-
Notifications
You must be signed in to change notification settings - Fork 157
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
DAT-15456 Possible vulnerability in extensions repository's workflows #514
Commits on Jul 28, 2023
-
chore(pom.xml): update liquibase-hibernate6 version from 0-SNAPSHOT t…
…o 4.23.1-SNAPSHOT for compatibility with Hibernate 6.1.7.Final chore(pom.xml): update liquibase.version from 0-SNAPSHOT to 4.23.0 for improved stability and bug fixes chore(pom.xml): update maven-release-plugin version from 3.0.1 to 3.0.1 for compatibility with the latest Maven release plugin feat(pom.xml): add maven-jar-plugin configuration to include manifest entries for Liquibase version and project information feat(pom.xml): add nexus-staging-maven-plugin configuration for deployment to Sonatype Nexus repository feat(pom.xml): add maven-shade-plugin configuration for creating an uber-jar with shaded dependencies feat(pom.xml): add versions-maven-plugin configuration to generate backup POMs during version updates feat(pom.xml): add maven-release-plugin configuration to include a custom SCM comment prefix during releases feat(pom.xml): add distributionManagement configuration for deployment to Sonatype Nexus repository feat(pom.xml): add coverage profile with jacoco-maven-plugin configuration for code coverage reporting in CI environment feat(pom.xml): add release profile with maven-source-plugin, maven-javadoc-plugin, and copy-rename-maven-plugin configurations for generating sources, javadocs, and renaming the POM during release
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 43dc66c - Browse repository at this point
Copy the full SHA 43dc66cView commit details -
chore(pom.xml): add copy-rename-maven-plugin version 1.0.1 to depende…
…ncies The copy-rename-maven-plugin is added as a dependency with version 1.0.1 to enable renaming and copying files during the build process.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 8caf61b - Browse repository at this point
Copy the full SHA 8caf61bView commit details -
chore(pom.xml): remove unused maven-source-plugin
The maven-source-plugin was removed as it was not being used in the project. This helps to reduce unnecessary dependencies and improve build time.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 7cd459c - Browse repository at this point
Copy the full SHA 7cd459cView commit details -
chore(test.yml): update liquibase/build-logic action to version v0.3.…
…3 for improved functionality and bug fixes
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 6dd57b8 - Browse repository at this point
Copy the full SHA 6dd57b8View commit details -
chore(pom.xml): add maven-enforcer-plugin to enforce Java version 1.8…
… during compile phase
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for db9a57a - Browse repository at this point
Copy the full SHA db9a57aView commit details -
chore(pom.xml): set Maven compiler target and source to 1.8 for compa…
…tibility with Java 8 chore(pom.xml): update Hibernate version to 6.1.7.Final chore(pom.xml): update Spring version to 6.0.11
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 52f022d - Browse repository at this point
Copy the full SHA 52f022dView commit details -
fix(pom.xml): downgrade spring.version from 6.0.11 to 6.0.10 to resol…
…ve compatibility issues
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 808fd3c - Browse repository at this point
Copy the full SHA 808fd3cView commit details -
chore(pom.xml): update spring.version from 6.0.10 to 6.0.11 for compa…
…tibility and bug fixes feat(pom.xml): add dependencies for JUnit Jupiter (junit-jupiter-api, junit-jupiter-engine, junit-jupiter-params) for improved testing capabilities feat(pom.xml): update junit version from 4.13.2 to 5.9.3 for compatibility and new features feat(pom.xml): update mockito-core version from 4.11.0 to 4.8.0 for compatibility and bug fixes feat(pom.xml): add mockito-junit-jupiter dependency for integration of Mockito with JUnit Jupiter
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for f952e01 - Browse repository at this point
Copy the full SHA f952e01View commit details -
fix(pom.xml): revert hamcrest version from 2.2 to 1.3 to resolve comp…
…atibility issues with existing tests
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 8f7b817 - Browse repository at this point
Copy the full SHA 8f7b817View commit details -
chore(pom.xml): update hamcrest dependency to version 1.3 for testing…
… purposes
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 0ca9dca - Browse repository at this point
Copy the full SHA 0ca9dcaView commit details -
chore(pom.xml): update maven-compiler-plugin configuration
- Remove the <release>17</release> and <optimize>true</optimize> configuration options - Add <compilerArgs> with <arg>-Xlint:all</arg> to enable all compiler warnings - Add <showWarnings>true</showWarnings> to display compiler warnings - Add <showDeprecation>true</showDeprecation> to display deprecation warnings
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for a71097f - Browse repository at this point
Copy the full SHA a71097fView commit details -
chore(pom.xml): remove unused dependencies and update gmavenplus-plug…
…in version feat(pom.xml): update junit dependency version to 4.13.2 for testing
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 0cdade9 - Browse repository at this point
