You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@fineract.apache.org by GitBox <gi...@apache.org> on 2022/05/23 01:51:17 UTC
[GitHub] [fineract] renovate-bot opened a new pull request, #2333: chore(deps): update all non-major dependencies
renovate-bot opened a new pull request, #2333:
URL: https://github.com/apache/fineract/pull/2333
[](https://renovatebot.com)
This PR contains the following updates:
| Package | Type | Update | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|---|---|
| postgres | | minor | `14.2` -> `14.3` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.tmatesoft.svnkit:svnkit](https://svnkit.com/) ([source](https://svn.tmatesoft.com/repos/svnkit)) | | patch | `1.10.5` -> `1.10.6` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.apache.oltu.oauth2:org.apache.oltu.oauth2.httpclient4](https://oltu.apache.org/) ([source](https://svn.apache.org/repos/asf/oltu/tags/org.apache.oltu.oauth2.parent-1.0.2)) | | patch | `1.0.1` -> `1.0.2` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.apache.oltu.oauth2:org.apache.oltu.oauth2.client](https://oltu.apache.org/) ([source](https://svn.apache.org/repos/asf/oltu/tags/org.apache.oltu.oauth2.parent-1.0.2)) | | patch | `1.0.1` -> `1.0.2` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.apache.oltu.oauth2:org.apache.oltu.oauth2.common](https://oltu.apache.org/) ([source](https://svn.apache.org/repos/asf/oltu/tags/org.apache.oltu.oauth2.parent-1.0.2)) | | patch | `1.0.1` -> `1.0.2` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [com.intuit.karate:karate-junit5](https://togithub.com/karatelabs/karate) | | patch | `1.2.0.RC6` -> `1.2.0` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| com.github.spotbugs | plugin | patch | `5.0.6` -> `5.0.7` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [com.amazonaws:aws-java-sdk-s3](https://aws.amazon.com/sdkforjava) ([source](https://togithub.com/aws/aws-sdk-java)) | | patch | `1.12.213` -> `1.12.225` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [com.github.librepdf:openpdf](https://togithub.com/LibrePDF/OpenPDF) | | patch | `1.3.27` -> `1.3.28` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.springframework.boot](https://spring.io/projects/spring-boot) ([source](https://togithub.com/spring-projects/spring-boot)) | plugin | minor | `2.6.7` -> `2.7.0` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| com.diffplug.spotless | plugin | minor | `6.5.2` -> `6.6.1` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [io.netty:netty-bom](https://netty.io/) ([source](https://togithub.com/netty/netty)) | | patch | `4.1.76.Final` -> `4.1.77.Final` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [com.fasterxml.jackson:jackson-bom](https://togithub.com/FasterXML/jackson-bom) | | patch | `2.13.2.1` -> `2.13.3` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.springframework.boot:spring-boot-dependencies](https://spring.io/projects/spring-boot) ([source](https://togithub.com/spring-projects/spring-boot)) | | minor | `2.6.7` -> `2.7.0` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.springframework:spring-framework-bom](https://togithub.com/spring-projects/spring-framework) | | patch | `5.3.19` -> `5.3.20` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
| [org.apache.tomcat:tomcat](https://tomcat.apache.org/) | | patch | `9.0.62` -> `9.0.63` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) |
---
### Release Notes
<details>
<summary>karatelabs/karate</summary>
### [`v1.2.0`](https://togithub.com/karatelabs/karate/releases/tag/v1.2.0)
#### Highlights
A "final" release after half a year. Multiple fixes and stability improvements. Thanks to all who tested RC releases.
For what's fixed in this version, [refer to this list](https://togithub.com/karatelabs/karate/issues?q=is%3Aclosed+milestone%3A1.2.0).
Note that we have an [experimental NPM package](https://togithub.com/karatelabs/karate-npm) for Node / JS teams. Please spread the word !
##### Breaking Changes from 1.1.0
Please read the [1.2.0 Upgrade Guide](https://togithub.com/karatelabs/karate/wiki/1.2.0-Upgrade-Guide). The good news is that this will not impact most projects.
##### New Contributors
Thanks to all contributors, past and present !
- [@​lyxell](https://togithub.com/lyxell) made their first contribution in [https://github.com/karatelabs/karate/pull/1728](https://togithub.com/karatelabs/karate/pull/1728)
- [@​gerben86](https://togithub.com/gerben86) made their first contribution in [https://github.com/karatelabs/karate/pull/1734](https://togithub.com/karatelabs/karate/pull/1734)
- [@​heyspearsy](https://togithub.com/heyspearsy) made their first contribution in [https://github.com/karatelabs/karate/pull/1744](https://togithub.com/karatelabs/karate/pull/1744)
- [@​treyturner](https://togithub.com/treyturner) made their first contribution in [https://github.com/karatelabs/karate/pull/1750](https://togithub.com/karatelabs/karate/pull/1750)
- [@​gillius](https://togithub.com/gillius) made their first contribution in [https://github.com/karatelabs/karate/pull/1787](https://togithub.com/karatelabs/karate/pull/1787)
- [@​packleader](https://togithub.com/packleader) made their first contribution in [https://github.com/karatelabs/karate/pull/1796](https://togithub.com/karatelabs/karate/pull/1796)
- [@​FanYuliang](https://togithub.com/FanYuliang) made their first contribution in [https://github.com/karatelabs/karate/pull/1829](https://togithub.com/karatelabs/karate/pull/1829)
- [@​Fresh-D101](https://togithub.com/Fresh-D101) made their first contribution in [https://github.com/karatelabs/karate/pull/1841](https://togithub.com/karatelabs/karate/pull/1841)
- [@​OreOreDa](https://togithub.com/OreOreDa) made their first contribution in [https://github.com/karatelabs/karate/pull/1884](https://togithub.com/karatelabs/karate/pull/1884)
- [@​ismail-s](https://togithub.com/ismail-s) made their first contribution in [https://github.com/karatelabs/karate/pull/1891](https://togithub.com/karatelabs/karate/pull/1891)
- [@​bipin-k](https://togithub.com/bipin-k) made their first contribution in [https://github.com/karatelabs/karate/pull/1897](https://togithub.com/karatelabs/karate/pull/1897)
- [@​borzykin](https://togithub.com/borzykin) made their first contribution in [https://github.com/karatelabs/karate/pull/1965](https://togithub.com/karatelabs/karate/pull/1965)
- [@​bischoffdev](https://togithub.com/bischoffdev) made their first contribution in [https://github.com/karatelabs/karate/pull/1998](https://togithub.com/karatelabs/karate/pull/1998)
**Full Changelog**: https://github.com/karatelabs/karate/compare/v1.1.0...v1.2.0
##### Artifacts Released
- [Maven artifacts](https://search.maven.org/artifact/com.intuit.karate/karate-core)
- [Standalone JAR](https://togithub.com/intuit/karate/tree/master/karate-netty#standalone-jar) (download below)
- [ZIP Release](https://togithub.com/intuit/karate/wiki/ZIP-Release) (download below)
- [Karate-Robot JAR](https://togithub.com/intuit/karate/wiki/Karate-Robot-Windows-Install-Guide) (download below)
- [Docker Image](https://hub.docker.com/r/ptrthomas/karate-chrome/tags)
</details>
<details>
<summary>aws/aws-sdk-java</summary>
### [`v1.12.225`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112225-2022-05-20)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.224...1.12.225)
#### **Amazon CloudWatch Logs**
- ### Features
- Doc-only update to publish the new valid values for log retention
#### **Amazon Comprehend**
- ### Features
- Comprehend releases 14 new entity types for DetectPiiEntities and ContainsPiiEntities APIs.
