Skip to content

Bump the plugins group with 4 updates#1992

Merged
dependabot[bot] merged 1 commit intomainfrom
dependabot/maven/plugins-4a275b6e0e
Mar 31, 2025
Merged

Bump the plugins group with 4 updates#1992
dependabot[bot] merged 1 commit intomainfrom
dependabot/maven/plugins-4a275b6e0e

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 31, 2025
edited
Loading

Bumps the plugins group with 4 updates: com.puppycrawl.tools:checkstyle, org.apache.maven.plugins:maven-surefire-plugin, org.apache.maven.plugins:maven-failsafe-plugin and org.sonarsource.scanner.maven:sonar-maven-plugin.

Updates com.puppycrawl.tools:checkstyle from 10.21.4 to 10.22.0

Release notes

Sourced from com.puppycrawl.tools:checkstyle's releases.

checkstyle-10.22.0

Checkstyle 10.22.0 - https://checkstyle.org/releasenotes.html#Release_10.22.0

Breaking backward compatibility:

#9280 - JavadocVariable: new property 'accessModifiers' as substitution of 'scope' and 'excludeScope' #15499 - Change default or IllegalIdentifierName

Bug fixes:

#16641 - FileContents.getJavadocBefore(): Comments should not be skipped if it is not alone in line #16385 - JavadocTagContinuationIndentation Ignore indentation check when HTML tag break line #16628 - use SLL prediction mode for fast javadoc parsing to improve performance #43 - JavadocMethod: Javadoc Not Detected Above Multiline Comments #12817 - Incorrect Indentation errors for expression switches with google_checks.xml #6637 - SuppressWarningsHolder aliasList members don't act like aliases #13043 - Make references optional for link and linkplain tags #16005 - Parse errors if ``@see spans multiple lines #14446 - Parse error when Javadoc contains `@`snippet with code example that uses Java annotation

... (truncated)

Commits
  • b20ca3b [maven-release-plugin] prepare release checkstyle-10.22.0
  • b5c86f5 doc: release notes for 10.22.0
  • 1a6caf2 Issue #14631: Updated INPUT_HTML_TAG_NAME to new AST format
  • 82c21d5 Issue #16666: Updated Broken Link - Javadoc OpenJDK 8 Report in website, 404 ...
  • 23c3c59 Issue #16641: FileContents.getJavadocBefore should skip block comments only i...
  • 9fb5504 Issue #14857: Github generate site fails to generate links with anchors
  • e1c89b9 infra: update google-java-format.yml to 1.26.0 formatter
  • 06074e5 Issue #14631: Updated LITERAL_INCLUDE in JavadocTokenTypes.java to new AST fo...
  • b5c64b2 Issue #11163: Enforce file size for javaParser
  • ae8fde4 Issue #14631: Updated TR_TAG_END in JavadocTokenTypes.java to new AST format
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.5.2 to 3.5.3

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.5.3

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 4434650 [maven-release-plugin] prepare release surefire-3.5.3
  • 1270950 use github directly
  • 59f3a1f release tag name backward compatible
  • dfbabe2 assertj-core must be test scope (#826)
  • e1f8119 back to 3.5.3-SNAPSHOT
  • c497559 [maven-release-plugin] prepare for next development iteration
  • 3962112 [maven-release-plugin] prepare release v3.5.3
  • 227c134 surefire shared utils version current version (#825)
  • 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
  • 906b65a Update site descriptors
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-failsafe-plugin from 3.5.2 to 3.5.3

Release notes

Sourced from org.apache.maven.plugins:maven-failsafe-plugin's releases.

3.5.3

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 4434650 [maven-release-plugin] prepare release surefire-3.5.3
  • 1270950 use github directly
  • 59f3a1f release tag name backward compatible
  • dfbabe2 assertj-core must be test scope (#826)
  • e1f8119 back to 3.5.3-SNAPSHOT
  • c497559 [maven-release-plugin] prepare for next development iteration
  • 3962112 [maven-release-plugin] prepare release v3.5.3
  • 227c134 surefire shared utils version current version (#825)
  • 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
  • 906b65a Update site descriptors
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-failsafe-plugin from 3.5.2 to 3.5.3

Release notes

Sourced from org.apache.maven.plugins:maven-failsafe-plugin's releases.

3.5.3

🐛 Bug Fixes

👻 Maintenance

📦 Dependency updates

Commits
  • 4434650 [maven-release-plugin] prepare release surefire-3.5.3
  • 1270950 use github directly
  • 59f3a1f release tag name backward compatible
  • dfbabe2 assertj-core must be test scope (#826)
  • e1f8119 back to 3.5.3-SNAPSHOT
  • c497559 [maven-release-plugin] prepare for next development iteration
  • 3962112 [maven-release-plugin] prepare release v3.5.3
  • 227c134 surefire shared utils version current version (#825)
  • 1d34c34 Bump org.htmlunit:htmlunit from 4.10.0 to 4.11.1
  • 906b65a Update site descriptors
  • Additional commits viewable in compare view

Updates org.sonarsource.scanner.maven:sonar-maven-plugin from 5.0.0.4389 to 5.1.0.4751

Release notes

Sourced from org.sonarsource.scanner.maven:sonar-maven-plugin's releases.

