JENA-2256: Upgrades #1167

afs · 2022-01-19T11:45:04Z

Of note:

Lucene: 8.10.1 -> 8.11.1

        <requireMavenVersion>
          <version>3.2.5</version>
        </requireMavenVersion>

This was noted by the maven-version-plugin. It is just making explicit the minimum maven version. Maven version 3.2.5 was released 2017-10-18. Current maven is 3.8.4.

rvesse · 2022-01-19T15:50:35Z

pom.xml

@@ -840,6 +839,9 @@
                  <message>No SNAPSHOT dependencies are allowed!</message>
                  <onlyWhenRelease>true</onlyWhenRelease>
                </requireReleaseDeps>
+                <requireMavenVersion>
+                  <version>3.2.5</version>


If we're gonna enforce this at all might want to enforce 3.8.1 (https://maven.apache.org/docs/3.8.1/release-notes.html) because that has some supply chain CVE related fixes

3.2.5 was just the number the versions plugins referred to.

That's a good reason to go to 3.8.1 (released 2021-03-30).

Done.

JENA-2256: Upgrade dependencies

c0a1edf

rvesse reviewed Jan 19, 2022

View reviewed changes

JENA-2256: Upgrade plugins; minimum maven version=3.8.1

71fdc04

afs force-pushed the upgrades branch from b3179f0 to 71fdc04 Compare January 19, 2022 16:20

kinow approved these changes Jan 19, 2022

View reviewed changes

afs merged commit afcd0ae into apache:main Jan 20, 2022

afs deleted the upgrades branch January 20, 2022 08:52

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

JENA-2256: Upgrades #1167

JENA-2256: Upgrades #1167

afs commented Jan 19, 2022

rvesse Jan 19, 2022

afs Jan 19, 2022

JENA-2256: Upgrades #1167

JENA-2256: Upgrades #1167

Conversation

afs commented Jan 19, 2022

rvesse Jan 19, 2022

Choose a reason for hiding this comment

afs Jan 19, 2022

Choose a reason for hiding this comment