Copy the full SHA 0cdade9View commit details -
chore(pom.xml): add dependency on groovy-all version 3.0.18 with excl…
…usion of groovy-testng to resolve test failures
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for d1b55d7 - Browse repository at this point
Copy the full SHA d1b55d7View commit details -
chore(pom.xml): update liquibase-test-harness and spock-core dependen…
…cies The liquibase-test-harness dependency has been updated from version 1.0.5 to version 1.0.9. This update is necessary to ensure compatibility with the latest changes in the test harness. The spock-core dependency has been updated from version 2.0-groovy-3.0 to version 2.4-M1-groovy-3.0. This update includes bug fixes and improvements in the Spock testing framework. These updates will enhance the testing capabilities of the project and ensure compatibility with the latest versions of the dependencies.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 36bd496 - Browse repository at this point
Copy the full SHA 36bd496View commit details -
chore(pom.xml): update dependencies for testing framework
The following changes were made to the pom.xml file: - Added dependencies for Mockito testing framework (mockito-core and mockito-junit-jupiter) - Added dependencies for JUnit Jupiter testing framework (junit-jupiter-api, junit-jupiter-engine, and junit-jupiter-params) - Updated versions of Jupiter dependencies to 5.9.3 - Updated version of Mockito Core to 4.11.0 - Updated version of Mockito JUnit Jupiter to 4.8.0
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 0b4282d - Browse repository at this point
Copy the full SHA 0b4282dView commit details -
chore(pom.xml): downgrade jupiter.version from 5.9.3 to 5.7.2 to reso…
…lve compatibility issues with other dependencies
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 6f02634 - Browse repository at this point
Copy the full SHA 6f02634View commit details -
chore(pom.xml): downgrade jupiter.version from 5.7.2 to 5.7.0 to reso…
…lve compatibility issues with other dependencies
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for ee55b27 - Browse repository at this point
Copy the full SHA ee55b27View commit details -
chore(pom.xml): update Jupiter version from 5.7.0 to 5.9.3 to use the…
… latest features and bug fixes chore(pom.xml): remove JUnit 4.13.2 dependency as it is no longer needed
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 376d27d - Browse repository at this point
Copy the full SHA 376d27dView commit details -
chore(pom.xml): remove unused maven-surefire-plugin configuration to …
…simplify build process
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 925fb1f - Browse repository at this point
Copy the full SHA 925fb1fView commit details -
chore(pom.xml): update Jupiter Surefire version to 1.3.2 for improved…
… test execution feat(pom.xml): add Maven Surefire plugin with configuration to redirect test output to file and use plain report format
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 272e3cc - Browse repository at this point
Copy the full SHA 272e3ccView commit details -
chore(pom.xml): update Jupiter version from 5.9.3 to 5.10.0 for impro…
…ved test framework functionality
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 35ebd21 - Browse repository at this point
Copy the full SHA 35ebd21View commit details -
chore(pom.xml): enable unit tests execution during the test phase
The `maven-surefire-plugin` configuration in the `pom.xml` file has been updated to include the execution of unit tests during the `test` phase. This change allows the unit tests to be executed automatically when running the Maven `test` goal. The following changes were made: - Uncommented the `<skipTests>` element to enable the execution of unit tests. - Added an `<executions>` section to configure the execution of unit tests during the `test` phase. - Added a `<dependencies>` section to include the `surefire-junit-platform` dependency for running JUnit 5 tests. These changes ensure that unit tests are executed as part of the build process, providing better test coverage and ensuring the reliability of the codebase.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 0c7822d - Browse repository at this point
Copy the full SHA 0c7822dView commit details -
chore(pom.xml): downgrade jupiter.version from 5.10.0 to 5.9.3 to res…
…olve compatibility issues with other dependencies
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 93ac5e3 - Browse repository at this point
Copy the full SHA 93ac5e3View commit details -
chore(pom.xml): update jacoco-maven-plugin version to 0.8.10 for code…
… coverage analysis chore(pom.xml): configure jacoco-maven-plugin to include jacoco.exec file in target directory for code coverage analysis
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 699ceb7 - Browse repository at this point
Copy the full SHA 699ceb7View commit details -
chore(pom.xml): update dependencies
- Add liquibase-core dependency to manage database migrations - Add groovy-all dependency for testing purposes - Add spock-core dependency for testing purposes - Add liquibase-test-harness dependency for testing purposes - Add snakeyaml dependency for testing purposes - Remove duplicate liquibase-core and snakeyaml dependencies - Add assertj-core dependency for testing purposes - Add spock-reports dependency for testing purposes
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 31db7f3 - Browse repository at this point
