This is an automated email from the ASF dual-hosted git repository.
github-bot pushed a change to branch dependabot/maven/org.jfree-jfreechart-1.5.4
in repository https://gitbox.apache.org/repos/asf/struts.git
omit ae4e5e790 Bump org.jfree:jfreechart from 1.5.1 to 1.5.4
add 891598545 WW-5334 Fix empty chained context name
add 03e232344 Merge pull request #744 from
apache/WW-5334-fix-chained-contexts
add 20e211061 Reverts version to 6.3.0-SNAPSHOT
add 1a88f78a7 [maven-release-plugin] prepare release STRUTS_6_3_0
add a0185f248 [maven-release-plugin] prepare for next development iteration
add 85fe68071 Moves all CI notifications to commits@ list
add 74e5aad4f Update .asf.yaml
add f70feb11e Merge pull request #748 from apache/feature/notify-builds
add 50b36695e Bump actions/checkout from 3 to 4
add badb3f457 Merge pull request #751 from
apache/dependabot/github_actions/actions/checkout-4
add f0e3cec5c Bump actions/upload-artifact from 3.1.2 to 3.1.3
add 59e9c18ca Merge pull request #752 from
apache/dependabot/github_actions/actions/upload-artifact-3.1.3
add 0ba2d69af [maven-release-plugin] prepare release STRUTS_6_3_0_1
add f4253ff8f [maven-release-plugin] prepare for next development iteration
add 4c044f125 Always delete uploaded file
add 236ae15c6 [maven-release-plugin] prepare release STRUTS_6_3_0_1
add b7f73715d [maven-release-plugin] prepare for next development iteration
add 4f5c4ff00 Bump actions/cache from 3.3.1 to 3.3.2
add 142bb9efe Merge pull request #753 from
apache/dependabot/github_actions/actions/cache-3.3.2
add 699786e19 WW-5341 Refactor SecurityMemberAccess methods for reuse
add d6fcfd9c2 WW-5341 Clean up SecurityMemberAccess#restore
add c57015749 WW-5341 Further refactor of OgnlUtil and
SecurityMemberAccess to store excluded classes as Strings
add a9666272e WW-5341 Move proxy check to be first
add 1bbcc17c7 WW-5341 Split package exclusion check
add a352132f0 WW-5341 Clean up OgnlUtilTest
add 7c1c674a0 WW-5341 Add unit test for excluded pattern validation
add a755c30ca WW-5341 Fix default ClassLoader
add bc85d35a2 WW-5341 Make validation more efficient
add 501d395b9 Merge pull request #741 from apache/WW-5341-classloaders
add 4a5edf640 WW-5342 Ban use of default package
add ff79c1b04 WW-5342 Implement default off option
add bfe1f8cd3 WW-5342 Optimise package exclusion check
add bb83a6014 Merge pull request #742 from apache/WW-5342-default-package
add 7bd31cf31 WW-5339 Clean up OgnlValueStackTest
add 2b70b024b WW-5339 Misc clean up in CompoundRootAccessor
add fde2b70fa Merge pull request #745 from apache/WW-5339-cleanup
add 452cb774a WW-5340 Refactor OgnlUtil, specifically calls to
Ognl#getValue,setValue,parseExpression
add 13f0591ca WW-5340 Remove redundant check on #setValue
add 65ff2422e WW-5340 Rename functional interface
add 90adbfb3c WW-5340 Fix OgnlReflectionProvider bypassing OgnlUtil
add 19d26b29a Merge pull request #746 from apache/WW-5340-ognlutil-refactor
add 49a27d1b2 replace BeanManager::createInjectionTarget
add 61ca68f4a indent CdiObjectFactory with 4 spaces everywhere
add 3da11a29a Merge pull request #754 from
hepptho/replace-deprecated-beanmanager-method
add 684c61560 Split SonarCloud into separate action
add 9540ba6a0 Merge pull request #755 from apache/gh-actions-sonar
new 8ff8e42e7 Bump org.jfree:jfreechart from 1.5.1 to 1.5.4
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (ae4e5e790)
\
N -- N -- N
refs/heads/dependabot/maven/org.jfree-jfreechart-1.5.4 (8ff8e42e7)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
.asf.yaml | 4 +-
.github/workflows/codeql.yml | 2 +-
.github/workflows/maven.yml | 25 +--
.github/workflows/scorecards-analysis.yaml | 4 +-
.github/workflows/{maven.yml => sonar.yml} | 33 +--
Jenkinsfile | 6 +-
bom/pom.xml | 2 +-
.../xwork2/ognl/OgnlReflectionProvider.java | 8 +-
.../com/opensymphony/xwork2/ognl/OgnlUtil.java | 239 ++++++++++----------
.../opensymphony/xwork2/ognl/OgnlValueStack.java | 1 +
.../xwork2/ognl/SecurityMemberAccess.java | 113 +++++-----
.../xwork2/ognl/accessor/CompoundRootAccessor.java | 47 ++--
.../java/org/apache/struts2/StrutsConstants.java | 1 +
.../multipart/JakartaMultiPartRequest.java | 79 +++----
.../xwork2/ognl/OgnlUtilStrutsTest.java | 4 +-
.../com/opensymphony/xwork2/ognl/OgnlUtilTest.java | 156 ++++++-------
.../xwork2/ognl/OgnlValueStackTest.java | 245 +++++++--------------
.../xwork2/ognl/SecurityMemberAccessTest.java | 116 +++++-----
.../com/test/ExternalSecurityMemberAccess.java | 4 +-
.../org/apache/struts2/cdi/CdiObjectFactory.java | 145 ++++++------
.../struts2/views/velocity/VelocityManager.java | 9 +-
pom.xml | 4 +-
22 files changed, 557 insertions(+), 690 deletions(-)
copy .github/workflows/{maven.yml => sonar.yml} (60%)
