "slow." -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (CSV-277) Review Lexer simpleToken for Performance
[ https://issues.apache.org/jira/browse/CSV-277?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] David Mollitor updated CSV-277: --- Summary: Review Lexer simpleToken for Performance (was: Do not Extend BufferedReader in ExtendedBufferedReader) > Review Lexer simpleToken for Performance > > > Key: CSV-277 > URL: https://issues.apache.org/jira/browse/CSV-277 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Major > Attachments: CSVCapture.PNG > > > {{BufferedReader}} is a synchronized method class which means that every call > to {{read}} requires synchronization. > Usually it's not an issue, but for {{commons-csv}}, it adds a lot of overhead > because it reads each byte one at a time. So even though it's buffered, it > has to go through a synchronization processes for each byte read. > Change {{ExtendedBufferedReader}} to implement its own internal buffer. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (CSV-277) Do not Extend BufferedReader in ExtendedBufferedReader
[ https://issues.apache.org/jira/browse/CSV-277?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] David Mollitor updated CSV-277: --- Attachment: CSVCapture.PNG > Do not Extend BufferedReader in ExtendedBufferedReader > -- > > Key: CSV-277 > URL: https://issues.apache.org/jira/browse/CSV-277 > Project: Commons CSV > Issue Type: Improvement >Reporter: David Mollitor >Priority: Major > Attachments: CSVCapture.PNG > > > {{BufferedReader}} is a synchronized method class which means that every call > to {{read}} requires synchronization. > Usually it's not an issue, but for {{commons-csv}}, it adds a lot of overhead > because it reads each byte one at a time. So even though it's buffered, it > has to go through a synchronization processes for each byte read. > Change {{ExtendedBufferedReader}} to implement its own internal buffer. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-io] garydgregory merged pull request #250: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
garydgregory merged pull request #250: URL: https://github.com/apache/commons-io/pull/250 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Created] (CSV-277) Do not Extend BufferedReader in ExtendedBufferedReader
David Mollitor created CSV-277: -- Summary: Do not Extend BufferedReader in ExtendedBufferedReader Key: CSV-277 URL: https://issues.apache.org/jira/browse/CSV-277 Project: Commons CSV Issue Type: Improvement Reporter: David Mollitor {{BufferedReader}} is a synchronized method class which means that every call to {{read}} requires synchronization. Usually it's not an issue, but for {{commons-csv}}, it adds a lot of overhead because it reads each byte one at a time. So even though it's buffered, it has to go through a synchronization processes for each byte read. Change {{ExtendedBufferedReader}} to implement its own internal buffer. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (CSV-276) Supply Big Data Test File
David Mollitor created CSV-276: -- Summary: Supply Big Data Test File Key: CSV-276 URL: https://issues.apache.org/jira/browse/CSV-276 Project: Commons CSV Issue Type: Improvement Reporter: David Mollitor In {{PerformanceTest.java}} it says: bq. Requires test file to be downloaded separately. But from where? -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-text] dependabot[bot] opened a new pull request #250: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #250: URL: https://github.com/apache/commons-text/pull/250 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-logging] dependabot[bot] commented on pull request #49: Bump spotbugs-maven-plugin from 4.2.0 to 4.2.3
dependabot[bot] commented on pull request #49: URL: https://github.com/apache/commons-logging/pull/49#issuecomment-878144722 Superseded by #53. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] garydgregory merged pull request #192: Bump jackrabbit2.version from 2.21.6 to 2.21.7
garydgregory merged pull request #192: URL: https://github.com/apache/commons-vfs/pull/192 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] coveralls commented on pull request #157: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
coveralls commented on pull request #157: URL: https://github.com/apache/commons-imaging/pull/157#issuecomment-878534872 [![Coverage Status](https://coveralls.io/builds/41304026/badge)](https://coveralls.io/builds/41304026) Coverage remained the same at 76.725% when pulling **714a19a82f8195b0ea35579d4c6ee21aa6865dd0 on dependabot/maven/com.github.spotbugs-spotbugs-maven-plugin-4.3.0** into **c4a62e53b1d31fd2c1b1e0367947b9cadf11ceeb on master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-bsf] dependabot[bot] closed pull request #16: Bump spotbugs-maven-plugin from 4.2.0 to 4.2.3
dependabot[bot] closed pull request #16: URL: https://github.com/apache/commons-bsf/pull/16 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-pool] dependabot[bot] opened a new pull request #88: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #88: URL: https://github.com/apache/commons-pool/pull/88 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-lang] dependabot[bot] opened a new pull request #778: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #778: URL: https://github.com/apache/commons-lang/pull/778 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-release-plugin] kinow closed pull request #61: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