### [`v1.12.224`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112224-2022-05-19)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.223...1.12.224)
#### **Amazon Lookout for Metrics**
- ### Features
- In this release we added SnsFormat to SNSConfiguration to support human readable alert.
#### **GameSparks**
- ### Features
- This release adds an optional DeploymentResult field in the responses of GetStageDeploymentIntegrationTests and ListStageDeploymentIntegrationTests APIs.
### [`v1.12.223`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112223-2022-05-18)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.222...1.12.223)
#### **AWS App Mesh**
- ### Features
- This release updates the existing Create and Update APIs for meshes and virtual nodes by adding a new IP preference field. This new IP preference field can be used to control the IP versions being used with the mesh and allows for IPv6 support within App Mesh.
#### **AWS Batch**
- ### Features
- Documentation updates for AWS Batch.
#### **AWS IoT Events Data**
- ### Features
- Introducing new API for deleting detectors: BatchDeleteDetector.
#### **AWS IoT Greengrass V2**
- ### Features
- This release adds the new DeleteDeployment API operation that you can use to delete deployment resources. This release also adds support for discontinued AWS-provided components, so AWS can communicate when a component has any issues that you should consider before you deploy it.
#### **AWS Transfer Family**
- ### Features
- AWS Transfer Family now supports SetStat server configuration option, which provides the ability to ignore SetStat command issued by file transfer clients, enabling customers to upload files without any errors.
#### **Amazon QuickSight**
- ### Features
- API UpdatePublicSharingSettings enables IAM admins to enable/disable account level setting for public access of dashboards. When enabled, owners/co-owners for dashboards can enable public access on their dashboards. These dashboards can only be accessed through share link or embedding.
### [`v1.12.222`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112222-2022-05-17)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.221...1.12.222)
#### **AWS Glue**
- ### Features
- This release adds a new optional parameter called codeGenNodeConfiguration to CRUD job APIs that allows users to manage visual jobs via APIs. The updated CreateJob and UpdateJob will create jobs that can be viewed in Glue Studio as a visual graph. GetJob can be used to get codeGenNodeConfiguration.
#### **AWS Key Management Service**
- ### Features
- Add HMAC best practice tip, annual rotation of AWS managed keys.
### [`v1.12.221`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112221-2022-05-16)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.220...1.12.221)
#### **AWS Application Discovery Service**
- ### Features
- Add Migration Evaluator Collector details to the GetDiscoverySummary API response
#### **AWS Resilience Hub**
- ### Features
- In this release, we are introducing support for Amazon Elastic Container Service, Amazon Route 53, AWS Elastic Disaster Recovery, AWS Backup in addition to the existing supported Services. This release also supports Terraform file input from S3 and scheduling daily assessments
#### **AWS Security Token Service**
- ### Features
- Documentation updates for AWS Security Token Service.
#### **AWS Service Catalog**
- ### Features
- Updated the descriptions for the ListAcceptedPortfolioShares API description and the PortfolioShareType parameters.
#### **Amazon CloudFront**
- ### Features
- Introduced a new error (TooLongCSPInResponseHeadersPolicy) that is returned when the value of the Content-Security-Policy header in a response headers policy exceeds the maximum allowed length.
#### **Amazon Rekognition**
- ### Features
- Documentation updates for Amazon Rekognition.
#### **Amazon WorkSpaces Web**
- ### Features
- Amazon WorkSpaces Web now supports Administrator timeout control
### [`v1.12.220`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112220-2022-05-13)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.219...1.12.220)
#### **Amazon Managed Grafana**
- ### Features
- This release adds APIs for creating and deleting API keys in an Amazon Managed Grafana workspace.
### [`v1.12.219`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112219-2022-05-12)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.218...1.12.219)
#### **AWS IoT**
- ### Features
- Documentation update for China region ListMetricValues for IoT
#### **AWS Lambda**
- ### Features
- Lambda releases NodeJs 16 managed runtime to be available in all commercial regions.
#### **AWS Outposts**
- ### Features
- Documentation updates for AWS Outposts.
#### **AWS Systems Manager Incident Manager**
- ### Features
- Adding support for dynamic SSM Runbook parameter values. Updating validation pattern for engagements. Adding ConflictException to UpdateReplicationSet API contract.
