Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the all-dependencies group across 1 directory with 5 updates #536

Closed
wants to merge 1 commit into from
Closed

Bump the all-dependencies group across 1 directory with 5 updates #536

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 12, 2024
edited
Loading

Bumps the all-dependencies group with 5 updates in the / directory:

Package From To
io.opentelemetry:opentelemetry-api 1.43.0 1.44.1
no.nav.security:token-validation-spring 4.1.7 5.0.11
no.nav.security:token-client-spring 4.1.7 5.0.11
no.nav.security:token-validation-spring-test 4.1.7 5.0.11
org.springframework.boot 3.2.5 3.3.5

Updates io.opentelemetry:opentelemetry-api from 1.43.0 to 1.44.1

Release notes

Sourced from io.opentelemetry:opentelemetry-api's releases.

Version 1.44.1

This is a patch release on the previous 1.44.0 release, fixing the issue(s) below.

SDK

Traces

  • Fix regression in event attributes (#6865)

Version 1.44.0

API

  • Fix ConfigUtil#getString ConcurrentModificationException (#6841)

SDK

Traces

  • Stabilize ExceptionEventData (#6795)

Metrics

  • Stabilize metric cardinality limits (#6794)
  • Refactor metrics internals to remove MeterSharedState (#6845)

Exporters

  • Add memory mode option to stdout exporters (#6774)
  • Log a warning if OTLP endpoint port is likely incorrect given the protocol (#6813)
  • Fix OTLP gRPC retry mechanism for unsuccessful HTTP responses (#6829)
  • Add ByteBuffer field type marshaling support (#6686)
  • Fix stdout exporter format by adding newline after each export (#6848)
  • Enable reusuable_data memory mode by default for OtlpGrpc{Signal}Exporter, OtlpHttp{Signal}Exporter, OtlpStdout{Signal}Exporter, and PrometheusHttpServer (#6799)

Extension

  • Rebrand file configuration to declarative configuration in documentation (#6812)
  • Fix declarative config file_format validation (#6786)
  • Fix declarative config env substitution by disallowing '}' in default value (#6793)
  • Set declarative config default OTLP protocol to http/protobuf (#6800)
  • Stabilize autoconfigure disabling of resource keys via otel.resource.disabled.keys (#6809)

Tooling

  • Run tests on Java 23 (#6825)
  • Test Windows in CI (#6824)
  • Add error prone checks for internal javadoc and private constructors (#6844)

🙇 Thank you

... (truncated)

Changelog

Sourced from io.opentelemetry:opentelemetry-api's changelog.

Version 1.44.1 (2024-11-10)

SDK

Traces

  • Fix regression in event attributes (#6865)

Version 1.44.0 (2024-11-08)

API

  • Fix ConfigUtil#getString ConcurrentModificationException (#6841)

SDK

Traces

  • Stabilize ExceptionEventData (#6795)

Metrics

  • Stabilize metric cardinality limits (#6794)
  • Refactor metrics internals to remove MeterSharedState (#6845)

Exporters

  • Add memory mode option to stdout exporters (#6774)
  • Log a warning if OTLP endpoint port is likely incorrect given the protocol (#6813)
  • Fix OTLP gRPC retry mechanism for unsuccessful HTTP responses (#6829)
  • Add ByteBuffer field type marshaling support (#6686)
  • Fix stdout exporter format by adding newline after each export (#6848)
  • Enable reusuable_data memory mode by default for OtlpGrpc{Signal}Exporter, OtlpHttp{Signal}Exporter, OtlpStdout{Signal}Exporter, and PrometheusHttpServer (#6799)

Extension

  • Rebrand file configuration to declarative configuration in documentation (#6812)

... (truncated)

Commits
  • cb7d40a [release/v1.44.x] Prepare release 1.44.1 (#6868)
  • f7eaa01 Update changelog for 1.44.1 (#6867)
  • d694852 [release/v1.44.x] Fix regression in event attributes (#6866)
  • 08349dc [release/v1.44.x] Prepare release 1.44.0 (#6863)
  • e38ebf5 Prepare 1.44.0 (#6861)
  • b5fab78 fix(deps): update dependency nl.jqno.equalsverifier:equalsverifier to v3.17.3...
  • 7dcf73f fix(deps): update dependency com.android.tools:desugar_jdk_libs to v2.1.3 (#6...
  • 0a4aa3c fix(deps): update dependency me.champeau.gradle:japicmp-gradle-plugin to v0.4...
  • 2a1c274 update prom client (#6857)
  • 6c3725d fix(deps): update dependency checkstyle to v10.20.1 (#6856)
  • Additional commits viewable in compare view

Updates no.nav.security:token-validation-spring from 4.1.7 to 5.0.11

Release notes

Sourced from no.nav.security:token-validation-spring's releases.

