Permalink
Comparing changes
Choose two branches to see what’s changed or to start a new pull request.
If you need to, you can also or
learn more about diff comparisons.
Open a pull request
Create a new pull request by comparing changes across two branches. If you need to, you can also .
Learn more about diff comparisons here.
...
- 13 commits
- 7 files changed
- 3 contributors
Commits on Apr 23, 2025
-
Update deploy.yml to initialise Git in separate step
[skip ci] Signed-off-by: Ashley <73482956+ascopes@users.noreply.github.com>
Commits on Apr 28, 2025
Commits on May 8, 2025
-
-
-
Signed-off-by: Ashley <73482956+ascopes@users.noreply.github.com>
-
Add note about versions to module-info documentation for v5
Signed-off-by: Ashley <73482956+ascopes@users.noreply.github.com>
Commits on May 13, 2025
Commits on May 26, 2025
-
Bump advanced-security/maven-dependency-submission-action from 4 to 5 (…
…#810) Bumps [advanced-security/maven-dependency-submission-action](https://github.com/advanced-security/maven-dependency-submission-action) from 4 to 5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/advanced-security/maven-dependency-submission-action/releases">advanced-security/maven-dependency-submission-action's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <h2>Improved multi-module support</h2> <p>This release improves multi-module support by reflecting which <code>pom.xml</code> file brings in a particular dependency. Previously, the dependencies were aggregated into the top-level <code>pom.xml</code> file. If a given package is brought in via multiple modules, that package will be reflected in all of the modules that reference it.</p> <p>Because of this change in behavior, we've removed two configuration options:</p> <ul> <li><code>snapshot-dependency-file-name</code>: no longer applicable since we submit more than one manifest</li> <li><code>snapshot-include-file-name</code>: this flag determined whether the manifest object included the file path. It should always be available and there's no reason to omit it, so we've removed the flag.</li> </ul> <h2>v4.1.3</h2> <p>The release bumps dependency versions to stay up-to-date.</p> <h2>v4.1.2</h2> <h2>What's Changed</h2> <ul> <li>Add cycle safety for transitive dependencies by <a href="https://github.com/juxtin"><code>@juxtin</code></a> in <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/pull/103">advanced-security/maven-dependency-submission-action#103</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/juxtin"><code>@juxtin</code></a> made their first contribution in <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/pull/103">advanced-security/maven-dependency-submission-action#103</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/advanced-security/maven-dependency-submission-action/compare/v4...v4.1.2">https://github.com/advanced-security/maven-dependency-submission-action/compare/v4...v4.1.2</a></p> <h2>v4.1.1</h2> <p>No release notes provided.</p> <h2>v4.1.0</h2> <ul> <li> <p>Adds the ability to change the detector details for the dependency snapshots via the optional input parameters:</p> <ul> <li><code>detector-name</code></li> <li><code>detector-url</code></li> <li><code>detector-version</code></li> </ul> <p>If the <code>detector-name</code> is specified, then all three become mandatory as there are no sensible defaults that can be attributed to the values.</p> </li> </ul> <h2>v4.0.3</h2> <ul> <li> <p>Updating the build process and tooling for Node 20 support in the CLI executables which were introduced when the dependency-submission-toolkit transitioned in to an ESM module</p> </li> <li> <p>Fixes <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/issues/69">#69</a> <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/issues/61">#61</a></p> </li> </ul> <h2>v4.0.2</h2> <p>No release notes provided.</p> <h2>v4.0.1</h2> <ul> <li>Updating branding for the marketplace</li> <li>Utilizing rollup to build cli executables as the ESM module for the <code>dependency-submission-toolkit</code> broke the <code>4.0.0</code> <code>pkg</code> based executable builds.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/b275d12641ac2d2108b2cbb7598b154ad2f2cee8"><code>b275d12</code></a> Merge pull request <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/issues/114">#114</a> from advanced-security/contrib-5.0</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/bdc082b320e323d3eee1996fbd48f4298a90285a"><code>bdc082b</code></a> Bump the tag mentioned in the contrib doc to v5</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/2c65a53e2403f092605bbb24ef1eb6f116718640"><code>2c65a53</code></a> Merge pull request <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/issues/110">#110</a> from advanced-security/juxtin/file-centric-manifests</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/aa342c187faea5309fe9451ac9de7b11414e9193"><code>aa342c1</code></a> Merge branch 'main' into juxtin/file-centric-manifests</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/f86e5bfc17374fd77ffca5c7b255725235f3e0c2"><code>f86e5bf</code></a> README updates for v5.0.0</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/69b8872e0974d2307213cfe8f6d0daf986afe0fe"><code>69b8872</code></a> Update wording in error message</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/e11bd00d83496a714b06a73abc4a1da3a8211b13"><code>e11bd00</code></a> Remove debug line</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/b737283803d98af561c0d8334669fece872dc166"><code>b737283</code></a> Update version to 5.0.0 since this has breaking changes</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/3059e7f9fa9e599987fcbc44116c7e749b7d29f8"><code>3059e7f</code></a> Minor tweaks</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/06796b833daddb297829a2e2a9534bee0b97c123"><code>06796b8</code></a> Do not aggregate manifest files in multi-module projects</li> <li>See full diff in <a href="https://github.com/advanced-security/maven-dependency-submission-action/compare/v4...v5">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | advanced-security/maven-dependency-submission-action | [< 4.1, > 4.0.0] | </details> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
Bump com.puppycrawl.tools:checkstyle from 10.23.1 to 10.24.0 (#809)
Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) from 10.23.1 to 10.24.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/checkstyle/checkstyle/releases">com.puppycrawl.tools:checkstyle's releases</a>.</em></p> <blockquote> <h2>checkstyle-10.24.0</h2> <p>Checkstyle 10.24.0 - <a href="https://checkstyle.org/releasenotes.html#Release_10.24.0">https://checkstyle.org/releasenotes.html#Release_10.24.0</a></p> <p>New:</p> <p><a href="https://redirect.github.com/checkstyle/checkstyle/issues/5983">#5983</a> - CLI: generate suppresion xml content (SuppressionFilter) for certain Checks but whole file with violation <a href="https://redirect.github.com/checkstyle/checkstyle/issues/16174">#16174</a> - New Check: MultiFileRegexpHeader to allow specify few header file to validate</p> <p>Bug fixes:</p> <p><a href="https://redirect.github.com/checkstyle/checkstyle/issues/16786">#16786</a> - <code>private</code> enums being treated as public in <code>JavadocVariableCheck</code> <a href="https://redirect.github.com/checkstyle/checkstyle/issues/16564">#16564</a> - EmptyLineSeparator check does not validate newlines before comments in Interfaces <a href="https://redirect.github.com/checkstyle/checkstyle/issues/8807">#8807</a> - SuppressWithPlainTextCommentFilter is slow on files with multiple errors <a href="https://redirect.github.com/checkstyle/checkstyle/issues/14654">#14654</a> - incompatibility with google-java-format: CatchFormalParameter is indented by 4 spaces instead of 2 <a href="https://redirect.github.com/checkstyle/checkstyle/issues/15098">#15098</a> - Indentation of the Block child of switch rule is not validated when no braces</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/checkstyle/checkstyle/commit/f8c3db83aba82bfbd683d49ba3364c911346ec8a"><code>f8c3db8</code></a> [maven-release-plugin] prepare release checkstyle-10.24.0</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/a504e106a0e1d5f7f932da277a133f0180c903df"><code>a504e10</code></a> doc: release notes for 10.24.0</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/555e6c37b40304d01b9a8eb12f943a770bdeb0b2"><code>555e6c3</code></a> infra: Update releasenotes-gen-xdoc-push.sh to not use mvnw</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/1ebcc8f97f0f78aedf4a5cca5c22670a2f96f7e1"><code>1ebcc8f</code></a> Issue <a href="https://redirect.github.com/checkstyle/checkstyle/issues/16786">#16786</a>: Ensure enum constants accessibility is properly evaluated</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/b1c41245cade4f0c40a9896c953b281f4467f4a7"><code>b1c4124</code></a> Issue <a href="https://redirect.github.com/checkstyle/checkstyle/issues/5983">#5983</a>: add listner to generate suppression.xml for SupperssionFilter by...</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/87bfcc6c78ecd8d2215cfdd1fcabe389d82f5415"><code>87bfcc6</code></a> dependency: bump org.pitest:pitest-junit5-plugin from 1.2.2 to 1.2.3</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/6ea2b7dee34818482349a128c815a1e2d37eeb0f"><code>6ea2b7d</code></a> minor: Bump version to 10.24.0-SNAPSHOT</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/e1a9b1e08eaa5ba9e5269343e3bb2e6417075ce1"><code>e1a9b1e</code></a> Issue <a href="https://redirect.github.com/checkstyle/checkstyle/issues/16174">#16174</a>: Implement New Check MultiFileRegexpHeader</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/f1a6cd0086384c7700097c1bed3adec0d108da5a"><code>f1a6cd0</code></a> Issue <a href="https://redirect.github.com/checkstyle/checkstyle/issues/16564">#16564</a>: Fixed EmptyLineSeparator validation with Javadoc</li> <li><a href="https://github.com/checkstyle/checkstyle/commit/ee779bae524c1c26b7d4a0367f44d6a538ed8718"><code>ee779ba</code></a> Pull <a href="https://redirect.github.com/checkstyle/checkstyle/issues/17110">#17110</a>: fix log typo</li> <li>Additional commits viewable in <a href="https://github.com/checkstyle/checkstyle/compare/checkstyle-10.23.1...checkstyle-10.24.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
Bump org.mockito:mockito-bom from 5.17.0 to 5.18.0 (#808)
Bumps [org.mockito:mockito-bom](https://github.com/mockito/mockito) from 5.17.0 to 5.18.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mockito/mockito/releases">org.mockito:mockito-bom's releases</a>.</em></p> <blockquote> <h2>v5.18.0</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --><em>Changelog generated by <a href="https://github.com/shipkit/shipkit-changelog">Shipkit Changelog Gradle Plugin</a></em><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h4>5.18.0</h4> <ul> <li>2025-05-20 - <a href="https://github.com/mockito/mockito/compare/v5.17.0...v5.18.0">5 commit(s)</a> by Eugene Platonov, Patrick Doyle, Tim van der Lippe, dependabot[bot]</li> <li>Make vararg checks Scala friendly (for mockito-scala) [(<a href="https://redirect.github.com/mockito/mockito/issues/3651">#3651</a>)](<a href="https://redirect.github.com/mockito/mockito/pull/3651">mockito/mockito#3651</a>)</li> <li>For UnfinishedStubbingException, suggest the possibility of another thread [(<a href="https://redirect.github.com/mockito/mockito/issues/3636">#3636</a>)](<a href="https://redirect.github.com/mockito/mockito/pull/3636">mockito/mockito#3636</a>)</li> <li>UnfinishedStubbingException ought to suggest the possibility of another thread [(<a href="https://redirect.github.com/mockito/mockito/issues/3635">#3635</a>)](<a href="https://redirect.github.com/mockito/mockito/issues/3635">mockito/mockito#3635</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mockito/mockito/commit/06737471ea19ca023581351eeac778ffbce8da74"><code>0673747</code></a> Force Jacoco version for Android</li> <li><a href="https://github.com/mockito/mockito/commit/65388f01eb8a555c4df5dec692ba9abf8a2591b8"><code>65388f0</code></a> Update Jacoco version to 0.8.13</li> <li><a href="https://github.com/mockito/mockito/commit/60179ca10dbd29ff959d7eae670ce95b3f19f5fd"><code>60179ca</code></a> Bump bytebuddy from 1.15.11 to 1.16.1</li> <li><a href="https://github.com/mockito/mockito/commit/8f15169774cb639b5757f121f27d6c0d8ca18c97"><code>8f15169</code></a> Make vararg checks Scala friendly (<a href="https://redirect.github.com/mockito/mockito/issues/3651">#3651</a>)</li> <li><a href="https://github.com/mockito/mockito/commit/3a631cb87082fff212bc00c00970508b4ce63072"><code>3a631cb</code></a> Add hint for multithreading in <code>UnfinishedStubbingException</code> (<a href="https://redirect.github.com/mockito/mockito/issues/3636">#3636</a>)</li> <li>See full diff in <a href="https://github.com/mockito/mockito/compare/v5.17.0...v5.18.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Commits on May 27, 2025
-
Remove spurious dependency on java.desktop in module-info.java (#811)
Signed-off-by: Ashley <73482956+ascopes@users.noreply.github.com>
-
Loading
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff v5.0.2...v5.0.3