#### **AWS Transfer Family**
- ### Features
- AWS Transfer Family now accepts ECDSA keys for server host keys
#### **AWSKendraFrontendService**
- ### Features
- Amazon Kendra now provides a data source connector for Jira. For more information, see https://docs.aws.amazon.com/kendra/latest/dg/data-source-jira.html
#### **Amazon Elastic Compute Cloud**
- ### Features
- This release introduces a target type Gateway Load Balancer Endpoint for mirrored traffic. Customers can now specify GatewayLoadBalancerEndpoint option during the creation of a traffic mirror target.
#### **Amazon Interactive Video Service Chat**
- ### Features
- Documentation-only updates for IVS Chat API Reference.
#### **Amazon Lightsail**
- ### Features
- This release adds support to include inactive database bundles in the response of the GetRelationalDatabaseBundles request.
#### **Amazon WorkSpaces**
- ### Features
- Increased the character limit of the login message from 600 to 850 characters.
#### **FinSpace Public API**
- ### Features
- We've now deprecated CreateSnapshot permission for creating a data view, instead use CreateDataView permission.
### [`v1.12.218`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112218-2022-05-11)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.217...1.12.218)
#### **AWS Secrets Manager**
- ### Features
- Doc only update for Secrets Manager that fixes several customer-reported issues.
#### **Amazon Elastic Compute Cloud**
- ### Features
- This release updates AWS PrivateLink APIs to support IPv6 for PrivateLink Services and Endpoints of type 'Interface'.
### [`v1.12.217`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112217-2022-05-10)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.216...1.12.217)
#### **AWS Compute Optimizer**
- ### Features
- Documentation updates for Compute Optimizer
#### **AWS Migration Hub Refactor Spaces**
- ### Features
- AWS Migration Hub Refactor Spaces documentation only update to fix a formatting issue.
#### **Amazon EMR**
- ### Features
- This release updates the Amazon EMR ModifyInstanceGroups API to support "MERGE" type cluster reconfiguration. Also, added the ability to specify a particular Amazon Linux release for all nodes in a cluster launch request.
#### **Amazon Elastic Compute Cloud**
- ### Features
- Added support for using NitroTPM and UEFI Secure Boot on EC2 instances.
#### **Amazon Elastic Kubernetes Service**
- ### Features
- Adds BOTTLEROCKET_ARM\_64\_NVIDIA and BOTTLEROCKET_x86\_64\_NVIDIA AMI types to EKS managed nodegroups
### [`v1.12.216`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112216-2022-05-09)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.215...1.12.216)
#### **AWS Cloud Control API**
- ### Features
- SDK release for Cloud Control API to include paginators for Python SDK.
#### **AWS Systems Manager Incident Manager Contacts**
- ### Features
- Fixed an error in the DescribeEngagement example for AWS Incident Manager.
#### **Amazon CloudWatch Evidently**
- ### Features
- Add detail message inside GetExperimentResults API response to indicate experiment result availability
### [`v1.12.215`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112215-2022-05-06)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.214...1.12.215)
#### **AWS Elemental MediaPackage**
- ### Features
- This release adds Dvb Dash 2014 as an available profile option for Dash Origin Endpoints.
#### **AWS SecurityHub**
- ### Features
- Documentation updates for Security Hub API reference
#### **Amazon Elastic Compute Cloud**
- ### Features
- Add new state values for IPAMs, IPAM Scopes, and IPAM Pools.
#### **Amazon Location Service**
- ### Features
- Amazon Location Service now includes a MaxResults parameter for ListGeofences requests.
#### **Amazon Redshift**
- ### Features
- Introduces new field 'LoadSampleData' in CreateCluster operation. Customers can now specify 'LoadSampleData' option during creation of a cluster, which results in loading of sample data in the cluster that is created.
#### **Amazon Relational Database Service**
- ### Features
- Various documentation improvements.
### [`v1.12.214`](https://togithub.com/aws/aws-sdk-java/blob/HEAD/CHANGELOG.md#​112214-2022-05-05)
[Compare Source](https://togithub.com/aws/aws-sdk-java/compare/1.12.213...1.12.214)
#### **AWS DataSync**
- ### Features
- AWS DataSync now supports a new ObjectTags Task API option that can be used to control whether Object Tags are transferred.
#### **AWS IoT**
- ### Features
- AWS IoT Jobs now allows you to create up to 100,000 active continuous and snapshot jobs by using concurrency control.
#### **AWSKendraFrontendService**
- ### Features
- AWS Kendra now supports hierarchical facets for a query. For more information, see https://docs.aws.amazon.com/kendra/latest/dg/filtering.html
#### **Amazon Elastic Compute Cloud**
- ### Features
- Amazon EC2 I4i instances are powered by 3rd generation Intel Xeon Scalable processors and feature up to 30 TB of local AWS Nitro SSD storage
</details>
<details>
<summary>LibrePDF/OpenPDF</summary>
### [`v1.3.28`](https://togithub.com/LibrePDF/OpenPDF/releases/tag/1.3.28)
[Compare Source](https://togithub.com/LibrePDF/OpenPDF/compare/1.3.27...1.3.28)
### 1.3.28
#### Changes
- Add ECDSA support to PdfPKCS7
- Add example for ColumnText to create text with drop cap
- feat: set run direction of form text fields by their content
- Fix [#​251](https://togithub.com/LibrePDF/OpenPDF/issues/251): Custom rendering of paragraph
