Re: [PR] Updating Artemis to 2.35.0 [cxf]
coheigea merged PR #1967: URL: https://github.com/apache/cxf/pull/1967 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [VOTE] Release CXF 4.0.5, 3.6.4 and 3.5.9
+1. Colm. On Mon, Jul 15, 2024 at 3:10 PM Jamie G. wrote: > > +1 (non-binding) > > Cheers, > Jamie > > On Mon, Jul 15, 2024 at 5:38 AM Alessio Soldano wrote: > > > > +1 > > Thanks! > > > > On Fri, Jul 12, 2024 at 10:23 PM Freeman Fang > > wrote: > > > > > Hi, > > > > > > It’s been a while since the last releases and many issues have been > > > addressed, so here is the VOTE for CXF 4.0.5, 3.6.4 and 3.5.9 > > > > > > Staging areas: > > > https://repository.apache.org/content/repositories/orgapachecxf-1203 > > > https://repository.apache.org/content/repositories/orgapachecxf-1204 > > > https://repository.apache.org/content/repositories/orgapachecxf-1205 > > > > > > Tags: > > > > > > https://github.com/apache/cxf/commit/630d7368e073d379227d48ff4797c23377dc5ebf > > > > > > https://github.com/apache/cxf/commit/6b27aec74e5329b60e84ff2478c854bf2acf3db5 > > > > > > https://github.com/apache/cxf/commit/8c68c138ce0b7f5c1945e744f7cf5067a8298374 > > > > > > I will keep the vote open for at least 72 hours(weekends not included). > > > > > > Cheers > > > Freeman > > >
Re: [PR] Bump com.h2database:h2 from 2.2.224 to 2.3.230 [cxf]
reta merged PR #1968: URL: https://github.com/apache/cxf/pull/1968 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugins:maven-project-info-reports-plugin from 3.6.1 to 3.6.2 [cxf]
reta merged PR #1969: URL: https://github.com/apache/cxf/pull/1969 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-project-info-reports-plugin from 3.6.0 to 3.6.2 [cxf-build-utils]
dependabot[bot] opened a new pull request, #106: URL: https://github.com/apache/cxf-build-utils/pull/106 Bumps [org.apache.maven.plugins:maven-project-info-reports-plugin](https://github.com/apache/maven-project-info-reports-plugin) from 3.6.0 to 3.6.2. Commits https://github.com/apache/maven-project-info-reports-plugin/commit/a917abe0cf4673472f2b16f06e9c151503fb8dc2";>a917abe [maven-release-plugin] prepare release maven-project-info-reports-plugin-3.6.2 https://github.com/apache/maven-project-info-reports-plugin/commit/67ecd332f7bc241ee9a6b59e9f952cb21a19b2ef";>67ecd33 [MPIR-466] ModulesReport/IndexReport do not pass a complete building request ... https://github.com/apache/maven-project-info-reports-plugin/commit/73658c35d9eb4cd3368802d6cae55dc521dd8ab2";>73658c3 Remove outdated invoker conditions https://github.com/apache/maven-project-info-reports-plugin/commit/ad42de0535317cb9ec06453e28d000306a874aeb";>ad42de0 [maven-release-plugin] prepare for next development iteration https://github.com/apache/maven-project-info-reports-plugin/commit/21d36534d87088aafe1743a402b3f49fbaecd293";>21d3653 [maven-release-plugin] prepare release maven-project-info-reports-plugin-3.6.1 https://github.com/apache/maven-project-info-reports-plugin/commit/b707915bb7cb5adc2c0dcb66560b9aa6470ceaa2";>b707915 [MPIR-462] IT for MRJAR issue with dependencies goal https://github.com/apache/maven-project-info-reports-plugin/commit/3fd654a98c709e9051d5dc8d6fd250db43b79467";>3fd654a [MPIR-463] Remove workaround to count the number of root content entries in J... https://github.com/apache/maven-project-info-reports-plugin/commit/790b646e57e2362ddba9b9e0d91e180c282a272e";>790b646 [MPIR-464] Upgrade to Maven Shared JAR 3.1.1 https://github.com/apache/maven-project-info-reports-plugin/commit/740536dd756f108859426c17312533fae0bd8df4";>740536d Lift restriction on mojo renames https://github.com/apache/maven-project-info-reports-plugin/commit/3e8276fdf17de3261c21db7e862281a7b4f11651";>3e8276f Make spotless happy Additional commits viewable in https://github.com/apache/maven-project-info-reports-plugin/compare/maven-project-info-reports-plugin-3.6.0...maven-project-info-reports-plugin-3.6.2";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.0 to 3.3.1 [cxf-build-utils]
