Build failed in Jenkins: POI-DSL-1.8 #347

See Changes: [fanningpj] [github-90] change default DSIG algorithm to SHA256. Thanks to Jörn Franke. This closes #90 -- [...truncated 143.54 KB...] [junit] Running org.apac

Build failed in Jenkins: POI-DSL-OpenJDK #355

See Changes: [fanningpj] [github-90] change default DSIG algorithm to SHA256. Thanks to Jörn Franke. This closes #90 [fanningpj] add gradle wrapper [fanningpj] bouncycastle 1.59

Re: ***UNCHECKED*** RE: adding dependencies on h2 and mockito

If the goal is to allow for a very large shared strings hashtable, perhaps a lighter weight option like MapDB [1][2] is a better fit? It's JAR is only 700K, and it looks quite reasonably featured (has an implementation of HashMap) and flexible in its configuration for trading memory/performance/sc

Build failed in Jenkins: POI-DSL-Windows-1.8 #122

See Changes: [fanningpj] [github-90] change default DSIG algorithm to SHA256. Thanks to Jörn Franke. This closes #90 [fanningpj] add gradle wrapper [fanningpj] bouncycastle 1.59 [fanningpj] bouncycastle 1.5

Re: ***UNCHECKED*** RE: adding dependencies on h2 and mockito

Hi - We need to be really careful not to make OOXML deployments larger. Why is H2, a database engine, being considered? Regards, Dave Sent from my iPhone > On Jan 26, 2018, at 11:55 AM, Alain FAGOT BÉAREZ wrote: > > You might have heard of Hypersonic SQL, some 10 years ago. H2 is the second

Re: ***UNCHECKED*** RE: adding dependencies on h2 and mockito

You might have heard of Hypersonic SQL, some 10 years ago. H2 is the second version thereof. ⁣Gesendet mit BlueMail ​ Originale Nachricht Von: Greg Woolsey Gesendet: Fri Jan 26 16:42:44 GMT-03:00 2018 An: POI Developers List Betreff: Re: ***UNCHECKED*** RE: adding dependenci

Re: ***UNCHECKED*** RE: adding dependencies on h2 and mockito

Total dependency size is important to my deployment, and probably others. I don't use SXSSF at all, and would not need/want the dependency (which I've never heard of in 20 years of database and Java development, which is strange to me, but irrelevant). My preference is to make it optional, even th

CVE-2017-12626 – Denial of Service Vulnerabilities in Apache POI < 3.17

Title: CVE-2017-12626 – Denial of Service Vulnerabilities in Apache POI < 3.17 Severity: Important Vendor: The Apache Software Foundation Versions affected: versions prior to version 3.17 Description:        Apache POI versions prior to release 3.17 are vulnerable to Denial of Service Attacks:

Re: poi .classpath file

In other projects, it is recommended NOT to version control IDE configurations. For this reason, I use the Git global ignore configuration in order not to accidentally commit my changes. +1 Originale Nachricht Von: "pj.fanning" Gesendet: Fri Jan 26 09:49:08 GMT-03:00 2018 A

[Bug 62050] Java throws me the WARNING

https://bz.apache.org/bugzilla/show_bug.cgi?id=62050 Sergei changed: What|Removed |Added OS||All -- You are receiving this mail because:

[Bug 62050] New: Java throws me the WARNING

https://bz.apache.org/bugzilla/show_bug.cgi?id=62050 Bug ID: 62050 Summary: Java throws me the WARNING Product: POI Version: 4.0-dev Hardware: PC Status: NEW Severity: normal Priority: P2 Component: XWP

[GitHub] poi pull request #90: Replace default insecure SHA1 hash algorithm

Github user asfgit closed the pull request at: https://github.com/apache/poi/pull/90 --- - To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org For additional commands, e-mail: dev-h...@poi.apache.org

poi .classpath file

Is it ok to delete this and just have Eclipse users create the Eclipse workspace using `gradle eclipse`? Just makes for fewer places where we need to manage the jar version numbers. -- Sent from: http://apache-poi.1045710.n5.nabble.com/POI-Dev-f2312866.html -

***UNCHECKED*** RE: adding dependencies on h2 and mockito

I could make h2 a `provided` dependency in our poi-ooxml pom. The use of h2 is opt-in in the new code in my PR but I'll need to refactor the code to allow our code not to throw ClassNotFoundException if the h2 classes are not on the runtime classpath. This is do-able but my concern is that this is

RE: adding dependencies on h2 and mockito

Could the functionality be written to use H2 if it exists in the classpath, but stick with the current process if it does not? -Original Message- From: Dominik Stadler [mailto:dominik.stad...@gmx.at] Sent: Friday, January 26, 2018 5:10 AM To: POI Developers List Subject: Re: adding depe

Re: adding dependencies on h2 and mockito

Hi, Mockito for testing is fine for me, H2 as requirement for everybody sounds a bit heavy, would we still keep it optional unless somebody actually uses this functionality? I.e. if you have Maven/Gradle dependencies it wouldn't be dragged in by default? Thanks... Dominik. On Fri, Jan 26, 2018 a

adding dependencies on h2 and mockito

Are there any objections to me adding dependencies on h2 jar dependency for https://github.com/apache/poi/pull/85 and a test dependency on mockito? I think mockito would be useful for allowing us to test edge cases. An example is https://svn.apache.org/viewvc?view=revision&revision=1822253 where c