[PR] Bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.13.0 to 3.13.1 [cxf-xjc-utils]
dependabot[bot] opened a new pull request, #146: URL: https://github.com/apache/cxf-xjc-utils/pull/146 Bumps [org.apache.maven.plugin-tools:maven-plugin-annotations](https://github.com/apache/maven-plugin-tools) from 3.13.0 to 3.13.1. Commits https://github.com/apache/maven-plugin-tools/commit/7098c969b542b8bb090d0f52343d61bf748aa6fe";>7098c96 [maven-release-plugin] prepare release maven-plugin-tools-3.13.1 https://github.com/apache/maven-plugin-tools/commit/2144febc1622bad8df9b3a9e9e15b1f19da63d5e";>2144feb --- https://github.com/apache/maven-plugin-tools/commit/441b5f549020ed2416a9172d79c3c939a4e72dc2";>441b5f5 Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 https://github.com/apache/maven-plugin-tools/commit/ca6a0739d4c239af9c52b8adb771579913082325";>ca6a073 [MPLUGIN-526] Clean up dependencies reported by dependencies:analyze https://github.com/apache/maven-plugin-tools/commit/993425ca11db649872cee31474f889a77ef35bea";>993425c [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/maven-plugin-tools/compare/maven-plugin-tools-3.13.0...maven-plugin-tools-3.13.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-plugin-plugin from 3.13.0 to 3.13.1 [cxf-xjc-utils]
dependabot[bot] opened a new pull request, #147: URL: https://github.com/apache/cxf-xjc-utils/pull/147 Bumps [org.apache.maven.plugins:maven-plugin-plugin](https://github.com/apache/maven-plugin-tools) from 3.13.0 to 3.13.1. Commits https://github.com/apache/maven-plugin-tools/commit/7098c969b542b8bb090d0f52343d61bf748aa6fe";>7098c96 [maven-release-plugin] prepare release maven-plugin-tools-3.13.1 https://github.com/apache/maven-plugin-tools/commit/2144febc1622bad8df9b3a9e9e15b1f19da63d5e";>2144feb --- https://github.com/apache/maven-plugin-tools/commit/441b5f549020ed2416a9172d79c3c939a4e72dc2";>441b5f5 Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 https://github.com/apache/maven-plugin-tools/commit/ca6a0739d4c239af9c52b8adb771579913082325";>ca6a073 [MPLUGIN-526] Clean up dependencies reported by dependencies:analyze https://github.com/apache/maven-plugin-tools/commit/993425ca11db649872cee31474f889a77ef35bea";>993425c [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/maven-plugin-tools/compare/maven-plugin-tools-3.13.0...maven-plugin-tools-3.13.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: Deprecate aegis databinding ?
Hi Vassilis, Thanks for your input . It's good to know that there is still some usage that jaxb or xmlbeans can't nicely handle. I am curious to know more details about this use case about transfering Map Of Maps or Map of Collections. Could you please paste a test case or some code snippet to have a look ? Thanks, Jim On Mon, Apr 29, 2024 at 5:46 PM Vassilis Virvilis wrote: > I am using it. > > Although I plan to move to JAX-RS. However, I can't be sure about the > scheduling... > > Aegis is the simplest and most versatile databinding for java first > development in my opinion. > > The others (jax-ws, jaxb and xmlbeans) never worked for me when I had to > transfer > Map Of Maps or Map of Collections. > > I just wanted to give you my one datapoint. I understand that the > developers will have to weigh > carrying around a databinding vs its existing usage vs the development > effort required. > > Vassilis > > On 4/22/24 6:06 AM, Jim Ma wrote: > > Hi all, > > I am not sure if it's the time to deprecate some old cxf things that no > one > > is using, so I write to get your thoughts/ideas here. > > The first I can think of is aegis databinding. Is the aegis databinding > > still used by CXF users ? Is it a good time to deprecate and remove in > the > > future release ? > > > > Thanks, > > Jim > > > > -- > > __ > > Vassilis Virvilis Ph.D. > Head of IT > Biovista Inc. > > Stay tuned > www: http://www.biovista.com > LinkedIn: https://www.linkedin.com/company/biovista > Twitter: https://twitter.com/BiovistaInc/ > Vizit https://twitter.com/BiovistaVizit/ > Facebook: https://www.facebook.com/biovistainc > Vizit (research): https://www.facebook.com/BiovistaVizit > YouTube: https://www.youtube.com/user/BiovistaInc > > -- > US Offices > 2421 Ivy Road > Charlottesville, VA 22903 > USA > T: +1.434.971.1141 > F: +1.434.971.1144 > > European Offices > 34 Rodopoleos Street > Ellinikon, Athens 16777 > GREECE > T: +30.210.9629848 > F: +30.210.9647606 > > Biovista is a privately held biotechnology company that finds novel uses > for existing drugs, and profiles their side effects using their mechanism > of action. Biovista develops its own pipeline of drugs in CNS, oncology, > auto-immune and rare diseases. Biovista is collaborating with > biopharmaceutical companies on indication expansion and de-risking of their > portfolios and with the FDA on adverse event prediction. > >
Re: [PR] Bump org.apache.maven.plugins:maven-plugin-plugin from 3.13.0 to 3.13.1 [cxf-xjc-utils]
reta merged PR #147: URL: https://github.com/apache/cxf-xjc-utils/pull/147 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.13.0 to 3.13.1 [cxf-xjc-utils]
reta merged PR #146: URL: https://github.com/apache/cxf-xjc-utils/pull/146 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump github/codeql-action from 3.25.6 to 3.25.7 [cxf]
dependabot[bot] opened a new pull request, #1907: URL: https://github.com/apache/cxf/pull/1907 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.6 to 3.25.7. Changelog Sourced from https://github.com/github/codeql-action/blob/main/CHANGELOG.md";>github/codeql-action's changelog. CodeQL Action Changelog See the https://github.com/github/codeql-action/releases";>releases page for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. [UNRELEASED] No user facing changes. 3.25.7 - 31 May 2024 We are rolling out a feature in May/June 2024 that will reduce the Actions cache usage of the Action by keeping only the newest TRAP cache for each language. https://redirect.github.com/github/codeql-action/pull/2306";>#2306 3.25.6 - 20 May 2024 Update default CodeQL bundle version to 2.17.3. https://redirect.github.com/github/codeql-action/pull/2295";>#2295 3.25.5 - 13 May 2024 Add a compatibility matrix of supported CodeQL Action, CodeQL CLI, and GitHub Enterprise Server versions to the https://github.com/github/codeql-action/blob/main/README.md";>https://github.com/github/codeql-action/blob/main/README.md. https://redirect.github.com/github/codeql-action/pull/2273";>#2273 Avoid printing out a warning for a missing on.push trigger when the CodeQL Action is triggered via a workflow_call event. https://redirect.github.com/github/codeql-action/pull/2274";>#2274 The tools: latest input to the init Action has been renamed to tools: linked. This option specifies that the Action should use the tools shipped at the same time as the Action. The old name will continue to work for backwards compatibility, but we recommend that new workflows use the new name. https://redirect.github.com/github/codeql-action/pull/2281";>#2281 3.25.4 - 08 May 2024 Update default CodeQL bundle version to 2.17.2. https://redirect.github.com/github/codeql-action/pull/2270";>#2270 3.25.3 - 25 Apr 2024 Update default CodeQL bundle version to 2.17.1. https://redirect.github.com/github/codeql-action/pull/2247";>#2247 Workflows running on macos-latest using CodeQL CLI versions before v2.15.1 will need to either upgrade their CLI version to v2.15.1 or newer, or change the platform to an Intel MacOS runner, such as macos-12. ARM machines with SIP disabled, including the newest macos-latest image, are unsupported for CLI versions before 2.15.1. https://redirect.github.com/github/codeql-action/pull/2261";>#2261 3.25.2 - 22 Apr 2024 No user facing changes. 3.25.1 - 17 Apr 2024 We are rolling out a feature in April/May 2024 that improves the reliability and performance of analyzing code when analyzing a compiled language with the autobuild https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages#codeql-build-modes";>build mode. https://redirect.github.com/github/codeql-action/pull/2235";>#2235 Fix a bug where the init Action would fail if --overwrite was specified in CODEQL_ACTION_EXTRA_OPTIONS. https://redirect.github.com/github/codeql-action/pull/2245";>#2245 3.25.0 - 15 Apr 2024 The deprecated feature for extracting dependencies for a Python analysis has been removed. https://redirect.github.com/github/codeql-action/pull/2224";>#2224 As a result, the following inputs and environment variables are now ignored: The setup-python-dependencies input to the init Action The CODEQL_ACTION_DISABLE_PYTHON_DEPENDENCY_INSTALLATION environment variable ... (truncated) Commits https://github.com/github/codeql-action/commit/f079b849aace61c81488f8bd40919487bd9f";>f079b84 Merge pull request https://redirect.github.com/github/codeql-action/issues/2317";>#2317 from github/update-v3.25.7-a095bf2a1 https://github.com/github/codeql-action/commit/e1a42688dbe6ce54cc33e2b6b65fc02abdb09762";>e1a4268 Update changelog for v3.25.7 https://github.com/github/codeql-action/commit/a095bf2a16b83cb3b52e6adba696c70f41e82864";>a095bf2 Merge pull request https://redirect.github.com/github/codeql-action/issues/2313";>#2313 from github/revert-2312-update-bundle/codeql-bundle-... https://github.com/github/codeql-action/commit/bbd4e19f51d83bb98b025b83b255e44eaa1a1e7f";>bbd4e19 Revert "Update default bundle to 2.17.4" https://github.com/github/codeql-action/commit/9ab5d16a3df4885b74bb18ab349bcc6c253ee3e0";>
[PR] Bump net.sourceforge.pmd:pmd-java from 6.55.0 to 7.2.0 [cxf]
dependabot[bot] opened a new pull request, #1908: URL: https://github.com/apache/cxf/pull/1908 Bumps [net.sourceforge.pmd:pmd-java](https://github.com/pmd/pmd) from 6.55.0 to 7.2.0. Release notes Sourced from https://github.com/pmd/pmd/releases";>net.sourceforge.pmd:pmd-java's releases. PMD 7.2.0 (31-May-2024) 31-May-2024 - 7.2.0 The PMD team is pleased to announce PMD 7.2.0. This is a minor release. Table Of Contents https://github.com/pmd/pmd/blob/HEAD/#new-and-noteworthy";>🚀 New and noteworthy https://github.com/pmd/pmd/blob/HEAD/#collections-exposed-as-xpath-attributes";>Collections exposed as XPath attributes https://github.com/pmd/pmd/blob/HEAD/#updated-pmd-designer";>Updated PMD Designer https://github.com/pmd/pmd/blob/HEAD/#fixed-issues";>🐛 Fixed Issues https://github.com/pmd/pmd/blob/HEAD/#api-changes";>🚨 API Changes https://github.com/pmd/pmd/blob/HEAD/#deprecated-api";>Deprecated API https://github.com/pmd/pmd/blob/HEAD/#external-contributions";>✨ External Contributions https://github.com/pmd/pmd/blob/HEAD/#stats";>📈 Stats 🚀 New and noteworthy Collections exposed as XPath attributes Up to now, all AST node getters would be exposed to XPath, as long as the return type was a primitive (boxed or unboxed), String or Enum. That meant that collections, even of these basic types, were not exposed, so for instance accessing Apex's ASTUserClass.getInterfaceNames() to list the interfaces implemented by a class was impossible from XPath, and would require writing a Java rule to check it. Since this release, PMD will also expose any getter returning a collection of any supported type as a sequence through an XPath attribute. They would require to use apropriate XQuery functions to manipulate the sequence. So for instance, to detect any given ASTUserClass in Apex that implements Queueable, it is now possible to write: /UserClass[@InterfaceNames = 'Queueable'] Updated PMD Designer This PMD release ships a new version of the pmd-designer. For the changes, see https://github.com/pmd/pmd-designer/releases/tag/7.2.0";>PMD Designer Changelog (7.2.0). 🐛 Fixed Issues core https://redirect.github.com/pmd/pmd/issues/4467";>#4467: [core] Expose collections from getters as XPath sequence attributes https://redirect.github.com/pmd/pmd/issues/4978";>#4978: [core] Referenced Rulesets do not emit details on validation errors https://redirect.github.com/pmd/pmd/pull/4983";>#4983: [cpd] Fix CPD crashes about unicode escapes https://redirect.github.com/pmd/pmd/issues/5009";>#5009: [core] Kotest tests aren't picked up by surefire java https://redirect.github.com/pmd/pmd/issues/4912";>#4912: [java] Unable to parse some Java9+ resource references https://redirect.github.com/pmd/pmd/pull/4973";>#4973: [java] Stop parsing Java for CPD https://redirect.github.com/pmd/pmd/issues/4980";>#4980: [java] Bad intersection, unrelated class types java.lang.Object[] and java.lang.Number https://redirect.github.com/pmd/pmd/pull/4988";>#4988: [java] Fix impl of ASTVariableId::isResourceDeclaration / VariableId/@ResourceDeclaration https://redirect.github.com/pmd/pmd/issues/4990";>#4990: [java] Add an attribute @PackageQualifier to ASTClassType https://redirect.github.com/pmd/pmd/issues/5006";>#5006: [java] Bad intersection, unrelated class types Child and Parent https://redirect.github.com/pmd/pmd/issues/5029";>#5029: [java] PMD 7.x throws stack overflow in TypeOps$ProjectionVisitor while parsing a Java class ... (truncated) Commits https://github.com/pmd/pmd/commit/38bc997d4e7f4b29cee86829915f17f925211800";>38bc997 [release] prepare release pmd_releases/7.2.0 https://github.com/pmd/pmd/commit/27a14cc61e4659447125422756e545fe2a7b96f0";>27a14cc Prepare pmd release 7.2.0 https://github.com/pmd/pmd/commit/e27b30e0b52229f66c5dae8aab0c2b95d877a135";>e27b30e Bump pmd-designer from 7.2.0-SNAPSHOT to 7.2.0 https://github.com/pmd/pmd/commit/d37769e71c64b9c8ffdea521bade7a17b0da39a8";>d37769e Bump builds-tools from 25-SNAPSHOT to 25 https://github.com/pmd/pmd/commit/2a0cba7b9155505a2a065339cf439dcd8e986692";>2a0cba7 [java] Improve LocalVariableCouldBeFinal (https://redirect.github.com/pmd/pmd/issues/5003";>#5003) https://github.com/pmd/pmd/commit/8a8402a0bd255c46375d452092643ef31bde7ba2";>8a8402a [doc] Update release notes (https://redirect.github.com/pmd/pmd/issues/1619";>#1619, https://redirect.github.com/pmd/pmd/issues/3122";>#3122, https://redirect.github.com/pmd/pmd/issues/5003";>#5003) https://github.com/pmd/pmd/commit/3890b561a13191af49a71d19aab81ba11e6b5129";>3890b56 [java] Remove FPs in UnnecessaryBoxing (https://redirect.github.com/pmd/pmd/issues/5019";>#5019) https://github.com/pmd/pmd/commit/224f5b83039b646c1dd5f29b9453346006425159";>224f5b8 [doc] Update release no
Re: [PR] Bump net.sourceforge.pmd:pmd-java from 6.55.0 to 7.1.0 [cxf]
dependabot[bot] closed pull request #1840: Bump net.sourceforge.pmd:pmd-java from 6.55.0 to 7.1.0 URL: https://github.com/apache/cxf/pull/1840 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump net.sourceforge.pmd:pmd-java from 6.55.0 to 7.1.0 [cxf]
dependabot[bot] commented on PR #1840: URL: https://github.com/apache/cxf/pull/1840#issuecomment-2144186129 Superseded by #1908. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-plugin-plugin from 3.13.0 to 3.13.1 [cxf]
dependabot[bot] opened a new pull request, #1909: URL: https://github.com/apache/cxf/pull/1909 Bumps [org.apache.maven.plugins:maven-plugin-plugin](https://github.com/apache/maven-plugin-tools) from 3.13.0 to 3.13.1. Commits https://github.com/apache/maven-plugin-tools/commit/7098c969b542b8bb090d0f52343d61bf748aa6fe";>7098c96 [maven-release-plugin] prepare release maven-plugin-tools-3.13.1 https://github.com/apache/maven-plugin-tools/commit/2144febc1622bad8df9b3a9e9e15b1f19da63d5e";>2144feb --- https://github.com/apache/maven-plugin-tools/commit/441b5f549020ed2416a9172d79c3c939a4e72dc2";>441b5f5 Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 https://github.com/apache/maven-plugin-tools/commit/ca6a0739d4c239af9c52b8adb771579913082325";>ca6a073 [MPLUGIN-526] Clean up dependencies reported by dependencies:analyze https://github.com/apache/maven-plugin-tools/commit/993425ca11db649872cee31474f889a77ef35bea";>993425c [maven-release-plugin] prepare for next development iteration See full diff in https://github.com/apache/maven-plugin-tools/compare/maven-plugin-tools-3.13.0...maven-plugin-tools-3.13.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.3 to 3.7.0 [cxf]
dependabot[bot] opened a new pull request, #1910: URL: https://github.com/apache/cxf/pull/1910 Bumps [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) from 3.6.3 to 3.7.0. Commits https://github.com/apache/maven-javadoc-plugin/commit/2c28b8d90ede19c28ae7b94d07ad0fbb6c23b720";>2c28b8d [maven-release-plugin] prepare release maven-javadoc-plugin-3.7.0 https://github.com/apache/maven-javadoc-plugin/commit/5530d6801179f388db07a2f1f42e4dc9d06bf447";>5530d68 [MJAVADOC-793] java.lang.NullPointerException: Cannot invoke "String.length()... https://github.com/apache/maven-javadoc-plugin/commit/08cf68e7d3e0a6ac2e1cae4a1336878e4f19dd2b";>08cf68e Revert "Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2" https://github.com/apache/maven-javadoc-plugin/commit/64468220d5d27d3d219c51baf55cdadfcb4fdd48";>6446822 Bump org.apache.maven.shared:maven-invoker from 3.2.0 to 3.3.0 https://github.com/apache/maven-javadoc-plugin/commit/49c93adfc132f648dbdc8fe64a7043ec45ba0022";>49c93ad Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 https://github.com/apache/maven-javadoc-plugin/commit/4e720486ab401acfabc616b85a153126960b1370";>4e72048 [MJAVADOC-795] Upgrade to Parent 42 and Maven 3.6.3 https://github.com/apache/maven-javadoc-plugin/commit/b55dd967254813dcb51d19bb3c3667bc951590b4";>b55dd96 Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2 https://github.com/apache/maven-javadoc-plugin/commit/77ad41087057ae507d1d0e4c83420537b0db";>77ad410 Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0 https://github.com/apache/maven-javadoc-plugin/commit/c21568ad451a622ed6ecefeb9f77d82a1a84bd2a";>c21568a Bump commons-io:commons-io from 2.16.0 to 2.16.1 https://github.com/apache/maven-javadoc-plugin/commit/ded56a90d22dfb53ec99c03fdaf735fb62e1afd7";>ded56a9 Exclude JDK 8 - temurin, adopt-openj9 on macos Additional commits viewable in https://github.com/apache/maven-javadoc-plugin/compare/maven-javadoc-plugin-3.6.3...maven-javadoc-plugin-3.7.0";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump net.sourceforge.pmd:pmd-core from 6.55.0 to 7.2.0 [cxf]
dependabot[bot] opened a new pull request, #1911: URL: https://github.com/apache/cxf/pull/1911 Bumps [net.sourceforge.pmd:pmd-core](https://github.com/pmd/pmd) from 6.55.0 to 7.2.0. Release notes Sourced from https://github.com/pmd/pmd/releases";>net.sourceforge.pmd:pmd-core's releases. PMD 7.2.0 (31-May-2024) 31-May-2024 - 7.2.0 The PMD team is pleased to announce PMD 7.2.0. This is a minor release. Table Of Contents https://github.com/pmd/pmd/blob/HEAD/#new-and-noteworthy";>🚀 New and noteworthy https://github.com/pmd/pmd/blob/HEAD/#collections-exposed-as-xpath-attributes";>Collections exposed as XPath attributes https://github.com/pmd/pmd/blob/HEAD/#updated-pmd-designer";>Updated PMD Designer https://github.com/pmd/pmd/blob/HEAD/#fixed-issues";>🐛 Fixed Issues https://github.com/pmd/pmd/blob/HEAD/#api-changes";>🚨 API Changes https://github.com/pmd/pmd/blob/HEAD/#deprecated-api";>Deprecated API https://github.com/pmd/pmd/blob/HEAD/#external-contributions";>✨ External Contributions https://github.com/pmd/pmd/blob/HEAD/#stats";>📈 Stats 🚀 New and noteworthy Collections exposed as XPath attributes Up to now, all AST node getters would be exposed to XPath, as long as the return type was a primitive (boxed or unboxed), String or Enum. That meant that collections, even of these basic types, were not exposed, so for instance accessing Apex's ASTUserClass.getInterfaceNames() to list the interfaces implemented by a class was impossible from XPath, and would require writing a Java rule to check it. Since this release, PMD will also expose any getter returning a collection of any supported type as a sequence through an XPath attribute. They would require to use apropriate XQuery functions to manipulate the sequence. So for instance, to detect any given ASTUserClass in Apex that implements Queueable, it is now possible to write: /UserClass[@InterfaceNames = 'Queueable'] Updated PMD Designer This PMD release ships a new version of the pmd-designer. For the changes, see https://github.com/pmd/pmd-designer/releases/tag/7.2.0";>PMD Designer Changelog (7.2.0). 🐛 Fixed Issues core https://redirect.github.com/pmd/pmd/issues/4467";>#4467: [core] Expose collections from getters as XPath sequence attributes https://redirect.github.com/pmd/pmd/issues/4978";>#4978: [core] Referenced Rulesets do not emit details on validation errors https://redirect.github.com/pmd/pmd/pull/4983";>#4983: [cpd] Fix CPD crashes about unicode escapes https://redirect.github.com/pmd/pmd/issues/5009";>#5009: [core] Kotest tests aren't picked up by surefire java https://redirect.github.com/pmd/pmd/issues/4912";>#4912: [java] Unable to parse some Java9+ resource references https://redirect.github.com/pmd/pmd/pull/4973";>#4973: [java] Stop parsing Java for CPD https://redirect.github.com/pmd/pmd/issues/4980";>#4980: [java] Bad intersection, unrelated class types java.lang.Object[] and java.lang.Number https://redirect.github.com/pmd/pmd/pull/4988";>#4988: [java] Fix impl of ASTVariableId::isResourceDeclaration / VariableId/@ResourceDeclaration https://redirect.github.com/pmd/pmd/issues/4990";>#4990: [java] Add an attribute @PackageQualifier to ASTClassType https://redirect.github.com/pmd/pmd/issues/5006";>#5006: [java] Bad intersection, unrelated class types Child and Parent https://redirect.github.com/pmd/pmd/issues/5029";>#5029: [java] PMD 7.x throws stack overflow in TypeOps$ProjectionVisitor while parsing a Java class ... (truncated) Commits https://github.com/pmd/pmd/commit/38bc997d4e7f4b29cee86829915f17f925211800";>38bc997 [release] prepare release pmd_releases/7.2.0 https://github.com/pmd/pmd/commit/27a14cc61e4659447125422756e545fe2a7b96f0";>27a14cc Prepare pmd release 7.2.0 https://github.com/pmd/pmd/commit/e27b30e0b52229f66c5dae8aab0c2b95d877a135";>e27b30e Bump pmd-designer from 7.2.0-SNAPSHOT to 7.2.0 https://github.com/pmd/pmd/commit/d37769e71c64b9c8ffdea521bade7a17b0da39a8";>d37769e Bump builds-tools from 25-SNAPSHOT to 25 https://github.com/pmd/pmd/commit/2a0cba7b9155505a2a065339cf439dcd8e986692";>2a0cba7 [java] Improve LocalVariableCouldBeFinal (https://redirect.github.com/pmd/pmd/issues/5003";>#5003) https://github.com/pmd/pmd/commit/8a8402a0bd255c46375d452092643ef31bde7ba2";>8a8402a [doc] Update release notes (https://redirect.github.com/pmd/pmd/issues/1619";>#1619, https://redirect.github.com/pmd/pmd/issues/3122";>#3122, https://redirect.github.com/pmd/pmd/issues/5003";>#5003) https://github.com/pmd/pmd/commit/3890b561a13191af49a71d19aab81ba11e6b5129";>3890b56 [java] Remove FPs in UnnecessaryBoxing (https://redirect.github.com/pmd/pmd/issues/5019";>#5019) https://github.com/pmd/pmd/commit/224f5b83039b646c1dd5f29b9453346006425159";>224f5b8 [doc] Update release no
Re: [PR] Bump net.sourceforge.pmd:pmd-core from 6.55.0 to 7.1.0 [cxf]
dependabot[bot] closed pull request #1841: Bump net.sourceforge.pmd:pmd-core from 6.55.0 to 7.1.0 URL: https://github.com/apache/cxf/pull/1841 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump net.sourceforge.pmd:pmd-core from 6.55.0 to 7.1.0 [cxf]
dependabot[bot] commented on PR #1841: URL: https://github.com/apache/cxf/pull/1841#issuecomment-2144194049 Superseded by #1911. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
