[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17409200#comment-17409200 ] ASF subversion and git services commented on GEODE-8496: Commit 15e25f7c6a0e1d3f8a1993416d5d77d0d61f4e1c in geode-examples's branch refs/heads/master from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode-examples.git;h=15e25f7 ] GEODE-8496: Bump gradle from 5.4 to 5.5 to match geode > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282722#comment-17282722 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282719#comment-17282719 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282720#comment-17282720 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282724#comment-17282724 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282725#comment-17282725 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282718#comment-17282718 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282717#comment-17282717 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282721#comment-17282721 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282723#comment-17282723 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282712#comment-17282712 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282716#comment-17282716 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282714#comment-17282714 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282713#comment-17282713 ] ASF subversion and git services commented on GEODE-8496: Commit 7b926ca7cd4a05d18542e07dda8b8c92b4b0b4ef in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=7b926ca ] GEODE-8496: final dependency bumps for 1.14 (#6017) * GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0 * GEODE-8496: Bump pmd from 6.30.0 to 6.31.0 * GEODE-8496: Bump netty from 4.1.58.Final to 4.1.59.Final * GEODE-8496: Bump fastutil from 8.5.1 to 8.5.2 * GEODE-8496: Bump jproc from 2.3.0 to 2.4.0 * GEODE-8496: Bump tomcat from 9.0.41 to 9.0.43 * GEODE-8496: Bump tomcat from 7.0.107 to 7.0.108 * GEODE-8496: Bump tomcat from 8.5.61 to 8.5.63 * GEODE-8496: Bump cargo-core-uberjar from 1.9.0 to 1.9.1 * GEODE-8496: Bump spotless from 5.9.0 to 5.10.0 * GEODE-8496: Bump palantir-docker from 0.22.1 to 0.26.0 * Revert "GEODE-8496: Bump archunit-junit4 from 0.15.0 to 0.16.0" This reverts commit 21fbcdf229c3a48e273ac3e8eabb370c07de0ff2. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17282711#comment-17282711 ] ASF GitHub Bot commented on GEODE-8496: --- rhoughton-pivot merged pull request #6017: URL: https://github.com/apache/geode/pull/6017 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17281965#comment-17281965 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #6017: URL: https://github.com/apache/geode/pull/6017 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276691#comment-17276691 ] ASF subversion and git services commented on GEODE-8496: Commit c8e92884795af965f309c3ca36673c6f6ef429b5 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=c8e9288 ] GEODE-8496: Bump jackson from 2.11.3 to 2.12.1 (#5828) * Bump jackson from 2.11.3 to 2.12.1 * Bump joda-time from 2.9.8 to 2.10.9 * update tests to capture change in behaviour now that jackson 2.12 prevents serializing dates as POJOs > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276690#comment-17276690 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5828: URL: https://github.com/apache/geode/pull/5828 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276572#comment-17276572 ] ASF subversion and git services commented on GEODE-8496: Commit 55a548c82f82c278f830a5a28e15c40ac8db4594 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=55a548c ] GEODE-8496: bump deps again (#5983) * Bump HikariCP from 3.4.5 to 4.0.1 * Bump fastutil from 8.4.4 to 8.5.1 * Bump assertj-core from 3.18.1 to 3.19.0 * Bump cargo from 1.8.4 to 1.9.0 * Bump jetty from 9.4.35.v20201120 to 9.4.36.v20210114 * Bump spring-hateoas from 1.2.2 to 1.2.3 * Bump spring-session-data-redis from 2.4.1 to 2.4.2 * Bump jedis from 3.4.1 to 3.5.1 * Bump sonarqube from 3.1 to 3.1.1 * Bump nebula.facet from 7.0.9 to 8.0.0 > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276569#comment-17276569 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5983: URL: https://github.com/apache/geode/pull/5983 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276026#comment-17276026 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal edited a comment on pull request #5828: URL: https://github.com/apache/geode/pull/5828#issuecomment-770501970 @jinmei it looks like the test DistributedSystemMBeanIntegrationTest.queryAllUsingGfshDoesNotFormatDate was expecting LocalDate objects to be serialized as POJOs (i.e. the test expects to see the internal serialized fields of a LocalDate object). Jackson 2.12 no longer allows that. I've updated the test to instead expect the new failure message. Is this an acceptable change in default behavior? Perhaps better would be to start including the jsr310 jar in the shipping product, instead of as test-runtime-only dependency, so that date formatting always displays *something* out-of-the-box? LocalDate is a built-in type in JDK8 and the only reason Jackson breaks it out as a separate module is for JDK7 compatibility of jackson-core. But since Geode is minimum JDK8, perhaps it makes us look bad if we