5.0.11

What's Changed

  • (request.getAttribute(ERROR_EXCEPTION) as? Throwable)?.message

5.0.10

What's Changed

Full Changelog: navikt/token-support@5.0.8...5.0.10

5.0.9

What's Changed

⬆️ Dependency upgrades

5.0.8

What's Changed

  • No changes

5.0.7

What's Changed

⬆️ Dependency upgrades

5.0.5

What's Changed

... (truncated)

Commits
  • bddaf06 get as throwable
  • 25a38df get as throwable
  • c501285 skip validation for async requests when the client id gone (#969)
  • 6c367ed Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2 (#968)
  • f919bb0 Bump com.nimbusds:nimbus-jose-jwt from 9.44 to 9.45 (#967)
  • 267bf37 Bump com.nimbusds:nimbus-jose-jwt from 9.43 to 9.44 (#966)
  • b424763 up
  • da4e526 Bump com.nimbusds:nimbus-jose-jwt from 9.42 to 9.43 (#965)
  • 1979cd3 Bump no.nav.security:mock-oauth2-server from 2.1.9 to 2.1.10 (#964)
  • 24f947e Bump com.nimbusds:nimbus-jose-jwt from 9.41.2 to 9.42 (#963)
  • Additional commits viewable in compare view

Updates no.nav.security:token-client-spring from 4.1.7 to 5.0.11

Release notes

Sourced from no.nav.security:token-client-spring's releases.

5.0.11

What's Changed

  • (request.getAttribute(ERROR_EXCEPTION) as? Throwable)?.message

5.0.10

What's Changed

Full Changelog: navikt/token-support@5.0.8...5.0.10

5.0.9

What's Changed

⬆️ Dependency upgrades

5.0.8

What's Changed

  • No changes

5.0.7

What's Changed

⬆️ Dependency upgrades

5.0.5

What's Changed

... (truncated)

Commits
  • bddaf06 get as throwable
  • 25a38df get as throwable
  • c501285 skip validation for async requests when the client id gone (#969)
  • 6c367ed Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2 (#968)
  • f919bb0 Bump com.nimbusds:nimbus-jose-jwt from 9.44 to 9.45 (#967)
  • 267bf37 Bump com.nimbusds:nimbus-jose-jwt from 9.43 to 9.44 (#966)
  • b424763 up
  • da4e526 Bump com.nimbusds:nimbus-jose-jwt from 9.42 to 9.43 (#965)
  • 1979cd3 Bump no.nav.security:mock-oauth2-server from 2.1.9 to 2.1.10 (#964)
  • 24f947e Bump com.nimbusds:nimbus-jose-jwt from 9.41.2 to 9.42 (#963)
  • Additional commits viewable in compare view

Updates no.nav.security:token-validation-spring-test from 4.1.7 to 5.0.11

Release notes

Sourced from no.nav.security:token-validation-spring-test's releases.

5.0.11

What's Changed

  • (request.getAttribute(ERROR_EXCEPTION) as? Throwable)?.message

5.0.10

What's Changed

Full Changelog: navikt/token-support@5.0.8...5.0.10

5.0.9

What's Changed

⬆️ Dependency upgrades

5.0.8

What's Changed

  • No changes

5.0.7

What's Changed

⬆️ Dependency upgrades

5.0.5

What's Changed

... (truncated)

Commits
  • bddaf06 get as throwable
  • 25a38df get as throwable
  • c501285 skip validation for async requests when the client id gone (#969)
  • 6c367ed Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2 (#968)
  • f919bb0 Bump com.nimbusds:nimbus-jose-jwt from 9.44 to 9.45 (#967)
  • 267bf37 Bump com.nimbusds:nimbus-jose-jwt from 9.43 to 9.44 (#966)
  • b424763 up
  • da4e526 Bump com.nimbusds:nimbus-jose-jwt from 9.42 to 9.43 (#965)
  • 1979cd3 Bump no.nav.security:mock-oauth2-server from 2.1.9 to 2.1.10 (#964)
  • 24f947e Bump com.nimbusds:nimbus-jose-jwt from 9.41.2 to 9.42 (#963)
  • Additional commits viewable in compare view

Updates no.nav.security:token-client-spring from 4.1.7 to 5.0.11

Release notes

Sourced from no.nav.security:token-client-spring's releases.

