HBASE-28310 Bump jinja2 from 3.1.2 to 3.1.3 in /dev-support/flaky-tests #5619

dependabot · 2024-01-11T20:43:33Z

Bumps jinja2 from 3.1.2 to 3.1.3.

Release notes

3.1.3

This is a fix release for the 3.1.x feature branch.

Fix for GHSA-h5c8-rqwp-cp95. You are affected if you are using xmlattr and passing user input as attribute keys.

Changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-3

Milestone: https://github.com/pallets/jinja/milestone/15?closed=1

Changelog

Sourced from jinja2's changelog.

Version 3.1.3

Released 2024-01-10

Fix compiler error when checking if required blocks in parent templates are empty. :pr:1858

xmlattr filter does not allow keys with spaces. GHSA-h5c8-rqwp-cp95

Make error messages stemming from invalid nesting of {% trans %} blocks more helpful. :pr:1918

Commits

d9de4bb release version 3.1.3
50124e1 skip test pypi
9ea7222 use trusted publishing
da703f7 use trusted publishing
bce1746 use trusted publishing
7277d80 update pre-commit hooks
5c8a105 Make nested-trans-block exceptions nicer (#1918)
19a55db Make nested-trans-block exceptions nicer
7167953 Merge pull request from GHSA-h5c8-rqwp-cp95
7dd3680 xmlattr filter disallows keys with spaces
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Apache-HBase · 2024-01-11T20:57:11Z

🎊 +1 overall

Vote	Subsystem	Runtime	Comment
+0 🆗	reexec	0m 37s	Docker mode activated.
-0 ⚠️	yetus	0m 3s	Unprocessed flag(s): --brief-report-file --spotbugs-strict-precheck --whitespace-eol-ignore-list --whitespace-tabs-ignore-list --quick-hadoopcheck
		_ Prechecks _
		_ master Compile Tests _
+0 🆗	mvndep	0m 9s	Maven dependency ordering for branch
		_ Patch Compile Tests _
+0 🆗	mvndep	0m 5s	Maven dependency ordering for patch
		_ Other Tests _
		1m 36s

Subsystem	Report/Notes
Docker	ClientAPI=1.43 ServerAPI=1.43 base: https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-5619/1/artifact/yetus-jdk11-hadoop3-check/output/Dockerfile
GITHUB PR	#5619
Optional Tests
uname	Linux 2c1dfe8c11fd 5.4.0-169-generic #187-Ubuntu SMP Thu Nov 23 14:52:28 UTC 2023 x86_64 x86_64 x86_64 GNU/Linux
Build tool	maven
Personality	dev-support/hbase-personality.sh
git revision	master / `a7429a7`
Max. process+thread count	37 (vs. ulimit of 30000)
modules	C: U:
Console output	https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-5619/1/console
versions	git=2.34.1 maven=3.8.6
Powered by	Apache Yetus 0.12.0 https://yetus.apache.org

This message was automatically generated.

Apache-HBase · 2024-01-11T20:57:41Z

🎊 +1 overall

Vote	Subsystem	Runtime	Comment
+0 🆗	reexec	0m 34s	Docker mode activated.
-0 ⚠️	yetus	0m 3s	Unprocessed flag(s): --brief-report-file --spotbugs-strict-precheck --whitespace-eol-ignore-list --whitespace-tabs-ignore-list --quick-hadoopcheck
		_ Prechecks _
		_ master Compile Tests _
+0 🆗	mvndep	0m 15s	Maven dependency ordering for branch
		_ Patch Compile Tests _
+0 🆗	mvndep	0m 6s	Maven dependency ordering for patch
		_ Other Tests _
		1m 48s

Subsystem	Report/Notes
Docker	ClientAPI=1.43 ServerAPI=1.43 base: https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-5619/1/artifact/yetus-jdk8-hadoop3-check/output/Dockerfile
GITHUB PR	#5619
Optional Tests
uname	Linux 3bfc8c4d81a2 5.4.0-1103-aws #111~18.04.1-Ubuntu SMP Tue May 23 20:04:10 UTC 2023 x86_64 x86_64 x86_64 GNU/Linux
Build tool	maven
Personality	dev-support/hbase-personality.sh
git revision	master / `a7429a7`
Max. process+thread count	28 (vs. ulimit of 30000)
modules	C: U:
Console output	https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-5619/1/console
versions	git=2.34.1 maven=3.8.6
Powered by	Apache Yetus 0.12.0 https://yetus.apache.org

This message was automatically generated.

