Bump org.codehaus.mojo:versions-maven-plugin from 2.15.0 to 2.16.2

Open dependabot[bot] opened this issue 2 years ago • 0 comments

Bumps org.codehaus.mojo:versions-maven-plugin from 2.15.0 to 2.16.2.

Release notes

Sourced from org.codehaus.mojo:versions-maven-plugin's releases.

2.16.2

Changes

🚀 New features and improvements

Align update-parent and display-parent-update (#1017) @cachescrubber

🐛 Bug Fixes

Fix ISE with plugins aggregate report when reactor projects contains the same plugin declaration multiple time with different versions (#1024) @olamy

Reading project model should throw exception (#1023) @slawekjaranowski

Resolves #1009: Fixing a broken test scenario (#1010) @ajarmoniuk

📦 Dependency updates

Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.0 (#1022) @dependabot

Bump org.apache.commons:commons-text from 1.10.0 to 1.11.0 (#1020) @dependabot

Bump org.codehaus.mojo:mojo-parent from 76 to 77 (#1014) @dependabot

Bump commons-io:commons-io from 2.14.0 to 2.15.0 (#1019) @dependabot

Bump plexus-utils from 3.5.1 to 4.0.0 (#963) @dependabot

Bump commons-io:commons-io from 2.13.0 to 2.14.0 (#1012) @dependabot

2.16.1

Changes

🐛 Bug Fixes

Resolves #978 - use-releases does not update parent (#1007) @ajarmoniuk

Correct message if the latest version of parent is used for update-parent (#1000) @slawekjaranowski

Resolves #995: Minimum version required for Versions Maven Plugin should is not the minimum version for the project (#996) @ajarmoniuk

Resolves #990: Check prerequisites if required enforcer Maven version is empty (#994) @ajarmoniuk

Fix links for XSD in report models (#992) @slawekjaranowski

Use versions of dummy artifacts in IT assertions (#988) @slawekjaranowski

Resolves #973: NPE if actual version is null for a dependency (#974) @ajarmoniuk

📦 Dependency updates

Bump org.springframework:spring-framework-bom from 3.2.17.RELEASE to 4.3.30.RELEASE in /versions-maven-plugin/src/it/it-property-updates-report-002-slow (#999) @dependabot

Bump org.apache.commons:commons-lang3 from 3.12.0 to 3.13.0 (#993) @dependabot

Bump org.codehaus.plexus:plexus-archiver from 4.7.1 to 4.8.0 (#989) @dependabot

Bump org.junit:junit-bom from 5.9.3 to 5.10.0 (#987) @dependabot

Bump mojo-parent from 75 to 76 (#986) @dependabot

Bump commons-codec from 1.15 to 1.16.0 (#977) @dependabot

Bump commons-io from 2.12.0 to 2.13.0 (#972) @dependabot

👻 Maintenance

Cleanup pluginManagement from mock artifacts (#1008) @slawekjaranowski

#1001: added a test case for the issue (#1003) @ajarmoniuk

... (truncated)

Commits

6b33fbc [maven-release-plugin] prepare release 2.16.2
e56c8c4 Align update-parent and display-parent-update (#1017)
1136bf4 Fix ISE with plugins aggregate report when reactor projects contains the same...
2fd9c32 Reading project model should throw exception
2ac332d Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.0
048d3a3 Bump org.apache.commons:commons-text from 1.10.0 to 1.11.0
4a397c2 Cleanup redundant definitions after pom update
69cc330 Bump org.codehaus.mojo:mojo-parent from 76 to 77
eca1e46 Bump commons-io:commons-io from 2.14.0 to 2.15.0
8fefd9d Add dependency to plexus-xml 3.0.0
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Dec 01 '23 19:12 dependabot[bot]