Copy the full SHA 31db7f3View commit details -
chore(pom.xml): remove unused dependencies
The following dependencies were removed from the pom.xml file: - org.spockframework:spock-core:2.4-M1-groovy-3.0 (test scope) - com.athaydes:spock-reports:2.3.2-groovy-3.0 (test scope) These dependencies were removed because they were no longer needed in the project.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 0993a0f - Browse repository at this point
Copy the full SHA 0993a0fView commit details -
chore(pom.xml): remove unused JUnit and Mockito dependencies
The JUnit and Mockito dependencies were removed from the pom.xml file as they were not being used in the project. This helps to reduce unnecessary dependencies and improve the overall cleanliness of the project.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for ece994f - Browse repository at this point
Copy the full SHA ece994fView commit details -
chore(pom.xml): remove unused dependencies for jupiter, mockito-core,…
… and mockito-junit-jupiter to declutter the pom.xml file
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 059e196 - Browse repository at this point
Copy the full SHA 059e196View commit details -
chore(pom.xml): uncomment skipTests configuration to enable running t…
…ests during build feat(pom.xml): add system property variables for Spock framework test reports output directory feat(pom.xml): include integration tests in the test execution phase
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 8d58b5b - Browse repository at this point
Copy the full SHA 8d58b5bView commit details -
chore(pom.xml): remove unused mockito-core dependency to reduce unnec…
…essary dependencies
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 5e37d40 - Browse repository at this point
Copy the full SHA 5e37d40View commit details -
jandroav committed
Jul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 48f2c31 - Browse repository at this point
Copy the full SHA 48f2c31View commit details -
chore(pom.xml): update liquibase-hibernate6 version from 0-SNAPSHOT t…
…o 4.23.1-SNAPSHOT chore(pom.xml): update liquibase.version from 0-SNAPSHOT to 4.23.0
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 1e4662d - Browse repository at this point
Copy the full SHA 1e4662dView commit details -
chore(pom.xml): set maven compiler target and source to 1.8 for compa…
…tibility with Java 8 feat(pom.xml): add maven enforcer plugin to enforce Java version 1.8 during compile phase
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 5da4ff1 - Browse repository at this point
Copy the full SHA 5da4ff1View commit details -
chore(pom.xml): update maven-compiler-plugin configuration to enable …
…all compiler warnings and deprecations The maven-compiler-plugin configuration in the pom.xml file has been updated to enable all compiler warnings and deprecations. This will help identify potential issues and deprecated code in the project during the compilation process. The `<compilerArgs>` section has been added with the `<arg>-Xlint:all</arg>` argument to enable all compiler warnings. Additionally, the `<showWarnings>` and `<showDeprecation>` properties have been set to true to display the warnings and deprecations during the compilation process.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 55e4855 - Browse repository at this point
Copy the full SHA 55e4855View commit details -
chore(pom.xml): optimize maven-compiler-plugin configuration for bett…
…er performance and maintainability feat(pom.xml): set source and target versions to 1.8 for compatibility with Java 8 refactor(pom.xml): remove unnecessary compilerArgs, showWarnings, and showDeprecation configurations
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 475e318 - Browse repository at this point
Copy the full SHA 475e318View commit details -
chore(pom.xml): remove redundant source configuration in maven-compil…
…er-plugin The source configuration in the maven-compiler-plugin is redundant as it is already specified in the project's configuration. Removing it to improve clarity and avoid duplication.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for a29bf9d - Browse repository at this point
Copy the full SHA a29bf9dView commit details -
chore(pom.xml): update maven-compiler-plugin configuration to enable …
…additional compiler warnings and deprecations The maven-compiler-plugin configuration in the pom.xml file has been updated to include the following changes: - Added the compiler argument "-Xlint:all" to enable all compiler warnings - Set the showWarnings property to true to display compiler warnings - Set the showDeprecation property to true to display deprecation warnings These changes are made to improve code quality and catch potential issues during the compilation process.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 33c33ff - Browse repository at this point
Copy the full SHA 33c33ffView commit details -
chore(pom.xml): update Maven compiler source and target versions to 1…