5.0.11

What's Changed

  • (request.getAttribute(ERROR_EXCEPTION) as? Throwable)?.message

5.0.10

What's Changed

Full Changelog: navikt/token-support@5.0.8...5.0.10

5.0.9

What's Changed

⬆️ Dependency upgrades

5.0.8

What's Changed

  • No changes

5.0.7

What's Changed

⬆️ Dependency upgrades

5.0.5

What's Changed

... (truncated)

Commits
  • bddaf06 get as throwable
  • 25a38df get as throwable
  • c501285 skip validation for async requests when the client id gone (#969)
  • 6c367ed Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2 (#968)
  • f919bb0 Bump com.nimbusds:nimbus-jose-jwt from 9.44 to 9.45 (#967)
  • 267bf37 Bump com.nimbusds:nimbus-jose-jwt from 9.43 to 9.44 (#966)
  • b424763 up
  • da4e526 Bump com.nimbusds:nimbus-jose-jwt from 9.42 to 9.43 (#965)
  • 1979cd3 Bump no.nav.security:mock-oauth2-server from 2.1.9 to 2.1.10 (#964)
  • 24f947e Bump com.nimbusds:nimbus-jose-jwt from 9.41.2 to 9.42 (#963)
  • Additional commits viewable in compare view

Updates no.nav.security:token-validation-spring-test from 4.1.7 to 5.0.11

Release notes

Sourced from no.nav.security:token-validation-spring-test's releases.

5.0.11

What's Changed

  • (request.getAttribute(ERROR_EXCEPTION) as? Throwable)?.message

5.0.10

What's Changed

Full Changelog: navikt/token-support@5.0.8...5.0.10

5.0.9

What's Changed

⬆️ Dependency upgrades

5.0.8

What's Changed

  • No changes

5.0.7

What's Changed

⬆️ Dependency upgrades

5.0.5

What's Changed

... (truncated)

Commits
  • bddaf06 get as throwable
  • 25a38df get as throwable
  • c501285 skip validation for async requests when the client id gone (#969)
  • 6c367ed Bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.1 to 3.5.2 (#968)
  • f919bb0 Bump com.nimbusds:nimbus-jose-jwt from 9.44 to 9.45 (#967)
  • 267bf37 Bump com.nimbusds:nimbus-jose-jwt from 9.43 to 9.44 (#966)
  • b424763 up
  • da4e526 Bump com.nimbusds:nimbus-jose-jwt from 9.42 to 9.43 (#965)
  • 1979cd3 Bump no.nav.security:mock-oauth2-server from 2.1.9 to 2.1.10 (#964)
  • 24f947e Bump com.nimbusds:nimbus-jose-jwt from 9.41.2 to 9.42 (#963)
  • Additional commits viewable in compare view

Updates org.springframework.boot from 3.2.5 to 3.3.5

Release notes

Sourced from org.springframework.boot's releases.

v3.3.5

🐞 Bug Fixes

  • Running mvn spring-boot:run with classpaths that exceeds Windows' length limits leaves temporary files #42841
  • Report produced by ConditionReportApplicationContextFailureProcessor is always empty in a failed test #42785
  • Case-insensitive comparisons may be adversely affected by the user's locale #42735
  • DataSourceProperties#driverClassIsLoadable should not print a stacktrace to the error stream when it fails #42683
  • Some @ControllerEndpoint and @RestControllerEndpoint infrastructure remains undeprecated #42498
  • Auto-configuration for Rabbit Streams doesn't consider RabbitConnectionDetails #42490
  • ClassNotFoundException is thrown when loading protocol resolvers from ForkJoinPool task #42468
  • ActiveMQ Artemis Connection Factory creation fails in native image #42421
  • Duplicate meter binding when context contains multiple registries, none are primary, and one or more is a composite #42397

📔 Documentation

  • Document that embedded Tomcat must be at least 10.1.25 #42849
  • Fix systemd example configuration #42805
  • Document that the exact behavior of the maximum HTTP request header size property is server-specific #42789
  • Clarify why @Primary is recommended when defining your own ObjectMapper that replaces JacksonAutoConfiguration's #42787
  • Polish javadoc for Binder#bindOrCreate(String, Class) #42778
  • Document that Tomcat's maxQueueCapacity need to be greater than 0 #42726
  • Remove stale link to jar-to-war getting started guide #42723
  • Fix typos and formatting errors in documentation #42718
  • Fix case used for examples in "Sanitize Sensitive Values" #42702
  • Fix Regex javadoc links #42685
  • Document how Map properties are bound from environment variables #42672
  • Improve classpath index documentation for reproducible builds #42643
  • Remove links to Spring Data GemFire #42596
  • Order alphabetically the sections in Common Application Properties #42520
  • Improve the javadoc describing when @ConditionalOn(Missing)Bean will infer the type to match #42505
  • Document how to handle MANIFEST.MF in native image with Maven #42476
  • Fix links to Micrometer reference doc #42467
  • Polish documentation #42454
  • Add Javadoc since for PrometheusScrapeEndpoint(PrometheusRegistry, Properties) #42406
  • Remove note about graceful shutdown with Tomcat requiring 9.0.33 or later as we now require 10.1.x #42382
  • Document support for Java 23 #42380
  • Improve documentation for CycloneDX integration #41506

