Beam Dependency Check Report (2019-11-11)

Mon, 11 Nov 2019 04:05:55 -0800

High Priority Dependency Updates Of Beam Python SDK:

Dependency Name Current Version Latest Version Release Date Of the Current Used Version Release Date Of The Latest Release JIRA Issue
mock 2.0.0 3.0.5 2019-05-20 2019-05-20BEAM-7369
oauth2client 3.0.0 4.1.3 2018-12-10 2018-12-10BEAM-6089
Sphinx 1.8.5 2.2.1 2019-05-20 2019-10-28BEAM-7370

High Priority Dependency Updates Of Beam Java SDK:

Dependency Name Current Version Latest Version Release Date Of the Current Used Version Release Date Of The Latest Release JIRA Issue
com.github.ben-manes.versions:com.github.ben-manes.versions.gradle.plugin 0.20.0 0.27.0 2019-02-11 2019-10-21BEAM-6645
com.github.spotbugs:spotbugs 3.1.12 4.0.0-beta4 2019-03-01 2019-09-18BEAM-7792
com.github.spotbugs:spotbugs-annotations 3.1.12 4.0.0-beta4 2019-03-01 2019-09-18BEAM-6951
javax.servlet:javax.servlet-api 3.1.0 4.0.1 2013-04-25 2018-04-20BEAM-5750
org.conscrypt:conscrypt-openjdk 1.1.3 2.2.1 2018-06-04 2019-08-08BEAM-5748
org.eclipse.jetty:jetty-server 9.2.10.v20150310 10.0.0-alpha0 2015-03-10 2019-07-11BEAM-5752
org.eclipse.jetty:jetty-servlet 9.2.10.v20150310 10.0.0-alpha0 2015-03-10 2019-07-11BEAM-5753
Gradle: 5.2.1 6.0 2019-08-19 2019-11-11BEAM-8002

A dependency update is high priority if it satisfies one of following criteria:

  • It has major versions update available, e.g. org.assertj:assertj-core 2.5.0 -> 3.10.0;
  • It is over 3 minor versions behind the latest version, e.g. org.tukaani:xz 1.5 -> 1.8;
  • The current version is behind the later version for over 180 days, e.g. com.google.auto.service:auto-service 2014-10-24 -> 2017-12-11.

In Beam, we make a best-effort attempt at keeping all dependencies up-to-date. In the future, issues will be filed and tracked for these automatically, but in the meantime you can search for existing issues or open a new one.

For more information: Beam Dependency Guide

Reply via email to