dependabot[bot] opened a new pull request, #154: URL: https://github.com/apache/maven-wagon/pull/154
Bumps [org.apache.sshd:sshd-core](https://github.com/apache/mina-sshd) from 0.8.0 to 2.15.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/apache/mina-sshd/releases";>org.apache.sshd:sshd-core's releases</a>.</em></p> <blockquote> <h2>SSHD 2.14.0</h2> <p>Full Changelog: <a href="https://github.com/apache/mina-sshd/compare/sshd-2.13.2...sshd-2.14.0";>https://github.com/apache/mina-sshd/compare/sshd-2.13.2...sshd-2.14.0</a></p> <h2>Bug Fixes</h2> <ul> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/524";>GH-524</a> Performance improvements</li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/533";>GH-533</a> Fix multi-step authentication</li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/582";>GH-582</a> Fix filtering in <code>NamedFactory</code></li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/587";>GH-587</a> Prevent <code>NullPointerException</code>on closed channel in <code>NettyIoSession</code></li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/590";>GH-590</a> Better support for FIPS</li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/597";>GH-597</a> Pass on <code>Charset</code> in <code>ClientSession.executeRemoteCommand()</code></li> </ul> <h2>New Features</h2> <ul> <li>New utility methods <code>SftpClient.put(Path localFile, String remoteFileName)</code> and <code>SftpClient.put(InputStream in, String remoteFileName)</code> facilitate SFTP file uploading.</li> </ul> <h3><a href="https://redirect.github.com/apache/mina-sshd/issues/590";>GH-590</a> Better support for FIPS</h3> <p>Besides fixing a bug with bc-fips (the <code>RandomGenerator</code> class exists in normal Bouncy Castle, but not in the FIPS version, but Apache MINA sshd referenced it even if only bc-fips was present), support was improved for running in an environment restricted by FIPS.</p> <p>There is a new system property <code>org.apache.sshd.security.fipsEnabled</code>. If set to <code>true</code>, a number of crypto-algorithms not approved by FIPS 140 are disabled:</p> <ul> <li>key exchange methods sntrup761x25519-sha512, sntrup761x25519-sha512<!-- raw HTML omitted --><a href="https://github.com/openssh";><code>@openssh</code></a>.com, curve25519-sha256, curve25519-sha256<!-- raw HTML omitted --><a href="https://github.com/libssh";><code>@libssh</code></a>.org, curve448-sha512.</li> <li>the chacha20-poly1305 cipher.</li> <li>the bcrypt KDF used in encrypted private key files in <a href="https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key";>OpenSSH format</a>.</li> <li>all ed25519 keys and signatures.</li> </ul> <p>Additionally, the new "SunJCEWrapper" <code>SecurityProviderRegistrar</code> (see below) and the <code>EdDSASecurityProviderRegistrar</code> are disabled, and the <code>BouncyCastleScurityProviderRegistrar</code> looks only for the "BCFIPS" security provider, not for the normal "BC" provider.</p> <p>If the system property is <em>not</em> set to <code>true</code>, FIPS mode can be enabled programmatically by calling <code>SecurityUtils.setFipsMode()</code> before any other call to Apache MINA sshd.</p> <h2>Potential compatibility issues</h2> <h3>New security provider registrar</h3> <p>There is a new <code>SecurityProviderRegistrar</code> that is registered by default if there is a <code>SunJCE</code> security provider. It uses the AES and HmacSHA* implementations from <code>SunJCE</code> even if Bouncy Castle is also registered. <code>SunJCE</code> has native implementations, whereas Bouncy Castle may not.</p> <p>The new registrar has the name "SunJCEWrapper" and can be configured like any other registrar. It can be disabled via the system property <code>org.apache.sshd.security.provider.SunJCEWrapper.enabled=false</code>. It is also</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apache/mina-sshd/blob/master/CHANGES.md";>org.apache.sshd:sshd-core's changelog</a>.</em></p> <blockquote> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.2.0.md";>Version 2.1.0 to 2.2.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.3.0.md";>Version 2.2.0 to 2.3.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.4.0.md";>Version 2.3.0 to 2.4.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.5.0.md";>Version 2.4.0 to 2.5.