kinow closed pull request #61: URL: https://github.com/apache/commons-release-plugin/pull/61 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-parent] dependabot[bot] opened a new pull request #50: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #50: URL: https://github.com/apache/commons-parent/pull/50 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] homebeaver commented on pull request #46: VALIDATOR-477: add IBAN validator for LY
homebeaver commented on pull request #46: URL: https://github.com/apache/commons-validator/pull/46#issuecomment-878535945 replaced with PR #59 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-lang] coveralls commented on pull request #778: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
coveralls commented on pull request #778: URL: https://github.com/apache/commons-lang/pull/778#issuecomment-878511189 [![Coverage Status](https://coveralls.io/builds/41302838/badge)](https://coveralls.io/builds/41302838) Coverage remained the same at 94.976% when pulling **13ed92bde6b776d3421ce96e6b953bf83f3d24e7 on dependabot/maven/com.github.spotbugs-spotbugs-maven-plugin-4.3.0** into **b0d9979fb6547651d37bda56e150e505c705d3d9 on master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] homebeaver opened a new pull request #59: VALIDATOR-477: add IBAN validator for LY and SD
homebeaver opened a new pull request #59: URL: https://github.com/apache/commons-validator/pull/59 see updated issue https://issues.apache.org/jira/projects/VALIDATOR/issues/VALIDATOR-477 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-imaging] dependabot[bot] opened a new pull request #157: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #157: URL: https://github.com/apache/commons-imaging/pull/157 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-release-plugin] dependabot[bot] commented on pull request #61: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] commented on pull request #61: URL: https://github.com/apache/commons-release-plugin/pull/61#issuecomment-878197286 OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`. You can also ignore all major, minor, or patch releases for a dependency by adding an [`ignore` condition](https://docs.github.com/en/code-security/supply-chain-security/configuration-options-for-dependency-updates#ignore) with the desired `update_types` to your config file. If you change your mind, just re-open this PR and I'll resolve any conflicts on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-validator] homebeaver closed pull request #46: VALIDATOR-477: add IBAN validator for LY
homebeaver closed pull request #46: URL: https://github.com/apache/commons-validator/pull/46 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-pool] coveralls commented on pull request #88: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
coveralls commented on pull request #88: URL: https://github.com/apache/commons-pool/pull/88#issuecomment-878330663 [![Coverage Status](https://coveralls.io/builds/41294552/badge)](https://coveralls.io/builds/41294552) Coverage decreased (-0.1%) to 84.645% when pulling **4d9a59947716bb878450a1dd526cecebfe325f8c on dependabot/maven/com.github.spotbugs-spotbugs-maven-plugin-4.3.0** into **9b85e1f8bfd6046c1ccbd2269ec75f54510039e4 on master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-bsf] dependabot[bot] commented on pull request #16: Bump spotbugs-maven-plugin from 4.2.0 to 4.2.3
dependabot[bot] commented on pull request #16: URL: https://github.com/apache/commons-bsf/pull/16#issuecomment-878184944 Superseded by #19. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-logging] dependabot[bot] opened a new pull request #53: Bump spotbugs-maven-plugin from 4.2.0 to 4.3.0
dependabot[bot] opened a new pull request #53: URL: https://github.com/apache/commons-logging/pull/53 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.0 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.0...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.0=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-io] garydgregory commented on pull request #250: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
garydgregory commented on pull request #250: URL: https://github.com/apache/commons-io/pull/250#issuecomment-878243896 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-fileupload] coveralls commented on pull request #103: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
coveralls commented on pull request #103: URL: https://github.com/apache/commons-fileupload/pull/103#issuecomment-878544538 [![Coverage Status](https://coveralls.io/builds/41304552/badge)](https://coveralls.io/builds/41304552) Coverage remained the same at 78.117% when pulling **3bed896268ca06380c57d054a6da2cb9a237dcca on dependabot/maven/com.github.spotbugs-spotbugs-maven-plugin-4.3.0** into **fbb7d7113c869d74d2f1f49f1f0e212b4ef79fcc on master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-logging] dependabot[bot] closed pull request #49: Bump spotbugs-maven-plugin from 4.2.0 to 4.2.3
dependabot[bot] closed pull request #49: URL: https://github.com/apache/commons-logging/pull/49 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-bsf] dependabot[bot] opened a new pull request #19: Bump spotbugs-maven-plugin from 4.2.0 to 4.3.0