dependabot[bot] opened a new pull request, #105: URL: https://github.com/apache/cxf-build-utils/pull/105 Bumps [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.3.0 to 3.3.1. Commits https://github.com/apache/maven-surefire/commit/7e4562036f88ba082ea5a58008d799e354e4fc1e";>7e45620 [maven-release-plugin] prepare release surefire-3.3.1 https://github.com/apache/maven-surefire/commit/561b4ca356e6fae53f0f16f4862fdd22305852fb";>561b4ca [SUREFIRE-2250] Surefire Test Report Schema properties element is not consist... https://github.com/apache/maven-surefire/commit/6aaea8a6dfed1f8f5b803dc202fefa5a47f14bb7";>6aaea8a [SUREFIRE-1360] Ability to disable properties for successfully passed tests https://github.com/apache/maven-surefire/commit/c17b92bf79d33b34bf5c6e3bab1128e8ee1c8f01";>c17b92b Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24 https://github.com/apache/maven-surefire/commit/748d9dcbf43eaf91dace4009d1aa2cc669953c91";>748d9dc Fix typos https://github.com/apache/maven-surefire/commit/f8092e99c0d3e4439e8e74ffd1df49f256373a35";>f8092e9 Improve time units https://github.com/apache/maven-surefire/commit/c670335783cfcb43cfba7042b90748708eb299ce";>c670335 [SUREFIRE-1934] Ability to disable system-out/system-err for successfully pas... https://github.com/apache/maven-surefire/commit/bce1b39b042f8cd696c2bc9b9205303aff6409ae";>bce1b39 Improve docs of linkXRef https://github.com/apache/maven-surefire/commit/3c49ebdd6a2df6da992d8b2b6b7e7843e948fb21";>3c49ebd Bump org.htmlunit:htmlunit from 4.2.0 to 4.3.0 https://github.com/apache/maven-surefire/commit/6ff0f83ea1c9427a88d42b3a8c1b7bdb9e5e3fcb";>6ff0f83 [SUREFIRE-2242] Plain test report does not include names of the skipped tests Additional commits viewable in https://github.com/apache/maven-surefire/compare/surefire-3.3.0...surefire-3.3.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.3.0 to 3.3.1 [cxf-build-utils]
dependabot[bot] opened a new pull request, #107: URL: https://github.com/apache/cxf-build-utils/pull/107 Bumps [org.apache.maven.plugins:maven-surefire-report-plugin](https://github.com/apache/maven-surefire) from 3.3.0 to 3.3.1. Commits https://github.com/apache/maven-surefire/commit/7e4562036f88ba082ea5a58008d799e354e4fc1e";>7e45620 [maven-release-plugin] prepare release surefire-3.3.1 https://github.com/apache/maven-surefire/commit/561b4ca356e6fae53f0f16f4862fdd22305852fb";>561b4ca [SUREFIRE-2250] Surefire Test Report Schema properties element is not consist... https://github.com/apache/maven-surefire/commit/6aaea8a6dfed1f8f5b803dc202fefa5a47f14bb7";>6aaea8a [SUREFIRE-1360] Ability to disable properties for successfully passed tests https://github.com/apache/maven-surefire/commit/c17b92bf79d33b34bf5c6e3bab1128e8ee1c8f01";>c17b92b Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24 https://github.com/apache/maven-surefire/commit/748d9dcbf43eaf91dace4009d1aa2cc669953c91";>748d9dc Fix typos https://github.com/apache/maven-surefire/commit/f8092e99c0d3e4439e8e74ffd1df49f256373a35";>f8092e9 Improve time units