Bump io.dropwizard:dropwizard-bom from 2.1.2 to 4.0.7

Open dependabot[bot] opened this issue 1 year ago • 0 comments

Bumps io.dropwizard:dropwizard-bom from 2.1.2 to 4.0.7.

Release notes

Sourced from io.dropwizard:dropwizard-bom's releases.

v4.0.7

Security

This release is addressing CVE-2024-22201 via upgrade to Jetty 11.0.20.

What's Changed

fix(deps): update dependency org.eclipse.jetty:jetty-bom to v11.0.20 (release/4.0.x) by @renovate in dropwizard/dropwizard#8308

fix(deps): update dependency org.jdbi:jdbi3-bom to v3.44.0 (release/4.0.x) by @renovate in dropwizard/dropwizard#8309

chore(deps): update dependency octokit to v8.1.0 (release/4.0.x) by @renovate in dropwizard/dropwizard#8313

Automatically assign milestone on PR creation by @joschi in dropwizard/dropwizard#8318

chore(deps): pin zoispag/action-assign-milestone action to 1f7abbb (release/4.0.x) by @renovate in dropwizard/dropwizard#8321

chore(deps): update github/codeql-action digest to e8893c5 (release/4.0.x) by @renovate in dropwizard/dropwizard#8322

Let Renovate assign labels for PRs by @joschi in dropwizard/dropwizard#8331

chore(deps): update cimg/openjdk docker tag to v21.0.2 (release/4.0.x) by @renovate in dropwizard/dropwizard#8340

chore(deps): update junit5 monorepo to v5.10.2 (release/4.0.x) (patch) by @renovate in dropwizard/dropwizard#8341

fix(deps): update dependency org.assertj:assertj-core to v3.25.3 (release/4.0.x) by @renovate in dropwizard/dropwizard#8342

chore(deps): update dependency sphinx-autobuild to v2024 (release/4.0.x) by @renovate in dropwizard/dropwizard#8345

chore(deps): update webfactory/ssh-agent action to v0.9.0 (release/4.0.x) by @renovate in dropwizard/dropwizard#8344

fix(deps): update slf4j monorepo to v2.0.12 (release/4.0.x) (patch) by @renovate in dropwizard/dropwizard#8343

chore(deps): update actions/upload-artifact digest to 5d5d22a (release/4.0.x) by @renovate in dropwizard/dropwizard#8339

fix(deps): update dependency org.liquibase:liquibase-core to v4.26.0 (release/4.0.x) by @renovate in dropwizard/dropwizard#8350

fix(deps): update dependency commons-codec:commons-codec to v1.16.1 (release/4.0.x) by @renovate in dropwizard/dropwizard#8355

fix(deps): update dependency org.jdbi:jdbi3-bom to v3.44.1 (release/4.0.x) by @renovate in dropwizard/dropwizard#8356

fix(deps): update dependency org.testcontainers:testcontainers-bom to v1.19.5 (release/4.0.x) by @renovate in dropwizard/dropwizard#8357

Update qodana Github action to 2023.3.1 by @rhowe in dropwizard/dropwizard#8366

chore(deps): update github/codeql-action digest to e675ced (release/4.0.x) by @renovate in dropwizard/dropwizard#8372

chore(deps): pin jetbrains/qodana-action action to e42ff2d (release/4.0.x) by @renovate in dropwizard/dropwizard#8371

chore(deps): update github/codeql-action digest to 3796146 (release/4.0.x) by @renovate in dropwizard/dropwizard#8377

chore(deps): update dependency com.uber.nullaway:nullaway to v0.10.23 (release/4.0.x) by @renovate in dropwizard/dropwizard#8378

Remove duplicate dropwizard-metrics dependency in dropwizard-core by @rhowe in dropwizard/dropwizard#8384

fix(deps): update dependency net.bytebuddy:byte-buddy to v1.14.12 (release/4.0.x) by @renovate in dropwizard/dropwizard#8388

fix(deps): update dependency org.apache.tomcat:tomcat-jdbc to v10.1.19 (release/4.0.x) by @renovate in dropwizard/dropwizard#8391

chore(deps): update error_prone.version to v2.25.0 (release/4.0.x) (minor) by @renovate in dropwizard/dropwizard#8392

chore(deps): update frenck/action-yamllint action to v1.5.0 (release/4.0.x) by @renovate in dropwizard/dropwizard#8393

fix(deps): update dependency org.jdbi:jdbi3-bom to v3.45.0 (release/4.0.x) by @renovate in dropwizard/dropwizard#8394

Remove unused imports by @rhowe in dropwizard/dropwizard#8383

Replace deprecated use of asList() in assert-j by @rhowe in dropwizard/dropwizard#8365

fix(deps): update dependency io.dropwizard.logback:logback-throttling-appender to v1.4.2 (release/4.0.x) by @renovate in dropwizard/dropwizard#8403

Avoid autoboxing in dropwizard-servlets ByteRange by @joschi in dropwizard/dropwizard#8409

chore(deps): update dependency org.apache.maven.plugins:maven-shade-plugin to v3.5.2 (release/4.0.x) by @renovate in dropwizard/dropwizard#8416

chore(deps): update dependency org.codehaus.mojo:exec-maven-plugin to v3.2.0 (release/4.0.x) by @renovate in dropwizard/dropwizard#8418

fix(deps): update dependency org.testcontainers:testcontainers-bom to v1.19.6 (release/4.0.x) by @renovate in dropwizard/dropwizard#8417

chore(deps): update scacap/action-surefire-report digest to a2911bd (release/4.0.x) by @renovate in dropwizard/dropwizard#8415

chore(deps): update github/codeql-action digest to 47b3d88 (release/4.0.x) by @renovate in dropwizard/dropwizard#8425

chore(deps): update actions/setup-java digest to 9704b39 (release/4.0.x) by @renovate in dropwizard/dropwizard#8434

chore(deps): update actions/cache action to v4.0.1 (release/4.0.x) by @renovate in dropwizard/dropwizard#8441

chore(deps): update github/codeql-action digest to 8a470fd (release/4.0.x) by @renovate in dropwizard/dropwizard#8440

fix(deps): update mockito monorepo to v5.11.0 (release/4.0.x) (minor) by @renovate in dropwizard/dropwizard#8451

chore(deps): update dependency com.uber.nullaway:nullaway to v0.10.24 (release/4.0.x) by @renovate in dropwizard/dropwizard#8457

fix(deps): update dependency org.testcontainers:testcontainers-bom to v1.19.7 (release/4.0.x) by @renovate in dropwizard/dropwizard#8458

... (truncated)

Commits

2aeb472 [maven-release-plugin] prepare release v4.0.7
6f87055 fix(deps): update dependency org.testcontainers:testcontainers-bom to v1.19.7...
5313c73 chore(deps): update dependency com.uber.nullaway:nullaway to v0.10.24
b6b9ec4 fix(deps): update mockito monorepo to v5.11.0 (#8451)
5f02b88 chore(deps): update github/codeql-action digest to 8a470fd (#8440)
e9cabc7 chore(deps): update actions/cache action to v4.0.1
dd5eb06 chore(deps): update actions/setup-java digest to 9704b39 (#8434)
93e15b6 chore(deps): update github/codeql-action digest to 47b3d88 (#8425)
649b3b1 chore(deps): update scacap/action-surefire-report digest to a2911bd (#8415)
770fbe2 fix(deps): update dependency org.testcontainers:testcontainers-bom to v1.19.6...
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Mar 11 '24 04:03 dependabot[bot]