Age | Commit message (Collapse) | Author |
|
Bumps `errorprone.version` from 2.19.1 to 2.20.0.
Updates `error_prone_annotations` from 2.19.1 to 2.20.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/error-prone/releases">error_prone_annotations's releases</a>.</em></p>
<blockquote>
<h2>Error Prone 2.20.0</h2>
<p>Changes:</p>
<ul>
<li>This release is compatible with early-access builds of JDK 21.</li>
</ul>
<p>New Checkers:</p>
<ul>
<li><a href="https://errorprone.info/bugpattern/InlineTrivialConstant"><code>InlineTrivialConstant</code></a></li>
<li><a href="https://errorprone.info/bugpattern/UnnecessaryStringBuilder"><code>UnnecessaryStringBuilder</code></a></li>
<li><a href="https://errorprone.info/bugpattern/BanClassLoader"><code>BanClassLoader</code></a></li>
<li><a href="https://errorprone.info/bugpattern/DereferenceWithNullBranch"><code>DereferenceWithNullBranch</code></a></li>
<li><a href="https://errorprone.info/bugpattern/DoNotUseRuleChain"><code>DoNotUseRuleChain</code></a></li>
<li><a href="https://errorprone.info/bugpattern/LockOnNonEnclosingClassLiteral"><code>LockOnNonEnclosingClassLiteral</code></a></li>
<li><a href="https://errorprone.info/bugpattern/MissingRefasterAnnotation"><code>MissingRefasterAnnotation</code></a></li>
<li><a href="https://errorprone.info/bugpattern/NamedLikeContextualKeyword"><code>NamedLikeContextualKeyword</code></a></li>
<li><a href="https://errorprone.info/bugpattern/NonApiType"><code>NonApiType</code></a></li>
</ul>
<p>Fixes issues: <a href="https://redirect.github.com/google/error-prone/issues/2232">#2232</a>, <a href="https://redirect.github.com/google/error-prone/issues/2243">#2243</a>, <a href="https://redirect.github.com/google/error-prone/issues/2997">#2997</a>, <a href="https://redirect.github.com/google/error-prone/issues/3301">#3301</a>, <a href="https://redirect.github.com/google/error-prone/issues/3843">#3843</a>, <a href="https://redirect.github.com/google/error-prone/issues/3903">#3903</a>, <a href="https://redirect.github.com/google/error-prone/issues/3918">#3918</a>, <a href="https://redirect.github.com/google/error-prone/issues/3923">#3923</a>, <a href="https://redirect.github.com/google/error-prone/issues/3931">#3931</a>, <a href="https://redirect.github.com/google/error-prone/issues/3945">#3945</a>, <a href="https://redirect.github.com/google/error-prone/issues/3946">#3946</a></p>
<p><strong>Full Changelog</strong>: <a href="https://github.com/google/error-prone/compare/v2.19.1...v2.20.0">https://github.com/google/error-prone/compare/v2.19.1...v2.20.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/error-prone/commit/79935c08884ef855cbb7ca3c3c4b14f878d3536a"><code>79935c0</code></a> Release Error Prone 2.20.0</li>
<li><a href="https://github.com/google/error-prone/commit/4148b441ad2ebd9c23e828a4114b250ceda905ed"><code>4148b44</code></a> Remove FRAGILE_CODE tag from StringCaseLocaleUsage</li>
<li><a href="https://github.com/google/error-prone/commit/b42c84f405827d0496c4da829587cc93d924632f"><code>b42c84f</code></a> Strip enough "*"s to turn something into non-Javadoc.</li>
<li><a href="https://github.com/google/error-prone/commit/12b90df1e5c1efa776b5f8eaa967a6e3381a36cc"><code>12b90df</code></a> Fix one of the classic blunders in <code>UnnecessaryStringBuilder</code></li>
<li><a href="https://github.com/google/error-prone/commit/a86e28bd53d3b95f799a286ec6cacfaf6542de91"><code>a86e28b</code></a> Warn when on <code>Stream</code> parameters and <code>Iterator</code> return types.</li>
