[jira] [Commented] (GEODE-8980) bump dependencies for 1.15.0 [PERMANENT]

Thu, 10 Jun 2021 17:33:05 -0700 


    [ 
https://issues.apache.org/jira/browse/GEODE-8980?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17361307#comment-17361307
 ] 

ASF subversion and git services commented on GEODE-8980:
--------------------------------------------------------

Commit 193cddc8c075a5c71d25c28e7110129c41ed2d17 in geode's branch 
refs/heads/develop from Owen Nichols
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=193cddc ]

GEODE-8980: bumps deps (#6600)

* Bump annotations from 20.1.0 to 21.0.1
* Bump awaitility from 4.0.3 to 4.1.0
* Bump bcpkix-jdk15on from 1.68 to 1.69
* Bump ben-manes.versions from 0.38.0 to 0.39.0
* Bump cargo-core-uberjar from 1.9.3 to 1.9.4
* Bump classgraph from 4.8.104 to 4.8.108
* Bump docker-java from 3.2.7 to 3.2.8
* Bump jetty from 9.4.40.v20210413 to 9.4.42.v20210604
* Bump jproc from 2.6.0 to 2.6.2
* Bump json-path from 2.5.0 to 2.6.0
* Bump lettuce-core from 6.1.1.RELEASE to 6.1.2.RELEASE
* Bump maven-artifact from 3.6.3 to 3.8.1
* Bump micrometer-core from 1.6.6 to 1.7.0
* Bump mockito-core from 3.9.0 to 3.11.0
* Bump mysql-connector-java from 8.0.23 to 8.0.25
* Bump nebula.lint from 16.17.1 to 16.23.0
* Bump pmd from 6.33.0 to 6.35.0
* Bump sonarqube from 3.1.1 to 3.2.0
* Bump spotless from 5.11.1 to 5.12.5
* Bump spring from 5.3.7 to 5.3.8
* Bump spring-boot-starter from 2.4.5 to 2.5.0
* Bump spring-hateoas from 1.3.0 to 1.3.1
* Bump spring-security from 5.4.6 to 5.5.0
* Bump spring-session-data-redis from 2.4.3 to 2.5.0
* Bump tomcat from 9.0.45 to 9.0.46
* Bump tomcat-catalina from 7.0.108 to 7.0.109
* Bump tomcat-catalina from 8.5.65 to 8.5.66

> bump dependencies for 1.15.0 [PERMANENT]
> ----------------------------------------
>
>                 Key: GEODE-8980
>                 URL: https://issues.apache.org/jira/browse/GEODE-8980
>             Project: Geode
>          Issue Type: Improvement
>          Components: build
>    Affects Versions: 1.15.0
>            Reporter: Owen Nichols
>            Priority: Major
>              Labels: pull-request-available
>
> keeping up with the latest versions of 3rd-party libraries used by Geode is a 
> proactive way to reduce bugs and avoid security vulnerabilities.  this ticket 
> will be used for ~monthly dependency bumps on develop until we get close to 
> cutting support/1.15



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to