You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@fineract.apache.org by GitBox <gi...@apache.org> on 2022/03/18 04:30:51 UTC
[GitHub] [fineract] dependabot[bot] opened a new pull request #2162: chore(deps): bump liquibase-core from 4.8.0 to 4.9.0
dependabot[bot] opened a new pull request #2162:
URL: https://github.com/apache/fineract/pull/2162
Bumps [liquibase-core](https://github.com/liquibase/liquibase) from 4.8.0 to 4.9.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/liquibase/liquibase/releases">liquibase-core's releases</a>.</em></p>
<blockquote>
<h2>v4.9.0</h2>
<h2>Liquibase 4.9.0 release</h2>
<p>Please report any issues to <a href="https://github.com/liquibase/liquibase/issues">https://github.com/liquibase/liquibase/issues</a>.</p>
<h2>Notable Changes</h2>
<p>Liquibase 4.9.0 introduces the following functionality:</p>
<ul>
<li>[PRO] Quality Checks JSON object so that your application can easily parse through the Liquibase output [DAT-9094]
For more information, see <a href="https://docs.liquibase.com/commands/quality-checks/quality-checks-json-object.html">Quality Checks JSON Object</a>.</li>
<li>Quality checks for Maven - <code>checks.run</code> and <code>checks.show</code> goals [DAT-9033] [DAT-9034]
For more information, see <a href="https://docs.liquibase.com/tools-integrations/maven/commands/maven-checks-run.html">Maven checks.run</a> and <a href="https://docs.liquibase.com/tools-integrations/maven/commands/maven-checks-show.html">Maven checks.show</a>.</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2558">PR#2558</a>] [<a href="https://github.com/kavya-shastri">kavya-shastri</a>] [<strong>Breaking Change</strong>]The change in the usage of the Liquibase global configuration for the <code>secureParsing</code> parameter to prevent the entity resolver from scanning the network for missing XSDs. If you reference an XSD other than one from Liquibase and have never stored them in your <code>classpath</code>, Liquibase will no longer automatically download and use the XSD from the internet for security reasons. The default value for <code>secureParsing</code> is <code>true</code>, but you can set it to <code>false</code> in any of the Liquibase configuration locations. For more information, see <a href="https://docs.liquibase.com/concepts/changelogs/xml-format.html">XSD support</a>.</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2529">PR#2529</a>] [<a href="https://github.com/crizzis">Krzysztof Sierszeń</a>] [LB-1781] The <code>uniqueConstraintExists</code> precondition to check for the existence of unique constraints before running the update. You can check the constraint by constraint name or columns:</li>
</ul>
<pre><code><preConditions>
<uniqueConstraintExists constraintName="uq_constraint_name" tableName="test_table"/>
</preConditions>
</code></pre>
<pre><code><preConditions>
<uniqueConstraintExists tableName="test_table" columnNames="first_name, last_name"/>
</preConditions>
</code></pre>
<ul>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2339">PR#2339</a>] [<a href="https://github.com/nvoxland">nvoxland</a>] [<a href="https://github.com/Toukite">Toukite</a>] The support for running the Liquibase Servlet listener in application servers built on the Jakarta Servlet specification and not the Java Servlet specification. To use the new listener, specify the following tag:</li>
</ul>
<pre><code><listener>
<listener-class>liquibase.integration.servlet.LiquibaseJakartaServletListener</listener-class>
</listener>
</code></pre>
<p>The PR fixes issue <a href="https://github-redirect.dependabot.com/liquibase/liquibase/issues/2298">#2298</a>.</p>
<h2>Enhancements</h2>
<ul>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2434">PR#2434</a>] [<a href="https://github.com/DBaluxa">Balázs Dési</a>] Added the Maven <code>validate</code> goal to <code>maven-liquibase-plugin</code> to provide access to the existing Liquibase <code>validate</code> command and be available not only in CLI, but also in Maven
For more information, see <a href="https://docs.liquibase.com/tools-integrations/maven/commands/maven-validate.html">Maven validate</a>.</li>
<li>Added the ability to use <code>sqlcmd</code> on an instance with multiple databases [DAT-9513]
For more information, see <a href="https://docs.liquibase.com/concepts/changelogs/attributes/using-sqlcmd-integration.html">Using the SQLCMD integration and runWith attribute with Liquibase Pro and MSSQL Server</a>.</li>
<li>Added support for Liquibase, Spring Boot, and SQL Plus run with Kerberos [DAT-9409]
For more information, see <a href="https://docs.liquibase.com/tools-integrations/springboot/using-springboot-sql-plus-kerberos.html">Using Liquibase and Spring Boot with SQL Plus and Kerberos Authentication</a>.</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2561">PR#2561</a>] [<a href="https://github.com/wwillard7800">Wesley Willard</a>] Added the <code>--schemas</code> argument to the <code>snapshot</code> command to be able to compare a multi-schema database to its snapshot [DAT-9433]</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2606">PR#2606</a>] [<a href="https://github.com/wwillard7800">Wesley Willard</a>] Added a best practice message for the <code>generate-changelog</code> command so that you can check if the <code>splitStatements</code> attribute works for your environment when generating formatted SQL changelogs [DAT-9327]</li>