https://github.com/apache/maven-surefire/commit/c670335783cfcb43cfba7042b90748708eb299ce";>c670335 [SUREFIRE-1934] Ability to disable system-out/system-err for successfully pas... https://github.com/apache/maven-surefire/commit/bce1b39b042f8cd696c2bc9b9205303aff6409ae";>bce1b39 Improve docs of linkXRef https://github.com/apache/maven-surefire/commit/3c49ebdd6a2df6da992d8b2b6b7e7843e948fb21";>3c49ebd Bump org.htmlunit:htmlunit from 4.2.0 to 4.3.0 https://github.com/apache/maven-surefire/commit/6ff0f83ea1c9427a88d42b3a8c1b7bdb9e5e3fcb";>6ff0f83 [SUREFIRE-2242] Plain test report does not include names of the skipped tests Additional commits viewable in https://github.com/apache/maven-surefire/compare/surefire-3.3.0...surefire-3.3.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump org.apache:apache from 32 to 33 [cxf-build-utils]
dependabot[bot] opened a new pull request, #108: URL: https://github.com/apache/cxf-build-utils/pull/108 Bumps [org.apache:apache](https://github.com/apache/maven-apache-parent) from 32 to 33. Release notes Sourced from https://github.com/apache/maven-apache-parent/releases";>org.apache:apache's releases. Apache Parent POM version 33 🚀 New features and improvements Enable GitHUb issues (https://redirect.github.com/apache/maven-apache-parent/pull/216";>#216) https://github.com/slawekjaranowski";>@slawekjaranowski 📦 Dependency updates Bump org.apache.maven.plugins:maven-dependency-plugin from 3.7.0 to 3.7.1 (https://redirect.github.com/apache/maven-apache-parent/pull/238";>#238) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-project-info-reports-plugin from 3.5.0 to 3.6.1 (https://redirect.github.com/apache/maven-apache-parent/pull/239";>#239) https://github.com/dependabot";>@dependabot Upgrade to Maven Fluido Skin 1.12.0 (https://redirect.github.com/apache/maven-apache-parent/pull/240";>#240) https://github.com/michael-o";>@michael-o Bump org.apache.maven.plugins:maven-scm-publish-plugin from 3.2.1 to 3.3.0 (https://redirect.github.com/apache/maven-apache-parent/pull/237";>#237) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-jar-plugin from 3.4.1 to 3.4.2 (https://redirect.github.com/apache/maven-apache-parent/pull/236";>#236) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-clean-plugin from 3.3.2 to 3.4.0 (https://redirect.github.com/apache/maven-apache-parent/pull/235";>#235) https://github.com/dependabot";>@dependabot Bump version.maven-surefire from 3.2.5 to 3.3.0 (https://redirect.github.com/apache/maven-apache-parent/pull/234";>#234) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.0 (https://redirect.github.com/apache/maven-apache-parent/pull/233";>#233) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.7.0 (https://redirect.github.com/apache/maven-apache-parent/pull/231";>#231) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-help-plugin from 3.4.0 to 3.4.1 (https://redirect.github.com/apache/maven-apache-parent/pull/230";>#230) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.4.0 (https://redirect.github.com/apache/maven-apache-parent/pull/229";>#229) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-shade-plugin from 3.5.2 to 3.6.0 (https://redirect.github.com/apache/maven-apache-parent/pull/228";>#228) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.3 to 3.7.0 (https://redirect.github.com/apache/maven-apache-parent/pull/227";>#227) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.4.1 to 3.5.0 (https://redirect.github.com/apache/maven-apache-parent/pull/225";>#225) https://github.com/dependabot";>@dependabot