[GitHub] [flex-blazeds] oussama-jlassi opened a new pull request #5: Update downloads.xml
oussama-jlassi opened a new pull request #5: Update downloads.xml URL: https://github.com/apache/flex-blazeds/pull/5 OR https://web.archive.org/web/20171114155442/http://sixlegs.com/misc/ExcludeDoclet.java This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services
[GitHub] [flex-blazeds] carlosrovira merged pull request #5: Update downloads.xml
carlosrovira merged pull request #5: Update downloads.xml URL: https://github.com/apache/flex-blazeds/pull/5 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services
[GitHub] [flex-blazeds] carlosrovira commented on issue #5: Update downloads.xml
carlosrovira commented on issue #5: Update downloads.xml URL: https://github.com/apache/flex-blazeds/pull/5#issuecomment-483023567 Thanks for your contribution. For future ones please describe a bit about what's the intention of the change. In this case, saying that ExcludeDoclet.java is no more available through the older link. Thanks! This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services
[GitHub] [flex-sdk] Dretch closed pull request #18: Fix FLEX-15159 by making ArrayList extend Proxy.
Dretch closed pull request #18: URL: https://github.com/apache/flex-sdk/pull/18 This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-sdk] Dretch commented on pull request #18: Fix FLEX-15159 by making ArrayList extend Proxy.
Dretch commented on pull request #18: URL: https://github.com/apache/flex-sdk/pull/18#issuecomment-768223688 I don't care about this any more, and I don't think anyone else does either! This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] ShangwenWang opened a new pull request #6: Change method name from "rememberObject" to "putObject"
ShangwenWang opened a new pull request #6: URL: https://github.com/apache/flex-blazeds/pull/6 There is an explicit verb in the implementation of this method, *put*. Hence, changing the method name to "putObject" can better describe the intention of this method. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] justinmclean commented on pull request #6: Change method name from "rememberObject" to "putObject"
justinmclean commented on pull request #6: URL: https://github.com/apache/flex-blazeds/pull/6#issuecomment-772289230 I think the existing name describes it better, but that may only be because I'm a native English speaker. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] ShangwenWang commented on pull request #6: Change method name from "rememberObject" to "putObject"
ShangwenWang commented on pull request #6: URL: https://github.com/apache/flex-blazeds/pull/6#issuecomment-772491317 Thanks for your reply This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-flexunit] mcdonaldjc opened a new pull request, #5: Update README
mcdonaldjc opened a new pull request, #5: URL: https://github.com/apache/flex-flexunit/pull/5 fix: replace deprecated clone host with github link -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-flexunit] piotrzarzycki21 merged pull request #5: Update README
piotrzarzycki21 merged PR #5: URL: https://github.com/apache/flex-flexunit/pull/5 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] opened a new pull request, #7: Bump tomcat-catalina from 7.0.8 to 7.0.81 in /opt/tomcat/tomcat-7
dependabot[bot] opened a new pull request, #7: URL: https://github.com/apache/flex-blazeds/pull/7 Bumps tomcat-catalina from 7.0.8 to 7.0.81. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-blazeds/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #16: Bump plexus-utils from 3.0.15 to 3.0.16 in /mavenizer/retrievers/base
dependabot[bot] opened a new pull request, #16:
URL: https://github.com/apache/flex-utilities/pull/16
Bumps [plexus-utils](https://github.com/sonatype/plexus-utils) from 3.0.15
to 3.0.16.