don't support standard JDK8 date/time types... This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276025#comment-17276025 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal edited a comment on pull request #5828: URL: https://github.com/apache/geode/pull/5828#issuecomment-770501970 @jinmei it looks like the test DistributedSystemMBeanIntegrationTest.queryAllUsingGfshDoesNotFormatDate was expecting Date objects to be serialized as POJOs (i.e. the test expects to see the internal serialized fields of a LocalDate object). Jackson 2.12 no longer allows that. I've updated the test to instead expect the new failure message. Is this an acceptable change in default behavior? Perhaps better would be to start including the jsr310 jar in the shipping product, instead of as test-runtime-only dependency, so that date formatting always displays *something* out-of-the-box? LocalDate is a built-in type in JDK8 and the only reason Jackson breaks it out as a separate module is for JDK7 compatibility of jackson-core. But since Geode is minimum JDK8, perhaps it makes us look bad if we don't support standard JDK8 date/time types... This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276024#comment-17276024 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal edited a comment on pull request #5828: URL: https://github.com/apache/geode/pull/5828#issuecomment-770501970 @jinmei it looks like the test DistributedSystemMBeanIntegrationTest.queryAllUsingGfshDoesNotFormatDate was expecting Date objects to be serialized as POJOs (i.e. the test expects to see the internal serialized fields of a LocalDate object). Jackson 2.12 no longer allows that. I've updated the test to instead expect the new failure message. Is this an acceptable change in default behavior? Perhaps better would be to start including the jsr310 jar in the shipping product, instead of as test-runtime-only dependency, so that date formatting always displays *something* out-of-the-box? This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17276023#comment-17276023 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal commented on pull request #5828: URL: https://github.com/apache/geode/pull/5828#issuecomment-770501970 @jinmei it looks like the test DistributedSystemMBeanIntegrationTest.queryAllUsingGfshDoesNotFormatDate was expecting Date objects to be serialized a POJOs (i.e. the test expects to see the internal serialized fields of a Date object). I've updated it to instead expect the new failure message. Is this an acceptable change in default behavior? Perhaps better would be to start including the jsr310 jar in the shipping product, instead of as test-runtime-only dependency, so that date formatting always displays *something* out-of-the-box? This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17275522#comment-17275522 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5983: URL: https://github.com/apache/geode/pull/5983 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17268244#comment-17268244 ] ASF subversion and git services commented on GEODE-8496: Commit f6bfe2fd0bf70a0f8c94ec72082547426c6ed9ae in geode's branch refs/heads/support/1.12 from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=f6bfe2f ] GEODE-8496: update cached dependencies on changes to dependencies (cherry picked from commit 834090159e2a4d42e2a7ccbac2ce1d2695ecb905) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17268222#comment-17268222 ] ASF subversion and git services commented on GEODE-8496: Commit cf35b3d85d7746735668724167e1ec58bb8a4ef6 in geode's branch refs/heads/support/1.13 from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=cf35b3d ] GEODE-8496: update cached dependencies on changes to dependencies (cherry picked from commit 834090159e2a4d42e2a7ccbac2ce1d2695ecb905) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17268185#comment-17268185 ] ASF subversion and git services commented on GEODE-8496: Commit 77ef0b71d8b98cdac5b6de35a68c20ccba22126e in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=77ef0b7 ] GEODE-8496: bump dependencies again (#5919) * Bump spring from 5.3.1/5.3.2 to 5.3.3 * Bump spring-boot-starter from 2.4.1 to 2.4.2 * Bump mockito-core from 3.7.0 to 3.7.7 * Bump lettuce-core from 6.0.1.RELEASE to 6.0.2.RELEASE * Bump netty-all from 4.1.56.Final to 4.1.58.Final * Bump micrometer-core from 1.6.2 to 1.6.3 * Bump mysql-connector-java from 8.0.22 to 8.0.23 * Bump dependency-management from 1.0.10.RELEASE to 1.0.11.RELEASE * Bump sonarqube from 3.0 to 3.1 * Bump buildSrc's commons-lang3 from 3.3.2 to 3.11 * Bump maven-artifact from 3.3.3 to 3.6.3 * Bump docker-java from 3.0.14 to 3.2.7 * update image (cached dependencies) on changes to dependencies > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17268184#comment-17268184 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5919: URL: https://github.com/apache/geode/pull/5919 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17267643#comment-17267643 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5919: URL: https://github.com/apache/geode/pull/5919 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17261011#comment-17261011 ] ASF subversion and git services commented on GEODE-8496: Commit dc5dfef2c98c99d57a4857bfbabed5c8beff6924 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=dc5dfef ] GEODE-8496: Bump dependencies once more (#5883) * Bump mockito from 3.6.28 to 3.7.0 * Bump bouncycastle from 1.67 to 1.68 * Bump cargo from 1.8.3 to 1.8.4 * Bump jedis from 3.4.0 to 3.4.1 * Bump spotless from 5.8.2 to 5.9.0 * Bump nebula.lint from 16.15.9 to 16.17.0 > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17261010#comment-17261010 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5883: URL: https://github.com/apache/geode/pull/5883 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17260918#comment-17260918 ] ASF subversion and git services commented on GEODE-8496: Commit 15e25f7c6a0e1d3f8a1993416d5d77d0d61f4e1c in geode-examples's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode-examples.git;h=15e25f7 ] GEODE-8496: Bump gradle from 5.4 to 5.5 to match geode > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17260309#comment-17260309 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5883: URL: https://github.com/apache/geode/pull/5883 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17259187#comment-17259187 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal commented on pull request #5873: URL: https://github.com/apache/geode/pull/5873#issuecomment-754870529 Thanks @jinmeiliao very clever This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17259259#comment-17259259 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5873: URL: https://github.com/apache/geode/pull/5873 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17259260#comment-17259260 ] ASF subversion and git services commented on GEODE-8496: Commit 4e59f8f7d0534dabaa07baf08ef55eaae26cf768 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=4e59f8f ] GEODE-8496: Bump spring from 5.3.1 to 5.3.2 (#5873) Bump spring from 5.3.1 to 5.3.2 EXCEPT for spring-test (spring-test 5.3.3 may fix) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17259163#comment-17259163 ] ASF GitHub Bot commented on GEODE-8496: --- jinmeiliao commented on pull request #5873: URL: https://github.com/apache/geode/pull/5873#issuecomment-754852702 You can leave spring-test to 5.3.1 and only upgrade the rest because of this bug in sprinng-test module: https://github.com/spring-projects/spring-framework/issues/26324, it’s fixed in 5.3.3 you can just apply this change to your PR: https://github.com/jinmeiliao/geode/commit/dd87648be0bdb60c6d1809dbf244aff6011bad25 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17254302#comment-17254302 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5873: URL: https://github.com/apache/geode/pull/5873 needs changes to make 1 test pass. to reproduce: `./gradlew :geode-web-management:integrationTest --tests DeploymentIntegrationTest` This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17253187#comment-17253187 ] ASF subversion and git services commented on GEODE-8496: Commit 5fc2a0c305bde6f0423a54c52314397a75de2eaa in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=5fc2a0c ] GEODE-8496: more dependency bumps (#5869) * Bump guava from 30.0-jre to 30.1-jre * Bump micrometer-core from 1.6.1 to 1.6.2 * Bump netty-all from 4.1.54.Final to 4.1.56.Final * Bump json-path from 2.4.0 to 2.5.0 * Bump pmd from 6.29.0 to 6.30.0 * Bump compiler from 2.4.0 to 2.4.1 * Bump archunit from 0.14.1 to 0.15.0 * Bump tomcat from 8.5.60 to 8.5.61 * Bump tomcat from 9.0.40 to 9.0.41 * Bump cargo from 1.8.2 to 1.8.3 * Bump spring-boot-starter from 2.4.0 to 2.4.1 * Bump spring-hateoas from 1.2.1 to 1.2.2 * Bump jedis from 3.3.0 to 3.4.0 > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17253183#comment-17253183 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5869: URL: https://github.com/apache/geode/pull/5869 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17253182#comment-17253182 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5871: URL: https://github.com/apache/geode/pull/5871 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17253168#comment-17253168 ] ASF GitHub Bot commented on GEODE-8496: --- rhoughton-pivot opened a new pull request #5871: URL: https://github.com/apache/geode/pull/5871 Thank you for submitting a contribution to Apache Geode. In order to streamline the review of the contribution we ask you to ensure the following steps have been taken: ### For all changes: - [ ] Is there a JIRA ticket associated with this PR? Is it referenced in the commit message? - [ ] Has your PR been rebased against the latest commit within the target branch (typically `develop`)? - [ ] Is your initial contribution a single, squashed commit? - [ ] Does `gradlew build` run cleanly? - [ ] Have you written or updated unit tests to verify your changes? - [ ] If adding new dependencies to the code, are these dependencies licensed in a way that is compatible for inclusion under [ASF 2.0](http://www.apache.org/legal/resolved.html#category-a)? ### Note: Please ensure that once the PR is submitted, check Concourse for build issues and submit an update to your PR as soon as possible. If you need help, please send an email to d...@geode.apache.org. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252994#comment-17252994 ] Geode Integration commented on GEODE-8496: -- Seen in [IntegrationTestOpenJDK8 #640|https://concourse.apachegeode-ci.info/teams/main/pipelines/apache-develop-main/jobs/IntegrationTestOpenJDK8/builds/640] ... see [test results|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0570/test-results/integrationTest/1608353111/] or download [artifacts|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0570/test-artifacts/1608353111/integrationtestfiles-OpenJDK8-1.14.0-build.0570.tgz]. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252995#comment-17252995 ] Geode Integration commented on GEODE-8496: -- Seen in [WindowsCoreIntegrationTestOpenJDK8 #637|https://concourse.apachegeode-ci.info/teams/main/pipelines/apache-develop-main/jobs/WindowsCoreIntegrationTestOpenJDK8/builds/637] ... see [test results|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0570/test-results/integrationTest/1608363254/] or download [artifacts|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0570/test-artifacts/1608363254/windows-coreintegrationtestfiles-OpenJDK8-1.14.0-build.0570.tgz]. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252996#comment-17252996 ] Geode Integration commented on GEODE-8496: -- Seen in [DistributedTestOpenJDK11 #677|https://concourse.apachegeode-ci.info/teams/main/pipelines/apache-develop-main/jobs/DistributedTestOpenJDK11/builds/677] ... see [test results|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0570/test-results/distributedTest/1608361552/] or download [artifacts|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0570/test-artifacts/1608361552/distributedtestfiles-OpenJDK11-1.14.0-build.0570.tgz]. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252997#comment-17252997 ] Geode Integration commented on GEODE-8496: -- Seen in [IntegrationTestOpenJDK8 #641|https://concourse.apachegeode-ci.info/teams/main/pipelines/apache-develop-main/jobs/IntegrationTestOpenJDK8/builds/641] ... see [test results|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0571/test-results/integrationTest/1608354206/] or download [artifacts|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0571/test-artifacts/1608354206/integrationtestfiles-OpenJDK8-1.14.0-build.0571.tgz]. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252993#comment-17252993 ] Geode Integration commented on GEODE-8496: -- Seen in [WindowsCoreIntegrationTestOpenJDK8 #638|https://concourse.apachegeode-ci.info/teams/main/pipelines/apache-develop-main/jobs/WindowsCoreIntegrationTestOpenJDK8/builds/638] ... see [test results|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0571/test-results/integrationTest/1608363428/] or download [artifacts|http://files.apachegeode-ci.info/builds/apache-develop-main/1.14.0-build.0571/test-artifacts/1608363428/windows-coreintegrationtestfiles-OpenJDK8-1.14.0-build.0571.tgz]. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252158#comment-17252158 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5869: URL: https://github.com/apache/geode/pull/5869 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252098#comment-17252098 ] ASF subversion and git services commented on GEODE-8496: Commit 0bdd1e68d18967f4a818510bd7495503dc3597f9 in geode's branch refs/heads/develop from Robert Houghton [ https://gitbox.apache.org/repos/asf?p=geode.git;h=0bdd1e6 ] GEODE-8496: Bump nebula-facets plugin. Fix deprecated gradle configuration use. (#5865) * Bump nebula-facets plugin. Fix deprecated gradle configuration use. * Fix dependency for tomcat8 in distributedTest * facet classpath differences affect api encapsulation tests * update expected pom > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17252097#comment-17252097 ] ASF GitHub Bot commented on GEODE-8496: --- rhoughton-pivot merged pull request #5865: URL: https://github.com/apache/geode/pull/5865 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17246271#comment-17246271 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5828: URL: https://github.com/apache/geode/pull/5828 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17246249#comment-17246249 ] ASF subversion and git services commented on GEODE-8496: Commit 424cd7282e91d4af07a00f663db6affc0610035a in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=424cd72 ] GEODE-8496: dependency updates (#5822) * Bump spring-security from 5.4.1 to 5.4.2 * Bump archunit from 0.12.0 to 0.14.1 * Bump fastutil from 8.4.3 to 8.4.4 * Bump httpcore from 4.4.13 to 4.4.14 * Bump istack-commons from 3.0.11 to 4.0.0 * Bump lettuce from 5.3.5.RELEASE to 6.0.1.RELEASE * Bump dependencyUpdates from 0.28.0 to 0.36.0 * Bump nebula-lint from 16.4.0 to 16.15.9 * Bump dependency-management from 1.0.9.RELEASE to 1.0.10.RELEASE * Bump grgit from 4.0.1 to 4.1.0 * Bump sonarqube from "2.8" to "3.0" * Bump nebula.facet from 6.0.2 to 6.2.0 * Bump spotless from 3.28.0 to 5.8.2 * remove unused dependency jackson-module-scala_2.10 * update bump exclusions and readme > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17246248#comment-17246248 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5822: URL: https://github.com/apache/geode/pull/5822 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17245782#comment-17245782 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5822: URL: https://github.com/apache/geode/pull/5822 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17238970#comment-17238970 ] ASF subversion and git services commented on GEODE-8496: Commit 217be41f087072026ea3b411b89107700edfb5f7 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=217be41 ] GEODE-8496: top up dependency updates (#5772) * Bump jetty from 9.4.34.v20201102 to 9.4.35.v20201120 * Bump netty-all from 4.1.53.Final to 4.1.54.Final * Bump lettuce-core from 5.3.4.RELEASE to 5.3.5.RELEASE * Bump fastutil from 8.4.2 to 8.4.3 * Bump pmd from 6.28.0 to 6.29.0 * Bump tomcat9 from 9.0.39 to 9.0.40 * Bump tomcat8 from 8.5.59 to 8.5.60 * Bump tomcat7 from 7.0.106 to 7.0.107 * Bump bcpkix-jdk15on from 1.66 to 1.67 * Bump spring-boot from 2.3.4.RELEASE to 2.4.0 * Bump spring-hateoas from 1.1.2.RELEASE to 1.2.1 * Bump spring-session-data-redis from 2.3.1.RELEASE to 2.4.1 * Bump spring from 5.2.9.RELEASE to 5.3.1 * Bump junit-quickcheck from 0.9.5 to 1.0 * Bump assertj from 3.17.2 to 3.18.1 * Bump micrometer from 1.5.5 to 1.6.1 * Bump testcontainers from 1.14.3 to 1.15.0 * Bump powermock from 2.0.7 to 2.0.9 * Bump mockito from 3.5.15 to 3.6.28 * Bump log4j from 2.13.3 to 2.14.0 > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17238969#comment-17238969 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5772: URL: https://github.com/apache/geode/pull/5772 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17238642#comment-17238642 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5772: URL: https://github.com/apache/geode/pull/5772 it's been a month, and still no 1.14 in sight, so updating again to be sure we have the latest This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17234258#comment-17234258 ] ASF subversion and git services commented on GEODE-8496: Commit 4bf7350680a1ef4e5db8e61fe9c16323c91b20dd in geode's branch refs/heads/support/1.13 from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=4bf7350 ] GEODE-8496: Bump jetty from 9.4.21.v20190926 to 9.4.33.v20201020 (#5574) This reverts the previous revert commit 6b8f5b03cc3c0927cd7eef23e5cc627a780f8a0c. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17234256#comment-17234256 ] ASF subversion and git services commented on GEODE-8496: Commit 4bf7350680a1ef4e5db8e61fe9c16323c91b20dd in geode's branch refs/heads/support/1.13 from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=4bf7350 ] GEODE-8496: Bump jetty from 9.4.21.v20190926 to 9.4.33.v20201020 (#5574) This reverts the previous revert commit 6b8f5b03cc3c0927cd7eef23e5cc627a780f8a0c. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17225745#comment-17225745 ] ASF subversion and git services commented on GEODE-8496: Commit 6b8f5b03cc3c0927cd7eef23e5cc627a780f8a0c in geode's branch refs/heads/support/1.13 from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=6b8f5b0 ] Revert "GEODE-8496: Bump jetty from 9.4.21.v20190926 to 9.4.33.v20201020 (#5574)" This reverts commits: * 23d2dc7553cb30e600ba5792e87b0e26ce0eb028 * fdaa2be509d0a86de63f576f35b300d8f2aa6817 * 9b6ec9e6adbf55a07f62cb1fd89ca2e0e54a2d49 We should consider undoing this revert when the timing is better. > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17225553#comment-17225553 ] ASF subversion and git services commented on GEODE-8496: Commit 9b6ec9e6adbf55a07f62cb1fd89ca2e0e54a2d49 in geode's branch refs/heads/support/1.13 from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=9b6ec9e ] GEODE-8496: fix rest management test after dependency bump (#5547) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17225541#comment-17225541 ] ASF subversion and git services commented on GEODE-8496: Commit 43f489004ab05632d0c1a1bea86b2a19799e27fc in geode's branch refs/heads/support/1.12 from Jinmei Liao [ https://gitbox.apache.org/repos/asf?p=geode.git;h=43f4890 ] GEODE-8496: fix rest management test after dependency bump (#5547) (cherry picked from commit c49389e99ca801d70f2f2c46a98c960ebad9b872) (cherry picked from commit fdaa2be509d0a86de63f576f35b300d8f2aa6817) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17225539#comment-17225539 ] ASF subversion and git services commented on GEODE-8496: Commit fdaa2be509d0a86de63f576f35b300d8f2aa6817 in geode's branch refs/heads/support/1.13 from Jinmei Liao [ https://gitbox.apache.org/repos/asf?p=geode.git;h=fdaa2be ] GEODE-8496: fix rest management test after dependency bump (#5547) (cherry picked from commit c49389e99ca801d70f2f2c46a98c960ebad9b872) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17219117#comment-17219117 ] ASF subversion and git services commented on GEODE-8496: Commit 54527eb0395cc851c2aaccfac811cbec8252d712 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=54527eb ] GEODE-8496: top off dependency updates for 1.14 (#5652) * Bump spring-security from 5.4.0 to 5.4.1 * Bump jackson and jackson-databind from 2.11.2 to 2.11.3 * Bump netty-all from 4.1.52.Final to 4.1.53.Final * Bump mysql-connector-java from 8.0.21 to 8.0.22 * Bump httpclient from 4.5.12 to 4.5.13 * Bump tomcat9 from 9.0.38 to 9.0.39 * Bump tomcat8 from 8.5.58 to 8.5.59 * Bump cargo from 1.8.1 to 1.8.2 * Bump jetty from 9.4.31.v20200723 to 9.4.32.v20200930 * Bump jmh from 1.25.2 to 1.26 * Bump guava from 29.0-jre to 30.0-jre * Bump mockrunner-servlet from 2.0.4 to 2.0.6 * Bump pmd from 6.27.0 to 6.28.0 * Bump junit from 4.13 to 4.13.1 * Bump junit-quickcheck from 0.9.4 to 0.9.5 * Bump mockito-core from 3.5.11 to 3.5.15 * Bump compiler from 2.3.6 to 2.4.0 > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17219115#comment-17219115 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5652: URL: https://github.com/apache/geode/pull/5652 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17218875#comment-17218875 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5652: URL: https://github.com/apache/geode/pull/5652 some time has passed since 3rd-party dependency versions were last updated, so update again to latest patch version where we can This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17209349#comment-17209349 ] Geode Integration commented on GEODE-8496: -- OOM that forced archunit to be rolled back: [IntegrationTestOpenJDK8 #462|https://concourse.apachegeode-ci.info/teams/main/pipelines/apache-develop-main/jobs/IntegrationTestOpenJDK8/builds/462] > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > Fix For: 1.14.0 > > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17203503#comment-17203503 ] ASF subversion and git services commented on GEODE-8496: Commit 502faccd1a056dea37e232db41f024f031fc6e46 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=502facc ] GEODE-8496: un-upgrade archunit to avoid OOM on JDK8 (#5565) * GEODE-8496: un-upgrade archunit to avoid OOM on JDK8 * don't try to bump archunit in the future > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17203502#comment-17203502 ] ASF subversion and git services commented on GEODE-8496: Commit 502faccd1a056dea37e232db41f024f031fc6e46 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=502facc ] GEODE-8496: un-upgrade archunit to avoid OOM on JDK8 (#5565) * GEODE-8496: un-upgrade archunit to avoid OOM on JDK8 * don't try to bump archunit in the future > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17203500#comment-17203500 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5565: URL: https://github.com/apache/geode/pull/5565 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17203303#comment-17203303 ] ASF GitHub Bot commented on GEODE-8496: --- Bill commented on pull request #5565: URL: https://github.com/apache/geode/pull/5565#issuecomment-700102527 @onichols-pivotal please include a reference to the ArchUnit 0.13.0 bug you found In general, we found with older versions of the tool, that sometimes we had to break up processing into smaller sets to avoid out of memory errors. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17202527#comment-17202527 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5565: URL: https://github.com/apache/geode/pull/5565 #5537 passed in PR checked, which run only JDK11, but under JDK8 a bug in archunit is encountered which results in OOM: https://concourse.apachegeode-ci.info/teams/main/pipelines/apache-develop-main/jobs/IntegrationTestOpenJDK8/builds/462 > java.lang.OutOfMemoryError: Java heap space >at java.util.Formatter.parse(Formatter.java:2560) >at java.util.Formatter.format(Formatter.java:2501) >at java.util.Formatter.format(Formatter.java:2455) >at java.lang.String.format(String.java:2940) >at com.tngtech.archunit.core.domain.SourceCodeLocation.formatLocation(SourceCodeLocation.java:60) >at com.tngtech.archunit.core.domain.SourceCodeLocation.(SourceCodeLocation.java:78) >at com.tngtech.archunit.core.domain.SourceCodeLocation.of(SourceCodeLocation.java:52) >... This archunit bug seems to have been introduced in 0.13.0, so downgrade to the version prior This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17202466#comment-17202466 ] ASF subversion and git services commented on GEODE-8496: Commit 74d446a1bc92991bb4793ec7032cc3a01650ac82 in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=74d446a ] GEODE-8496: skip windows test that broke after bumping junit from 4.12 to 4.13 (#5554) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17201128#comment-17201128 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal commented on pull request #5543: URL: https://github.com/apache/geode/pull/5543#issuecomment-697997186 Fixed by #5547 thanks! This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17201124#comment-17201124 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5547: URL: https://github.com/apache/geode/pull/5547 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17201126#comment-17201126 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal closed pull request #5543: URL: https://github.com/apache/geode/pull/5543 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17201127#comment-17201127 ] ASF subversion and git services commented on GEODE-8496: Commit c49389e99ca801d70f2f2c46a98c960ebad9b872 in geode's branch refs/heads/develop from Jinmei Liao [ https://gitbox.apache.org/repos/asf?p=geode.git;h=c49389e ] GEODE-8496: fix rest management test after dependency bump (#5547) > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17201122#comment-17201122 ] ASF subversion and git services commented on GEODE-8496: Commit a355764db9209f9eee68e293f0187971c3dedd5e in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=a355764 ] GEODE-8496: Bump mockito from 3.3.3 to 3.5.11 (#5540) * Bump mockito from 3.3.3 to 3.5.11 * replace deprecated calls to