New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.5 #8374
Open
renovate
wants to merge
1
commit into
4.5.x
Choose a base branch
from
renovate/spotbugs
base: 4.5.x
Could not load branches
Branch not found: {{ refName }}
Could not load tags
Nothing to show
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
November 24, 2022 13:31
dee83c2
to
244fdc5
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
December 10, 2022 06:52
244fdc5
to
4d60279
Compare
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Dec 17, 2022
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Dec 17, 2022
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
December 28, 2022 09:04
4d60279
to
146b9c4
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
January 6, 2023 09:10
146b9c4
to
888aed7
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
2 times, most recently
from
January 24, 2023 09:28
210144b
to
a5558fc
Compare
❌ GraalVM CE CI 17 dev failed: |
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Jan 25, 2023
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Jan 27, 2023
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
February 11, 2023 07:03
a5558fc
to
aa318cb
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
February 24, 2023 13:28
aa318cb
to
50ffcd1
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
March 8, 2023 11:48
50ffcd1
to
4242165
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
2 times, most recently
from
April 4, 2023 09:42
f23a1c1
to
5e220fa
Compare
Kudos, SonarCloud Quality Gate passed! |
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
April 17, 2023 09:58
5e220fa
to
c48ae44
Compare
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Apr 28, 2023
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
May 11, 2023 09:24
c48ae44
to
ede60ae
Compare
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
May 22, 2023
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
May 24, 2023
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
May 26, 2023 06:16
ede60ae
to
8875e69
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
June 3, 2023 14:01
8875e69
to
1c5abc6
Compare
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Jun 6, 2023
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Jun 6, 2023
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Jun 7, 2023
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.7.3
Jun 20, 2023
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
June 25, 2023 13:43
1c5abc6
to
1fef6db
Compare
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.1
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.2
Nov 29, 2023
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
November 29, 2023 15:43
d60bcaf
to
7a85b59
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
December 13, 2023 09:19
7a85b59
to
557fc56
Compare
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.2
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Dec 13, 2023
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
January 5, 2024 14:54
557fc56
to
4fbae4d
Compare
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Jan 5, 2024
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Jan 8, 2024
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
January 9, 2024 08:14
4fbae4d
to
8695eee
Compare
Quality Gate passedKudos, no new issues were introduced! 0 New issues |
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Jan 9, 2024
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Jan 23, 2024
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Jan 30, 2024
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Feb 9, 2024
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Feb 9, 2024
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Feb 13, 2024
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Feb 24, 2024
renovate
bot
changed the title
Update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
Feb 24, 2024
renovate
bot
force-pushed
the
renovate/spotbugs
branch
2 times, most recently
from
March 19, 2024 09:54
e1896d5
to
64269b4
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
April 7, 2024 19:03
64269b4
to
8f8e7c2
Compare
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.3
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.4
Apr 7, 2024
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
April 11, 2024 19:37
8f8e7c2
to
07909ed
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
April 21, 2024 08:20
07909ed
to
2615184
Compare
renovate
bot
force-pushed
the
renovate/spotbugs
branch
from
May 4, 2024 01:53
2615184
to
8135c26
Compare
renovate
bot
changed the title
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.4
fix(deps): update dependency com.github.spotbugs:spotbugs-annotations to v4.8.5
May 4, 2024
Quality Gate passedIssues Measures |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
4.7.1
->4.8.5
Release Notes
spotbugs/spotbugs (com.github.spotbugs:spotbugs-annotations)
v4.8.5
Compare Source