Commits
https://github.com/sonatype/plexus-utils/commit/cf317f9b4070c3c619e9ee75a3e38bea3ff621c1";>cf317f9
[maven-release-plugin] prepare release plexus-utils-3.0.16
https://github.com/sonatype/plexus-utils/commit/26e3ae87b56a7f389f1a1ce1fa563686b924256a";>26e3ae8
Remove incorrect tag element
https://github.com/sonatype/plexus-utils/commit/99639d6558620da489b7c6d1b0c88491cde75884";>99639d6
Little test to mimic ${project.artifactMap(g:a:c)} usage
https://github.com/sonatype/plexus-utils/commit/5d4697966d4c6161fc4bde1fd3fa27be6440eec0";>5d46979
Needs to build with 1.7 because of some Java7 utils, but source/target needs
...
https://github.com/sonatype/plexus-utils/commit/18bd77d716ff73a707e09af7efc4d5ef5658ac35";>18bd77d
We can't switch to Java7 yet while Maven still needs to run on Java6
https://github.com/sonatype/plexus-utils/commit/3cf855c6403061ae216b0f805debbfda09be9245";>3cf855c
Remove release cruft
https://github.com/sonatype/plexus-utils/commit/3196d4c3c1fa42d11cfeb4e39c418c2f75c5a138";>3196d4c
ignore .java-version
https://github.com/sonatype/plexus-utils/commit/57b636d2c57f3c023a95be3fcb8270fb6ff6780c";>57b636d
changed XmlUtilTest to create test output directory
https://github.com/sonatype/plexus-utils/commit/33091f9b1e5a9abc0927bc51a1670d9d5ba85a1c";>33091f9
Use the same method for finding the basedir as our other code.
https://github.com/sonatype/plexus-utils/commit/a153249c24c32d3ab81850aaf7a263a78ca23f99";>a153249
MNG-5553 reworked dotted expressions interpreter
Additional commits viewable in https://github.com/sonatype/plexus-utils/compare/plexus-utils-3.0.15...plexus-utils-3.0.16";>compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI
passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and
block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it.
You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default
for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the
default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the
default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the
default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security
Alerts page](https://github.com/apache/flex-utilities/network/alerts).
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] opened a new pull request, #8: Bump jetty-server from 9.1.0.v20131115 to 10.0.10 in /remoting
dependabot[bot] opened a new pull request, #8: URL: https://github.com/apache/flex-blazeds/pull/8 Bumps [jetty-server](https://github.com/eclipse/jetty.project) from 9.1.0.v20131115 to 10.0.10. Release notes Sourced from https://github.com/eclipse/jetty.project/releases";>jetty-server's releases. 10.0.10 Special Thanks to the following Eclipse Jetty community members https://github.com/jianglai";>@jianglai (Lai Jiang) https://github.com/markslater";>@markslater (markslater) https://github.com/prenagha";>@prenagha (Padraic Renaghan) Changelog https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8136";>#8136 - Cherry-pick of Improvements to PathSpec for Jetty 10.0.x https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8134";>#8134 - Improve cleanup of deflater/inflater pools for PerMessageDeflateExtension https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8088";>#8088 - Add option to configure exitVm on ShutdownMonitor from System properties https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8067";>#8067 - Wall time usage in DoSFilter RateTracker results in false positive alert https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8057";>#8057 - Support Http Response 103 (Early Hints) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8014";>#8014 - Review HttpRequest URI construction https://github-redirect.dependabot.com/eclipse/jetty.project/issues/8008";>#8008 - Add compliance mode for LEGACY multipart parser in Jetty 10+ https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7994";>#7994 - Ability to construct a detached client Request https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7981";>#7981 - Add TRANSFER_ENCODING violation for MultiPart RFC7578 parser. (https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7976";>#7976) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7977";>#7977 - UpgradeHttpServletRequest.setAttribute & UpgradeHttpServletRequest.removeAttribute can throw NullPointerException https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7975";>#7975 - ForwardedRequestCustomizer setters do not clear existing handlers https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7953";>#7953 - Fix StatisticsHandler in the case a Handler throws exception. https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7935";>#7935 - Review HTTP/2 error handling https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7929";>#7929 - Correct requestlog formatString commented default (https://github.com/prenagha";>@prenagha) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7924";>#7924 - Fix a typo in Javadoc (https://github.com/jianglai";>@jianglai) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7918";>#7918 - PathMappings.asPathSpec does not allow root ServletPathSpec https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7891";>#7891 - Better Servlet PathMappings for Regex https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7880";>#7880 - DefaultServlet should not overwrite programmatically configured precompressed formats with defaults (https://github.com/markslater";>@markslater) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7863";>#7863 - Default servlet drops first accept-encoding header if there is more than one. (https://github.com/markslater";>@markslater) https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7858";>#7858 - GZipHandler does not play nice with other handlers in HandlerCollection https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7818";>#7818 - Modifying of HTTP headers in HttpChannel.Listener#onResponseBegin is no longer possible with Jetty 10 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7808";>#7808 - Jetty 10.0.x 7801 duplicate set session cookie https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7802";>#7802 - HTTP/3 QPACK - do not expect section ack for zero required insert count https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7754";>#7754 - jetty.sh ignores JAVA_OPTIONS environment variable https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7748";>#7748 - Allow overriding of url-pattern mapping in ServletContextHandler to allow for regex or uri-template matching https://github-redirect.dependabot.com/eclipse/jetty.project/issues/7635";>#7635 - QPACK decoder should fail connection if the encoder blocks more than SETTINGS_QPACK_BLOCKED_STREAMS https://github-redirect.dependabot.com/eclipse/jetty.project/issues/4414";>#4414 - GZipHandler not excluding inflation for specified paths https://github-redi
[GitHub] [flex-blazeds] dependabot[bot] opened a new pull request, #9: Bump xalan from 2.6.0 to 2.7.2
dependabot[bot] opened a new pull request, #9: URL: https://github.com/apache/flex-blazeds/pull/9 Bumps xalan from 2.6.0 to 2.7.2. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-blazeds/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #17: Bump commons-compress from 1.4 to 1.21 in /mavenizer/converters/flash
dependabot[bot] opened a new pull request, #17: URL: https://github.com/apache/flex-utilities/pull/17 Bumps commons-compress from 1.4 to 1.21. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-utilities/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #18: Bump jettison from 1.3.1 to 1.5.1 in /mavenizer/converters/base
dependabot[bot] opened a new pull request, #18: URL: https://github.com/apache/flex-utilities/pull/18 Bumps [jettison](https://github.com/jettison-json/jettison) from 1.3.1 to 1.5.1. Release notes Sourced from https://github.com/jettison-json/jettison/releases";>jettison's releases. Jettison 1.5.1 What's Changed Stack Overflow fix on malformed JSON by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/48";>jettison-json/jettison#48 Prevent infinite loop when a /* comment is not terminated by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/49";>jettison-json/jettison#49 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1";>https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1 Commits https://github.com/jettison-json/jettison/commit/bdb3982aaea184c2143e41981e33877c2fd66292";>bdb3982 [maven-release-plugin] prepare release jettison-1.5.1 https://github.com/jettison-json/jettison/commit/1268b7558bad9b989687009a094466b64d4da533";>1268b75 Prevent infinite loop when a /* comment is not terminated https://github.com/jettison-json/jettison/commit/cff9f2814ec8ae573e38f38abed039311bb7bfda";>cff9f28 Create codeql-analysis.yml https://github.com/jettison-json/jettison/commit/395f8625bcf688743872c8e7f59360d372e77811";>395f862 Stack Overflow fix on malformed JSON https://github.com/jettison-json/jettison/commit/a5d2223bafd4c5ec37723533fa5c4066ead4eaaa";>a5d2223 [maven-release-plugin] prepare for next development iteration https://github.com/jettison-json/jettison/commit/e1bf5293d10af3ebfcd8763eb51a20a659b9047c";>e1bf529 [maven-release-plugin] prepare release jettison-1.5.0 https://github.com/jettison-json/jettison/commit/9ccf9d00fbae12fd10863c5b78d22bac6e5b87e4";>9ccf9d0 Update some deps/plugin versions https://github.com/jettison-json/jettison/commit/cfc7382c4dab4e207d2db2f0a70f60ce565e477d";>cfc7382 Performance improvement https://github.com/jettison-json/jettison/commit/d3714681f61581810680df8e45858a4d30a602da";>d371468 Use BigDecimal instead of Double to avoid loss of precision https://github.com/jettison-json/jettison/commit/23a64eedf97e29b6562de8c3b024af414df9b900";>23a64ee Avoid NullPointerException when used with Axis2 1.5 Additional commits viewable in https://github.com/jettison-json/jettison/compare/jettison-1.3.1...jettison-1.5.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disa
[GitHub] [flex-blazeds] dependabot[bot] opened a new pull request, #10: Bump spring-beans from 4.3.3.RELEASE to 5.2.20.RELEASE in /opt/blazeds-spring-boot-starter
dependabot[bot] opened a new pull request, #10: URL: https://github.com/apache/flex-blazeds/pull/10 Bumps [spring-beans](https://github.com/spring-projects/spring-framework) from 4.3.3.RELEASE to 5.2.20.RELEASE. Release notes Sourced from https://github.com/spring-projects/spring-framework/releases";>spring-beans's releases. v5.2.20.RELEASE :star: New Features Restrict access to property paths on Class references https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/28262";>#28262 Improve diagnostics in SpEL for large array creation https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/28257";>#28257 v5.2.19.RELEASE :star: New Features Declare serialVersionUID on DefaultAopProxyFactory https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27785";>#27785 Use ByteArrayDecoder in DefaultClientResponse::createException https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27667";>#27667 :lady_beetle: Bug Fixes ProxyFactoryBean getObject called before setInterceptorNames, silently creating an invalid proxy [SPR-7582] https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27817";>#27817 Possible NPE in Spring MVC LogFormatUtils https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27783";>#27783 UndertowHeadersAdapter's remove() method violates Map contract https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27593";>#27593 Fix assertion failure messages in DefaultDataBuffer.checkIndex() https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27577";>#27577 :notebook_with_decorative_cover: Documentation Lazy annotation throws exception if non-required bean does not exist https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27660";>#27660 Incorrect Javadoc in [NamedParameter]JdbcOperations.queryForObject methods regarding exceptions https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27581";>#27581 DefaultResponseErrorHandler update javadoc comment https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27571";>#27571 :hammer: Dependency Upgrades Upgrade to Reactor Dysprosium-SR25 https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27635";>#27635 Upgrade to Log4j2 2.16.0 https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27825";>#27825 v5.2.18.RELEASE :star: New Features Enhance DefaultResponseErrorHandler to allow logging complete error response body https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27558";>#27558 DefaultMessageListenerContainer does not log an error/warning when consumer tasks have been rejected https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27457";>#27457 :lady_beetle: Bug Fixes Performance impact of con.getContentLengthLong() in AbstractFileResolvingResource.isReadable() downloading huge jars to check component length https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27549";>#27549 Performance impact of ResourceUrlEncodingFilter on HttpServletResponse#encodeURL https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27548";>#27548 Avoid duplicate JCacheOperationSource bean registration in https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27547";>#27547 Non-escaped closing curly brace in RegEx results in initialization error on Android https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27502";>#27502 Proxy generation with Java 17 fails with "Cannot invoke "Object.getClass()" because "cause" is null" https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27498";>#27498 ConcurrentReferenceHashMap's entrySet violates the Map contract https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27455";>#27455 :hammer: Dependency Upgrades Upgrade to Reactor Dysprosium-SR24 https://github-redirect.dependabot.com/spring-projects/spring-framework/issues/27526";>#27526 v5.2.17.RELEASE ... (truncated) Commits https://github.com/spring-projects/spring-framework/commit/cfa701b8726f06528e9d408b1b94f333f70da45f";>cfa701b Release v5.2.20.RELEASE https://github.com/spring-projects/spring-framework/commit/996f701a1916d10202c1d0d281f06ab1f2e1117e";>996f701 Refine PropertyDescriptor filtering https://github.com/spring-projects/spring-framework/commit/90cfde985ef08e8372ffefda2156f8091f65efe6";>90cfde9 Improve diagnostics in SpEL for large array creation https://github.com/spring-projects/spring-framework/commit/94f52bc94f885fe97201b93bc1c92f35e7b0a
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #19: Bump jettison from 1.3.1 to 1.5.2 in /mavenizer/converters/base
dependabot[bot] opened a new pull request, #19: URL: https://github.com/apache/flex-utilities/pull/19 Bumps [jettison](https://github.com/jettison-json/jettison) from 1.3.1 to 1.5.2. Release notes Sourced from https://github.com/jettison-json/jettison/releases";>jettison's releases. Jettison 1.5.2 What's Changed Bump woodstox-core from 6.2.8 to 6.4.0 by https://github.com/dependabot";>@dependabot in https://github-redirect.dependabot.com/jettison-json/jettison/pull/51";>jettison-json/jettison#51 Fixing StackOverflow error by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/53";>jettison-json/jettison#53 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.1...jettison-1.5.2";>https://github.com/jettison-json/jettison/compare/jettison-1.5.1...jettison-1.5.2 Jettison 1.5.1 What's Changed Stack Overflow fix on malformed JSON by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/48";>jettison-json/jettison#48 Prevent infinite loop when a /* comment is not terminated by https://github.com/coheigea";>@coheigea in https://github-redirect.dependabot.com/jettison-json/jettison/pull/49";>jettison-json/jettison#49 Full Changelog: https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1";>https://github.com/jettison-json/jettison/compare/jettison-1.5.0...jettison-1.5.1 Commits https://github.com/jettison-json/jettison/commit/6dc73a07ac47c7e3b4c7d041761fbc11aee2eb50";>6dc73a0 [maven-release-plugin] prepare release jettison-1.5.2 https://github.com/jettison-json/jettison/commit/19ae19ff57d00dbfa6f6c3af4fc4cb14fb5ca2df";>19ae19f Fixing StackOverflow error https://github.com/jettison-json/jettison/commit/325b51b36982b5ddfb10d76d2809ec422e9de0b1";>325b51b Bump woodstox-core from 6.2.8 to 6.4.0 https://github.com/jettison-json/jettison/commit/81d3786242c3c7f68eead911b432a81c7f24fa0b";>81d3786 [maven-release-plugin] prepare for next development iteration https://github.com/jettison-json/jettison/commit/bdb3982aaea184c2143e41981e33877c2fd66292";>bdb3982 [maven-release-plugin] prepare release jettison-1.5.1 https://github.com/jettison-json/jettison/commit/1268b7558bad9b989687009a094466b64d4da533";>1268b75 Prevent infinite loop when a /* comment is not terminated https://github.com/jettison-json/jettison/commit/cff9f2814ec8ae573e38f38abed039311bb7bfda";>cff9f28 Create codeql-analysis.yml https://github.com/jettison-json/jettison/commit/395f8625bcf688743872c8e7f59360d372e77811";>395f862 Stack Overflow fix on malformed JSON https://github.com/jettison-json/jettison/commit/a5d2223bafd4c5ec37723533fa5c4066ead4eaaa";>a5d2223 [maven-release-plugin] prepare for next development iteration https://github.com/jettison-json/jettison/commit/e1bf5293d10af3ebfcd8763eb51a20a659b9047c";>e1bf529 [maven-release-plugin] prepare release jettison-1.5.0 Additional commits viewable in https://github.com/jettison-json/jettison/compare/jettison-1.3.1...jettison-1.5.2";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating
[GitHub] [flex-utilities] dependabot[bot] commented on pull request #18: Bump jettison from 1.3.1 to 1.5.1 in /mavenizer/converters/base
dependabot[bot] commented on PR #18: URL: https://github.com/apache/flex-utilities/pull/18#issuecomment-1369234658 Superseded by #19. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] closed pull request #18: Bump jettison from 1.3.1 to 1.5.1 in /mavenizer/converters/base
dependabot[bot] closed pull request #18: Bump jettison from 1.3.1 to 1.5.1 in /mavenizer/converters/base URL: https://github.com/apache/flex-utilities/pull/18 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] opened a new pull request, #11: Bump jetty-server from 9.3.30.v20211001 to 9.4.41.v20210516 in /remoting
dependabot[bot] opened a new pull request, #11: URL: https://github.com/apache/flex-blazeds/pull/11 Bumps [jetty-server](https://github.com/eclipse/jetty.project) from 9.3.30.v20211001 to 9.4.41.v20210516. Release notes Sourced from https://github.com/eclipse/jetty.project/releases";>jetty-server's releases. 9.4.41.v20210516 Changelog This release resolves https://github.com/eclipse/jetty.project/security/advisories/GHSA-gwcr-j4wh-j3cq";>CVE-2021-28169 and https://github.com/eclipse/jetty.project/security/advisories/GHSA-m6cp-vxjx-65j6";>CVE-2021-34428 https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6099";>#6099 Cipher preference may break SNI if certificates have different key types https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6186";>#6186 Add Null Protection on Log / Logger https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6205";>#6205 OpenIdAuthenticator may use incorrect redirect https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6208";>#6208 HTTP/2 max local stream count exceeded https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6227";>#6227 Better resolve race between AsyncListener.onTimeout and AsyncContext.dispatch https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6254";>#6254 Total timeout not enforced for queued requests https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6263";>#6263 Review URI encoding in ConcatServlet & WelcomeFilter https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6277";>#6277 Better handle exceptions thrown from session destroy listener https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6280";>#6280 Copy ServletHolder class/instance properly during startWebapp 9.4.40.v20210413 Notable Bug Fixes Users of GzipHandler should upgrade. (https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6168";>#6168) Users of SSL/TLS on the jetty-server or jetty-client should upgrade. (https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6082";>#6082) Changelog https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6168";>#6168 - Improve handling of unconsumed content https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6148";>#6148 - Jetty start.jar always reports jetty.tag.version as master https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6105";>#6105 - HttpConnection.getBytesIn() incorrect for requests with chunked content https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6082";>#6082 - SslConnection compacting 9.4.39.v20210325 Changelog :warning: Important Security related Changes https://github.com/eclipse/jetty.project/security/advisories/GHSA-26vr-8j45-3r4w";>CVE-2021-28165 - https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6072";>#6072 - jetty server high CPU when client send data length > 17408 https://github.com/eclipse/jetty.project/security/advisories/GHSA-v7ff-8wcx-gmc5";>CVE-2021-28164 - https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6101";>#6101 - Normalize ambiguous URIs https://github.com/eclipse/jetty.project/security/advisories/GHSA-j6qj-j888-vvgq";>CVE-2021-28163 - https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6102";>#6102 - Exclude webapps directory from deployment scan Other Changes https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6034";>#6034 - SslContextFactory may select a wildcard certificate during SNI selection when a more specific SSL certificate is present https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6050";>#6050 - Websocket: NotUtf8Exception after upgrade 9.4.35 -> 9.4.36 or newer https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6052";>#6052 - Cleanup TypeUtil and ModuleLocation to allow jetty-client/hybrid to work on Android https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6063";>#6063 - Allow override of hazelcast version when using module https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6085";>#6085 - Jetty keeps Sessions in use after "Duplicate valid session cookies" Message 9.4.38.v20210224 Changelog https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6001";>#6001 - Ambiguous URI legacy compliance mode ... (truncated) Commits https://github.com/eclipse/jetty.project/commit/98607f93c7833e7dc59489b13f3cb0a114fb9f4c";>98607f9 Updating to version 9.4.41.v20210516 https://github.com/eclipse/jetty.project/commit/087f486b4461746b4ded45833887b3ccb136ee85";>087f486 Issue https://github-redirect.dependabot.com/eclipse/jetty.project/issues/6277";>#6277 Better handling of exceptions thrown in sessionDestroyed (
[GitHub] [flex-blazeds] dependabot[bot] commented on pull request #8: Bump jetty-server from 9.1.0.v20131115 to 10.0.10 in /remoting
dependabot[bot] commented on PR #8: URL: https://github.com/apache/flex-blazeds/pull/8#issuecomment-1376942585 Superseded by #11. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] closed pull request #8: Bump jetty-server from 9.1.0.v20131115 to 10.0.10 in /remoting
dependabot[bot] closed pull request #8: Bump jetty-server from 9.1.0.v20131115 to 10.0.10 in /remoting URL: https://github.com/apache/flex-blazeds/pull/8 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #20: Bump junit from 4.11 to 4.13.1 in /flex-maven-tools/flex-sdk-converter/retrievers/base
dependabot[bot] opened a new pull request, #20: URL: https://github.com/apache/flex-utilities/pull/20 Bumps [junit](https://github.com/junit-team/junit4) from 4.11 to 4.13.1. Release notes Sourced from https://github.com/junit-team/junit4/releases";>junit's releases. JUnit 4.13.1 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.1.md";>release notes for details. JUnit 4.13 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.md";>release notes for details. JUnit 4.13 RC 2 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 RC 1 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 Beta 3 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 Beta 2 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.13 Beta 1 Please refer to the https://github.com/junit-team/junit4/wiki/4.13-Release-Notes";>release notes for details. JUnit 4.12 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.12.md";>release notes for details. JUnit 4.12 Beta 3 Please refer to the https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.12.md";>release notes for details. JUnit 4.12 Beta 2 No release notes provided. JUnit 4.12 Beta 1 No release notes provided. Commits https://github.com/junit-team/junit4/commit/1b683f4ec07bcfa40149f086d32240f805487e66";>1b683f4 [maven-release-plugin] prepare release r4.13.1 https://github.com/junit-team/junit4/commit/ce6ce3aadc070db2902698fe0d3dc6729cd631f2";>ce6ce3a Draft 4.13.1 release notes https://github.com/junit-team/junit4/commit/c29dd8239d6b353e699397eb090a1fd27411fa24";>c29dd82 Change version to 4.13.1-SNAPSHOT https://github.com/junit-team/junit4/commit/1d174861f0b64f97ab0722bb324a760bfb02f567";>1d17486 Add a link to assertThrows in exception testing https://github.com/junit-team/junit4/commit/543905df72ff10364b94dda27552efebf3dd04e9";>543905d Use separate line for annotation in Javadoc https://github.com/junit-team/junit4/commit/510e906b391e7e46a346e1c852416dc7be934944";>510e906 Add sub headlines to class Javadoc https://github.com/junit-team/junit4/commit/610155b8c22138329f0723eec22521627dbc52ae";>610155b Merge pull request from GHSA-269g-pwp5-87pp https://github.com/junit-team/junit4/commit/b6cfd1e3d736cc2106242a8be799615b472c7fec";>b6cfd1e Explicitly wrap float parameter for consistency (https://github-redirect.dependabot.com/junit-team/junit4/issues/1671";>#1671) https://github.com/junit-team/junit4/commit/a5d205c7956dbed302b3bb5ecde5ba4299f0b646";>a5d205c Fix GitHub link in FAQ (https://github-redirect.dependabot.com/junit-team/junit4/issues/1672";>#1672) https://github.com/junit-team/junit4/commit/3a5c6b4d08f408c8ca6a8e0bae71a9bc5a8f97e8";>3a5c6b4 Deprecated since jdk9 replacing constructor instance of Double and Float (https://github-redirect.dependabot.com/junit-team/junit4/issues/1660";>#1660) Additional commits viewable in https://github.com/junit-team/junit4/compare/r4.11...r4.13.1";>compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #21: Bump httpclient from 4.5 to 4.5.13 in /flex-maven-tools/flex-sdk-converter/retrievers/download
dependabot[bot] opened a new pull request, #21: URL: https://github.com/apache/flex-utilities/pull/21 Bumps httpclient from 4.5 to 4.5.13. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-utilities/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #22: Bump commons-compress from 1.8.1 to 1.21 in /flex-maven-tools/flex-sdk-converter/retrievers/base
dependabot[bot] opened a new pull request, #22: URL: https://github.com/apache/flex-utilities/pull/22 Bumps commons-compress from 1.8.1 to 1.21. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-utilities/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #24: Bump commons-compress from 1.4 to 1.21 in /flex-maven-tools/flex-sdk-converter/converters/flash
dependabot[bot] opened a new pull request, #24: URL: https://github.com/apache/flex-utilities/pull/24 Bumps commons-compress from 1.4 to 1.21. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-utilities/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #23: Bump commons-io from 2.4 to 2.7 in /flex-maven-tools/flex-sdk-converter/retrievers/base
dependabot[bot] opened a new pull request, #23: URL: https://github.com/apache/flex-utilities/pull/23 Bumps commons-io from 2.4 to 2.7. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-utilities/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] opened a new pull request, #25: Bump commons-io from 2.4 to 2.7 in /flex-maven-tools/flex-sdk-converter/retrievers/download
dependabot[bot] opened a new pull request, #25: URL: https://github.com/apache/flex-utilities/pull/25 Bumps commons-io from 2.4 to 2.7. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/flex-utilities/network/alerts). -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] commented on pull request #16: Bump plexus-utils from 3.0.15 to 3.0.16 in /mavenizer/retrievers/base
dependabot[bot] commented on PR #16: URL: https://github.com/apache/flex-utilities/pull/16#issuecomment-1376954342 Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting `@dependabot rebase`. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] commented on pull request #17: Bump commons-compress from 1.4 to 1.21 in /mavenizer/converters/flash
dependabot[bot] commented on PR #17: URL: https://github.com/apache/flex-utilities/pull/17#issuecomment-1376954408 Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting `@dependabot rebase`. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-utilities] dependabot[bot] commented on pull request #19: Bump jettison from 1.3.1 to 1.5.2 in /mavenizer/converters/base
dependabot[bot] commented on PR #19: URL: https://github.com/apache/flex-utilities/pull/19#issuecomment-1376954435 Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting `@dependabot rebase`. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] commented on pull request #10: Bump spring-beans from 4.3.3.RELEASE to 5.2.20.RELEASE in /opt/blazeds-spring-boot-starter
dependabot[bot] commented on PR #10: URL: https://github.com/apache/flex-blazeds/pull/10#issuecomment-1396232022 Looks like org.springframework:spring-beans is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] closed pull request #10: Bump spring-beans from 4.3.3.RELEASE to 5.2.20.RELEASE in /opt/blazeds-spring-boot-starter
dependabot[bot] closed pull request #10: Bump spring-beans from 4.3.3.RELEASE to 5.2.20.RELEASE in /opt/blazeds-spring-boot-starter URL: https://github.com/apache/flex-blazeds/pull/10 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] commented on pull request #9: Bump xalan from 2.6.0 to 2.7.2
dependabot[bot] commented on PR #9: URL: https://github.com/apache/flex-blazeds/pull/9#issuecomment-1396232511 Looks like xalan:xalan is no longer a dependency, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] closed pull request #7: Bump tomcat-catalina from 7.0.8 to 7.0.81 in /opt/tomcat/tomcat-7
dependabot[bot] closed pull request #7: Bump tomcat-catalina from 7.0.8 to 7.0.81 in /opt/tomcat/tomcat-7 URL: https://github.com/apache/flex-blazeds/pull/7 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] closed pull request #9: Bump xalan from 2.6.0 to 2.7.2
dependabot[bot] closed pull request #9: Bump xalan from 2.6.0 to 2.7.2 URL: https://github.com/apache/flex-blazeds/pull/9 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[GitHub] [flex-blazeds] dependabot[bot] commented on pull request #7: Bump tomcat-catalina from 7.0.8 to 7.0.81 in /opt/tomcat/tomcat-7
dependabot[bot] commented on PR #7: URL: https://github.com/apache/flex-blazeds/pull/7#issuecomment-1396232622 Looks like org.apache.tomcat:tomcat-catalina is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@flex.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
