dependabot[bot] opened a new pull request, #1961: URL: https://github.com/apache/maven/pull/1961
Bumps [org.codehaus.plexus:plexus-cipher](https://github.com/codehaus-plexus/plexus-cipher) from 2.0 to 3.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codehaus-plexus/plexus-cipher/releases";>org.codehaus.plexus:plexus-cipher's releases</a>.</em></p> <blockquote> <h2>3.0.0</h2> <h2>What's Changed</h2> <ul> <li>Bump sisuVersion from 0.3.4 to 0.3.5 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/7";>codehaus-plexus/plexus-cipher#7</a></li> <li>Bump release-drafter/release-drafter from 5.15.0 to 5.17.6 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/10";>codehaus-plexus/plexus-cipher#10</a></li> <li>Bump release-drafter/release-drafter from 5.17.6 to 5.18.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/11";>codehaus-plexus/plexus-cipher#11</a></li> <li>Bump github/codeql-action from 1 to 2 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/18";>codehaus-plexus/plexus-cipher#18</a></li> <li>Bump actions/setup-java from 2 to 3 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/17";>codehaus-plexus/plexus-cipher#17</a></li> <li>Bump actions/cache from 2 to 3.0.1 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/16";>codehaus-plexus/plexus-cipher#16</a></li> <li>Bump release-drafter/release-drafter from 5.18.0 to 5.19.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/14";>codehaus-plexus/plexus-cipher#14</a></li> <li>Bump actions/checkout from 2 to 3 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/13";>codehaus-plexus/plexus-cipher#13</a></li> <li>use shared actions by <a href="https://github.com/olamy";><code>@olamy</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/21";>codehaus-plexus/plexus-cipher#21</a></li> <li>Bump plexus from 8 to 10 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/22";>codehaus-plexus/plexus-cipher#22</a></li> <li>Bump maven-surefire-plugin from 2.22.2 to 3.0.0 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/24";>codehaus-plexus/plexus-cipher#24</a></li> <li>Fixed insecure cryptography in PBECipher.java by <a href="https://github.com/gL1nt";><code>@gL1nt</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/23";>codehaus-plexus/plexus-cipher#23</a></li> <li>Bump maven-surefire-plugin from 3.0.0 to 3.1.2 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/30";>codehaus-plexus/plexus-cipher#30</a></li> <li>Move code to Java 8 by <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/31";>codehaus-plexus/plexus-cipher#31</a></li> <li>Bump org.codehaus.plexus:plexus from 10 to 14 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/32";>codehaus-plexus/plexus-cipher#32</a></li> <li>Quick fix reported issues in code style by <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/33";>codehaus-plexus/plexus-cipher#33</a></li> <li>Enable missed decryption test and adjust to new algorithm after <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/issues/23";>#23</a> by <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/34";>codehaus-plexus/plexus-cipher#34</a></li> <li>Switch to java.util.Base64 by <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/35";>codehaus-plexus/plexus-cipher#35</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/37";>codehaus-plexus/plexus-cipher#37</a></li> <li>Bump org.codehaus.plexus:plexus from 14 to 15 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/38";>codehaus-plexus/plexus-cipher#38</a></li> <li>Move tests to JUnit 5 by <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/39";>codehaus-plexus/plexus-cipher#39</a></li> <li>Reuse plexus-pom action for CI by <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/40";>codehaus-plexus/plexus-cipher#40</a></li> <li>Bump org.codehaus.plexus:plexus from 15 to 16 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/41";>codehaus-plexus/plexus-cipher#41</a></li> <li>Bump org.codehaus.plexus:plexus from 16 to 17 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/42";>codehaus-plexus/plexus-cipher#42</a></li> <li>Bump org.codehaus.plexus:plexus from 17 to 18 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/43";>codehaus-plexus/plexus-cipher#43</a></li> <li>Bump org.codehaus.plexus:plexus from 18 to 19 by <a href="https://github.com/dependabot";><code>@dependabot</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/44";>codehaus-plexus/plexus-cipher#44</a></li> <li>plexus-cipher 3.0.0 by <a href="https://github.com/cstamas";><code>@cstamas</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/45";>codehaus-plexus/plexus-cipher#45</a></li> <li>Componentize by <a href="https://github.com/cstamas";><code>@cstamas</code></a> in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/48";>codehaus-plexus/plexus-cipher#48</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/olamy";><code>@olamy</code></a> made their first contribution in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/21";>codehaus-plexus/plexus-cipher#21</a></li> <li><a href="https://github.com/gL1nt";><code>@gL1nt</code></a> made their first contribution in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/23";>codehaus-plexus/plexus-cipher#23</a></li> <li><a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a> made their first contribution in <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/31";>codehaus-plexus/plexus-cipher#31</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codehaus-plexus/plexus-cipher/compare/plexus-cipher-2.0...plexus-cipher-3.0.0";>https://github.com/codehaus-plexus/plexus-cipher/compare/plexus-cipher-2.0...plexus-cipher-3.0.0</a></p> <h2>2.1.0</h2> <!-- raw HTML omitted --> <ul> <li>Switch to java.util.Base64 (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/35";>#35</a>) <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a></li> <li>Move code to Java 8 (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/31";>#31</a>) <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a></li> <li>Fixed insecure cryptography in PBECipher.java (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/23";>#23</a>) <a href="https://github.com/gL1nt";><code>@gL1nt</code></a></li> </ul> <h2>🐛 Bug Fixes</h2> <ul> <li>Enable missed decryption test and adjust to new algorithm after <a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/issues/23";>#23</a> (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/pull/34";>#34</a>) <a href="https://github.com/slachiewicz";><code>@slachiewicz</code></a></li> </ul> <h2>📦 Dependency updates</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/3a01f1c9dff892e28669dab9bbef57bb13a18c3d";><code>3a01f1c</code></a> [maven-release-plugin] prepare release plexus-cipher-3.0.0</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/2e1442cc6a744044c441a81d1c2c420c1f2ca831";><code>2e1442c</code></a> Fix release</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/af9c9fb06d916176d7d0a796e3ed957aa78a64c6";><code>af9c9fb</code></a> Fix SCM devConn</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/c30abd244673f4b98522e7093341d720b28d7eb6";><code>c30abd2</code></a> Componentize (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/issues/48";>#48</a>)</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/b8d5b1f82275340b9347eb8a657a86fb19f7aba5";><code>b8d5b1f</code></a> Fix branch names</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/03054f1b21dbcd086690be6dada586b6ade2ae8f";><code>03054f1</code></a> Return CodeQL</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/08ed9870a66a4d356b445458f1b180c7c33d0b8c";><code>08ed987</code></a> plexus-cipher 3.0.0 (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/issues/45";>#45</a>)</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/82a2e20e821bc9914a4f0bad2319a74ebfc570a4";><code>82a2e20</code></a> Bump org.codehaus.plexus:plexus from 18 to 19 (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/issues/44";>#44</a>)</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/4061571531e9400ffa6cd5891a9e8bcd11dd1bdc";><code>4061571</code></a> Bump org.codehaus.plexus:plexus from 17 to 18 (<a href="https://redirect.github.com/codehaus-plexus/plexus-cipher/issues/43";>#43</a>)</li> <li><a href="https://github.com/codehaus-plexus/plexus-cipher/commit/e985179623d2ec728c2a3b0be877980e00ba32b9";><code>e985179</code></a> Delete .github/workflows/codeql.yml</li> <li>Additional commits viewable in <a href="https://github.com/codehaus-plexus/plexus-cipher/compare/plexus-cipher-2.0...plexus-cipher-3.0.0";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@maven.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
