From 95726cc7f9980e7f3d9dcb4fa7a610b527daab6f Mon Sep 17 00:00:00 2001 From: DGun Otto Date: Thu, 22 Feb 2024 18:36:18 +0800 Subject: [PATCH 01/10] Update PostgreSQL to silence CVE-2024-1597 warning (#2778) --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index a3f870e8..72ab7e3f 100644 --- a/pom.xml +++ b/pom.xml @@ -997,7 +997,7 @@ org.postgresql postgresql - 42.6.0 + 42.7.2 true From caf0d3f8ed01ad2ff17b84d8b95fd0b692ba3b38 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:40:56 +0100 Subject: [PATCH 02/10] Bump org.xerial:sqlite-jdbc from 3.42.0.0 to 3.44.0.0 (#2766) Bumps [org.xerial:sqlite-jdbc](https://github.com/xerial/sqlite-jdbc) from 3.42.0.0 to 3.44.0.0. - [Release notes](https://github.com/xerial/sqlite-jdbc/releases) - [Changelog](https://github.com/xerial/sqlite-jdbc/blob/master/CHANGELOG) - [Commits](https://github.com/xerial/sqlite-jdbc/compare/3.42.0.0...3.44.0.0) --- updated-dependencies: - dependency-name: org.xerial:sqlite-jdbc dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 72ab7e3f..95291b49 100644 --- a/pom.xml +++ b/pom.xml @@ -1048,7 +1048,7 @@ org.xerial sqlite-jdbc - 3.42.0.0 + 3.44.0.0 test From 72bbb4ebaa92ed6538dc1160ca427b12968a06d6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:41:57 +0100 Subject: [PATCH 03/10] Bump org.mariadb.jdbc:mariadb-java-client from 3.1.4 to 3.3.0 (#2765) Bumps [org.mariadb.jdbc:mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j) from 3.1.4 to 3.3.0. - [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases) - [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/master/CHANGELOG.md) - [Commits](https://github.com/mariadb-corporation/mariadb-connector-j/compare/3.1.4...3.3.0) --- updated-dependencies: - dependency-name: org.mariadb.jdbc:mariadb-java-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 95291b49..2aa9df05 100644 --- a/pom.xml +++ b/pom.xml @@ -692,7 +692,7 @@ org.mariadb.jdbc mariadb-java-client - 3.1.4 + 3.3.0 true From d5dbc7e5c797a12b518573efcd5084556a836ddb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:42:17 +0100 Subject: [PATCH 04/10] Bump org.checkerframework:checker-qual from 3.26.0 to 3.40.0 (#2764) Bumps [org.checkerframework:checker-qual](https://github.com/typetools/checker-framework) from 3.26.0 to 3.40.0. - [Release notes](https://github.com/typetools/checker-framework/releases) - [Changelog](https://github.com/typetools/checker-framework/blob/master/docs/CHANGELOG.md) - [Commits](https://github.com/typetools/checker-framework/compare/checker-framework-3.26.0...checker-framework-3.40.0) --- updated-dependencies: - dependency-name: org.checkerframework:checker-qual dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 2aa9df05..0ece3398 100644 --- a/pom.xml +++ b/pom.xml @@ -1040,7 +1040,7 @@ org.checkerframework checker-qual - 3.26.0 + 3.40.0 test From 93f1385c7afaa0b4b6c737b0bcaeb28868e1725c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:42:40 +0100 Subject: [PATCH 05/10] Bump com.mysql:mysql-connector-j from 8.0.33 to 8.2.0 (#2761) Bumps [com.mysql:mysql-connector-j](https://github.com/mysql/mysql-connector-j) from 8.0.33 to 8.2.0. - [Changelog](https://github.com/mysql/mysql-connector-j/blob/release/8.x/CHANGES) - [Commits](https://github.com/mysql/mysql-connector-j/compare/8.0.33...8.2.0) --- updated-dependencies: - dependency-name: com.mysql:mysql-connector-j dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 0ece3398..fcc6bdac 100644 --- a/pom.xml +++ b/pom.xml @@ -686,7 +686,7 @@ com.mysql mysql-connector-j - 8.0.33 + 8.2.0 true From 54bae76d27fefe62010435562963d34275e89bf4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:42:54 +0100 Subject: [PATCH 06/10] Bump org.jacoco:jacoco-maven-plugin from 0.8.8 to 0.8.11 (#2756) Bumps [org.jacoco:jacoco-maven-plugin](https://github.com/jacoco/jacoco) from 0.8.8 to 0.8.11. - [Release notes](https://github.com/jacoco/jacoco/releases) - [Commits](https://github.com/jacoco/jacoco/compare/v0.8.8...v0.8.11) --- updated-dependencies: - dependency-name: org.jacoco:jacoco-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index fcc6bdac..375971ee 100644 --- a/pom.xml +++ b/pom.xml @@ -212,7 +212,7 @@ org.jacoco jacoco-maven-plugin - 0.8.8 + 0.8.11 pre-unit-test From ad64370bf13d170750fae46b91606a309d22d56f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:43:07 +0100 Subject: [PATCH 07/10] Bump net.essentialsx:EssentialsX from 2.20.0 to 2.20.1 (#2737) Bumps [net.essentialsx:EssentialsX](https://github.com/EssentialsX/Essentials) from 2.20.0 to 2.20.1. - [Release notes](https://github.com/EssentialsX/Essentials/releases) - [Commits](https://github.com/EssentialsX/Essentials/compare/2.20.0...2.20.1) --- updated-dependencies: - dependency-name: net.essentialsx:EssentialsX dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 375971ee..7772602d 100644 --- a/pom.xml +++ b/pom.xml @@ -925,7 +925,7 @@ net.essentialsx EssentialsX - 2.20.0 + 2.20.1 provided From 9380efdd3d803c1fa302a472477d9b4ca41c8d8b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:43:17 +0100 Subject: [PATCH 08/10] Bump bcrypt from 0.9.0 to 0.10.2 (#2729) Bumps [bcrypt](https://github.com/patrickfav/bcrypt) from 0.9.0 to 0.10.2. - [Release notes](https://github.com/patrickfav/bcrypt/releases) - [Changelog](https://github.com/patrickfav/bcrypt/blob/main/CHANGELOG) - [Commits](https://github.com/patrickfav/bcrypt/compare/v0.9.0...v0.10.2) --- updated-dependencies: - dependency-name: at.favre.lib:bcrypt dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 7772602d..fd746b5b 100644 --- a/pom.xml +++ b/pom.xml @@ -975,7 +975,7 @@ at.favre.lib bcrypt - 0.9.0 + 0.10.2 true From a57382f269f5fb7cae2e47d3286881d0deea2505 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:43:48 +0100 Subject: [PATCH 09/10] Bump maven-enforcer-plugin from 3.1.0 to 3.2.1 (#2681) Bumps [maven-enforcer-plugin](https://github.com/apache/maven-enforcer) from 3.1.0 to 3.2.1. - [Release notes](https://github.com/apache/maven-enforcer/releases) - [Commits](https://github.com/apache/maven-enforcer/compare/enforcer-3.1.0...enforcer-3.2.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-enforcer-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index fd746b5b..5dc76ccd 100644 --- a/pom.xml +++ b/pom.xml @@ -164,7 +164,7 @@ org.apache.maven.plugins maven-enforcer-plugin - 3.1.0 + 3.2.1 enforce-environment From f56a23f4b728494a0af01bbd760de925cdbd02ac Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:44:00 +0100 Subject: [PATCH 10/10] Bump maven-install-plugin from 3.0.1 to 3.1.0 (#2643) Bumps [maven-install-plugin](https://github.com/apache/maven-install-plugin) from 3.0.1 to 3.1.0. - [Release notes](https://github.com/apache/maven-install-plugin/releases) - [Commits](https://github.com/apache/maven-install-plugin/compare/maven-install-plugin-3.0.1...maven-install-plugin-3.1.0) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-install-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 5dc76ccd..85442ead 100644 --- a/pom.xml +++ b/pom.xml @@ -467,7 +467,7 @@ org.apache.maven.plugins maven-install-plugin - 3.0.1 + 3.1.0