dependabot[bot] opened a new pull request #19: URL: https://github.com/apache/commons-bsf/pull/19 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.0 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.0...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.0=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-csv] dependabot[bot] opened a new pull request #161: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #161: URL: https://github.com/apache/commons-csv/pull/161 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] dependabot[bot] opened a new pull request #194: Bump asm from 9.1 to 9.2
dependabot[bot] opened a new pull request #194: URL: https://github.com/apache/commons-vfs/pull/194 Bumps asm from 9.1 to 9.2. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.ow2.asm:asm=maven=9.1=9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-fileupload] dependabot[bot] opened a new pull request #103: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #103: URL: https://github.com/apache/commons-fileupload/pull/103 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-vfs] garydgregory commented on pull request #192: Bump jackrabbit2.version from 2.21.6 to 2.21.7
garydgregory commented on pull request #192: URL: https://github.com/apache/commons-vfs/pull/192#issuecomment-878270855 @dependabot rebase -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Updated] (VALIDATOR-477) Add IBAN validator for LY – Libya and SD - Sudan
[ https://issues.apache.org/jira/browse/VALIDATOR-477?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Eugen Hanussek updated VALIDATOR-477: - Description: in latest IBAN_Registry.txt I found a new IBAN for LY which was added in Sep-20. There is no definiton in 1.7, nor in master branch IBANValidator class example: LY8300204820100120361 IBAN structure : LY2!n3!n3!n15!n IBAN length : 25 meanwhile, Jun-21, there is a new registry entry: SD example: SD2129010501234001 regards Eugen H. was: in latest IBAN_Registry.txt I found a new IBAN for LY which was added in Sep-20. There is no definiton in 1.7, nor in master branch IBANValidator class example: LY8300204820100120361 IBAN structure : LY2!n3!n3!n15!n IBAN length : 25 regards Eugen H. > Add IBAN validator for LY – Libya and SD - Sudan > > > Key: VALIDATOR-477 > URL: https://issues.apache.org/jira/browse/VALIDATOR-477 > Project: Commons Validator > Issue Type: Improvement >Affects Versions: 1.7 >Reporter: Eugen Hanussek >Priority: Minor > Fix For: 1.8 > > > in latest IBAN_Registry.txt I found a new IBAN for LY which was added in > Sep-20. There is no definiton in 1.7, nor in master branch IBANValidator class > example: LY8300204820100120361 > IBAN structure : LY2!n3!n3!n15!n > IBAN length : 25 > meanwhile, Jun-21, there is a new registry entry: SD > example: SD2129010501234001 > regards Eugen H. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (VALIDATOR-477) Add IBAN validator for LY – Libya and SD - Sudan
[ https://issues.apache.org/jira/browse/VALIDATOR-477?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Eugen Hanussek updated VALIDATOR-477: - Summary: Add IBAN validator for LY – Libya and SD - Sudan (was: Add IBAN validator for LY – Libya) > Add IBAN validator for LY – Libya and SD - Sudan > > > Key: VALIDATOR-477 > URL: https://issues.apache.org/jira/browse/VALIDATOR-477 > Project: Commons Validator > Issue Type: Improvement >Affects Versions: 1.7 >Reporter: Eugen Hanussek >Priority: Minor > Fix For: 1.8 > > > in latest IBAN_Registry.txt I found a new IBAN for LY which was added in > Sep-20. There is no definiton in 1.7, nor in master branch IBANValidator class > example: LY8300204820100120361 > IBAN structure : LY2!n3!n3!n15!n > IBAN length : 25 > > regards Eugen H. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Comment Edited] (RNG-140) nextLong(long lo, long hi)
[ https://issues.apache.org/jira/browse/RNG-140?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17363000#comment-17363000 ] Gilles Sadowski edited comment on RNG-140 at 7/12/21, 10:02 AM: bq. I suggest [...] {{LongSampler}} I'd have favoured {{DiscreteLongSampler}} (as alphabetical hint of functional similarity) but you are probably right since it a low-level class required to handle a different type; the more so if the {{DiscreteSampler}} and {{ContinuousSampler}} are going to disappear. bq. methods names are not as nice as the current {{sample}}. {code} interface ... implements DoubleSupplier{ @Override double getAsDouble(); default double sample() { return getAsDouble(); } } {code} was (Author: erans): bq. I suggest [...] {{LongSampler}} I'd have favoured {{DiscreteLongSampler}} (as alphabetical hint of functional similarity) but you are probably right since it a low-level class required to handle a different type. [The more so if the {{DiscreteSampler}} and {{ContinuousSampler}} are going to disappear.] bq. methods names are not as nice as the current {{sample}}. {code} interface ... implements DoubleSupplier{ @Override double getAsDouble(); default double sample() { return getAsDouble(); } } {code} > nextLong(long lo, long hi) > -- > > Key: RNG-140 > URL: https://issues.apache.org/jira/browse/RNG-140 > Project: Commons RNG > Issue Type: Wish > Components: sampling >Reporter: Gilles Sadowski >Priority: Minor > Labels: api > > Replacement for functionality defined in > [{{RandomUtils}}|https://gitbox.apache.org/repos/asf?p=commons-math.git;a=blob;f=commons-math-legacy/src/main/java/org/apache/commons/math4/legacy/random/RandomUtils.java;h=60060e71d5bbe1d00878a1f54f8bb1ff88b65f11;hb=HEAD#l293]. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[GitHub] [commons-dbutils] coveralls commented on pull request #77: Bump spotbugs-maven-plugin from 4.2.0 to 4.3.0
coveralls commented on pull request #77: URL: https://github.com/apache/commons-dbutils/pull/77#issuecomment-878103878 [![Coverage Status](https://coveralls.io/builds/41284941/badge)](https://coveralls.io/builds/41284941) Coverage remained the same at 65.619% when pulling **25ab52adb711e46106fc428524d318aab5554829 on dependabot/maven/com.github.spotbugs-spotbugs-maven-plugin-4.3.0** into **0ec111e38a4f4458d16d4b0299cfe0f6ae86464a on master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbutils] dependabot[bot] commented on pull request #66: Bump spotbugs-maven-plugin from 4.2.0 to 4.2.3
dependabot[bot] commented on pull request #66: URL: https://github.com/apache/commons-dbutils/pull/66#issuecomment-878101946 Superseded by #77. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbutils] dependabot[bot] closed pull request #66: Bump spotbugs-maven-plugin from 4.2.0 to 4.2.3
dependabot[bot] closed pull request #66: URL: https://github.com/apache/commons-dbutils/pull/66 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-dbutils] dependabot[bot] opened a new pull request #77: Bump spotbugs-maven-plugin from 4.2.0 to 4.3.0
dependabot[bot] opened a new pull request #77: URL: https://github.com/apache/commons-dbutils/pull/77 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.0 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.0...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.0=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-release-plugin] coveralls commented on pull request #61: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
coveralls commented on pull request #61: URL: https://github.com/apache/commons-release-plugin/pull/61#issuecomment-878079390 [![Coverage Status](https://coveralls.io/builds/41283958/badge)](https://coveralls.io/builds/41283958) Coverage remained the same at 75.0% when pulling **e67797b62a497445f83d0e012044880bd8381fa8 on dependabot/maven/com.github.spotbugs-spotbugs-maven-plugin-4.3.0** into **1fad8d90d80a76a595ccd38d82ac278fb05fd318 on master**. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-release-plugin] dependabot[bot] opened a new pull request #61: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #61: URL: https://github.com/apache/commons-release-plugin/pull/61 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [commons-build-plugin] dependabot[bot] opened a new pull request #39: Bump spotbugs-maven-plugin from 4.2.3 to 4.3.0
dependabot[bot] opened a new pull request #39: URL: https://github.com/apache/commons-build-plugin/pull/39 Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.2.3 to 4.3.0. Commits https://github.com/spotbugs/spotbugs-maven-plugin/commit/5530040d7940f5326f844f2ef38b8e487da1537b;>5530040 [maven-release-plugin] prepare release spotbugs-maven-plugin-4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/a32d2b36c5679a16f776486913d7d2484cbc5225;>a32d2b3 [pom] Bump junit to 5.7.2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8a312608f12616c7c2e1836bab4ad1826bcbc96b;>8a31260 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/336;>#336 from hazendaz/spotbugs https://github.com/spotbugs/spotbugs-maven-plugin/commit/c9733e9bb4f4545a14e2bed2147f17f9e20d1ca6;>c9733e9 [pom] Bump spotbugs to 4.3.0 https://github.com/spotbugs/spotbugs-maven-plugin/commit/92876e8d7091b4e5a572178807d835636add3294;>92876e8 [pom] Remove old maven comment as we are now going to latest 3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/8ebfd75f70571ebfffae7781dae3783547fba007;>8ebfd75 [ci] Update since date as we switched to 4.3.x https://github.com/spotbugs/spotbugs-maven-plugin/commit/e8e34a47e67119b44e0ce0a3c3869f23117ce59d;>e8e34a4 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/334;>#334 from spotbugs/dependabot/maven/slf4jVersion-2.0.0-alpha2 https://github.com/spotbugs/spotbugs-maven-plugin/commit/6891b9dba8e4462ef776a90b6dd56a2cee9a0dcc;>6891b9d Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/311;>#311 from spotbugs/dependabot/maven/mavenVersion-3.8.1 https://github.com/spotbugs/spotbugs-maven-plugin/commit/1d7f14c4ff0d28f11b5714faac824d0f1a76e0a4;>1d7f14c Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/312;>#312 from spotbugs/dependabot/maven/org.apache.maven-maven... https://github.com/spotbugs/spotbugs-maven-plugin/commit/7ba7755e1e80b20e766d22cacc8c4fd737d162ae;>7ba7755 Merge pull request https://github-redirect.dependabot.com/spotbugs/spotbugs-maven-plugin/issues/335;>#335 from spotbugs/dependabot/maven/com.github.spotbugs-sp... Additional commits viewable in https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.2.3...spotbugs-maven-plugin-4.3.0;>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-maven-plugin=maven=4.2.3=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@commons.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org