….8 for compatibility chore(pom.xml): add Maven resource filtering for src/main/resources directory chore(pom.xml): add Maven plugin management for jacoco-maven-plugin version 0.8.10 chore(pom.xml): remove maven-enforcer-plugin configuration for Java version enforcement chore(pom.xml): add maven-failsafe-plugin version 3.1.2 for integration testing chore(pom.xml): add maven-jar-plugin version 3.3.0 for manifest entries configuration chore(pom.xml): add nexus-staging-maven-plugin version 1.6.13 for deployment to Sonatype Nexus chore(pom.xml): add maven-shade-plugin version 3.5.0 for creating an uber-jar chore(pom.xml): add versions-maven-plugin version 2.16.0 for managing project versions chore(pom.xml): add maven-source-plugin version 3.3.0 for attaching sources to the build chore(pom.xml): add build-helper-maven-plugin version 3.4.0 for adding additional build sources chore(pom.xml): add maven-javadoc-plugin version 3.5.0 for generating Javadoc chore(pom.xml): add jacoco-maven-plugin configuration for code coverage reporting chore(pom.xml): add sonar-maven-plugin version 3.9.1.2184 for SonarQube integration chore(pom.xml): remove liquibase-sdk-maven-plugin configuration chore(pom.xml): add distributionManagement configuration for deployment repositories chore(pom.xml): add coverage profile for code coverage reporting in CI environment chore(pom.xml): add release profile for deployment to Sonatype in CI environment chore(pom.xml): add maven-javadoc-plugin configuration for generating Javadoc in release profile chore(pom.xml): add copy-rename-maven-plugin for copying and renaming the pom.xml file in release profile
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 339d82d - Browse repository at this point
Copy the full SHA 339d82dView commit details -
chore(pom.xml): remove redundant Maven compiler properties to simplif…
…y configuration chore(pom.xml): remove unused Maven resources plugin configuration chore(pom.xml): remove unused Maven failsafe plugin configuration chore(pom.xml): remove unused Maven build-helper plugin configuration chore(pom.xml): remove unused Maven jar plugin configuration chore(pom.xml): remove unused Maven shade plugin configuration chore(pom.xml): remove unused Maven versions plugin configuration chore(pom.xml): remove unused Maven enforcer plugin configuration chore(pom.xml): remove unused Maven source plugin configuration chore(pom.xml): remove unused Maven jacoco plugin configuration chore(pom.xml): remove unused Maven sonar plugin configuration chore(pom.xml): remove unused Maven profiles and distribution management configuration feat(pom.xml): add Liquibase SDK Maven plugin to enable Liquibase integration
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 75b1497 - Browse repository at this point
Copy the full SHA 75b1497View commit details -
fix(pom.xml): fix incorrect groupId for hibernate dependencies
The groupId for the hibernate dependencies was incorrect. It was changed from "org.hibernate.orm" to "org.hibernate" to match the correct groupId. This ensures that the correct hibernate dependencies are being used in the project.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 23785de - Browse repository at this point
Copy the full SHA 23785deView commit details -
chore(pom.xml): update hibernate.version from 6.1.7.Final to 6.0.0.Fi…
…nal for compatibility reasons chore(pom.xml): update spring.version from 6.0.11 to 6.0.11 for compatibility reasons chore(pom.xml): update liquibase.version from 4.23.0 to 4.23.0 for compatibility reasons
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for c90c6b4 - Browse repository at this point
Copy the full SHA c90c6b4View commit details -
chore(pom.xml): update hibernate version to 6.1.7.Final for compatibi…
…lity and bug fixes chore(pom.xml): update spring version to 6.0.11 for compatibility and bug fixes chore(pom.xml): update liquibase version to 4.23.0 for compatibility and bug fixes chore(pom.xml): update maven compiler source and target to 1.8 for compatibility with Java 8 chore(pom.xml): update hibernate groupIds to org.hibernate.orm for consistency feat(pom.xml): add maven-enforcer-plugin to enforce Java version 1.8 during compile phase
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for cf65e82 - Browse repository at this point
Copy the full SHA cf65e82View commit details -
chore(test.yml): update test workflow to use JDK 17 and remove hibern…
…ate tests on Java 8/11 chore(pom.xml): update Maven compiler plugin configuration to use Java 17 and optimize compilation
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 0ec5a3c - Browse repository at this point
Copy the full SHA 0ec5a3cView commit details -
fix(test.yml): remove the -q flag from the mvn command to enable verb…
…ose output during test execution
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 38dd5a2 - Browse repository at this point
Copy the full SHA 38dd5a2View commit details -
jandroav committed
Jul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for b7a6d03 - Browse repository at this point
Copy the full SHA b7a6d03View commit details -
chore(pom.xml): remove unused 'run-its' profile from pom.xml
The 'run-its' profile in the pom.xml file is no longer needed and has been removed to simplify the build configuration.
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 86c87ba - Browse repository at this point
Copy the full SHA 86c87baView commit details -
chore(pom.xml): update copy-rename-maven-plugin version to 1.0.1 for …
…compatibility with other dependencies chore(pom.xml): remove unnecessary line break in the configuration section
jandroav committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for c6a2db6 - Browse repository at this point
Copy the full SHA c6a2db6View commit details