- Fix [#​581](https://togithub.com/LibrePDF/OpenPDF/issues/581): Writing the cross reference table entries now uses the correct encoding
- Fix [#​640](https://togithub.com/LibrePDF/OpenPDF/issues/640): Exception SHA1with1.2.840.10045.4.1 Signature not available
- Fix [#​668](https://togithub.com/LibrePDF/OpenPDF/issues/668): class com.lowagie.text.pdf.PdfDictionary cannot be cast to class com.lowagie.text.pdf.PRIndirectReference
- Fix [#​669](https://togithub.com/LibrePDF/OpenPDF/issues/669): Header and Footer definition is ignored
- Fix [#​674](https://togithub.com/LibrePDF/OpenPDF/issues/674): flip text alignment for RTL multiline text fields
- Fix [#​706](https://togithub.com/LibrePDF/OpenPDF/issues/706): HtmlParser: maybe there should be a new line between title and body
- Fix [#​718](https://togithub.com/LibrePDF/OpenPDF/issues/718): ArrayIndexOutOfBoundsException when opening PDF file with invalid indirect reference
- Fix [#​720](https://togithub.com/LibrePDF/OpenPDF/issues/720): Null Pointer Exception
- Test [#​534](https://togithub.com/LibrePDF/OpenPDF/issues/534): Blank Page after PTable added into Document
- use getISOBytes instead of PdfEncoding
#### Updated dependencies:
- Bump checkstyle from 9.3 to 10.2
- Bump icu4j from 70.1 to 71.1
- Bump maven-bundle-plugin from 5.1.4 to 5.1.5
- Bump maven-clean-plugin from 3.1.0 to 3.2.0
- Bump maven-compiler-plugin from 3.10.0 to 3.10.1
- Bump maven-javadoc-plugin from 3.3.2 to 3.4.0
- Bump maven-jxr-plugin from 3.1.1 to 3.2.0
- Bump mockito-core from 4.3.1 to 4.5.1
- Bump nexus-staging-maven-plugin from 1.6.12 to 1.6.13
- Update Bouncy Castle dependency to version 1.71
### Full history
#### What's Changed
- Bump checkstyle from 9.3 to 10.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/677](https://togithub.com/LibrePDF/OpenPDF/pull/677)
- Add example for ColumnText to create text with drop cap by [@​mluppi](https://togithub.com/mluppi) in [https://github.com/LibrePDF/OpenPDF/pull/678](https://togithub.com/LibrePDF/OpenPDF/pull/678)
- Improve documentation for setting header/footer by [@​mluppi](https://togithub.com/mluppi) in [https://github.com/LibrePDF/OpenPDF/pull/675](https://togithub.com/LibrePDF/OpenPDF/pull/675)
- Fix issue [#​668](https://togithub.com/LibrePDF/OpenPDF/issues/668) by [@​draccagni](https://togithub.com/draccagni) in [https://github.com/LibrePDF/OpenPDF/pull/673](https://togithub.com/LibrePDF/OpenPDF/pull/673)
- Bump mockito-core from 4.3.1 to 4.4.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/683](https://togithub.com/LibrePDF/OpenPDF/pull/683)
- Encoding for cross reference table wrong by [@​soenkekueper](https://togithub.com/soenkekueper) in [https://github.com/LibrePDF/OpenPDF/pull/642](https://togithub.com/LibrePDF/OpenPDF/pull/642)
- Bump maven-compiler-plugin from 3.10.0 to 3.10.1 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/684](https://togithub.com/LibrePDF/OpenPDF/pull/684)
- Correct run direction for RTL fields by [@​tomyam1](https://togithub.com/tomyam1) in [https://github.com/LibrePDF/OpenPDF/pull/671](https://togithub.com/LibrePDF/OpenPDF/pull/671)
- Bump maven-jxr-plugin from 3.1.1 to 3.2.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/686](https://togithub.com/LibrePDF/OpenPDF/pull/686)
- Bump checkstyle from 10.0 to 10.1 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/688](https://togithub.com/LibrePDF/OpenPDF/pull/688)
- Bump maven-clean-plugin from 3.1.0 to 3.2.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/695](https://togithub.com/LibrePDF/OpenPDF/pull/695)
- Bump icu4j from 70.1 to 71.1 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/700](https://togithub.com/LibrePDF/OpenPDF/pull/700)
- Bump checkstyle from 10.1 to 10.2 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/717](https://togithub.com/LibrePDF/OpenPDF/pull/717)
- Bump maven-javadoc-plugin from 3.3.2 to 3.4.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/710](https://togithub.com/LibrePDF/OpenPDF/pull/710)
- Bump nexus-staging-maven-plugin from 1.6.12 to 1.6.13 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/712](https://togithub.com/LibrePDF/OpenPDF/pull/712)
- Bump mockito-core from 4.4.0 to 4.5.1 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/713](https://togithub.com/LibrePDF/OpenPDF/pull/713)
- Fix [#​718](https://togithub.com/LibrePDF/OpenPDF/issues/718) by [@​liefke](https://togithub.com/liefke) in [https://github.com/LibrePDF/OpenPDF/pull/719](https://togithub.com/LibrePDF/OpenPDF/pull/719)
- Issue 720: Fixed Null Pointer Exception by [@​kaufmann1](https://togithub.com/kaufmann1) in [https://github.com/LibrePDF/OpenPDF/pull/721](https://togithub.com/LibrePDF/OpenPDF/pull/721)
- Bump maven-bundle-plugin from 5.1.4 to 5.1.5 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/LibrePDF/OpenPDF/pull/722](https://togithub.com/LibrePDF/OpenPDF/pull/722)
- Update Bouncy Castle dependency to version 1.71. by [@​andreasrosdal](https://togithub.com/andreasrosdal) in [https://github.com/LibrePDF/OpenPDF/pull/726](https://togithub.com/LibrePDF/OpenPDF/pull/726)
- Fix bug about SAXiTextHandler by [@​chappyer](https://togithub.com/chappyer) in [https://github.com/LibrePDF/OpenPDF/pull/714](https://togithub.com/LibrePDF/OpenPDF/pull/714)
- Add ECDSA support to PdfPKCS7 by [@​kwart](https://togithub.com/kwart) in [https://github.com/LibrePDF/OpenPDF/pull/682](https://togithub.com/LibrePDF/OpenPDF/pull/682)
#### New Contributors
- [@​draccagni](https://togithub.com/draccagni) made their first contribution in [https://github.com/LibrePDF/OpenPDF/pull/673](https://togithub.com/LibrePDF/OpenPDF/pull/673)
- [@​soenkekueper](https://togithub.com/soenkekueper) made their first contribution in [https://github.com/LibrePDF/OpenPDF/pull/642](https://togithub.com/LibrePDF/OpenPDF/pull/642)
- [@​tomyam1](https://togithub.com/tomyam1) made their first contribution in [https://github.com/LibrePDF/OpenPDF/pull/671](https://togithub.com/LibrePDF/OpenPDF/pull/671)
- [@​liefke](https://togithub.com/liefke) made their first contribution in [https://github.com/LibrePDF/OpenPDF/pull/719](https://togithub.com/LibrePDF/OpenPDF/pull/719)
- [@​kaufmann1](https://togithub.com/kaufmann1) made their first contribution in [https://github.com/LibrePDF/OpenPDF/pull/721](https://togithub.com/LibrePDF/OpenPDF/pull/721)
- [@​chappyer](https://togithub.com/chappyer) made their first contribution in [https://github.com/LibrePDF/OpenPDF/pull/714](https://togithub.com/LibrePDF/OpenPDF/pull/714)
**Full Changelog**: https://github.com/LibrePDF/OpenPDF/compare/1.3.27...1.3.28
</details>
<details>
<summary>spring-projects/spring-boot</summary>
### [`v2.7.0`](https://togithub.com/spring-projects/spring-boot/releases/tag/v2.7.0)
##### :star: New Features
- Revert to using "application/json" as default MIME type for GraphQL while remaining compatible with "application/graphql+json" [#​30860](https://togithub.com/spring-projects/spring-boot/issues/30860)
- Allow customization of single logout in auto-configured SAML relying party registration [#​30128](https://togithub.com/spring-projects/spring-boot/issues/30128)
##### :lady_beetle: Bug Fixes
- Default properties configured on SpringApplication have higher precedence than properties configured with `@PropertySource` [#​31093](https://togithub.com/spring-projects/spring-boot/issues/31093)
- A failure when an instrumented WebClient records metrics causes the request to fail [#​31089](https://togithub.com/spring-projects/spring-boot/issues/31089)
- Dependency management for Artemis is incomplete [#​31079](https://togithub.com/spring-projects/spring-boot/issues/31079)
- Configuration properties for Statsd's buffered and step properties are missing [#​31059](https://togithub.com/spring-projects/spring-boot/issues/31059)
- Debug logging for requests to WebFlux-based Actuator endpoints does not identify the endpoint [#​30887](https://togithub.com/spring-projects/spring-boot/issues/30887)
- `@ConditionalOnProperty` meta annotation with `@AliasFor` does not work [#​30874](https://togithub.com/spring-projects/spring-boot/issues/30874)
- Event handling in JobExecutionExitCodeGenerator is not thread-safe [#​30846](https://togithub.com/spring-projects/spring-boot/issues/30846)
- Hibernate service loading logs HHH000505 warnings for ServiceConfigurationError with Gradle-built jars since 2.5.10 when using Java 11 or later [#​30791](https://togithub.com/spring-projects/spring-boot/issues/30791)
- Cryptic startup failure with bare LOGGING_LEVEL environment variable [#​30789](https://togithub.com/spring-projects/spring-boot/issues/30789)
- SearchStrategy argument of MethodValidationExcludeFilter byAnnotation(Class, SearchStrategy) is not used [#​30787](https://togithub.com/spring-projects/spring-boot/issues/30787)
- spring.security.saml2.relyingparty.registration.*.asserting-party.* properties contain unwanted hyphen in asserting-party [#​30785](https://togithub.com/spring-projects/spring-boot/issues/30785)
- DevTools sets deprecated spring.mustache.cache property [#​30774](https://togithub.com/spring-projects/spring-boot/pull/30774)
##### :notebook_with_decorative_cover: Documentation
- Extend documentation on Datadog metrics [#​30997](https://togithub.com/spring-projects/spring-boot/issues/30997)
- Fix link to Upgrading From 1.x in multi-page documentation [#​30995](https://togithub.com/spring-projects/spring-boot/issues/30995)
- Document support for Java 18 [#​30782](https://togithub.com/spring-projects/spring-boot/issues/30782)
##### :hammer: Dependency Upgrades
- Upgrade to ActiveMQ 5.16.5 [#​30927](https://togithub.com/spring-projects/spring-boot/issues/30927)
- Upgrade to Byte Buddy 1.12.10 [#​30928](https://togithub.com/spring-projects/spring-boot/issues/30928)
- Upgrade to Cassandra Driver 4.14.1 [#​30929](https://togithub.com/spring-projects/spring-boot/issues/30929)
- Upgrade to Couchbase Client 3.2.7 [#​30930](https://togithub.com/spring-projects/spring-boot/issues/30930)
- Upgrade to Couchbase Client 3.3.0 [#​31031](https://togithub.com/spring-projects/spring-boot/issues/31031)
- Upgrade to Elasticsearch 7.17.3 [#​30931](https://togithub.com/spring-projects/spring-boot/issues/30931)
- Upgrade to Flyway 8.5.11 [#​31080](https://togithub.com/spring-projects/spring-boot/issues/31080)
- Upgrade to GraphQL Java 18.1 [#​30859](https://togithub.com/spring-projects/spring-boot/issues/30859)
- Upgrade to Hibernate 5.6.9.Final [#​31081](https://togithub.com/spring-projects/spring-boot/issues/31081)
- Upgrade to Infinispan 13.0.10.Final [#​30933](https://togithub.com/spring-projects/spring-boot/issues/30933)
- Upgrade to Jackson Bom 2.13.3 [#​31046](https://togithub.com/spring-projects/spring-boot/issues/31046)
- Upgrade to Jaybird 4.0.6.java8 [#​30934](https://togithub.com/spring-projects/spring-boot/issues/30934)
- Upgrade to Johnzon 1.2.18 [#​30935](https://togithub.com/spring-projects/spring-boot/issues/30935)
- Upgrade to Kafka 3.1.1 [#​31047](https://togithub.com/spring-projects/spring-boot/issues/31047)
- Upgrade to Micrometer 1.9.0 [#​31013](https://togithub.com/spring-projects/spring-boot/issues/31013)
- Upgrade to Mockito 4.5.1 [#​30936](https://togithub.com/spring-projects/spring-boot/issues/30936)
- Upgrade to MSSQL JDBC 10.2.1.jre8 [#​31048](https://togithub.com/spring-projects/spring-boot/issues/31048)
- Upgrade to MySQL 8.0.29 [#​30937](https://togithub.com/spring-projects/spring-boot/issues/30937)
- Upgrade to Netty 4.1.77.Final [#​30938](https://togithub.com/spring-projects/spring-boot/issues/30938)
- Upgrade to Postgresql 42.3.5 [#​30939](https://togithub.com/spring-projects/spring-boot/issues/30939)
- Upgrade to Reactor Bom 2020.0.19 [#​30940](https://togithub.com/spring-projects/spring-boot/issues/30940)
- Upgrade to Selenium 4.1.4 [#​30941](https://togithub.com/spring-projects/spring-boot/issues/30941)
- Upgrade to Selenium HtmlUnit 3.61.0 [#​30855](https://togithub.com/spring-projects/spring-boot/issues/30855)
- Upgrade to SendGrid 4.9.2 [#​31116](https://togithub.com/spring-projects/spring-boot/issues/31116)
- Upgrade to Spring AMQP 2.4.5 [#​31022](https://togithub.com/spring-projects/spring-boot/issues/31022)
- Upgrade to Spring Batch 4.3.6 [#​31020](https://togithub.com/spring-projects/spring-boot/issues/31020)
- Upgrade to Spring Data 2021.2.0 [#​31015](https://togithub.com/spring-projects/spring-boot/issues/31015)
- Upgrade to Spring for GraphQL 1.0.0 [#​30858](https://togithub.com/spring-projects/spring-boot/issues/30858)
- Upgrade to Spring Framework 5.3.20 [#​31014](https://togithub.com/spring-projects/spring-boot/issues/31014)
- Upgrade to Spring HATEOAS 1.5.0 [#​31016](https://togithub.com/spring-projects/spring-boot/issues/31016)
- Upgrade to Spring Integration 5.5.12 [#​31062](https://togithub.com/spring-projects/spring-boot/issues/31062)
- Upgrade to Spring Kafka 2.8.6 [#​31018](https://togithub.com/spring-projects/spring-boot/issues/31018)
- Upgrade to Spring LDAP 2.4.0 [#​31017](https://togithub.com/spring-projects/spring-boot/issues/31017)
- Upgrade to Spring Security 5.7.1 [#​31100](https://togithub.com/spring-projects/spring-boot/issues/31100)
- Upgrade to Spring Session Bom 2021.2.0 [#​31021](https://togithub.com/spring-projects/spring-boot/issues/31021)
- Upgrade to Tomcat 9.0.63 [#​31082](https://togithub.com/spring-projects/spring-boot/issues/31082)
- Upgrade to UnboundID LDAPSDK 6.0.5 [#​30942](https://togithub.com/spring-projects/spring-boot/issues/30942)
##### :heart: Contributors
We'd like to thank all the contributors who worked on this release!
- [@​izeye](https://togithub.com/izeye)
- [@​luojianet](https://togithub.com/luojianet)
- [@​marcwrobel](https://togithub.com/marcwrobel)
- [@​eddumelendez](https://togithub.com/eddumelendez)
- [@​mmoayyed](https://togithub.com/mmoayyed)
- [@​ssobue](https://togithub.com/ssobue)
- [@​christophejan](https://togithub.com/christophejan)
- [@​dugenkui03](https://togithub.com/dugenkui03)
- [@​denisw](https://togithub.com/denisw)
- [@​terminux](https://togithub.com/terminux)
### [`v2.6.8`](https://togithub.com/spring-projects/spring-boot/releases/tag/v2.6.8)
##### :lady_beetle: Bug Fixes
- Default properties configured on SpringApplication have higher precedence than properties configured with `@PropertySource` [#​31092](https://togithub.com/spring-projects/spring-boot/issues/31092)
- A failure when an instrumented WebClient records metrics causes the request to fail [#​31088](https://togithub.com/spring-projects/spring-boot/issues/31088)
- Dependency management for Artemis is incomplete [#​31078](https://togithub.com/spring-projects/spring-boot/issues/31078)
- Configuration properties for Statsd's buffered and step properties are missing [#​31058](https://togithub.com/spring-projects/spring-boot/issues/31058)
- Debug logging for requests to WebFlux-based Actuator endpoints does not identify the endpoint [#​30886](https://togithub.com/spring-projects/spring-boot/issues/30886)
- `@ConditionalOnProperty` meta annotation with `@AliasFor` does not work [#​30873](https://togithub.com/spring-projects/spring-boot/issues/30873)
- Event handling in JobExecutionExitCodeGenerator is not thread-safe [#​30845](https://togithub.com/spring-projects/spring-boot/issues/30845)
- Hibernate service loading logs HHH000505 warnings for ServiceConfigurationError with Gradle-built jars since 2.5.10 when using Java 11 or later [#​30790](https://togithub.com/spring-projects/spring-boot/issues/30790)
- Cryptic startup failure with bare LOGGING_LEVEL environment variable [#​30788](https://togithub.com/spring-projects/spring-boot/issues/30788)
- SearchStrategy argument of MethodValidationExcludeFilter byAnnotation(Class, SearchStrategy) is not used [#​30786](https://togithub.com/spring-projects/spring-boot/issues/30786)
##### :notebook_with_decorative_cover: Documentation
- Extend documentation on Datadog metrics [#​30996](https://togithub.com/spring-projects/spring-boot/issues/30996)
- Fix link to Upgrading From 1.x in multi-page documentation [#​30994](https://togithub.com/spring-projects/spring-boot/issues/30994)
- Document support for Java 18 [#​30781](https://togithub.com/spring-projects/spring-boot/issues/30781)
##### :hammer: Dependency Upgrades
- Upgrade to ActiveMQ 5.16.5 [#​30917](https://togithub.com/spring-projects/spring-boot/issues/30917)
- Upgrade to Couchbase Client 3.2.7 [#​30918](https://togithub.com/spring-projects/spring-boot/issues/30918)
- Upgrade to Hazelcast 4.2.5 [#​30919](https://togithub.com/spring-projects/spring-boot/issues/30919)
- Upgrade to Hibernate 5.6.9.Final [#​31041](https://togithub.com/spring-projects/spring-boot/issues/31041)
- Upgrade to Jackson Bom 2.13.3 [#​31042](https://togithub.com/spring-projects/spring-boot/issues/31042)
- Upgrade to Jaybird 4.0.6.java8 [#​30920](https://togithub.com/spring-projects/spring-boot/issues/30920)
- Upgrade to Johnzon 1.2.18 [#​30921](https://togithub.com/spring-projects/spring-boot/issues/30921)
- Upgrade to Micrometer 1.8.6 [#​31007](https://togithub.com/spring-projects/spring-boot/issues/31007)
- Upgrade to MySQL 8.0.29 [#​30922](https://togithub.com/spring-projects/spring-boot/issues/30922)
- Upgrade to Netty 4.1.77.Final [#​30923](https://togithub.com/spring-projects/spring-boot/issues/30923)
- Upgrade to Netty tcNative 2.0.52.Final [#​30924](https://togithub.com/spring-projects/spring-boot/issues/30924)
- Upgrade to Postgresql 42.3.5 [#​30925](https://togithub.com/spring-projects/spring-boot/issues/30925)
- Upgrade to Reactor Bom 2020.0.19 [#​30926](https://togithub.com/spring-projects/spring-boot/issues/30926)
- Upgrade to Spring AMQP 2.4.5 [#​31009](https://togithub.com/spring-projects/spring-boot/issues/31009)
- Upgrade to Spring Batch 4.3.6 [#​31011](https://togithub.com/spring-projects/spring-boot/issues/31011)
- Upgrade to Spring Framework 5.3.20 [#​31043](https://togithub.com/spring-projects/spring-boot/issues/31043)
- Upgrade to Spring HATEOAS 1.4.3 [#​31008](https://togithub.com/spring-projects/spring-boot/issues/31008)
- Upgrade to Spring Integration 5.5.12 [#​31061](https://togithub.com/spring-projects/spring-boot/issues/31061)
- Upgrade to Spring Kafka 2.8.6 [#​31010](https://togithub.com/spring-projects/spring-boot/issues/31010)
- Upgrade to Spring LDAP 2.3.8.RELEASE [#​31044](https://togithub.com/spring-projects/spring-boot/issues/31044)
- Upgrade to Spring Security 5.6.5 [#​31102](https://togithub.com/spring-projects/spring-boot/issues/31102)
- Upgrade to Tomcat 9.0.63 [#​31071](https://togithub.com/spring-projects/spring-boot/issues/31071)
##### :heart: Contributors
We'd like to thank all the contributors who worked on this release!
- [@​izeye](https://togithub.com/izeye)
- [@​luojianet](https://togithub.com/luojianet)
- [@​marcwrobel](https://togithub.com/marcwrobel)
- [@​eddumelendez](https://togithub.com/eddumelendez)
- [@​christophejan](https://togithub.com/christophejan)
- [@​dugenkui03](https://togithub.com/dugenkui03)
- [@​denisw](https://togithub.com/denisw)
- [@​terminux](https://togithub.com/terminux)
</details>
<details>
<summary>spring-projects/spring-framework</summary>
### [`v5.3.20`](https://togithub.com/spring-projects/spring-framework/releases/tag/v5.3.20)
##### :star: New Features
- Refine CachedIntrospectionResults property introspection [#​28445](https://togithub.com/spring-projects/spring-framework/issues/28445)
- Improve tests and Javadoc on binding to a property of type javax.servlet.Part [#​27830](https://togithub.com/spring-projects/spring-framework/pull/27830)
- WritableResource doesn't have parity with Resource in `@Value` etc. \[SPR-10656] [#​15284](https://togithub.com/spring-projects/spring-framework/issues/15284)
##### :lady_beetle: Bug Fixes
- Ignore invalid STOMP frame [#​28443](https://togithub.com/spring-projects/spring-framework/issues/28443)
- `@ModelAttribute` name attribute is not supported in WebFlux [#​28423](https://togithub.com/spring-projects/spring-framework/issues/28423)
- Fix BindingResult error when ModelAttribute has custom name in WebFlux [#​28422](https://togithub.com/spring-projects/spring-framework/pull/28422)
- Request body deserialization failures are not captured by exception handlers in WebFlux [#​28155](https://togithub.com/spring-projects/spring-framework/issues/28155)
##### :notebook_with_decorative_cover: Documentation
- Remove Log4J initialization from package-info.java in spring-web [#​28420](https://togithub.com/spring-projects/spring-framework/pull/28420)
- Remove Log4J configurer from package-info.java in spring-core [#​28411](https://togithub.com/spring-projects/spring-framework/pull/28411)
- Fix github issue reference in RequestMappingHandlerMapping [#​28372](https://togithub.com/spring-projects/spring-framework/pull/28372)
- Add Javadoc since tags for GraphQL constants [#​28369](https://togithub.com/spring-projects/spring-framework/pull/28369)
- Fix method reference in Kotlin documentation [#​28340](https://togithub.com/spring-projects/spring-framework/pull/28340)
##### :hammer: Dependency Upgrades
- Upgrade to ASM 9.3 [#​28390](https://togithub.com/spring-projects/spring-framework/issues/28390)
- Upgrade to Reactor 2020.0.19 [#​28437](https://togithub.com/spring-projects/spring-framework/issues/28437)
##### :heart: Contributors
We'd like to thank all the contributors who worked on this release!
- [@​izeye](https://togithub.com/izeye)
- [@​koenpunt](https://togithub.com/koenpunt)
- [@​missingdays](https://togithub.com/missingdays)
- [@​zhangmingqi09](https://togithub.com/zhangmingqi09)
- [@​binchoo](https://togithub.com/binchoo)
- [@​gorisanson](https://togithub.com/gorisanson)
- [@​jprinet](https://togithub.com/jprinet)
- [@​nealshan](https://togithub.com/nealshan)
- [@​bougar](https://togithub.com/bougar)
</details>
---
### Configuration
📅 **Schedule**: "before 3am on Monday" (UTC).
🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.
â™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, click this checkbox.
---
This PR has been generated by [WhiteSource Renovate](https://renovate.whitesourcesoftware.com). View repository job log [here](https://app.renovatebot.com/dashboard#github/apache/fineract).
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] ptuomola commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
ptuomola commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172004726
I'm wondering if this new set-up where Renovate groups all minor dependency upgrades to a single PR is a good idea.
Yes of course it results in a lot less PRs... but it also means that even a single issue with a single dependency then blocks the whole things from being merged.
Previously 95% of these minor PRs were clear to be merged as-is - i.e. just as soon as the compile / regression test passed without issues. Now we seem to be stuck with this one huge dependency upgrade PR which is open for months and just keeps getting bigger and bigger :-)
I for one would prefer the previous set-up. But not sure what others think?
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] vidakovic commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
vidakovic commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172077391
Just my 2 cents here: going forward the whole lib upgrade stuff won't be that "spontaneous" anymore... up until now we "only" had spring and spring boot (mainly)... with upcoming releases more spring frameworks (well, at least one) will be added to the mix and those all need to work together. They have a common release train, but usually that's a bit behind the specific releases of the frameworks. Just to say that upgrades will be probably a bit more conservative.
Having said that: I recently did an upgrade to spring boot 2.7.1for another project... not a big deal.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] galovics merged pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
galovics merged PR #2333:
URL: https://github.com/apache/fineract/pull/2333
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] ptuomola commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
ptuomola commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172027238
Well that's exactly my point: it was much easier to find out a) which things failed and b) why they failed, when the dependency upgrades were presented one by one rather than as one mega-PR.
This also allowed splitting up the work - i.e. different people were looking at fixing different dependency upgrades, rather than everyone trying to guess who is (or if anyone is) working on fixing a combined mega-PR.
Having said that, if you and @vidakovic are taking care of this from now on, then it's of course up to you to configure the workflows in a way that suits you. Personally I would have preferred a bit of a discussion about this first.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] galovics commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
galovics commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1139537399
FYI we can't merge this until spotbugs fix their issue: https://github.com/spotbugs/spotbugs/issues/2041
cc @vidakovic
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] ptuomola commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
ptuomola commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172010889
> @ptuomola partially agreed but the amount of PR renovate raised was too much to handle. After all we need to merge dep upgrades which are currently breaking the build otherwise 4-5 PRs will just hang for a long time. I'd keep it the way it is right now.
Thanks @galovics. Re "amount of PR renovate raised was too much to handle" - how was this assessed? We had the previous set-up running for 2 years and I don't think it was a major issue at any point. At least I don't recall any discussion about this on the mailing list. But perhaps I missed it?
Previously we had regular merges of minor dependencies every week. Now we have had no merges of dependencies since May. I don't think this makes sense - I'd much rather merge a few every week than block everything for months.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] galovics commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
galovics commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172030511
@ptuomola
> Discussion...
Right, we probably should've brought it to the mailing list, our mistake.
> Well that's exactly my point..
Right, I don't think there's a "right" way to do this, it's rather what's suiting people better. I know for a fact that when the individual PRs came in, it was horror for me to manage. I've got so much spam I was about to turn on fineract notifications completely which makes really hard to track other changes going in. But that's just me.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] ptuomola commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
ptuomola commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172257816
> Just my 2 cents here: going forward the whole lib upgrade stuff won't be that "spontaneous" anymore... up until now we "only" had spring and spring boot (mainly)... with upcoming releases more spring frameworks (well, at least one) will be added to the mix and those all need to work together. They have a common release train, but usually that's a bit behind the specific releases of the frameworks. Just to say that upgrades will be probably a bit more conservative. Having said that: I recently did an upgrade to spring boot 2.7.1for another project... not a big deal.
Well even until now - I think we were trying to get as many of the dependencies from the Spring BOMs as possible. But unfortunately there were a number of reasons why this was not possible for some dependencies.
Anyway - will leave the dependencies for you guys @galovics and @vidakovic to manage going forwards. Thanks.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] galovics commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
galovics commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172006813
@ptuomola partially agreed but the amount of PR renovate raised was too much to handle. After all we need to merge dep upgrades which are currently breaking the build otherwise 4-5 PRs will just hang for a long time. I'd keep it the way it is right now.
Also, this is on my todo-list, I even started to tackle this last week but ran out of time I could spare.
I promise I'll come back to it. :))
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] ptuomola commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
ptuomola commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172005711
I'm wondering if this new set-up where Renovate groups all minor dependency upgrades to a single PR is a good idea.
Yes of course it results in a lot less PRs... but it also means that even a single issue with a single dependency then blocks the whole things from being merged.
Previously 95% of these minor PRs were clear to be merged as-is - i.e. just as soon as the compile / regression test passed without issues. Now we seem to be stuck with this one huge dependency upgrade PR which is open for months and just keeps getting bigger and bigger :-)
I for one would prefer the previous set-up. But not sure what others think?
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] galovics commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
galovics commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172020794
@ptuomola Wasn't measured, it was mostly just too much PRs at a certain period (maybe back in April) for me and @vidakovic. Frankly speaking yeah, dependencies-wise we're a bit behind but it's not something we cannot easily fix, we just need to sort out the failures. The thing is, as I said a couple of dependency upgrade PRs would fail anyway (which are making this PR fail too) and those would hang there for a long time.
I'd rather force ourselves to take a leap of faith and invest some time into figuring out why these things fail. As soon as we do that, we have a green light for the future PRs too.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] awasum commented on pull request #2333: chore(deps): update all non-major dependencies
Posted by GitBox <gi...@apache.org>.
awasum commented on PR #2333:
URL: https://github.com/apache/fineract/pull/2333#issuecomment-1172433763
I prefer the approach where individual PRs are opened for every new release. Putting them all together like this increases tech debt because for one dependency upgrade failure..the PR has to wait for someone to fix all issues before merging. I wish we could have the previous approach.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org