Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump spotbugs from 4.5.1 to 4.5.2 #379

Merged
merged 1 commit into from Dec 14, 2021
Merged

Bump spotbugs from 4.5.1 to 4.5.2 #379

merged 1 commit into from Dec 14, 2021

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Dec 14, 2021

Bumps spotbugs from 4.5.1 to 4.5.2.

Release notes

Sourced from spotbugs's releases.

SpotBugs 4.5.2

CHANGELOG

Security

Fixed

CHECKSUM

file checksum (sha256)
spotbugs-4.5.2-javadoc.jar d12b874128f9d6b3467577d86c34581ea99840e920b318c75cc0c49e34ebd5f3
spotbugs-4.5.2-sources.jar 653bf298c0e8b7d366bbe64c7d5557f0aad7a65cf861f3de752ed0fb810702d2
spotbugs-4.5.2.tgz e9c8c945d16a4dd1b3552b5296e0df8bba70c3ace95b20bc2939a75f2e3bee3e
spotbugs-4.5.2.zip 0467dc71b24b61bfda7dfaec3df96b5095d526b99b034cad9d068ee026f4cbe3
spotbugs-annotations-4.5.2-javadoc.jar 1ed3f98f0d0efe3309b58edf163e6b5e5b1d0088c0246121850aa8344425911f
spotbugs-annotations-4.5.2-sources.jar b338136e3e82d585348cde58a8fe3a678e16f51a35c31c1463e05fefef557aad
spotbugs-annotations.jar f6fbf3e13a6c6862e19677a053598fac3cd7f2f6fde726a6765bf83101aa911f
spotbugs-ant-4.5.2-javadoc.jar 0f575c9fd20928faa13f826ef1f21ba6cb5bee1f4c50f4a09a8b65ef488dac52
spotbugs-ant-4.5.2-sources.jar 06f19afbb2fd63e554d1588328feea5aabe0ea4c104191986de03ba1e2f518cb
spotbugs-ant.jar e31cbd498a93ac92d19658bf45ca3a973b63e8932efca8da1cfd530ec9e547b3
spotbugs.jar 7a4c753d36114f480f63c91b538d0548787827bdefced006fa57eb423095e25a
test-harness-4.5.2-javadoc.jar 1aba8c6a4ada5b82c268ecc8fee6db154c0a788b8e42ac130fe6ea1398bc4804
test-harness-4.5.2-sources.jar 2c1f5ef929453f3b682c7eb7c1e22db3082b5f74c5a5be439be5dc31dd7a31aa
test-harness-4.5.2.jar 45ca0e944ee5704318d79f67815cde7ca5f7fb22814e325d00e2d25d9b552659
test-harness-core-4.5.2-javadoc.jar 88b2470f4ebcc4d10ccc13ee101b951208f8389963919d407c49cda451e5555a
test-harness-core-4.5.2-sources.jar f320f5eb4069e9686b760b2a6a0760989753225f9e9ce1226e3258ec64795d8a
test-harness-core-4.5.2.jar fd1a0c06a5eaff50ed0953d42fb7d69a41031c6a6630ad5e47c38a9f0eaca285
test-harness-jupiter-4.5.2-javadoc.jar d7afde7e639f3ec3737941b68118d4877c819274385f0bf4d62d9aac5549a9ba
test-harness-jupiter-4.5.2-sources.jar 210353a57016e26b1a654d936a15f039613fa1ac532d485c1b1d03902f6c6315
test-harness-jupiter-4.5.2.jar 18095fec31b85981ecaafdef86ca9ae1e9588e1b9bc6d209f82829cf9d0c13f4
Changelog

Sourced from spotbugs's changelog.

4.5.2 - 2021-12-13

Security

Fixed

  • Updated RV_01_TO_INT to handle float and long checks (#1518)
Commits
  • 0c8b4d1 Update CHANGELOG.md
  • 94d81f1 docs: fix category in the CHANGELOG
  • f29e292 Fixed typo in the date
  • d46acbf build(deps): bump log4j-slf4j18-impl from 2.15.0 to 2.16.0
  • ba7eb96 Release 4.5.2 to address CVE-2021-44228
  • c84b263 build(deps): bump log4j-slf4j18-impl from 2.14.1 to 2.15.0
  • 22fba92 fix: updated RV_01_TO_INT to include float and long (#1851)
  • 1f8f6d0 build(deps): bump com.github.spotbugs from 5.0.1 to 5.0.2 (#1860)
  • bef25f0 build(deps): bump com.github.spotbugs from 5.0.0-rc.1 to 5.0.1
  • 8023af6 prepare for the next development
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump spotbugs from 4.5.1 to 4.5.2
76b0f2c 
Bumps [spotbugs](https://github.com/spotbugs/spotbugs) from 4.5.1 to 4.5.2.
- [Release notes](https://github.com/spotbugs/spotbugs/releases)
- [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md)
- [Commits](spotbugs/spotbugs@4.5.1...4.5.2)

---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 14, 2021
@hazendaz hazendaz self-assigned this Dec 14, 2021
@hazendaz hazendaz merged commit 39c92ba into spotbugs Dec 14, 2021
@dependabot dependabot bot deleted the dependabot/maven/com.github.spotbugs-spotbugs-4.5.2 branch December 14, 2021 21:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@hazendaz hazendaz

Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@hazendaz