🔨 Dependency Upgrades

  • Prohibit upgrades to Undertow 2.3.18.Final #42756
  • Upgrade to CycloneDX Maven Plugin 2.8.2 #42631
  • Upgrade to GraphQL Java 22.3 #42757
  • Upgrade to Infinispan 15.0.10.Final #42632
  • Upgrade to Jaybird 5.0.6.java11 #42752
  • Upgrade to Jersey 3.1.9 #42633
  • Upgrade to Jetty 12.0.14 #42635
  • Upgrade to Jetty Reactive HTTPClient 4.0.8 #42634
  • Upgrade to jOOQ 3.19.14 #42818
  • Upgrade to JUnit Jupiter 5.10.5 #42637

... (truncated)

Commits
  • 2316ce6 Release v3.3.5
  • 02f6eb4 Merge branch '3.2.x' into 3.3.x
  • 728deaf Next development version (v3.2.12-SNAPSHOT)
  • 9ca6667 Merge branch '3.2.x' into 3.3.x
  • 9858b4b Fix release script
  • 2bf3e5a Document that embedded Tomcat must be 10.1.25 or later
  • 13e75dc Upgrade to Spring Integration 6.3.5
  • 131bbaf Merge branch '3.2.x' into 3.3.x
  • 83a3212 Use github.ref_name when deploying snapshots
  • 2d91385 Merge branch '3.2.x' into 3.3.x
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 12, 2024
@dependabot dependabot bot mentioned this pull request Nov 12, 2024
Closed
@dependabot
Bump the all-dependencies group across 1 directory with 5 updates
29cc68b 
Bumps the all-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [io.opentelemetry:opentelemetry-api](https://github.com/open-telemetry/opentelemetry-java) | `1.43.0` | `1.44.1` |
| [no.nav.security:token-validation-spring](https://github.com/navikt/token-support) | `4.1.7` | `5.0.11` |
| [no.nav.security:token-client-spring](https://github.com/navikt/token-support) | `4.1.7` | `5.0.11` |
| [no.nav.security:token-validation-spring-test](https://github.com/navikt/token-support) | `4.1.7` | `5.0.11` |
| [org.springframework.boot](https://github.com/spring-projects/spring-boot) | `3.2.5` | `3.3.5` |



Updates `io.opentelemetry:opentelemetry-api` from 1.43.0 to 1.44.1
- [Release notes](https://github.com/open-telemetry/opentelemetry-java/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-java/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-java@v1.43.0...v1.44.1)

Updates `no.nav.security:token-validation-spring` from 4.1.7 to 5.0.11
- [Release notes](https://github.com/navikt/token-support/releases)
- [Commits](navikt/token-support@4.1.7...5.0.11)

Updates `no.nav.security:token-client-spring` from 4.1.7 to 5.0.11
- [Release notes](https://github.com/navikt/token-support/releases)
- [Commits](navikt/token-support@4.1.7...5.0.11)

Updates `no.nav.security:token-validation-spring-test` from 4.1.7 to 5.0.11
- [Release notes](https://github.com/navikt/token-support/releases)
- [Commits](navikt/token-support@4.1.7...5.0.11)

Updates `no.nav.security:token-client-spring` from 4.1.7 to 5.0.11
- [Release notes](https://github.com/navikt/token-support/releases)
- [Commits](navikt/token-support@4.1.7...5.0.11)

Updates `no.nav.security:token-validation-spring-test` from 4.1.7 to 5.0.11
- [Release notes](https://github.com/navikt/token-support/releases)
- [Commits](navikt/token-support@4.1.7...5.0.11)

Updates `org.springframework.boot` from 3.2.5 to 3.3.5
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](spring-projects/spring-boot@v3.2.5...v3.3.5)

---
updated-dependencies:
- dependency-name: io.opentelemetry:opentelemetry-api
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: no.nav.security:token-validation-spring
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: no.nav.security:token-client-spring
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: no.nav.security:token-validation-spring-test
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: no.nav.security:token-client-spring
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: no.nav.security:token-validation-spring-test
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: org.springframework.boot
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/gradle/all-dependencies-c599fb152c branch from 6f286ae to 29cc68b Compare November 13, 2024 07:52
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 13, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 13, 2024
@dependabot dependabot bot deleted the dependabot/gradle/all-dependencies-c599fb152c branch November 13, 2024 13:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants