-
Notifications
You must be signed in to change notification settings - Fork 1.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Remove Apache Derby test dependency from pom.xml #5260
Remove Apache Derby test dependency from pom.xml #5260
Conversation
@dependabot rebase |
The dependabot.yml entry that created this PR has been deleted so this PR can't be rebased. Please close the PR so Dependabot can create a new one with the current dependabot.yml. |
@dependabot recreate |
The dependabot.yml entry that created this PR has been deleted so this PR can't be recreated. Please close the PR so Dependabot can create a new one with the current dependabot.yml. |
@dependabot rebase |
The dependabot.yml entry that created this PR has been deleted so this PR can't be rebased. Please close the PR so Dependabot can create a new one with the current dependabot.yml. |
@dependabot recreate |
The dependabot.yml entry that created this PR has been deleted so this PR can't be recreated. Please close the PR so Dependabot can create a new one with the current dependabot.yml. |
Closing to be recreated |
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
Bumps org.apache.derby:derby from 10.14.2.0 to 10.17.1.0. --- updated-dependencies: - dependency-name: org.apache.derby:derby dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
d753492
to
f87067c
Compare
The Apache Derby database has been replaced with H2 in the LiquibaseServletListener test class. This was done primarily because now derby is in a different package (derby-tools) that is not included with liquibase. Replaced all instances of Derby database configuration with the equivalent for H2 and renamed the related test method appropriately.
The Apache Derby dependency, which was scoped for testing, has been removed from the project's POM file and the tests that used it are now using H2. Derby package for java 8 (version 10.14.x) has a security issue (CVE-2022-46337) that is going to be fixed on series 10.17.x only that requires java 21. Thus this testing dependency is being removed.
The Apache Derby dependency, which was scoped for testing, has been removed from the project's POM file and the tests that used it are now using H2.
Derby package for java 8 (version 10.14.x) has a security issue (CVE-2022-46337) that is going to be fixed on series 10.17.x only that requires java 21.
Thus this testing dependency is being removed.
It was introduced in #1120 .