Apache-HBase · 2024-01-11T20:59:02Z

🎊 +1 overall

Vote	Subsystem	Runtime	Comment
+0 🆗	reexec	0m 27s	Docker mode activated.
		_ Prechecks _
+1 💚	dupname	0m 0s	No case conflicting files found.
+1 💚	@author	0m 0s	The patch does not contain any @author tags.
		_ master Compile Tests _
+0 🆗	mvndep	0m 14s	Maven dependency ordering for branch
+1 💚	spotless	0m 42s	branch has no errors when running spotless:check.
		_ Patch Compile Tests _
+0 🆗	mvndep	0m 4s	Maven dependency ordering for patch
+1 💚	whitespace	0m 0s	The patch has no whitespace issues.
+1 💚	spotless	0m 39s	patch has no errors when running spotless:check.
		_ Other Tests _
+0 🆗	asflicense	0m 1s	ASF License check generated no output?
		3m 18s

Subsystem	Report/Notes
Docker	ClientAPI=1.43 ServerAPI=1.43 base: https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-5619/1/artifact/yetus-general-check/output/Dockerfile
GITHUB PR	#5619
Optional Tests	dupname asflicense spotless
uname	Linux 7bc616d4f576 5.4.0-1103-aws #111~18.04.1-Ubuntu SMP Tue May 23 20:04:10 UTC 2023 x86_64 x86_64 x86_64 GNU/Linux
Build tool	maven
Personality	dev-support/hbase-personality.sh
git revision	master / `a7429a7`
Max. process+thread count	43 (vs. ulimit of 30000)
modules	C: U:
Console output	https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-5619/1/console
versions	git=2.34.1 maven=3.8.6
Powered by	Apache Yetus 0.12.0 https://yetus.apache.org

This message was automatically generated.

Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.2 to 3.1.3. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](pallets/jinja@3.1.2...3.1.3) --- updated-dependencies: - dependency-name: jinja2 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

…ts (#5619) Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.2 to 3.1.3. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](pallets/jinja@3.1.2...3.1.3) --- updated-dependencies: - dependency-name: jinja2 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Duo Zhang <zhangduo@apache.org> (cherry picked from commit 6133d74)

…ts (apache#5619) Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.2 to 3.1.3. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](pallets/jinja@3.1.2...3.1.3) Change-Id: I9947b9d3e9c7d10b06afef22fee464addbb14a22 --- updated-dependencies: - dependency-name: jinja2 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Duo Zhang <zhangduo@apache.org> (cherry picked from commit 6133d74) (cherry picked from commit 41f0e36) Change-Id: I9947b9d3e9c7d10b06afef22fee464addbb14a22

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 11, 2024

dependabot bot force-pushed the dependabot/pip/dev-support/flaky-tests/jinja2-3.1.3 branch from 602daf1 to 3626eee Compare January 13, 2024 06:51

dependabot bot force-pushed the dependabot/pip/dev-support/flaky-tests/jinja2-3.1.3 branch from 3626eee to 1378a6d Compare January 13, 2024 06:51

Apache9 changed the title ~~Bump jinja2 from 3.1.2 to 3.1.3 in /dev-support/flaky-tests~~ HBASE-28310 Bump jinja2 from 3.1.2 to 3.1.3 in /dev-support/flaky-tests Jan 13, 2024

Apache9 merged commit 6133d74 into master Jan 13, 2024

dependabot bot deleted the dependabot/pip/dev-support/flaky-tests/jinja2-3.1.3 branch January 13, 2024 06:53

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

HBASE-28310 Bump jinja2 from 3.1.2 to 3.1.3 in /dev-support/flaky-tests #5619

HBASE-28310 Bump jinja2 from 3.1.2 to 3.1.3 in /dev-support/flaky-tests #5619

dependabot bot commented on behalf of github Jan 11, 2024 •

edited

Loading

Apache-HBase commented Jan 11, 2024

Apache-HBase commented Jan 11, 2024

Apache-HBase commented Jan 11, 2024

HBASE-28310 Bump jinja2 from 3.1.2 to 3.1.3 in /dev-support/flaky-tests #5619

HBASE-28310 Bump jinja2 from 3.1.2 to 3.1.3 in /dev-support/flaky-tests #5619

Conversation

dependabot bot commented on behalf of github Jan 11, 2024 • edited Loading

3.1.3

Version 3.1.3

Apache-HBase commented Jan 11, 2024

Apache-HBase commented Jan 11, 2024

Apache-HBase commented Jan 11, 2024

dependabot bot commented on behalf of github Jan 11, 2024 •

edited

Loading