<li>Added the <code>StripComments</code> attribute for the <code>SQLUserDefinedPatternCheck</code> quality check to choose the code that the <code>SQLUserDefinedPatternCheck</code> searches, including the option for the commented code. The <code>StripComments</code> attribute strips comments from SQL before searching for the string. The default value is <code>N</code> (no). [DAT-9098]</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2273">PR#2273</a>] [<a href="https://github.com/szandany">Tsvi Zandany</a>] Added the autocomplete option for quality checks commands running on macOS</li>
</ul>
<h2>Fixes</h2>
<ul>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2542">PR#2542</a>] [<a href="https://github.com/nvoxland">nvoxland</a>] Fixed the <code>--should-snapshot-data</code> CLI parameter to be preserved when the <code>--data-output-directory</code> property is not specified in the command</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2330">PR#2330</a>] [<a href="https://github.com/inanemed">Inane Mohammed</a>] Fixed the issue with checking the <code>referenceSnapshot</code> parameter instead of <code>referenceDatabase</code> for the potential null value</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2521">PR#2521</a>] [<a href="https://github.com/StevenMassaro">Steven Massaro</a>] Added a label, context, and comment to the <code>example-changelog.sql</code> file that comes with the Liquibase installation package [DAT-9325]</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2556">PR#2556</a>] [<a href="https://github.com/nvoxland">nvoxland</a>] Fixed the CockroachDB processes so that Liquibase checks the URL first rather than proceeding with SQL calls</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2569">PR#2569</a>] [<a href="https://github.com/clarenced">Clarence Dimitri CHARLES</a>] Made <code>FormattedSqlChangeLogParser</code> to be reusable for extensions</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/2377">PR#2377</a>] [<a href="https://github.com/devorgpl">devorgpl</a>] Fixed the issue with updating statements when the <code>onlyUpdate</code> attribute is <code>false</code> in the <code>loadUpdateData</code> Change Type for HSQL</li>
<li>[<a href="https://github-redirect.dependabot.com/liquibase/liquibase/pull/1908">PR#1908</a>] [<a href="https://github.com/ecapoccia">Emiliano Capoccia</a>] Fixed the issue with retrieving the CockroachDB version. As part of the fix, Liquibase generates version-specific autoincrement SQL statements for CockroachDB identity columns:
<ul>
<li><code>SMALLSERIAL</code>, <code>SERIAL</code>, and <code>BIGSERIAL</code> for versions earlier than 21.2</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/liquibase/liquibase/blob/master/changelog.txt">liquibase-core's changelog</a>.</em></p>
<blockquote>
<h1>Liquibase Core Changelog</h1>
<p>Changes in version 4.9.0 (2022.03.17)</p>
<h1>Notable Changes</h1>
<p>Liquibase 4.9.0 introduces the following functionality:</p>
<ul>
<li>[PRO] Quality checks output in a JSON format</li>
<li>Quality checks for Maven - <code>checks run</code> and <code>checks show</code> goals</li>
<li>[PR#2558] [kavya-shastri] The extension of the usage of the Liquibase global configuration for the <code>secureParsing</code> parameter to prevent the entity resolver from falling back to looking on the network for missing XSDs. If you reference an XSD other than one of Liquibase, Liquibase will no longer automatically download the XSD from the internet and use it. The default value for <code>secureParsing</code> is <code>true</code>, but you can override it in any of the Liquibase configuration locations. For more information, see the Example Changelogs: XML Format documentation.</li>
<li>[PR#2529] [Krzysztof Sierszeń] [LB-1781] The <code>uniqueConstraintExists</code> precondition to check for the existence of unique constraints before running the update. You can check the constraint by constraint name or columns:</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/liquibase/liquibase/commit/2330bc42d12350222b452c0168c9e730071792f7"><code>2330bc4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/liquibase/liquibase/issues/2646">#2646</a> from liquibase/update-changelogtxt-4.9.0</li>
<li><a href="https://github.com/liquibase/liquibase/commit/2174d306681df2c75a90d055824b7f7ba5b7fd52"><code>2174d30</code></a> updated changelog txt</li>
<li><a href="https://github.com/liquibase/liquibase/commit/c74a333d8cd9c686791a566ca8fefaca3f006baa"><code>c74a333</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/liquibase/liquibase/issues/2645">#2645</a> from liquibase/update-changelogtxt-4.9.0</li>
