You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by gi...@apache.org on 2021/09/08 08:35:16 UTC
[santuario-xml-security-java] branch
dependabot/maven/org.apache-apache-24 updated (0f6aba4 -> a26e9e9)
This is an automated email from the ASF dual-hosted git repository.
github-bot pushed a change to branch dependabot/maven/org.apache-apache-24
in repository https://gitbox.apache.org/repos/asf/santuario-xml-security-java.git.
discard 0f6aba4 Bump apache from 23 to 24
add 89e5b25 Bump jetty.version from 9.4.42.v20210604 to 9.4.43.v20210629
add f4decfa Merge pull request #52 from apache/dependabot/maven/jetty.version-9.4.43.v20210629
add 80fa561 Bump dependency-check-maven from 6.2.1 to 6.2.2
add 10d7566 Merge pull request #49 from apache/dependabot/maven/org.owasp-dependency-check-maven-6.2.2
add bf85dbe SANTUARIO-574 - Enable secure validation by default
add 5bcbf7d SANTUARIO-572 - Disallow a KeyInfoReference to refer to a RetrievalMethod
add 4961349 Merge pull request #51 from apache/SANTUARIO-572
add 2d84fac SANTUARIO-575 - Remove XMLSecurityRuntimeException
add d742549 Removing some problematic language
add 85c17ed Bump slf4j.version from 1.7.30 to 1.7.32
add f3b69d1 Merge pull request #54 from apache/dependabot/maven/slf4j.version-1.7.32
add 09ed318 Bump modernizer-maven-plugin from 2.2.0 to 2.3.0
add 048d726 Merge pull request #55 from apache/dependabot/maven/org.gaul-modernizer-maven-plugin-2.3.0
add d21d6eb SANTUARIO-577 - Introduce a system property to control if file/http references are allowed from an unsigned context
add 80c552b Merge pull request #58 from apache/SANTUARIO-577
add aec2ae3 Bump dependency-check-maven from 6.2.2 to 6.3.1
add 8db30f5 Merge pull request #57 from apache/dependabot/maven/org.owasp-dependency-check-maven-6.3.1
add a26e9e9 Bump apache from 23 to 24
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (0f6aba4)
\
N -- N -- N refs/heads/dependabot/maven/org.apache-apache-24 (a26e9e9)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
No new revisions were added by this update.
Summary of changes:
pom.xml | 6 +-
.../xml/dsig/internal/dom/DOMURIDereferencer.java | 21 +--
.../apache/jcp/xml/dsig/internal/dom/Utils.java | 14 +-
.../apache/xml/security/encryption/XMLCipher.java | 3 +-
.../xml/security/encryption/XMLCipherInput.java | 11 +-
.../exceptions/XMLSecurityRuntimeException.java | 177 ---------------------
.../java/org/apache/xml/security/keys/KeyInfo.java | 2 +-
.../implementations/KeyInfoReferenceResolver.java | 12 +-
.../implementations/RetrievalMethodResolver.java | 17 +-
.../security/resource/xmlsecurity_en.properties | 3 +-
.../apache/xml/security/signature/Manifest.java | 2 +-
.../apache/xml/security/signature/Reference.java | 2 +-
.../xml/security/signature/XMLSignatureInput.java | 15 +-
.../apache/xml/security/transforms/Transforms.java | 2 +-
.../TransformEnvelopedSignature.java | 8 +-
.../transforms/implementations/TransformXPath.java | 15 +-
.../utils/resolver/ResourceResolverContext.java | 22 +++
.../javax/xml/crypto/test/dsig/C14N11Test.java | 2 +-
.../crypto/test/dsig/CreateBaltimore23Test.java | 1 +
.../xml/crypto/test/dsig/IaikCoreFeaturesTest.java | 2 +-
.../crypto/test/dsig/JSRForbiddenRefCountTest.java | 5 +-
.../xml/crypto/test/dsig/SignatureValidator.java | 14 +-
.../security/test/dom/interop/BaltimoreTest.java | 2 +
.../keyresolver/KeyInfoReferenceResolverTest.java | 21 +++
.../dom/utils/resolver/ResourceResolverTest.java | 60 +++++++
...ml => KeyInfoReference-RSA-RetrievalMethod.xml} | 12 +-
26 files changed, 208 insertions(+), 243 deletions(-)
delete mode 100644 src/main/java/org/apache/xml/security/exceptions/XMLSecurityRuntimeException.java
copy src/test/resources/org/apache/xml/security/keyresolver/{KeyInfoReference-ReferenceChain.xml => KeyInfoReference-RSA-RetrievalMethod.xml} (78%)