You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@plc4x.apache.org by sr...@apache.org on 2022/08/16 08:00:54 UTC

[plc4x] branch develop updated: build(deps): bump mockito.version from 4.6.1 to 4.7.0 (#450)

This is an automated email from the ASF dual-hosted git repository.

sruehl pushed a commit to branch develop
in repository https://gitbox.apache.org/repos/asf/plc4x.git


The following commit(s) were added to refs/heads/develop by this push:
     new 90bb657d7 build(deps): bump mockito.version from 4.6.1 to 4.7.0 (#450)
90bb657d7 is described below

commit 90bb657d7a961fca0630be5d1a1ee50e3382c5ae
Author: dependabot[bot] <49...@users.noreply.github.com>
AuthorDate: Tue Aug 16 10:00:50 2022 +0200

    build(deps): bump mockito.version from 4.6.1 to 4.7.0 (#450)
    
    * build(deps): bump mockito.version from 4.6.1 to 4.7.0
    
    Bumps `mockito.version` from 4.6.1 to 4.7.0.
    
    Updates `mockito-core` from 4.6.1 to 4.7.0
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](https://github.com/mockito/mockito/compare/v4.6.1...v4.7.0)
    
    Updates `mockito-junit-jupiter` from 4.6.1 to 4.7.0
    - [Release notes](https://github.com/mockito/mockito/releases)
    - [Commits](https://github.com/mockito/mockito/compare/v4.6.1...v4.7.0)
    
    ---
    updated-dependencies:
    - dependency-name: org.mockito:mockito-core
      dependency-type: direct:production
      update-type: version-update:semver-minor
    - dependency-name: org.mockito:mockito-junit-jupiter
      dependency-type: direct:production
      update-type: version-update:semver-minor
    ...
    
    Signed-off-by: dependabot[bot] <su...@github.com>
    
    * fix: exclude org.mockito:mockito-junit-jupiter because of wrong detection
    
    https://github.com/jeremylong/DependencyCheck/issues/4754
    
    Signed-off-by: dependabot[bot] <su...@github.com>
    Co-authored-by: dependabot[bot] <49...@users.noreply.github.com>
    Co-authored-by: Sebastian Rühl <sr...@apache.org>
---
 pom.xml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index cd0295f7c..926799f78 100644
--- a/pom.xml
+++ b/pom.xml
@@ -149,7 +149,7 @@
     <!-- version 0.6.7 is newer, however the ExampleServer doesn't seem to run with that -->
     <!-- version 0.6.8 is being released, however the milo-examples artifact is not available yet -->
     <milo.version>0.6.6</milo.version>
-    <mockito.version>4.6.1</mockito.version>
+    <mockito.version>4.7.0</mockito.version>
     <netty.version>4.1.79.Final</netty.version>
     <owasp-dependency-check.version>7.1.1</owasp-dependency-check.version>
     <pcap4j.version>1.8.2</pcap4j.version>
@@ -894,6 +894,10 @@
             -->
             <exclude>org.apache.calcite.avatica:avatica-core</exclude>
             <exclude>javax.ws.rs:javax.ws.rs-api</exclude>
+            <!--
+              With 4.7.0 this gets falsely detected as junit 4.7.0 which the produces a unrelated CVE-2020-15250
+            -->
+            <exclude>org.mockito:mockito-junit-jupiter</exclude>
           </excludes>
         </configuration>
       </plugin>