5.1.0.4751

Release notes - Sonar Scanner for Maven - 5.1

New Feature

SCANMAVEN-264 Add support for SonarQube Cloud regions

Bug

SCANMAVEN-228 Irrelevant encrypted properties should not be passed to the scanner engine

Task

SCANMAVEN-242 Migrate from single module to a multi-module structure

SCANMAVEN-250 Fix broken links coming from the relocation-pom's parent

SCANMAVEN-254 Update parent pom to version 81.0.0.2300

SCANMAVEN-257 Update headers for 2025

SCANMAVEN-258 Conditionally run tests using sonar.password in ITs

SCANMAVEN-260 Update CODEOWNERS after reorg

SCANMAVEN-261 Validate IT using the latest maven 4 release candidate 2

SCANMAVEN-262 Fix quality flaws: remove unnecessary public modifiers

SCANMAVEN-265 Upgrade sonar-scanner-java-library to latest version

SCANMAVEN-266 Analyze integration tests

SCANMAVEN-269 Prepare next development iteration 5.1

SCANMAVEN-271 Fix readability issues in ProxyTest

SCANMAVEN-272 Increase memory because maven 4.0.0-rc-2 fails with out of memory exception

SCANMAVEN-274 Fix quality flaws

SCANMAVEN-277 remove unused third-party-licenses.sh

SCANMAVEN-278 Fix quality flaws

SCANMAVEN-279 Clean up tech debt in Maven Scanner

SCANMAVEN-282 Update plexus-sec-dispatcher to fix CVE-2017-1000487

SCANMAVEN-284 Migrate releasability check to v2, fix property-dump-plugin to be excluded by releasability check (not released)

... (truncated)

Commits
  • e284917 SCANMAVEN-284 Bump releasability workflow version (#294)
  • cb6dd58 SCANMAVEN-282 Update plexus-sec-dispatcher from 1.4 (sonatype) to 2.0 (codeha...
  • 460e710 SCANMAVEN-280 Log the SonarQube Cloud Region (#291)
  • 8e0570b SCANMAVEN-228 Ignore Irrelevant Encrypted Properties (#289)
  • 7d5574f SCANMAVEN-279 Clean up old code (#290)
  • c472cfd SCANMAVEN-271 Fix readability issues in ProxyTest (#279)
  • 0783ad3 SCANMAVEN-264 Add support for SonarQube Cloud regions (#284)
  • 8f52888 SCANMAVEN-278 Fix quality flaws (#288)
  • 4c796c8 SCANMAVEN-276 ScannerEngineBootstrapper.isSuccessful() should be verified bef...
  • a09d151 SCANMAVEN-242 update readme quality gate badge, because project key has chang...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @acoburn.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Mar 31, 2025
@dependabot dependabot bot requested a review from a team as a code owner March 31, 2025 13:21
acoburn
acoburn approved these changes Mar 31, 2025
View reviewed changes
Copy link
Collaborator

@acoburn acoburn left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dependabot merge

@dependabot dependabot bot force-pushed the dependabot/maven/plugins-4a275b6e0e branch 2 times, most recently from 6443e12 to ef74316 Compare March 31, 2025 13:40
@dependabot
Bump the plugins group with 4 updates
fa39aba 
Bumps the plugins group with 4 updates: [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle), [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire), [org.apache.maven.plugins:maven-failsafe-plugin](https://github.com/apache/maven-surefire) and [org.sonarsource.scanner.maven:sonar-maven-plugin](https://github.com/SonarSource/sonar-scanner-maven).


Updates `com.puppycrawl.tools:checkstyle` from 10.21.4 to 10.22.0
- [Release notes](https://github.com/checkstyle/checkstyle/releases)
- [Commits](checkstyle/checkstyle@checkstyle-10.21.4...checkstyle-10.22.0)

Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.5.2 to 3.5.3
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.2...surefire-3.5.3)

Updates `org.apache.maven.plugins:maven-failsafe-plugin` from 3.5.2 to 3.5.3
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.2...surefire-3.5.3)

Updates `org.apache.maven.plugins:maven-failsafe-plugin` from 3.5.2 to 3.5.3
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.5.2...surefire-3.5.3)

Updates `org.sonarsource.scanner.maven:sonar-maven-plugin` from 5.0.0.4389 to 5.1.0.4751
- [Release notes](https://github.com/SonarSource/sonar-scanner-maven/releases)
- [Commits](SonarSource/sonar-scanner-maven@5.0.0.4389...5.1.0.4751)

---
updated-dependencies:
- dependency-name: com.puppycrawl.tools:checkstyle
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: plugins
- dependency-name: org.apache.maven.plugins:maven-surefire-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: plugins
- dependency-name: org.apache.maven.plugins:maven-failsafe-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: plugins
- dependency-name: org.apache.maven.plugins:maven-failsafe-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: plugins
- dependency-name: org.sonarsource.scanner.maven:sonar-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: plugins
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/maven/plugins-4a275b6e0e branch from ef74316 to fa39aba Compare March 31, 2025 13:46
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 31, 2025

One of your CI runs failed on this pull request, so Dependabot won't merge it.

Dependabot will still automatically merge this pull request if you amend it and your tests pass.

@dependabot dependabot bot merged commit c457d03 into main Mar 31, 2025
8 checks passed
@dependabot dependabot bot deleted the dependabot/maven/plugins-4a275b6e0e branch March 31, 2025 14:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@acoburn acoburn acoburn approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@acoburn