[
https://issues.apache.org/jira/browse/GEODE-10046?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17492872#comment-17492872
]
ASF subversion and git services commented on GEODE-10046:
---------------------------------------------------------
Commit 5d69a616d2516b0f401bfbb4394e484bf2c3a284 in geode's branch
refs/heads/develop from Owen Nichols
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=5d69a61 ]
GEODE-10046: bump dependencies (#7360)
* Bump ben-manes versions from 0.39.0 to 0.42.0
* Bump palantir docker from 0.28.0 to 0.32.0
* Bump fastutil from 8.5.6 to 8.5.8
* Bump java-jq from 1.2.0 to 1.3.0
* Bump jproc from 2.6.2 to 2.8.0
* Bump json-path from 2.6.0 to 2.7.0
* Bump lettuce-core from 6.1.5.RELEASE to 6.1.6.RELEASE
* Bump micrometer-core from 1.8.1 to 1.8.2
* Bump mysql-connector-java from 8.0.26 to 8.0.28
* Bump nebula.lint from 17.1.1 to 17.6.1
* Bump netty from 4.1.72.Final to 4.1.74.Final
* Bump pmd from 6.41.0 to 6.42.0
* Bump spotless from 5.14.3 to 6.2.2
* Bump spring from 5.3.14 to 5.3.15
* Bump spring-boot-starter from 2.6.2 to 2.6.3
* Bump spring-hateoas from 1.4.0 to 1.4.1
* Bump tomcat from 9.0.56 to 9.0.58
> bump dependencies in 1.16
> -------------------------
>
> Key: GEODE-10046
> URL: https://issues.apache.org/jira/browse/GEODE-10046
> Project: Geode
> Issue Type: Improvement
> Components: build
> Reporter: Owen Nichols
> Assignee: Owen Nichols
> Priority: Major
> Labels: pull-request-available
>
> until support/1.16 is cut, periodically check for and switch to latest
> version of 3rd-party dependencies. this will extend the shelf-life of
> eventual Geode 1.16 release and hopefully reduce bugs and cve exposure, or at
> least give a smaller delta if there is later a cve found that we need to
> patch for
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
