You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by gi...@apache.org on 2023/02/01 17:46:54 UTC
[cxf] branch dependabot/maven/cxf.maven.core.version-3.8.7 updated (92c20b3465 -> e26dc08bca)
This is an automated email from the ASF dual-hosted git repository.
github-bot pushed a change to branch dependabot/maven/cxf.maven.core.version-3.8.7
in repository https://gitbox.apache.org/repos/asf/cxf.git
omit 92c20b3465 Bump cxf.maven.core.version from 3.6.3 to 3.8.7
add a2d821e682 Update Project Reactor to 3.5.2
add e4a3e24938 Bump testng from 7.6.1 to 7.7.1 (#1067)
add 2083c29ed0 CXF-8758: Migration path for Wiremock (Jetty 11/JakartaEE) (#1056)
add 98be30e681 Update JUnit Jupiter to 5.9.2
add 60aa618e06 Bump plexus-archiver from 4.2.0 to 4.6.1 (#1065)
add 88e8ec843c Update maven-surefire-plugin to 3.0.0-M8 (#1068)
add 00b1c007ee Bump hsqldb from 2.6.1 to 2.7.1 (#1069)
add 6ee0dcf9a8 Bump maven-checkstyle-plugin from 3.2.0 to 3.2.1 (#1072)
add 3510be0065 Update Netty to 4.1.87.Final
add faefc09e44 Bump cxf.tomcat.version from 10.1.4 to 10.1.5 (#1073)
add 1065c7070b Bump hoverfly-java from 0.14.0 to 0.14.3 (#1075)
add e628555f18 Update Spring Boot to 3.0.2
add 0edc6a8f2e Bump narayana-jta-jakarta from 5.12.7.Final to 5.13.1.Final (#1076)
add 9b6e4591d5 Bump msv-core from 2013.6.1 to 2022.7 (#1070)
add 4aa66df745 Bump feign-httpclient from 10.1.0 to 12.1 (#1074)
add b9717d7c77 Bump feign-core to 12.1 and feign-opentracing to 0.4.1
add f532aed5ab Update maven-pmd-plugin to 3.20.0
add 7c971f2777 Update PMD to 6.53.0
add fb3918beb6 Fix msv-core dependency exclusions after 2022.7 update
add 1f76111177 Bump exec-maven-plugin from 1.6.0 to 3.1.0 (#1080)
add e52366faa0 Bump maven-antrun-plugin from 3.0.0 to 3.1.0 (#1079)
add 90d3ddbde4 Bump jboss-logging from 3.4.3.Final to 3.5.0.Final (#1083)
add 42212ce4a6 Bump geronimo-config-impl from 1.0 to 1.2.3 (#1082)
add 89a19d5772 Fixing build badge
add bd82d8a346 Adding scorecards workflow
add cd2a2a2f66 Adding scorecards to README
add f3e15e52c7 Adding github actions to dependabot
add 4ab7b061ba [StepSecurity] ci: Harden GitHub Actions (#1090)
add c0755e976d Bump ossf/scorecard-action from 2.0.6 to 2.1.2 (#1088)
add 7bfb56b041 Bump actions/upload-artifact from 3.0.0 to 3.1.2 (#1089)
add d612ec8f69 Bump buildnumber-maven-plugin from 1.4 to 3.0.0 (#1086)
add b81a72602f Bump maven-gpg-plugin from 1.6 to 3.0.1 (#1085)
add 8205d75774 Bump cargo-maven2-plugin from 1.6.7 to 1.8.5 (#1081)
add 6474084699 Bump github/codeql-action from 2.1.39 to 2.2.0 (#1092)
add 4d7faf61a0 Bump gson from 2.8.5 to 2.10.1 (#1094)
add 8d07a76987 Bump cxf.jboss.narayana.version from 5.12.7.Final to 5.13.1.Final (#1093)
add ea334cd2a0 Bump angus-activation from 1.0.0 to 2.0.0 (#1091)
add 6449cbf332 Update maven-dependency-plugin to 3.5.0
add 5a755eaf92 Update maven-project-info-reports-plugin to 3.4.2
add 8038d267a2 Update RxJava3 to 3.1.6
add d9bb99deb7 Update Mockito to 5.1.0 (#1095)
add bfc9687826 Bump github/codeql-action from 2.2.0 to 2.2.1 (#1096)
add 4e3b0f1d80 Bump woodstox-core from 6.4.0 to 6.5.0 (#1099)
add cb00226811 Bump microprofile-config-api from 3.0.1 to 3.0.2 (#1097)
add b5e0162219 Bump pmd-core from 6.53.0 to 6.54.0 (#1098)
add 6515765163 Update Jackson to 2.14.2
add b7131a3588 CXF-8393: Umbrella issue to address fixing flaky tests (#1084)
add 990d3332d3 Bump actions/cache from 3.2.3 to 3.2.4 (#1100)
add ceaef931fc Bump maven-bundle-plugin from 5.1.4 to 5.1.8 (#1102)
add babdd36c45 Bump maven-assembly-plugin from 3.3.0 to 3.4.2 (#1103)
add b49846c8c4 Bump maven-enforcer-plugin from 3.1.0 to 3.2.1 (#1105)
add e2c881bfc0 Update Zipkin Brave to 5.15.0
add 6039ff0c00 Update Apache Lucene to 9.5.0
add e26dc08bca Bump cxf.maven.core.version from 3.6.3 to 3.8.7
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (92c20b3465)
\
N -- N -- N refs/heads/dependabot/maven/cxf.maven.core.version-3.8.7 (e26dc08bca)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
No new revisions were added by this update.
Summary of changes:
.github/dependabot.yml | 6 +++
.github/workflows/codeql-analysis.yml | 10 ++--
.github/workflows/scorecards.yml | 62 ++++++++++++++++++++++
README.md | 4 +-
core/pom.xml | 2 +-
.../main/release/samples/java_first_jaxws/pom.xml | 2 +-
.../samples/jax_rs/tracing_opentracing/pom.xml | 6 +--
distribution/src/main/release/samples/pom.xml | 20 +++----
parent/pom.xml | 56 ++++++++++---------
pom.xml | 20 +++----
rt/rs/microprofile-client/pom.xml | 3 +-
systests/microprofile/client/async/pom.xml | 4 +-
systests/microprofile/client/nocdi/pom.xml | 4 +-
systests/microprofile/client/weld/pom.xml | 44 +++++----------
systests/microprofile/pom.xml | 4 +-
15 files changed, 148 insertions(+), 99 deletions(-)
create mode 100644 .github/workflows/scorecards.yml