Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump spotbugs-annotations from 3.1.12 to 4.0.0 #85

Merged
merged 1 commit into from
Feb 17, 2020
Merged

Bump spotbugs-annotations from 3.1.12 to 4.0.0 #85

merged 1 commit into from
Feb 17, 2020

Conversation

dependabot-preview[bot]
Copy link
Contributor

Bumps spotbugs-annotations from 3.1.12 to 4.0.0.

Release notes

Sourced from spotbugs-annotations's releases.

SpotBugs 4.0.0

CHANGELOG

SpotBugs 4.0.0 Release Candidate 3

CHANGELOG

SpotBugs 4.0.0 Release Candidate 2

CHANGELOG

RELEASE

SpotBugs 4.0.0 Release Candidate 1

CHANGELOG

RELEASE

SpotBugs 4.0.0 beta5

CHANGELOG

RELEASE

SpotBugs 4.0.0 beta4

CHANGELOG

RELEASE

SpotBugs 4.0.0 beta3

CHANGELOG

RELEASE

SpotBugs 4.0.0 beta2

CHANGELOG

... (truncated)
Changelog

Sourced from spotbugs-annotations's changelog.

4.0.0 - 2020-02-15

Fixed

4.0.0-RC3 - 2020-02-04

This version contains no change, except for the solution for a deployment problem.

4.0.0-RC2 - 2020-01-29

Fixed

  • Latest 4.0.0 Eclipse plugin is not functional (#1067)

4.0.0-RC1 - 2020-01-17

Changed

  • change the dependency on jaxen to runtime scope
  • change the dependency on saxon to runtime scope

4.0.0-beta5 - 2020-01-14

Fixed

  • Suppress Error resolving Real SourcePath (only relative source path will be available) warning. #1009

Changed

  • Bump up Apache Commons BCEL to the version 6.4.1
  • update ASM to 7.3.1 that supports Java 14 and 15

4.0.0-beta4 - 2019-08-20

Fixed

  • default.xsl declares it is a 2.0 stylesheet, but it appears to have issues with a 2.0 processor (#958)

4.0.0-beta3 - 2019-06-24

Added

  • Provide support for CheckerFramework @NonNull annotation
  • Recognize CheckerFramework type annotations on method return values (#960)
  • The feature toggle spotbugs.experimental.multiThread for experimental multi-thread analysis
  • Add management for source filter using full source path, if available and simple filename does not already match (#694)

4.0.0-beta2 - 2019-05-21

... (truncated)
Commits
  • 1a45517 chore: release v4.0.0 stable
  • f9a1cc5 ci: update tag matcher
  • 0d50f00 Remove duplicated word
  • 0755600 ci: add encrypted file to repository
  • 56f5388 ci: fix wrong step name in workflow
  • 8f7df19 ci: run Gradle publish task on GitHub Actions
  • 9d3bf6a build: fix a wrong property
  • b2a9629 build: prepare for the next development
  • d820dad release v4.0.0-RC3
  • f36e50a build: stop using sha256/512
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

@dependabot-preview
Bump spotbugs-annotations from 3.1.12 to 4.0.0
79d68fb 
Bumps [spotbugs-annotations](https://github.com/spotbugs/spotbugs) from 3.1.12 to 4.0.0.
- [Release notes](https://github.com/spotbugs/spotbugs/releases)
- [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md)
- [Commits](spotbugs/spotbugs@3.1.12...4.0.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
oleg-nenashev
oleg-nenashev approved these changes Feb 17, 2020
View reviewed changes
Copy link
Member

@oleg-nenashev oleg-nenashev left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The breaking changes are fairly minor (non thread-safe implementation in OpcodeStack.Item), so I see no problem with updating

@MarkEWaite
Copy link
Contributor

@dependabot merge

@dependabot-preview dependabot-preview bot merged commit 007db9b into master Feb 17, 2020
@dependabot-preview dependabot-preview bot deleted the dependabot/maven/com.github.spotbugs-spotbugs-annotations-4.0.0 branch February 17, 2020 14:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@oleg-nenashev oleg-nenashev oleg-nenashev approved these changes

@res0nance res0nance res0nance approved these changes

Assignees
No one assigned
Labels
dependencies
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@MarkEWaite @oleg-nenashev @res0nance