Bump org.eclipse.tycho:tycho-core from 4.0.2 to 4.0.3

[dependabot]

Bumps org.eclipse.tycho:tycho-core from 4.0.2 to 4.0.3.

Release notes

Sourced from org.eclipse.tycho:tycho-core's releases.

Tycho 4.0.3 has been released and is available from Maven Central repository.

🆕 https://github.com/eclipse-tycho/tycho/blob/tycho-4.0.3/RELEASE_NOTES.md 🏷️ https://github.com/eclipse-tycho/tycho/tree/tycho-4.0.3 👔 https://projects.eclipse.org/projects/technology.tycho/releases/4.0.3 🙏 contributors who contributed patches for this release:

• Cédric Marin
• Christoph Läubrich
• dependabot[bot]
• Hannes Wellmann
• Jakub Stroleny

💰 we would like to also thank the Eclipse IDE Working Group for sponsoring the releng work in this release

and thanks to everyone who helped us with testing the snapshot version.

Regards,

The Tycho Team

What's Changed

• Bump org.mockito:mockito-core from 5.4.0 to 5.5.0 by @​dependabot in eclipse-tycho/tycho#2722
• Bump org.apache.maven:maven-archiver from 3.6.0 to 3.6.1 by @​dependabot in eclipse-tycho/tycho#2723
• Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.3.0 to 3.4.0 by @​dependabot in eclipse-tycho/tycho#2724
• Do not synchronize and add a timeout for "bad" locations by @​laeubi in eclipse-tycho/tycho#2727
• [tycho-4.0.x] Consider Source-Unit version when adding sources to a P2-repo by @​github-actions in eclipse-tycho/tycho#2743
• [tycho-4.0.x] FileTargetDefinitionContent: Improve exception message by @​github-actions in eclipse-tycho/tycho#2730
• Bump org.slf4j:slf4j-api from 2.0.7 to 2.0.9 by @​dependabot in eclipse-tycho/tycho#2749
• Bump org.eclipse.jgit:org.eclipse.jgit from 6.6.0.202305301015-r to 6.6.1.202309021850-r by @​dependabot in eclipse-tycho/tycho#2750
• Add an option to filter repo-references before being added to a p2-repo by @​HannesWell in eclipse-tycho/tycho#2753
• Bump io.takari.polyglot:polyglot-common from 0.4.10 to 0.4.11 by @​dependabot in eclipse-tycho/tycho#2733
• Bump org.eclipse.jgit:org.eclipse.jgit from 6.6.1.202309021850-r to 6.7.0.202309050840-r by @​dependabot in eclipse-tycho/tycho#2756
• Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.4.0 to 3.4.1 by @​dependabot in eclipse-tycho/tycho#2763
• Bump org.apache.commons:commons-compress from 1.23.0 to 1.24.0 by @​dependabot in eclipse-tycho/tycho#2760
• Bump org.eclipse.platform:org.eclipse.osgi from 3.18.400 to 3.18.500 by @​dependabot in eclipse-tycho/tycho#2774
• Bump org.eclipse.jdt:ecj from 3.34.0 to 3.35.0 by @​dependabot in eclipse-tycho/tycho#2775
• Bump org.eclipse.platform:org.eclipse.jface from 3.30.0 to 3.31.0 by @​dependabot in eclipse-tycho/tycho#2781
• Bump org.eclipse.platform:org.eclipse.equinox.app from 1.6.200 to 1.6.300 by @​dependabot in eclipse-tycho/tycho#2778
• Bump org.eclipse.platform:org.eclipse.equinox.p2.jarprocessor from 1.3.0 to 1.3.200 by @​dependabot in eclipse-tycho/tycho#2795
• Bump org.eclipse.platform:org.eclipse.equinox.p2.touchpoint.natives from 1.5.0 to 1.5.100 by @​dependabot in eclipse-tycho/tycho#2794
• Bump org.eclipse.platform:org.eclipse.e4.ui.workbench3 from 0.17.0 to 0.17.100 by @​dependabot in eclipse-tycho/tycho#2792
• Bump org.eclipse.platform:org.eclipse.equinox.preferences from 3.10.200 to 3.10.300 by @​dependabot in eclipse-tycho/tycho#2783
• Bump org.eclipse.platform:org.eclipse.equinox.p2.director.app from 1.3.0 to 1.3.100 by @​dependabot in eclipse-tycho/tycho#2782
• Bump org.eclipse.platform:org.eclipse.equinox.p2.garbagecollector from 1.3.0 to 1.3.100 by @​dependabot in eclipse-tycho/tycho#2776
• Bump org.eclipse.platform:org.eclipse.equinox.p2.updatesite from 1.3.0 to 1.3.100 by @​dependabot in eclipse-tycho/tycho#2777
• Bump org.eclipse.platform:org.eclipse.equinox.frameworkadmin from 2.2.100 to 2.2.200 by @​dependabot in eclipse-tycho/tycho#2803
• Bump org.eclipse.platform:org.eclipse.equinox.p2.repository from 2.7.0 to 2.7.100 by @​dependabot in eclipse-tycho/tycho#2805
• Bump org.eclipse.platform:org.eclipse.equinox.p2.engine from 2.8.0 to 2.8.100 by @​dependabot in eclipse-tycho/tycho#2807
• Bump org.eclipse.platform:org.eclipse.equinox.p2.metadata from 2.7.0 to 2.7.100 by @​dependabot in eclipse-tycho/tycho#2819

... (truncated)

Changelog

Sourced from org.eclipse.tycho:tycho-core's changelog.

4.0.3

new option to filter added repository-references when assembling a p2-repository

If filtering provided artifacts is enabled, the repository references automatically added to a assembled p2-repository (via tycho-p2-repository-plugin's addIUTargetRepositoryReferences or addPomRepositoryReferences) can now be filtered by their location using exclusion and inclusion patterns and therefore allows more fine-grained control which references are added. Additionally the automatically added references can be filter based on if they provide any of the filtered units or not. If addOnlyProviding is true repositories that don't provide any filtered unit are not added to the assembled repo.

<plugin>
	<groupId>org.eclipse.tycho</groupId>
	<artifactId>tycho-p2-repository-plugin</artifactId>
	<version>${tycho-version}</version>
	<configuration>
		... other configuration options ...
		<repositoryReferenceFilter>
			<addOnlyProviding>true</addOnlyProviding>
			<exclude>
				<location>https://foo.bar.org/hidden/**</location>
				<location>%regex[http(s)?:\/\/foo\.bar\.org\/secret\/.*]</location>
				<location>![https://foo.bar.org/**]</location>
			</exclude>
		</repositoryReferenceFilter>
	</configuration>
</plugin>

Commits

• 88e4728 Prepare release
• ca77cc2 Bump commons-io:commons-io from 2.13.0 to 2.14.0
• 6aedcd2 Print added repository-references when assembly a p2-repository
• 729c80f Suppress addition of unnecessary repo-refereces when assembling p2-repos
• 0c3be9b Remove unused MavenBundlesArtifactRepository
• ccd3e2a Return the maven location for missing junit bundles
• 0c5e59f Introduce a public static constant for the current eclipse release
• 242a2a8 Fix creation of output directory in packaging mojo
• 2ee751b Assemble repository for all environments in one pass
• b3f0eec Bump org.apache.maven.resolver:maven-resolver-util from 1.9.15 to 1.9.16
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)