You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@orc.apache.org by GitBox <gi...@apache.org> on 2021/08/09 19:28:14 UTC
[GitHub] [orc] dependabot[bot] opened a new pull request #842: Bump byte-buddy from 1.10.19 to 1.11.12 in /java
dependabot[bot] opened a new pull request #842:
URL: https://github.com/apache/orc/pull/842
Bumps [byte-buddy](https://github.com/raphw/byte-buddy) from 1.10.19 to 1.11.12.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/raphw/byte-buddy/releases">byte-buddy's releases</a>.</em></p>
<blockquote>
<h2>Byte Buddy 1.11.12</h2>
<ul>
<li>Always use reflection and not a <code>JavaDispatcher</code> when a method potentially checks the access context via a security manager.</li>
</ul>
<h2>Byte Buddy 1.11.11</h2>
<ul>
<li>Do not pollute access context for security manager when defining classes via a method handle lookup.</li>
</ul>
<h2>Byte Buddy 1.11.10</h2>
<ul>
<li>Added option for Gradle plugin to register <code>adjustmentPostProcessor</code> to manually add task dependencies.</li>
</ul>
<h2>Byte Buddy 1.11.9</h2>
<ul>
<li>Include <em>jdk.reflect</em> package in default ignore matcher.</li>
<li>Retain parameter names for constructor of Java record as it is done by <em>javac</em>.</li>
<li>Throw <code>NoSuchTypeException</code> on non-resolved types rather then <code>IllegalStateException</code>.</li>
<li>Weaken visibility checks for fields set by <code>MethodCall</code>.</li>
</ul>
<h2>Byte Buddy 1.11.8</h2>
<ul>
<li>Fix package exposure for <code>JavaDispatcher</code> class when Byte Buddy is used as a module.</li>
</ul>
<h2>Byte Buddy 1.11.7</h2>
<ul>
<li>Introduce a more complex error handler for Gradle builds in favor of strict mode.</li>
<li>Include method for reading all loaded <code>Class</code> values of a loaded dynamic type.</li>
<li>Include Byte Buddy version in <em>module-info</em>.</li>
<li>Fix package list in <em>module-info</em>.</li>
</ul>
<h2>Byte Buddy 1.11.6</h2>
<ul>
<li>Add fallback for <code>JavaDispatcher</code> that works on Android and other platforms that do not support dynamic class definitions.</li>
<li>Make Gradle task dependency resolution more robust and configurable.</li>
<li>Update ASM and support Java 18 without experimental configuration.</li>
</ul>
<h2>Byte Buddy 1.11.5</h2>
<ul>
<li>Remove <code>AccessController</code> API to replace with weaved access control via <code>AccessControllerPlugin</code>.</li>
</ul>
<h2>Byte Buddy 1.11.4</h2>
<ul>
<li>Add constant for Java 18</li>
<li>Improve constructor resolution for <code>Plugin</code>s.</li>
<li>Add convenience method for translating <code>TypeDescription.Generic</code> to a builder.</li>
<li>Add convenience method for resolving an annotation property from a property name.</li>
</ul>
<h2>Byte Buddy 1.11.3</h2>
<ul>
<li>Introduce <code>AccessControllerPlugin</code> to weave use of <code>AccessController</code> only if available.</li>
<li>Fix use of incorrect type when chaining <code>InvokeDynamic</code>.</li>
<li>Better emulate visitation order of ASM when creating types.</li>
<li>Avoid writing duplicate entries for submitted subtypes in sealed types.</li>
<li>Better encapsulate <code>JavaDispatcher</code> utility.</li>
<li>Add frame padding to initialization handler when redefining or rebasing a class.</li>
<li>Do not assume that <code>TypeVariable</code>s are <code>AnnotatedElement</code>s to support Java 7 and earlier.</li>
</ul>
<h2>Byte Buddy 1.11.2</h2>
<ul>
<li>Fixes resolution of array types for Java descriptors of <code>JavaConstant</code>.</li>
<li>Properly process Android's version string and avoid relying on the version string where possible.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/raphw/byte-buddy/blob/master/release-notes.md">byte-buddy's changelog</a>.</em></p>
<blockquote>
<h3>6. August 2021: version 1.11.12</h3>
<ul>
<li>Always use reflection and not a <code>JavaDispatcher</code> when a method potentially checks the access context via a security manager.</li>
</ul>
<h3>5. August 2021: version 1.11.11</h3>
<ul>
<li>Do not pollute access context for security manager when defining classes via a method handle lookup.</li>
</ul>
<h3>4. August 2021: version 1.11.10</h3>
<ul>
<li>Added option for Gradle plugin to register <code>adjustmentPostProcessor</code> to manually add task dependencies.</li>
</ul>
<h3>27. July 2021: version 1.11.9</h3>
<ul>
<li>Include <em>jdk.reflect</em> package in default ignore matcher.</li>
<li>Retain parameter names for constructor of Java record as it is done by <em>javac</em>.</li>
<li>Throw <code>NoSuchTypeException</code> on non-resolved types rather then <code>IllegalStateException</code>.</li>
<li>Weaken visibility checks for fields set by <code>MethodCall</code>.</li>
</ul>
<h3>15. July 2021: version 1.11.8</h3>
<ul>
<li>Fix package exposure for <code>JavaDispatcher</code> class when Byte Buddy is used as a module.</li>
</ul>
<h3>14. July 2021: version 1.11.7</h3>
<ul>
<li>Introduce a more complex error handler for Gradle builds in favor of strict mode.</li>
<li>Include method for reading all loaded <code>Class</code> values of a loaded dynamic type.</li>
<li>Include Byte Buddy version in <em>module-info</em>.</li>
<li>Fix package list in <em>module-info</em>.</li>
</ul>
<h3>2. July 2021: version 1.11.6</h3>
<ul>
<li>Add fallback for <code>JavaDispatcher</code> that works on Android and other platforms that do not support dynamic class definitions.</li>
<li>Make Gradle task dependency resolution more robust and configurable.</li>
<li>Update ASM and support Java 18 without experimental configuration.</li>
</ul>
<h3>19. June 2021: version 1.11.5</h3>
<ul>
<li>Remove <code>AccessController</code> API to replace with weaved access control via <code>AccessControllerPlugin</code>.</li>
</ul>
<h3>19. June 2021: version 1.11.4</h3>
<ul>
<li>Add constant for Java 18</li>
<li>Improve constructor resolution for <code>Plugin</code>s.</li>
<li>Add convenience method for translating <code>TypeDescription.Generic</code> to a builder.</li>
<li>Add convenience method for resolving an annotation property from a property name.</li>
</ul>
<h3>18. June 2021: version 1.11.3</h3>
<ul>
<li>Introduce <code>AccessControllerPlugin</code> to weave use of <code>AccessController</code> only if available.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/raphw/byte-buddy/commit/ec813ad1a02b1b58154d5df9389ecaa786041d6c"><code>ec813ad</code></a> [maven-release-plugin] prepare release byte-buddy-1.11.12</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/623719ec6e47a1a97a0e1e0991512fda4f8f841f"><code>623719e</code></a> [release] Rethrow unchecked exception from JavaModule.</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/eb4874b4bf26f6db61ed2040980ade9684ff06aa"><code>eb4874b</code></a> Do not include custom exception messages when using reflection. Use reflectio...</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/ca9d3ab5b238d81fd09d62482b21132b019a68c1"><code>ca9d3ab</code></a> Use reflection for security manager invocations and prefer getTargetException...</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/625d1050069e87a01ec1a6c4bf68ada699aec677"><code>625d105</code></a> [maven-release-plugin] prepare for next development iteration</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/05cd0a9c4a7da9d04eaf2773add5d17126f8e879"><code>05cd0a9</code></a> [maven-release-plugin] prepare release byte-buddy-1.11.11</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/11e81004e778dc4fc840f1a885bf43b0de5862a4"><code>11e8100</code></a> [release] Fix unused import prior to release</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/180c37626ebe27dde6bd80a790445f52ef648afe"><code>180c376</code></a> [release] Add hint to findbugs to avoid build failure</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/aaeb22eaaad27fa12325428a80069c7a6e352dd3"><code>aaeb22e</code></a> [release] Avoid escaping Byte Buddy's scope when defining a class via a metho...</li>
<li><a href="https://github.com/raphw/byte-buddy/commit/a16b532ddea27e5770ea75a5361b0c3a94e8fa9b"><code>a16b532</code></a> Update release notes.</li>
<li>Additional commits viewable in <a href="https://github.com/raphw/byte-buddy/compare/byte-buddy-1.10.19...byte-buddy-1.11.12">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@orc.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [orc] dongjoon-hyun commented on pull request #842: Bump byte-buddy from 1.10.19 to 1.11.12 in /java
Posted by GitBox <gi...@apache.org>.
dongjoon-hyun commented on pull request #842:
URL: https://github.com/apache/orc/pull/842#issuecomment-895489931
@dependabot rebase
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@orc.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [orc] dongjoon-hyun merged pull request #842: ORC-932: Bump byte-buddy from 1.10.19 to 1.11.12
Posted by GitBox <gi...@apache.org>.
dongjoon-hyun merged pull request #842:
URL: https://github.com/apache/orc/pull/842
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@orc.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org