Skip to content

Commit

Permalink
merge: #647 #649 #652
Browse files Browse the repository at this point in the history
647: build(deps): Bump hashicorp/vault-action from 2.4.3 to 2.5.0 r=remcowesterhoud a=dependabot[bot]

Bumps [hashicorp/vault-action](https://github.com/hashicorp/vault-action) from 2.4.3 to 2.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/hashicorp/vault-action/releases">hashicorp/vault-action's releases</a>.</em></p>
<blockquote>
<h2>v2.5.0</h2>
<p>Features:</p>
<ul>
<li>Adds ability to automatically decode secrets from base64, hex, and utf8 encodings. <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/408">GH-408</a></li>
</ul>
<p>Improvements:</p>
<ul>
<li>Improves error messages for Vault authentication failures <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/409">GH-409</a></li>
<li>bump jest from 28.1.1 to 29.3.1 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/397">GH-397</a></li>
<li>bump <code>`@​types/jest</code>` from 28.1.3 to 29.2.6 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/397">GH-397</a>, <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/413">GH-413</a></li>
<li>bump jsrsasign from 10.5.27 to 10.6.1 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/401">GH-401</a></li>
<li>bump json5 from 2.2.1 to 2.2.3 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/404">GH-404</a></li>
<li>bump minimatch from 3.0.4 to 3.1.2 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/410">GH-410</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/hashicorp/vault-action/blob/main/CHANGELOG.md">hashicorp/vault-action's changelog</a>.</em></p>
<blockquote>
<h2>2.5.0 (Jan 26th, 2023)</h2>
<p>Features:</p>
<ul>
<li>Adds ability to automatically decode secrets from base64, hex, and utf8 encodings. <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/408">GH-408</a></li>
</ul>
<p>Improvements:</p>
<ul>
<li>Improves error messages for Vault authentication failures <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/409">GH-409</a></li>
<li>bump jest from 28.1.1 to 29.3.1 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/397">GH-397</a></li>
<li>bump <code>`@​types/jest</code>` from 28.1.3 to 29.2.6 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/397">GH-397</a>, <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/413">GH-413</a></li>
<li>bump jsrsasign from 10.5.27 to 10.6.1 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/401">GH-401</a></li>
<li>bump json5 from 2.2.1 to 2.2.3 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/404">GH-404</a></li>
<li>bump minimatch from 3.0.4 to 3.1.2 <a href="https://github-redirect.dependabot.com/hashicorp/vault-action/pull/410">GH-410</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/hashicorp/vault-action/commit/130d1f5f4fe645bb6c83e4225c04d64cfb62de6e"><code>130d1f5</code></a> Update to v2.5.0 (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/419">#419</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/d34ee148bcf6ff48f1c7d0bff8b5647f607e4c96"><code>d34ee14</code></a> Removes unused devDependencies from package.json (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/416">#416</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/77bab83f42b86821dde147c13046e13536178143"><code>77bab83</code></a> chore(deps-dev): bump semantic-release from 19.0.5 to 20.0.4 (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/415">#415</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/5e3dd4f01b50802855b3c01a87600793c8eb2806"><code>5e3dd4f</code></a> chore(deps-dev): bump <code>`@​types/jest</code>` from 29.2.2 to 29.2.6 (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/413">#413</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/7318a98db77eea034af458f758b9470f9f18675e"><code>7318a98</code></a> print vault error message on authentication failure (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/409">#409</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/b08bc4993deb620a36c02749bce0caa59c06bbed"><code>b08bc49</code></a> chore(deps): bump minimatch from 3.0.4 to 3.1.2 (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/410">#410</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/579f9fd8c2e833fa2aadd5bf4dd84025caccf379"><code>579f9fd</code></a> chore(deps): bump json5 from 2.2.1 to 2.2.3 (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/404">#404</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/1226471c040394ca00763cfc3d6f55c91da0f71e"><code>1226471</code></a> chore(deps): bump jsrsasign from 10.5.27 to 10.6.1 (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/401">#401</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/fdaeeffa26385fc205c8bd2bb22dc6c9d5732409"><code>fdaeeff</code></a> chore(deps-dev): bump jest and <code>`@​types/jest</code>` (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/397">#397</a>)</li>
<li><a href="https://github.com/hashicorp/vault-action/commit/0f409d4023fcab6c346cc93f58f1bafc39829af0"><code>0f409d4</code></a> Add Decoding to Secrets (<a href="https://github-redirect.dependabot.com/hashicorp/vault-action/issues/408">#408</a>)</li>
<li>See full diff in <a href="https://github.com/hashicorp/vault-action/compare/v2.4.3...v2.5.0">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault-action&package-manager=github_actions&previous-version=2.4.3&new-version=2.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

649: build(deps): Bump jackson-bom from 2.14.1 to 2.14.2 r=remcowesterhoud a=dependabot[bot]

Bumps [jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.14.1 to 2.14.2.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/FasterXML/jackson-bom/commit/6a381633a6698ac53aea25967fa0607870635fc6"><code>6a38163</code></a> [maven-release-plugin] prepare release jackson-bom-2.14.2</li>
<li><a href="https://github.com/FasterXML/jackson-bom/commit/6579bfc3a7c13abb2787bcabececff1a37eda6be"><code>6579bfc</code></a> Prepare for 2.14.2 release</li>
<li><a href="https://github.com/FasterXML/jackson-bom/commit/380ca7696dc58d3e63b791df89b6770e7a7792bf"><code>380ca76</code></a> Back to snapshot deps</li>
<li><a href="https://github.com/FasterXML/jackson-bom/commit/ce91dcc91e22767c34a8e710a1d03fab2e8d06f8"><code>ce91dcc</code></a> [maven-release-plugin] prepare for next development iteration</li>
<li>See full diff in <a href="https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.14.1...jackson-bom-2.14.2">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.fasterxml.jackson:jackson-bom&package-manager=maven&previous-version=2.14.1&new-version=2.14.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

652: build(deps): Bump maven-enforcer-plugin from 3.1.0 to 3.2.1 r=remcowesterhoud a=dependabot[bot]

Bumps [maven-enforcer-plugin](https://github.com/apache/maven-enforcer) from 3.1.0 to 3.2.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/apache/maven-enforcer/releases">maven-enforcer-plugin's releases</a>.</em></p>
<blockquote>
<h2>3.2.1</h2>
<!-- raw HTML omitted -->
<h2>🚨 Removed</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-435">[MENFORCER-435]</a> - Remove not needed maven-dependency-tree and maven-compat (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/202">#202</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li>remove specific IDE m2e files (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/192">#192</a>) <a href="https://github.com/olamy"><code>`@​olamy</code></a></li>`
</ul>
<h2>🚀 New features and improvements</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-463">[MENFORCER-463]</a> - Change success message from executed to passed (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/242">#242</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-415">[MENFORCER-415]</a> - Move error message to MojoException (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/239">#239</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-460">[MENFORCER-460]</a> - Deprecate display-info mojo (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/237">#237</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-458">[MENFORCER-458]</a> - Move Build-in rules to new API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/236">#236</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-458">[MENFORCER-458]</a> - Move Build-in rules to new API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/233">#233</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-458">[MENFORCER-458]</a> - Move Require Java, Maven Version to new API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/232">#232</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-458">[MENFORCER-458]</a> - Move Require Property,Environment to new API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/231">#231</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-458">[MENFORCER-458]</a> - Move Require*Checksum to new API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/230">#230</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-458">[MENFORCER-458]</a> - Move RequireFiles* to new API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/228">#228</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-458">[MENFORCER-458]</a> - Move RequireOS to new API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/227">#227</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-456">[MENFORCER-456]</a> - New Enforcer API - RuleConfigProvider (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/220">#220</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-444">[MENFORCER-444]</a> - Improve error message for failed version rules (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/218">#218</a>) <a href="https://github.com/kwin"><code>`@​kwin</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-455">[MENFORCER-455]</a> - New Enforcer API (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/216">#216</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-445">[MENFORCER-445]</a> - Include JAVA_HOME location in the Java rule failure messages (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/213">#213</a>) <a href="https://github.com/psiroky"><code>`@​psiroky</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-454">[MENFORCER-454]</a> - Deprecate 'rules' property and introduce 'enforcer.rules' as a replacement (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/211">#211</a>) <a href="https://github.com/psiroky"><code>`@​psiroky</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-431">[MENFORCER-431]</a> - Introduce option to skip specific rules via custom property (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/205">#205</a>) <a href="https://github.com/psiroky"><code>`@​psiroky</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-453">[MENFORCER-453]</a> - Mange rules configuration by plugin (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/207">#207</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-435">[MENFORCER-435]</a> - Replacing maven-compat and maven-dependency-tree usage with Resolver (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/198">#198</a>) <a href="https://github.com/ajarmoniuk"><code>`@​ajarmoniuk</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-440">[MENFORCER-440]</a> - Allow 8 as JDK version for requireJavaVersion (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/195">#195</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-411">[MENFORCER-411]</a> - DependencyConvergence takes include/exclude parameters to filter errors (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/136">#136</a>) <a href="https://github.com/fdfea"><code>`@​fdfea</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-427">[MENFORCER-427]</a> - New rule to ban dynamic versions (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/187">#187</a>) <a href="https://github.com/kwin"><code>`@​kwin</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-430">[MENFORCER-430]</a> - Allow one of many files in RequireFiles rules to pass (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/183">#183</a>) <a href="https://github.com/raupachz"><code>`@​raupachz</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-423">[MENFORCER-423]</a> - Add rule to enforce an explicit dependency scope (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/179">#179</a>) <a href="https://github.com/kwin"><code>`@​kwin</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-422">[MENFORCER-422]</a> - Added externalRules rule (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/180">#180</a>) <a href="https://github.com/gastaldi"><code>`@​gastaldi</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-397">[MENFORCER-397]</a> - allow no rules (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/178">#178</a>) <a href="https://github.com/raupachz"><code>`@​raupachz</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-398">[MENFORCER-398]</a> - show rules processed (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/175">#175</a>) <a href="https://github.com/raupachz"><code>`@​raupachz</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-424">[MENFORCER-424]</a> - add enforcer rule which bans scope from (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/169">#169</a>) <a href="https://github.com/kwin"><code>`@​kwin</code></a></li>`
</ul>
<h2>🐛 Bug Fixes</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-462">[MENFORCER-462]</a> - Execute ReactorModuleConvergence only once (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/241">#241</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-461">[MENFORCER-461]</a> - Fix NPE in RequirePluginVersions (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/240">#240</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-459">[MENFORCER-459]</a> - Avoid NullPointerException where there is no plugins (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/193">#193</a>) <a href="https://github.com/turbanoff"><code>`@​turbanoff</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-434">[MENFORCER-434]</a> - Regression bannedDependencies - matching with not existing versions (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/223">#223</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-378">[MENFORCER-378]</a> - Regression for non existing optional dependency (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/222">#222</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-407">[MENFORCER-407]</a> - Regression for dependencyConvergence - transitive provided (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/221">#221</a>) <a href="https://github.com/slawekjaranowski"><code>`@​slawekjaranowski</code></a></li>`
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-457">[MENFORCER-457]</a> - Bump assertj-core from 3.24.1 to 3.24.2 (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/235">#235</a>) <a href="https://github.com/dependabot"><code>`@​dependabot</code></a></li>`
<li><a href="https://issues.apache.org/jira/browse/MENFORCER-443">[MENFORCER-443]</a> - Bump junit-bom from 5.9.1 to 5.9.2 (<a href="https://github-redirect.dependabot.com/apache/maven-enforcer/pull/229">#229</a>) <a href="https://github.com/dependabot"><code>`@​dependabot</code></a></li>`
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-enforcer/commit/4244e6aca226e1a5e1a72c8401d306b6d4ee3c7f"><code>4244e6a</code></a> [maven-release-plugin] prepare release enforcer-3.2.1</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/65d68a310fde03abb2609fe27bb75b70d4a63cf3"><code>65d68a3</code></a> [MENFORCER-464] Refresh site descriptors</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/73fef5a514530b0307cc3d81f67f7266b92c7d4d"><code>73fef5a</code></a> [MENFORCER-463] Change success message from executed to passed</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/769da0af3757c0756165150f7136f063e1f01723"><code>769da0a</code></a> [MENFORCER-462] Execute ReactorModuleConvergence only once</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/3e12af90523e9a9a795a0876aca962992b28c217"><code>3e12af9</code></a> [MENFORCER-461] Fix NPE in RequirePluginVersions</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/86c0cc582a248bb26bfb9c1f68051b0c08227777"><code>86c0cc5</code></a> [maven-release-plugin] prepare for next development iteration</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/19370676cb86cc192921210254f523031a49e44b"><code>1937067</code></a> [maven-release-plugin] prepare release enforcer-3.2.0</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/84e0363287b01e1817db72fc5c3f3ce8f77a0e5c"><code>84e0363</code></a> [MENFORCER-440] Fix pattern for Java 8 version</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/4bbf7cd116b09a68fb2de9ca43a1b4e981d0b385"><code>4bbf7cd</code></a> [MENFORCER-415] Move error message to MojoException</li>
<li><a href="https://github.com/apache/maven-enforcer/commit/26697b16741b0e3b488ec322eb2fc0dc2a8da9ed"><code>26697b1</code></a> [MENFORCER-450] Code cleanup</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-enforcer/compare/enforcer-3.1.0...enforcer-3.2.1">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-enforcer-plugin&package-manager=maven&previous-version=3.1.0&new-version=3.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting ``@dependabot` rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
zeebe-bors-camunda[bot] and dependabot[bot] authored Feb 1, 2023
4 parents c2c000f + 7456f8c + e3cc928 + 62a4f84 commit a6951ea
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 3 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/deploy-artifact.yml
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@ jobs:

- name: Import Secrets
id: secrets
uses: hashicorp/vault-action@v2.4.3
uses: hashicorp/vault-action@v2.5.0
with:
url: ${{ secrets.VAULT_ADDR }}
method: approle
Expand Down
4 changes: 2 additions & 2 deletions pom.xml
Original file line number Diff line number Diff line change
Expand Up @@ -58,7 +58,7 @@
<dependency.findbugs.version>3.0.2</dependency.findbugs.version>
<dependency.guava.version>31.1-jre</dependency.guava.version>
<dependency.immutables.version>2.9.3</dependency.immutables.version>
<dependency.jackson.version>2.14.1</dependency.jackson.version>
<dependency.jackson.version>2.14.2</dependency.jackson.version>
<dependency.javax.version>1.3.2</dependency.javax.version>
<dependency.jna.version>5.13.0</dependency.jna.version>
<dependency.junit.version>5.9.2</dependency.junit.version>
Expand Down Expand Up @@ -92,7 +92,7 @@
<plugin.version.jacoco>0.8.8</plugin.version.jacoco>
<plugin.version.javadoc>3.4.1</plugin.version.javadoc>
<plugin.version.license>4.1</plugin.version.license>
<plugin.version.maven-enforcer>3.1.0</plugin.version.maven-enforcer>
<plugin.version.maven-enforcer>3.2.1</plugin.version.maven-enforcer>
<plugin.version.os-maven>1.7.1</plugin.version.os-maven>
<plugin.version.revapi>0.15.0</plugin.version.revapi>
<plugin.version.spotless>2.30.0</plugin.version.spotless>
Expand Down

0 comments on commit a6951ea

Please sign in to comment.