You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@cxf.apache.org by re...@apache.org on 2023/03/13 21:10:56 UTC

[cxf] branch 3.5.x-fixes updated (c79011dc83 -> 9fd79cb02f)

This is an automated email from the ASF dual-hosted git repository.

reta pushed a change to branch 3.5.x-fixes
in repository https://gitbox.apache.org/repos/asf/cxf.git


    from c79011dc83 Recording .gitmergeinfo Changes
     new 83819af4dc Bump github/codeql-action from 2.2.5 to 2.2.6 (#1171)
     new 1e335ffbaf Bump plexus-utils from 3.5.0 to 3.5.1 (#1173)
     new 9fd79cb02f Bump dependency-check-maven from 8.1.0 to 8.1.2 (#1174)

The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 .github/workflows/codeql-analysis.yml | 4 ++--
 parent/pom.xml                        | 2 +-
 pom.xml                               | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

[cxf] 03/03: Bump dependency-check-maven from 8.1.0 to 8.1.2 (#1174)

Posted by re...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

reta pushed a commit to branch 3.5.x-fixes
in repository https://gitbox.apache.org/repos/asf/cxf.git

commit 9fd79cb02fbc8df03c4da3718756b5d087b09eec
Author: dependabot[bot] <49...@users.noreply.github.com>
AuthorDate: Mon Mar 13 07:43:15 2023 -0400

    Bump dependency-check-maven from 8.1.0 to 8.1.2 (#1174)
    
    Bumps [dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 8.1.0 to 8.1.2.
    - [Release notes](https://github.com/jeremylong/DependencyCheck/releases)
    - [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md)
    - [Commits](https://github.com/jeremylong/DependencyCheck/compare/v8.1.0...v8.1.2)
    
    ---
    updated-dependencies:
    - dependency-name: org.owasp:dependency-check-maven
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <su...@github.com>
    Co-authored-by: dependabot[bot] <49...@users.noreply.github.com>
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index bc0c5a2ce5..ad71ac5cd8 100644
--- a/pom.xml
+++ b/pom.xml
@@ -45,7 +45,7 @@
         <cxf.jdk.version>1.8</cxf.jdk.version>
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
         <site.deploy.url>scp://people.apache.org/www/cxf.apache.org/maven-site</site.deploy.url>
-        <maven-owasp-plugin-version>8.1.0</maven-owasp-plugin-version>
+        <maven-owasp-plugin-version>8.1.2</maven-owasp-plugin-version>
     </properties>
     <distributionManagement>
         <repository>

[cxf] 01/03: Bump github/codeql-action from 2.2.5 to 2.2.6 (#1171)

Posted by re...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

reta pushed a commit to branch 3.5.x-fixes
in repository https://gitbox.apache.org/repos/asf/cxf.git

commit 83819af4dcc790668e83044382d16f1baaac4ed9
Author: dependabot[bot] <49...@users.noreply.github.com>
AuthorDate: Mon Mar 13 06:37:57 2023 +0000

    Bump github/codeql-action from 2.2.5 to 2.2.6 (#1171)
    
    Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.5 to 2.2.6.
    - [Release notes](https://github.com/github/codeql-action/releases)
    - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
    - [Commits](https://github.com/github/codeql-action/compare/32dc499307d133bb5085bae78498c0ac2cf762d5...16964e90ba004cdf0cd845b866b5df21038b7723)
    
    ---
    updated-dependencies:
    - dependency-name: github/codeql-action
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <su...@github.com>
    Co-authored-by: dependabot[bot] <49...@users.noreply.github.com>
---
 .github/workflows/codeql-analysis.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index c41691d872..38112ab1f9 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -49,7 +49,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@32dc499307d133bb5085bae78498c0ac2cf762d5 # v2.2.5
+      uses: github/codeql-action/init@16964e90ba004cdf0cd845b866b5df21038b7723 # v2.2.6
       with:
         languages: ${{ matrix.language }}
         #config-file: ./.github/codeql/codeql-cxf-config.yml
@@ -77,4 +77,4 @@ jobs:
     #   make release
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@32dc499307d133bb5085bae78498c0ac2cf762d5 # v2.2.5
+      uses: github/codeql-action/analyze@16964e90ba004cdf0cd845b866b5df21038b7723 # v2.2.6

[cxf] 02/03: Bump plexus-utils from 3.5.0 to 3.5.1 (#1173)

Posted by re...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

reta pushed a commit to branch 3.5.x-fixes
in repository https://gitbox.apache.org/repos/asf/cxf.git

commit 1e335ffbaf7fd91756c11b62b820041c12a32418
Author: dependabot[bot] <49...@users.noreply.github.com>
AuthorDate: Mon Mar 13 06:38:10 2023 +0000

    Bump plexus-utils from 3.5.0 to 3.5.1 (#1173)
    
    Bumps [plexus-utils](https://github.com/codehaus-plexus/plexus-utils) from 3.5.0 to 3.5.1.
    - [Release notes](https://github.com/codehaus-plexus/plexus-utils/releases)
    - [Commits](https://github.com/codehaus-plexus/plexus-utils/compare/plexus-utils-3.5.0...plexus-utils-3.5.1)
    
    ---
    updated-dependencies:
    - dependency-name: org.codehaus.plexus:plexus-utils
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <su...@github.com>
    Co-authored-by: dependabot[bot] <49...@users.noreply.github.com>
---
 parent/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/parent/pom.xml b/parent/pom.xml
index 578aa6f431..a6987935f3 100644
--- a/parent/pom.xml
+++ b/parent/pom.xml
@@ -188,7 +188,7 @@
         <cxf.openwebbeans.version>2.0.27</cxf.openwebbeans.version>
         <cxf.persistence-api.version>2.2.3</cxf.persistence-api.version>
         <cxf.plexus-archiver.version>4.6.2</cxf.plexus-archiver.version>
-        <cxf.plexus-utils.version>3.5.0</cxf.plexus-utils.version>
+        <cxf.plexus-utils.version>3.5.1</cxf.plexus-utils.version>
         <cxf.reactivestreams.version>1.0.4</cxf.reactivestreams.version>
         <cxf.reactor.version>3.4.27</cxf.reactor.version>
         <cxf.rhino.version>1.7.14</cxf.rhino.version>