Fixed
SING_SINGLETON_GETTER_NOT_SYNCHRONIZED
with eager instances (#2932)SE_BAD_FIELD
for record fields ([#2935]https://github.com/spotbugs/spotbugs/issues/2935)v4.8.4
Compare Source
Fixed
executionSuccessful
flag in SARIF report being set to false when bugs were found (#2116)exitSignalName
toexitCodeDescription
(#2739)Added
MultipleInstantiationsOfSingletons
and introduced new bug types:SING_SINGLETON_HAS_NONPRIVATE_CONSTRUCTOR
is reported in case of a non-private constructor,SING_SINGLETON_IMPLEMENTS_CLONEABLE
is reported in case of a class directly implementing theCloneable
interface,SING_SINGLETON_INDIRECTLY_IMPLEMENTS_CLONEABLE
is reported when a class indirectly implements theCloneable
interface,SING_SINGLETON_IMPLEMENTS_CLONE_METHOD
is reported when a class does not implement theCloneable
interface, but has aclone()
method,SING_SINGLETON_IMPLEMENTS_SERIALIZABLE
is reported when a class directly or indirectly implements theSerializable
interface andSING_SINGLETON_GETTER_NOT_SYNCHRONIZED
is reported when the instance-getter method of the singleton class is not synchronized.(See SEI CERT MSC07-J)
FindOverridableMethodCall
detector with new bug type:MC_OVERRIDABLE_METHOD_CALL_IN_READ_OBJECT
. It's reported when an overridable method is called fromreadObject()
, according to SEI CERT rule SER09-J. Do not invoke overridable methods from the readObject() method.Changed
Build
v4.8.3
Compare Source
Fixed
Changed
v4.8.2
Compare Source
Fixed
Added
System.getenv()
calls, where the corresponding Java property could be used (See ENV02-J).Build
v4.8.1
Compare Source
Fixed
PA_PUBLIC_MUTABLE_OBJECT_ATTRIBUTE
bug ([#2652])Build
v4.8.0
Compare Source
Changed
Fixed
RandomOnceSubDetector
to not report whendoubles
,ints
, orlongs
are called on a newRandom
orSecureRandom
(#2370)TestASM
throwing error during analysis, because it doesn't note that it reports bugs.Added
classAnnotationNames
). For example, use like in an excludeFilter.xml to ignore classes generated by the Immutable framework. This ignores all class, method or field bugs in classes with that annotation.FindAssertionsWithSideEffects
detecting bugASSERTION_WITH_SIDE_EFFECT
andASSERTION_WITH_SIDE_EFFECT_METHOD
in case of assertions which may have side effects (See EXP06-J. Expressions used in assertions must not produce side effects)PA_PUBLIC_PRIMITIVE_ATTRIBUTE
,PA_PUBLIC_ARRAY_ATTRIBUTE
andPA_PUBLIC_MUTABLE_OBJECT_ATTRIBUTE
to warn for public attributes which are written by the methods of the class. This rule is loosely based on the SEI CERT rule OBJ01-J Limit accessibility of fields. (#OBJ01-J)SerializableIdiom
detector with new bug type:SE_PREVENT_EXT_OBJ_OVERWRITE
. It's reported in case of thereadExternal()
method allows any caller to reset any value of an objectFindVulnerableSecurityCheckMethods
for new bug typeVSC_VULNERABLE_SECURITY_CHECK_METHODS
. This bug is reported whenever a non-final and non-private method of a non-final class performs a security check using thejava.lang.SecurityManager
. (See [SEI CERT MET03-J] (https://wiki.sei.cmu.edu/confluence/display/java/MET03-J.+Methods+that+perform+a+security+check+must+be+declared+private+or+final))SynchronizationOnSharedBuiltinConstant
to detectDL_SYNCHRONIZATION_ON_INTERNED_STRING
(#2266)FindArgumentAssertions
detecting bugASSERTION_OF_ARGUMENTS
in case of validation of arguments of public functions using assertions (See MET01-J. Never use assertions to validate method arguments)CT_CONSTRUCTOR_THROW
for detecting constructors that throw exceptions.DontReusePublicIdentifiers
for new bug typePI_DO_NOT_REUSE_PUBLIC_IDENTIFIERS
. This bug is reported whenever a new class, interface, field, method or variable is created reusing an identifier from the Java Standard Library . (See SEI CERT rule DCL01-J)Security
Build
v4.7.3
Compare Source
Fixed
DontUseFloatsAsLoopCounters
to prevent false positives. (#2126)4.7.2
caused by (#2141)UncallableMethodOfAnonymousClass
to not report unused methods of method-local enumerations and records (#2120)FindSqlInjection
to detect bugSQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE SQL
with high priority in case of unsafe appends also in Java 11 and above (#2183)StringConcatenation
to detect bugSBSC_USE_STRINGBUFFER_CONCATENATION
also in Java 11 and above (#2182)OpcodeStackDetector
to to handle propagation of taints properly in case of string concatenation in Java 9 and above (#2195)2.19.0
ViewCFG
to generate file names that are also valid on Windows (#2209)v4.7.2
Compare Source
Fixed
2.0.0
1.4.0
2.18.0
11.4
(#2160)SA_FIELD_SELF_ASSIGNMENT
is now reported from nested classes as well (#2142)EI_EXPOSE_REP
thrown in case of fields initialized by theof
orcopyOf
method of aList
,Map
orSet
(#1771)dup_x2
is used to swap the reference and wide-value (double, long) in the stack (#2146)Configuration
📅 Schedule: Branch creation - "after 10pm" in timezone Europe/Prague, Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.