initMocks() * fix field setting on a test to not use Mockito static function Co-authored-by: Hale Bales > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17201121#comment-17201121 ] ASF subversion and git services commented on GEODE-8496: Commit a355764db9209f9eee68e293f0187971c3dedd5e in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=a355764 ] GEODE-8496: Bump mockito from 3.3.3 to 3.5.11 (#5540) * Bump mockito from 3.3.3 to 3.5.11 * replace deprecated calls to initMocks() * fix field setting on a test to not use Mockito static function Co-authored-by: Hale Bales > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17201039#comment-17201039 ] ASF GitHub Bot commented on GEODE-8496: --- jinmeiliao opened a new pull request #5547: URL: https://github.com/apache/geode/pull/5547 Thank you for submitting a contribution to Apache Geode. In order to streamline the review of the contribution we ask you to ensure the following steps have been taken: ### For all changes: - [ ] Is there a JIRA ticket associated with this PR? Is it referenced in the commit message? - [ ] Has your PR been rebased against the latest commit within the target branch (typically `develop`)? - [ ] Is your initial contribution a single, squashed commit? - [ ] Does `gradlew build` run cleanly? - [ ] Have you written or updated unit tests to verify your changes? - [ ] If adding new dependencies to the code, are these dependencies licensed in a way that is compatible for inclusion under [ASF 2.0](http://www.apache.org/legal/resolved.html#category-a)? ### Note: Please ensure that once the PR is submitted, check Concourse for build issues and submit an update to your PR as soon as possible. If you need help, please send an email to d...@geode.apache.org. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17200554#comment-17200554 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5543: URL: https://github.com/apache/geode/pull/5543 I've uncommented the test that started failing after 37 dependencies were bumped for GEODE-8496. It appears as if the test was relying on a quirk of an underlying library to generate the unusual exception text it is expecting...seems as if we should really be enforcing this restriction in Geode code, if it's important... This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17200516#comment-17200516 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5527: URL: https://github.com/apache/geode/pull/5527 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17200453#comment-17200453 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5543: URL: https://github.com/apache/geode/pull/5543 I've uncommented the test that started failing after 37 dependencies were bumped for GEODE-8496. It appears as if the test was relying on a quirk of an underlying library to generate the unusual exception text it is expecting...seems as if we should really be enforcing this restriction in Geode code, if it's important... This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17200425#comment-17200425 ] ASF subversion and git services commented on GEODE-8496: Commit 86c32e48942fd1c694ac422779e8f8578f7eaf9b in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=86c32e4 ] GEODE-8496: bump dependency versions (#5527) * Bump arakelian:java-jq from 0.10.1 to 1.1.0 * Bump awaitility from 4.0.2 to 4.0.3 * Bump bcel from 6.4.1 to 6.5.0 * Bump bcpkix-jdk15on from 1.64 to 1.66 * Bump cargo-core-uberjar from 1.7.11 to 1.8.1 * Bump commons-codec from 1.14 to 1.15 * Bump commons-io from 2.6 to 2.8.0 * Bump commons-lang3 from 3.10 to 3.11 * Bump commons-text from 1.8 to 1.9 * Bump commons-validator from 1.6 to 1.7 * Bump compiler from 2.3.5 to 2.3.6 * Bump fastutil from 8.3.1 to 8.4.2 * Bump guava from 28.2-jre to 29.0-jre * Bump hamcrest from 1.3 to 2.2 * Bump HikariCP from 3.4.2 to 3.4.5 * Bump jackson from 2.10.1 to 2.11.2 * Bump jackson-module-scala_2.10 from 2.10.0 to 2.11.2 * Bump jedis from 3.2.0 to 3.3.0 * Bump jetty from 9.4.21.v20190926 to 9.4.31.v20200723 * Bump jmh from 1.23 to 1.25.2 * Bump jna from 5.5.0 to 5.6.0 * Bump junit-quickcheck-core from 0.9.1 to 0.9.4 * Bump lettuce-core from 5.2.1.RELEASE to 5.3.4.RELEASE * Bump log4j-api from 2.13.1 to 2.13.3 * Bump micrometer-core from 1.4.1 to 1.5.5 * Bump mysql-connector-java from 8.0.17 to 8.0.21 * Bump pmd from 6.22.0 to 6.27.0 * Bump powermock from 2.0.2 to 2.0.7 * Bump randomizedtesting-runner from 2.7.7 to 2.7.8 * Bump spring from 5.2.5 to 5.2.9 * Bump spring-boot-starter from 2.2.1.RELEASE to 2.3.4.RELEASE * Bump spring-hateoas from 1.0.1.RELEASE to 1.1.2.RELEASE * Bump spring-security from 5.3.2.RELEASE to 5.4.0 * Bump spring-session-data-redis from 2.2.1.RELEASE to 2.3.1.RELEASE * Bump swagger-annotations from 1.5.23 to 1.6.2 * Bump testcontainers from 1.13.0 to 1.14.3 * Bump tomcat-catalina from 7.0.99 to 7.0.106 * Bump tomcat-catalina from 8.5.50 to 8.5.58 * Bump tomcat-catalina from 9.0.33 to 9.0.38 * add instructions for bumping dependencies will create separate PRs for a few others that may not be "easy" > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17200423#comment-17200423 ] ASF subversion and git services commented on GEODE-8496: Commit 86c32e48942fd1c694ac422779e8f8578f7eaf9b in geode's branch refs/heads/develop from Owen Nichols [ https://gitbox.apache.org/repos/asf?p=geode.git;h=86c32e4 ] GEODE-8496: bump dependency versions (#5527) * Bump arakelian:java-jq from 0.10.1 to 1.1.0 * Bump awaitility from 4.0.2 to 4.0.3 * Bump bcel from 6.4.1 to 6.5.0 * Bump bcpkix-jdk15on from 1.64 to 1.66 * Bump cargo-core-uberjar from 1.7.11 to 1.8.1 * Bump commons-codec from 1.14 to 1.15 * Bump commons-io from 2.6 to 2.8.0 * Bump commons-lang3 from 3.10 to 3.11 * Bump commons-text from 1.8 to 1.9 * Bump commons-validator from 1.6 to 1.7 * Bump compiler from 2.3.5 to 2.3.6 * Bump fastutil from 8.3.1 to 8.4.2 * Bump guava from 28.2-jre to 29.0-jre * Bump hamcrest from 1.3 to 2.2 * Bump HikariCP from 3.4.2 to 3.4.5 * Bump jackson from 2.10.1 to 2.11.2 * Bump jackson-module-scala_2.10 from 2.10.0 to 2.11.2 * Bump jedis from 3.2.0 to 3.3.0 * Bump jetty from 9.4.21.v20190926 to 9.4.31.v20200723 * Bump jmh from 1.23 to 1.25.2 * Bump jna from 5.5.0 to 5.6.0 * Bump junit-quickcheck-core from 0.9.1 to 0.9.4 * Bump lettuce-core from 5.2.1.RELEASE to 5.3.4.RELEASE * Bump log4j-api from 2.13.1 to 2.13.3 * Bump micrometer-core from 1.4.1 to 1.5.5 * Bump mysql-connector-java from 8.0.17 to 8.0.21 * Bump pmd from 6.22.0 to 6.27.0 * Bump powermock from 2.0.2 to 2.0.7 * Bump randomizedtesting-runner from 2.7.7 to 2.7.8 * Bump spring from 5.2.5 to 5.2.9 * Bump spring-boot-starter from 2.2.1.RELEASE to 2.3.4.RELEASE * Bump spring-hateoas from 1.0.1.RELEASE to 1.1.2.RELEASE * Bump spring-security from 5.3.2.RELEASE to 5.4.0 * Bump spring-session-data-redis from 2.2.1.RELEASE to 2.3.1.RELEASE * Bump swagger-annotations from 1.5.23 to 1.6.2 * Bump testcontainers from 1.13.0 to 1.14.3 * Bump tomcat-catalina from 7.0.99 to 7.0.106 * Bump tomcat-catalina from 8.5.50 to 8.5.58 * Bump tomcat-catalina from 9.0.33 to 9.0.38 * add instructions for bumping dependencies will create separate PRs for a few others that may not be "easy" > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17200420#comment-17200420 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal merged pull request #5527: URL: https://github.com/apache/geode/pull/5527 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17199745#comment-17199745 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5527: URL: https://github.com/apache/geode/pull/5527 Thank you for submitting a contribution to Apache Geode. In order to streamline the review of the contribution we ask you to ensure the following steps have been taken: ### For all changes: - [ ] Is there a JIRA ticket associated with this PR? Is it referenced in the commit message? - [ ] Has your PR been rebased against the latest commit within the target branch (typically `develop`)? - [ ] Is your initial contribution a single, squashed commit? - [ ] Does `gradlew build` run cleanly? - [ ] Have you written or updated unit tests to verify your changes? - [ ] If adding new dependencies to the code, are these dependencies licensed in a way that is compatible for inclusion under [ASF 2.0](http://www.apache.org/legal/resolved.html#category-a)? ### Note: Please ensure that once the PR is submitted, check Concourse for build issues and submit an update to your PR as soon as possible. If you need help, please send an email to d...@geode.apache.org. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > Labels: pull-request-available > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17199246#comment-17199246 ] ASF GitHub Bot commented on GEODE-8496: --- onichols-pivotal opened a new pull request #5527: URL: https://github.com/apache/geode/pull/5527 Thank you for submitting a contribution to Apache Geode. In order to streamline the review of the contribution we ask you to ensure the following steps have been taken: ### For all changes: - [ ] Is there a JIRA ticket associated with this PR? Is it referenced in the commit message? - [ ] Has your PR been rebased against the latest commit within the target branch (typically `develop`)? - [ ] Is your initial contribution a single, squashed commit? - [ ] Does `gradlew build` run cleanly? - [ ] Have you written or updated unit tests to verify your changes? - [ ] If adding new dependencies to the code, are these dependencies licensed in a way that is compatible for inclusion under [ASF 2.0](http://www.apache.org/legal/resolved.html#category-a)? ### Note: Please ensure that once the PR is submitted, check Concourse for build issues and submit an update to your PR as soon as possible. If you need help, please send an email to d...@geode.apache.org. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (GEODE-8496) bump dependencies for 1.14
[ https://issues.apache.org/jira/browse/GEODE-8496?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17195805#comment-17195805 ] Owen Nichols commented on GEODE-8496: - depends on GEODE-8066 > bump dependencies for 1.14 > -- > > Key: GEODE-8496 > URL: https://issues.apache.org/jira/browse/GEODE-8496 > Project: Geode > Issue Type: Improvement > Components: build >Reporter: Owen Nichols >Priority: Major > > now is a good time in the lull between 1.13 and 1.14 to roll 3rd party > libraries to latest versions wherever possible. Doing this proactively helps > us stay ahead of CVEs and keep up with bugfixes. -- This message was sent by Atlassian Jira (v8.3.4#803005)