Bump version.maven-plugin-tools from 3.12.0 to 3.13.1 (https://redirect.github.com/apache/maven-apache-parent/pull/226";>#226) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-invoker-plugin from 3.6.1 to 3.7.0 (https://redirect.github.com/apache/maven-apache-parent/pull/224";>#224) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-deploy-plugin from 3.1.1 to 3.1.2 (https://redirect.github.com/apache/maven-apache-parent/pull/221";>#221) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.3 to 3.2.4 (https://redirect.github.com/apache/maven-apache-parent/pull/218";>#218) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-install-plugin from 3.1.1 to 3.1.2 (https://redirect.github.com/apache/maven-apache-parent/pull/222";>#222) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-jar-plugin from 3.4.0 to 3.4.1 (https://redirect.github.com/apache/maven-apache-parent/pull/217";>#217) https://github.com/dependabot";>@dependabot Bump org.apache.maven.plugins:maven-scm-plugin from 2.0.1 to 2.1.0 (https://redirect.github.com/apache/maven-apache-parent/pull/214";>#214) https://github.com/dependabot";>@dependabot 👻 Maintenance Fix link in issueManagement in docs (https://redirect.github.com/apache/maven-apache-parent/pull/219";>#219) https://github.com/slawekjaranowski";>@slawekjaranowski 🔧 Build Disable matrix build on GitHub (https://redirect.github.com/apache/maven-apache-parent/pull/241";>#241) https://github.com/slawekjaranowski";>@slawekjaranowski Add Release Drafter (https://redirec
Re: [PR] Bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.0 to 3.3.1 [cxf-build-utils]
reta merged PR #105: URL: https://github.com/apache/cxf-build-utils/pull/105 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugins:maven-surefire-report-plugin from 3.3.0 to 3.3.1 [cxf-build-utils]
reta merged PR #107: URL: https://github.com/apache/cxf-build-utils/pull/107 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache.maven.plugins:maven-project-info-reports-plugin from 3.6.0 to 3.6.2 [cxf-build-utils]
reta merged PR #106: URL: https://github.com/apache/cxf-build-utils/pull/106 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
Re: [PR] Bump org.apache:apache from 32 to 33 [cxf-build-utils]
reta merged PR #108: URL: https://github.com/apache/cxf-build-utils/pull/108 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@cxf.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[PR] Bump cxf.undertow.version from 2.3.14.Final to 2.3.15.Final [cxf]
dependabot[bot] opened a new pull request, #1970: URL: https://github.com/apache/cxf/pull/1970 Bumps `cxf.undertow.version` from 2.3.14.Final to 2.3.15.Final. Updates `io.undertow:undertow-core` from 2.3.14.Final to 2.3.15.Final Commits https://github.com/undertow-io/undertow/commit/3179d792f0f0fb28398c648fca1f9f4f2853bce8";>3179d79 Prepare 2.3.15.Final https://github.com/undertow-io/undertow/commit/318faf3d6bea9cada0120a98a93dcad7a5f9590f";>318faf3 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1640";>#1640 from fl4via/backport-fixes-2.3.x https://github.com/undertow-io/undertow/commit/1e2560d9435b6e00e62621e2524e0da016d1079a";>1e2560d Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1637";>#1637 from fl4via/UNDERTOW-2418_2.3.x https://github.com/undertow-io/undertow/commit/b7a5833d680744411121de227adc6162d1eaf85d";>b7a5833 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1627";>#1627 from baranowb/UNDERTOW-2033_2.3.x https://github.com/undertow-io/undertow/commit/a03e5189b02820c20b9e74376961f00f73e2420d";>a03e518 [UNDERTOW-2382] CVE-2024-3653 Create system properties for configuring learni... https://github.com/undertow-io/undertow/commit/6b8e79c167ed57444ef6ea480316a5d64faf080b";>6b8e79c [UNDERTOW-2382] Switch to LRUCache to store entries in cache in LearningPushH... https://github.com/undertow-io/undertow/commit/1418733c99ff0a298161e13e4b0b00c913522e6f";>1418733 [UNDERTOW-2413] CVE-2024-5971 At SslConduit.wrapAndFlip, make sure all the co... https://github.com/undertow-io/undertow/commit/b59fbcda99aacc45ec0a7b90bb719b7e6589f4ae";>b59fbcd [UNDERTOW-2418] Adjust properly session timeout also in case when FORM is com... https://github.com/undertow-io/undertow/commit/297da38662afb5a6e1cc614176a6bff038a7d19b";>297da38 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1630";>#1630 from baranowb/UNDERTOW-2343_2.3.x https://github.com/undertow-io/undertow/commit/fcaa1e2a4ec4a4743e96fb4e7e0cb802420232c2";>fcaa1e2 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1634";>#1634 from baranowb/UNDERTOW-2046_2.3.x Additional commits viewable in https://github.com/undertow-io/undertow/compare/2.3.14.Final...2.3.15.Final";>compare view Updates `io.undertow:undertow-servlet` from 2.3.14.Final to 2.3.15.Final Commits https://github.com/undertow-io/undertow/commit/3179d792f0f0fb28398c648fca1f9f4f2853bce8";>3179d79 Prepare 2.3.15.Final https://github.com/undertow-io/undertow/commit/318faf3d6bea9cada0120a98a93dcad7a5f9590f";>318faf3 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1640";>#1640 from fl4via/backport-fixes-2.3.x https://github.com/undertow-io/undertow/commit/1e2560d9435b6e00e62621e2524e0da016d1079a";>1e2560d Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1637";>#1637 from fl4via/UNDERTOW-2418_2.3.x https://github.com/undertow-io/undertow/commit/b7a5833d680744411121de227adc6162d1eaf85d";>b7a5833 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1627";>#1627 from baranowb/UNDERTOW-2033_2.3.x https://github.com/undertow-io/undertow/commit/a03e5189b02820c20b9e74376961f00f73e2420d";>a03e518 [UNDERTOW-2382] CVE-2024-3653 Create system properties for configuring learni... https://github.com/undertow-io/undertow/commit/6b8e79c167ed57444ef6ea480316a5d64faf080b";>6b8e79c [UNDERTOW-2382] Switch to LRUCache to store entries in cache in LearningPushH... https://github.com/undertow-io/undertow/commit/1418733c99ff0a298161e13e4b0b00c913522e6f";>1418733 [UNDERTOW-2413] CVE-2024-5971 At SslConduit.wrapAndFlip, make sure all the co... https://github.com/undertow-io/undertow/commit/b59fbcda99aacc45ec0a7b90bb719b7e6589f4ae";>b59fbcd [UNDERTOW-2418] Adjust properly session timeout also in case when FORM is com... https://github.com/undertow-io/undertow/commit/297da38662afb5a6e1cc614176a6bff038a7d19b";>297da38 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1630";>#1630 from baranowb/UNDERTOW-2343_2.3.x https://github.com/undertow-io/undertow/commit/fcaa1e2a4ec4a4743e96fb4e7e0cb802420232c2";>fcaa1e2 Merge pull request https://redirect.github.com/undertow-io/undertow/issues/1634";>#1634 from baranowb/UNDERTOW-2046_2.3.x Additional commits viewable in https://github.com/undertow-io/undertow/compare/2.3.14.Final...2.3.15.Final";>compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot
[PR] Bump org.owasp:dependency-check-maven from 10.0.2 to 10.0.3 [cxf]