<li><a href="https://github.com/liquibase/liquibase/commit/477ba0acb6c85aae8b898d11f2b90cfea9179570"><code>477ba0a</code></a> update changelog 4.9.0</li>
<li><a href="https://github.com/liquibase/liquibase/commit/0713941548082c0102eda936c234632b1d4de402"><code>0713941</code></a> DAT-9524 test without appleId cli parameter</li>
<li><a href="https://github.com/liquibase/liquibase/commit/2724443e8cda02ba989a90e14ea84af7a3c67fcb"><code>2724443</code></a> DAT-9524 update install4j project config</li>
<li><a href="https://github.com/liquibase/liquibase/commit/c40e1471cef030f19a836a5d4fdde16333d5a517"><code>c40e147</code></a> DAT-9524 add debug logging for install4j</li>
<li><a href="https://github.com/liquibase/liquibase/commit/e19e83160d945e8ac8cde83b86ccf5de21b0a220"><code>e19e831</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/liquibase/liquibase/issues/2642">#2642</a> from liquibase/github-action-DAT-9524</li>
<li><a href="https://github.com/liquibase/liquibase/commit/8d2d79324c90bfa8f233fc38df11868020689e98"><code>8d2d793</code></a> github-action-DAT-9524 add apple_id creds for installer notarizing</li>
<li><a href="https://github.com/liquibase/liquibase/commit/4a9f8e0c87933b8f6f3d1deaf535cacb63bf584c"><code>4a9f8e0</code></a> Created dbchangelog xsd (<a href="https://github-redirect.dependabot.com/liquibase/liquibase/issues/2638">#2638</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/liquibase/liquibase/compare/v4.8.0...v4.9.0">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] sonarcloud[bot] commented on pull request #2162: chore(deps): bump liquibase-core from 4.8.0 to 4.9.0
Posted by GitBox <gi...@apache.org>.
sonarcloud[bot] commented on pull request #2162:
URL: https://github.com/apache/fineract/pull/2162#issuecomment-1072043963
Kudos, SonarCloud Quality Gate passed! 
[](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=BUG)
[](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=VULNERABILITY)
[](https://sonarcloud.io/project/security_hotspots?id=apache_fineract&pullRequest=2162&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_fineract&pullRequest=2162&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_fineract&pullRequest=2162&resolved=false&types=SECURITY_HOTSPOT)
[](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=CODE_SMELL)
[](https://sonarcloud.io/component_measures?id=apache_fineract&pullRequest=2162&metric=coverage&view=list) No Coverage information
[](https://sonarcloud.io/component_measures?id=apache_fineract&pullRequest=2162&metric=duplicated_lines_density&view=list) No Duplication information
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] vidakovic merged pull request #2162: chore(deps): bump liquibase-core from 4.8.0 to 4.9.0
Posted by GitBox <gi...@apache.org>.
vidakovic merged pull request #2162:
URL: https://github.com/apache/fineract/pull/2162
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] vidakovic merged pull request #2162: chore(deps): bump liquibase-core from 4.8.0 to 4.9.0
Posted by GitBox <gi...@apache.org>.
vidakovic merged pull request #2162:
URL: https://github.com/apache/fineract/pull/2162
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [fineract] sonarcloud[bot] commented on pull request #2162: chore(deps): bump liquibase-core from 4.8.0 to 4.9.0
Posted by GitBox <gi...@apache.org>.
sonarcloud[bot] commented on pull request #2162:
URL: https://github.com/apache/fineract/pull/2162#issuecomment-1072043963
Kudos, SonarCloud Quality Gate passed! 
[](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=BUG) [](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=BUG) [0 Bugs](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=BUG)
[](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=VULNERABILITY) [](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=VULNERABILITY) [0 Vulnerabilities](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=VULNERABILITY)
[](https://sonarcloud.io/project/security_hotspots?id=apache_fineract&pullRequest=2162&resolved=false&types=SECURITY_HOTSPOT) [](https://sonarcloud.io/project/security_hotspots?id=apache_fineract&pullRequest=2162&resolved=false&types=SECURITY_HOTSPOT) [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=apache_fineract&pullRequest=2162&resolved=false&types=SECURITY_HOTSPOT)
[](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=CODE_SMELL) [](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=CODE_SMELL) [0 Code Smells](https://sonarcloud.io/project/issues?id=apache_fineract&pullRequest=2162&resolved=false&types=CODE_SMELL)
[](https://sonarcloud.io/component_measures?id=apache_fineract&pullRequest=2162&metric=coverage&view=list) No Coverage information
[](https://sonarcloud.io/component_measures?id=apache_fineract&pullRequest=2162&metric=duplicated_lines_density&view=list) No Duplication information
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@fineract.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org