> Help also needed for https://github.com/apache/commons-vfs/pull/225
I thought you wanna talk about all dependabot failures in vfs in the same thread. So this email thread is only focused on sshd and ftpserver? Gary Gregory <[email protected]> 于2022年1月1日周六 01:47写道: > On Fri, Dec 31, 2021 at 12:16 PM Xeno Amess <[email protected]> wrote: > > > @Gary Gregory > > well at least you can have this from me > > https://github.com/apache/commons-vfs/pull/233 > > seems it can work, but don't merge until all cis are done. > > > > Let's keep this email thread focused please. > > Gary > > > > > > Rob Spoor <[email protected]> 于2022年1月1日周六 01:10写道: > > > > > A quick check shows that some more dependencies are needed, for code > > > split off from sshd-core. I found some: > > > * https://mvnrepository.com/artifact/org.apache.sshd/sshd-sftp > > > * https://mvnrepository.com/artifact/org.apache.sshd/sshd-scp > > > > > > However, even after adding these two I was still missing classes. > > > Because it's only used for testing I wouldn't let this block any > > > potential release. I still use version 1.7.0 for testing a project > > > because upgrading just wasn't worth the effort. However, changing the > > > version from 2.8.0 to 1.7.0 didn't solve a lot of issues; I'm thinking > > > the upgrade from 0.x to 1.x is bigger than the upgrade from 1.x to 2.x > > > (don't get me started on 0.x to 2.x). > > > > > > Rob > > > > > > > > > On 31/12/2021 17:39, Gary Gregory wrote: > > > > Help also needed for https://github.com/apache/commons-vfs/pull/225 > > > > :-) > > > > Gary > > > > > > > > On Fri, Dec 31, 2021 at 8:28 AM Gary Gregory <[email protected] > > > > > wrote: > > > > > > > >> Does anyone have any free time to look at this failure? > > > >> > > > >> I'm still dealing with Log4j fallout... > > > >> > > > >> Gary > > > >> > > > >> ---------- Forwarded message --------- > > > >> From: GitBox <[email protected]> > > > >> Date: Fri, Dec 31, 2021 at 6:05 AM > > > >> Subject: [GitHub] [commons-vfs] dependabot[bot] opened a new pull > > > request > > > >> #231: Bump ftpserver-core from 1.1.1 to 1.1.2 > > > >> To: <[email protected]> > > > >> > > > >> > > > >> > > > >> dependabot[bot] opened a new pull request #231: > > > >> URL: https://github.com/apache/commons-vfs/pull/231 > > > >> > > > >> > > > >> Bumps [ftpserver-core](https://github.com/apache/mina-ftpserver > ) > > > from > > > >> 1.1.1 to 1.1.2. > > > >> <details> > > > >> <summary>Commits</summary> > > > >> <ul> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/a04a44d756e9ae18d0461326c761a851b8346d3d > > > "><code>a04a44d</code></a> > > > >> [maven-release-plugin] prepare release ftpserver-parent-1.1.2</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/d7fdad2429cf7b2ae433e10fa7df3b7961fe3704 > > > "><code>d7fdad2</code></a> > > > >> Fixed the javadoc failures</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/b4e8d0e39622ce5b121c183f070fe1ad67b41c4f > > > "><code>b4e8d0e</code></a> > > > >> [maven-release-plugin] rollback the release of > > > ftpserver-parent-1.1.2</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/59947ea85dc7db2529f619886fd901fd0284bd42 > > > "><code>59947ea</code></a> > > > >> [maven-release-plugin] prepare for next development iteration</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/92c6af05cdf0eddd3d2e613b52def57984d78d33 > > > "><code>92c6af0</code></a> > > > >> [maven-release-plugin] prepare release ftpserver-parent-1.1.2</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/455a4336a4e9b319e1f6b5836b29dc095467c091 > > > "><code>455a433</code></a> > > > >> Fixed the outputStatement to make Javadoc plugin happy"</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/94fabe3c1e4776a1754e20403f9c5830231542f7 > > > "><code>94fabe3</code></a> > > > >> [maven-release-plugin] rollback the release of > > > ftpserver-parent-1.1.2</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/fd1a0d89870c89a7a7c619d1b8f19786e7ce75fb > > > "><code>fd1a0d8</code></a> > > > >> [maven-release-plugin] prepare for next development iteration</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/990a5cebd692361b41e99d1bdf9cd2a9b1eed38a > > > "><code>990a5ce</code></a> > > > >> [maven-release-plugin] prepare release ftpserver-parent-1.1.2</li> > > > >> <li><a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/commit/402dbb1298aa897ec15ef854d3c2493a0c766141 > > > "><code>402dbb1</code></a> > > > >> [maven-release-plugin] rollback the release of ftpserver-1.1.3</li> > > > >> <li>Additional commits viewable in <a href=" > > > >> > > > > > > https://github.com/apache/mina-ftpserver/compare/ftpserver-1.1.1...ftpserver-parent-1.1.2 > > > ">compare > > > >> view</a></li> > > > >> </ul> > > > >> </details> > > > >> <br /> > > > >> > > > >> > > > >> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores > > > >> ) > > > >> > > > >> Dependabot will resolve any conflicts with this PR as long as > you > > > don't > > > >> alter it yourself. You can also trigger a rebase manually by > > commenting > > > >> `@dependabot rebase`. > > > >> > > > >> [//]: # (dependabot-automerge-start) > > > >> [//]: # (dependabot-automerge-end) > > > >> > > > >> --- > > > >> > > > >> <details> > > > >> <summary>Dependabot commands and options</summary> > > > >> <br /> > > > >> > > > >> You can trigger Dependabot actions by commenting on this PR: > > > >> - `@dependabot rebase` will rebase this PR > > > >> - `@dependabot recreate` will recreate this PR, overwriting any > > > edits > > > >> that have been made to it > > > >> - `@dependabot merge` will merge this PR after your CI passes on > > it > > > >> - `@dependabot squash and merge` will squash and merge this PR > > after > > > >> your CI passes on it > > > >> - `@dependabot cancel merge` will cancel a previously requested > > > merge > > > >> and block automerging > > > >> - `@dependabot reopen` will reopen this PR if it is closed > > > >> - `@dependabot close` will close this PR and stop Dependabot > > > recreating > > > >> it. You can achieve the same result by closing it manually > > > >> - `@dependabot ignore this major version` will close this PR and > > > stop > > > >> Dependabot creating any more for this major version (unless you > reopen > > > the > > > >> PR or upgrade to it yourself) > > > >> - `@dependabot ignore this minor version` will close this PR and > > > stop > > > >> Dependabot creating any more for this minor version (unless you > reopen > > > the > > > >> PR or upgrade to it yourself) > > > >> - `@dependabot ignore this dependency` will close this PR and > stop > > > >> Dependabot creating any more for this dependency (unless you reopen > > the > > > PR > > > >> or upgrade to it yourself) > > > >> > > > >> > > > >> </details> > > > >> > > > >> > > > >> -- > > > >> This is an automated message from the Apache Git Service. > > > >> To respond to the message, please log on to GitHub and use the > > > >> URL above to go to the specific comment. > > > >> > > > >> To unsubscribe, e-mail: [email protected] > > > >> > > > >> For queries about this service, please contact Infrastructure at: > > > >> [email protected] > > > > > > --------------------------------------------------------------------- > > > To unsubscribe, e-mail: [email protected] > > > For additional commands, e-mail: [email protected] > > > > > > > > >