dependabot[bot] opened a new pull request, #1971: URL: https://github.com/apache/cxf/pull/1971 Bumps [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 10.0.2 to 10.0.3. Release notes Sourced from https://github.com/jeremylong/DependencyCheck/releases";>org.owasp:dependency-check-maven's releases. Version 10.0.3 Refer to the https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md#change-log";>CHANGELOG.md for information about improvements and upgrade notes. Changelog Sourced from https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md";>org.owasp:dependency-check-maven's changelog. https://github.com/jeremylong/DependencyCheck/releases/tag/v10.0.3";>Version 10.0.3 (2024-07-16) feat: Enable configuration of a lower resultsPerPage on NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/6843";>#6843) build(deps): bump open-vulnerability-clients from 6.1.6 to 6.1.7 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6848";>#6848) build(deps): bump JamesIves/github-pages-deploy-action from 4.6.1 to 4.6.3 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6814";>#6814) build(deps): bump org.codehaus.mojo:versions-maven-plugin from 2.16.2 to 2.17.0 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6762";>#6762) build(deps): bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.4.0 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6815";>#6815) build(deps): bump golang from 1.22.4-alpine to 1.22.5-alpine (https://redirect.github.com/jeremylong/DependencyCheck/issues/6805";>#6805) See the full listing of https://github.com/jeremylong/DependencyCheck/milestone/84?closed=1";>changes. Commits https://github.com/jeremylong/DependencyCheck/commit/c888dccc22ab3b00b766533c0ee94738fa9d0cd8";>c888dcc build: prepare release v10.0.3 https://github.com/jeremylong/DependencyCheck/commit/762c2df01c5a92bdfa7ee34b82c9328e858f700d";>762c2df docs: release 10.0.3 https://github.com/jeremylong/DependencyCheck/commit/5f6270ca1c788bc15b08fc7c397ff6e752f7932e";>5f6270c build(deps): bump open-vulnerability-clients from 6.1.6 to 6.1.7 (https://redirect.github.com/jeremylong/DependencyCheck/issues/6848";>#6848) https://github.com/jeremylong/DependencyCheck/commit/72ce4a060886cd0b37ecde78246e2f44b5749a75";>72ce4a0 build(deps): bump JamesIves/github-pages-deploy-action from 4.6.1 to 4.6.3 (#... https://github.com/jeremylong/DependencyCheck/commit/ffbc6d81f409c9c79fd6df0146898eef4114a342";>ffbc6d8 feat: Enable configuration of a lower resultsPerPage on NVD API (https://redirect.github.com/jeremylong/DependencyCheck/issues/6843";>#6843) https://github.com/jeremylong/DependencyCheck/commit/ed0e8cb11d1e05b608215911f970808e24e69644";>ed0e8cb build(deps): bump org.codehaus.mojo:versions-maven-plugin from 2.16.2 to 2.17... https://github.com/jeremylong/DependencyCheck/commit/b44770a045302e8d701e67f69759e5fa9b061748";>b44770a build(deps): bump open-vulnerability-client (https://redirect.github.com/jeremylong/DependencyCheck/issues/6830";>#6830) https://github.com/jeremylong/DependencyCheck/commit/708ea51ff0ce71f041f310947cbe32b57b52858b";>708ea51 docs: fix typo https://github.com/jeremylong/DependencyCheck/commit/b96ca7126d13e8e160f8b419f8e71bd6801ec3e2";>b96ca71 build(deps): bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1... https://github.com/jeremylong/DependencyCheck/commit/77f1acb4dc0710a5f82b3f2cb5abc0877fb37ae4";>77f1acb build(deps): bump golang from 1.22.4-alpine to 1.22.5-alpine (https://redirect.github.com/jeremylong/DependencyCheck/issues/6805";>#6805) Additional commits viewable in https://github.com/jeremylong/DependencyCheck/compare/v10.0.2...v10.0.3";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependa