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.5.1.md";>Version 2.5.0 to 2.5.1</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.6.0.md";>Version 2.5.1 to 2.6.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.7.0.md";>Version 2.6.0 to 2.7.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.8.0.md";>Version 2.7.0 to 2.8.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.9.0.md";>Version 2.8.0 to 2.9.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.9.1.md";>Version 2.9.0 to 2.9.1</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.9.2.md";>Version 2.9.1 to 2.9.2</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.10.0.md";>Version 2.9.2 to 2.10.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.11.0.md";>Version 2.10.0 to 2.11.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.12.0.md";>Version 2.11.0 to 2.12.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.12.1.md";>Version 2.12.0 to 2.12.1</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.13.0.md";>Version 2.12.1 to 2.13.0</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.13.1.md";>Version 2.13.0 to 2.13.1</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.13.2.md";>Version 2.13.1 to 2.13.2</a></h1> <h1><a href="https://github.com/apache/mina-sshd/blob/master/docs/changes/2.14.0.md";>Version 2.13.2 to 2.14.0</a></h1> <h1>Planned for next version</h1> <h2>Bug Fixes</h2> <ul> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/618";>GH-618</a> Fix reading an <code>OpenSshCertificate</code> from a <code>Buffer</code></li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/626";>GH-626</a> Enable <code>Streaming.Async</code> for <code>ChannelDirectTcpip</code></li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/628";>GH-628</a> SFTP: fix reading directories with trailing blanks in the name</li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/636";>GH-636</a> Fix handling of unsupported key types in <code>known_hosts</code> file</li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/642";>GH-642</a> Do not use <code>SecureRandom.getInstanceString()</code> due to possible entropy starvation (regression in 2.14.0)</li> <li><a href="https://redirect.github.com/apache/mina-sshd/issues/654";>GH-654</a> Fix test dependency for assertj in <code>sshd-contrib</code></li> </ul> <h2>New Features</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apache/mina-sshd/commit/c651f7c307fc9b6dd7a734fc1f5830cc1640ca6e";><code>c651f7c</code></a> [maven-release-plugin] prepare release sshd-2.15.0</li> <li><a href="https://github.com/apache/mina-sshd/commit/28359914e032f6fe565beb3837e5ca5835266960";><code>2835991</code></a> Bump version to 2.15.0-SNAPSHOT</li> <li><a href="https://github.com/apache/mina-sshd/commit/909b5e27e24b473f3516607fd4d7654a62fd6a29";><code>909b5e2</code></a> Abstract revoked key handling in KnownHostsServerKeyVerifier</li> <li><a href="https://github.com/apache/mina-sshd/commit/11a9277500499030fecab6e3fe2c4a973e74cefc";><code>11a9277</code></a> Update documentation</li> <li><a href="https://github.com/apache/mina-sshd/commit/3427b2141bb02d69a1b156b1cff04d24399dab31";><code>3427b21</code></a> Bump Bouncy Castle 1.79 -> 1.80</li> <li><a href="https://github.com/apache/mina-sshd/commit/e59dd00abf5ddbdacd554e81fae6720386b44bcf";><code>e59dd00</code></a> <a href="https://redirect.github.com/apache/mina-sshd/issues/654";>GH-654</a>: sshd-contrib: use test scope for assertj dependency</li> <li><a href="https://github.com/apache/mina-sshd/commit/e5f805e8f6dfbc1595f251fac4bbc339c2ac64f7";><code>e5f805e</code></a> OpenSshmlKemTest: use alpine 3.21</li> <li><a href="https://github.com/apache/mina-sshd/commit/7b19f6b678a72bb1ac02a8a852ec301d6791024c";><code>7b19f6b</code></a> Update CHANGES.md</li> <li><a href="https://github.com/apache/mina-sshd/commit/fb21e1f67e9ec5749016b14d41e1beaf80a1246b";><code>fb21e1f</code></a> Merge pull request <a href="https://redirect.github.com/apache/mina-sshd/issues/639";>#639</a> from ianjoneill/f-ed25519-bc</li> <li><a href="https://github.com/apache/mina-sshd/commit/9c49609e58fb3a0376c0b3100cc7388dd0d1e268";><code>9c49609</code></a> Update docs</li> <li>Additional commits viewable in <a href="https://github.com/apache/mina-sshd/compare/sshd-0.8.0...sshd-2.15.0";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@maven.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