<li><a href="https://github.com/google/error-prone/commit/4f11cba7117dff323a5e812f5175a142fe3ad100"><code>4f11cba</code></a> Don't fire some <code>NonApiType</code> checks inside of <code>GraphWrapper</code>s.</li>
<li><a href="https://github.com/google/error-prone/commit/e3743fc03900663515dc400cd76603bcfc13fef4"><code>e3743fc</code></a> Add a check for unnecessary usages of <code>StringBuilder</code></li>
<li><a href="https://github.com/google/error-prone/commit/3195ab03b000401b947f57f300e38073c68e9e1f"><code>3195ab0</code></a> Recognize <code>MethodHandle</code> as immutable.</li>
<li><a href="https://github.com/google/error-prone/commit/7f368567c684fd9a18403541118ddaac45c4be6d"><code>7f36856</code></a> Fire <code>InlineTrivialConstant</code> on <code>EMPTY</code> and <code>EMPTY_STR</code> too.</li>
<li><a href="https://github.com/google/error-prone/commit/bda0edc01a69bc98e2d6fea0be5197d14cb421f9"><code>bda0edc</code></a> Suggest inlining trivial constants like <code>EMPTY_STRING</code></li>
<li>Additional commits viewable in <a href="https://github.com/google/error-prone/compare/v2.19.1...v2.20.0">compare view</a></li>
</ul>
</details>
<br />
Updates `error_prone_type_annotations` from 2.19.1 to 2.20.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/error-prone/releases">error_prone_type_annotations's releases</a>.</em></p>
<blockquote>
<h2>Error Prone 2.20.0</h2>
<p>Changes:</p>
<ul>
<li>This release is compatible with early-access builds of JDK 21.</li>
</ul>
<p>New Checkers:</p>
<ul>
<li><a href="https://errorprone.info/bugpattern/InlineTrivialConstant"><code>InlineTrivialConstant</code></a></li>
<li><a href="https://errorprone.info/bugpattern/UnnecessaryStringBuilder"><code>UnnecessaryStringBuilder</code></a></li>
<li><a href="https://errorprone.info/bugpattern/BanClassLoader"><code>BanClassLoader</code></a></li>
<li><a href="https://errorprone.info/bugpattern/DereferenceWithNullBranch"><code>DereferenceWithNullBranch</code></a></li>
<li><a href="https://errorprone.info/bugpattern/DoNotUseRuleChain"><code>DoNotUseRuleChain</code></a></li>
<li><a href="https://errorprone.info/bugpattern/LockOnNonEnclosingClassLiteral"><code>LockOnNonEnclosingClassLiteral</code></a></li>
<li><a href="https://errorprone.info/bugpattern/MissingRefasterAnnotation"><code>MissingRefasterAnnotation</code></a></li>
<li><a href="https://errorprone.info/bugpattern/NamedLikeContextualKeyword"><code>NamedLikeContextualKeyword</code></a></li>
<li><a href="https://errorprone.info/bugpattern/NonApiType"><code>NonApiType</code></a></li>
</ul>
<p>Fixes issues: <a href="https://redirect.github.com/google/error-prone/issues/2232">#2232</a>, <a href="https://redirect.github.com/google/error-prone/issues/2243">#2243</a>, <a href="https://redirect.github.com/google/error-prone/issues/2997">#2997</a>, <a href="https://redirect.github.com/google/error-prone/issues/3301">#3301</a>, <a href="https://redirect.github.com/google/error-prone/issues/3843">#3843</a>, <a href="https://redirect.github.com/google/error-prone/issues/3903">#3903</a>, <a href="https://redirect.github.com/google/error-prone/issues/3918">#3918</a>, <a href="https://redirect.github.com/google/error-prone/issues/3923">#3923</a>, <a href="https://redirect.github.com/google/error-prone/issues/3931">#3931</a>, <a href="https://redirect.github.com/google/error-prone/issues/3945">#3945</a>, <a href="https://redirect.github.com/google/error-prone/issues/3946">#3946</a></p>
<p><strong>Full Changelog</strong>: <a href="https://github.com/google/error-prone/compare/v2.19.1...v2.20.0">https://github.com/google/error-prone/compare/v2.19.1...v2.20.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/error-prone/commit/79935c08884ef855cbb7ca3c3c4b14f878d3536a"><code>79935c0</code></a> Release Error Prone 2.20.0</li>
<li><a href="https://github.com/google/error-prone/commit/4148b441ad2ebd9c23e828a4114b250ceda905ed"><code>4148b44</code></a> Remove FRAGILE_CODE tag from StringCaseLocaleUsage</li>
<li><a href="https://github.com/google/error-prone/commit/b42c84f405827d0496c4da829587cc93d924632f"><code>b42c84f</code></a> Strip enough "*"s to turn something into non-Javadoc.</li>
<li><a href="https://github.com/google/error-prone/commit/12b90df1e5c1efa776b5f8eaa967a6e3381a36cc"><code>12b90df</code></a> Fix one of the classic blunders in <code>UnnecessaryStringBuilder</code></li>
<li><a href="https://github.com/google/error-prone/commit/a86e28bd53d3b95f799a286ec6cacfaf6542de91"><code>a86e28b</code></a> Warn when on <code>Stream</code> parameters and <code>Iterator</code> return types.</li>
<li><a href="https://github.com/google/error-prone/commit/4f11cba7117dff323a5e812f5175a142fe3ad100"><code>4f11cba</code></a> Don't fire some <code>NonApiType</code> checks inside of <code>GraphWrapper</code>s.</li>
<li><a href="https://github.com/google/error-prone/commit/e3743fc03900663515dc400cd76603bcfc13fef4"><code>e3743fc</code></a> Add a check for unnecessary usages of <code>StringBuilder</code></li>
<li><a href="https://github.com/google/error-prone/commit/3195ab03b000401b947f57f300e38073c68e9e1f"><code>3195ab0</code></a> Recognize <code>MethodHandle</code> as immutable.</li>
<li><a href="https://github.com/google/error-prone/commit/7f368567c684fd9a18403541118ddaac45c4be6d"><code>7f36856</code></a> Fire <code>InlineTrivialConstant</code> on <code>EMPTY</code> and <code>EMPTY_STR</code> too.</li>
<li><a href="https://github.com/google/error-prone/commit/bda0edc01a69bc98e2d6fea0be5197d14cb421f9"><code>bda0edc</code></a> Suggest inlining trivial constants like <code>EMPTY_STRING</code></li>
<li>Additional commits viewable in <a href="https://github.com/google/error-prone/compare/v2.19.1...v2.20.0">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1553
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1553 from google:dependabot/maven/value/errorprone.version-2.20.0 8c9e7f83c8c3b559971581fea1016e2a0ff01eee
PiperOrigin-RevId: 542068175
|
|
Exclude Eclipse compilation tests on JDK platforms < 17. Previously we excluded them on platforms < 11.
Fixes https://github.com/google/auto/pull/1547
Fixes https://github.com/google/auto/pull/1548
RELNOTES=n/a
PiperOrigin-RevId: 541973522
|
|
Bumps [truth](https://github.com/google/truth) from 1.1.4 to 1.1.5.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/truth/commit/33387149b465f82712a817e6744847fe136949b3"><code>3338714</code></a> Set version number for truth-parent to 1.1.5.</li>
<li><a href="https://github.com/google/truth/commit/bf913b072cfda4d4fca9e90fb6fc25eed1a9e67d"><code>bf913b0</code></a> Bump actions/checkout from 3.5.2 to 3.5.3</li>
<li><a href="https://github.com/google/truth/commit/d75d0b6a082df43751adececda0a6256bbe60c16"><code>d75d0b6</code></a> Fix NPE when actual is null</li>
<li><a href="https://github.com/google/truth/commit/70523e2980e236f4a852cda259ed62f05c1cd584"><code>70523e2</code></a> Bump guava.android.version from 32.0.0-android to 32.0.1-android</li>
<li><a href="https://github.com/google/truth/commit/76812768d72bb07ea2c8dec0026378b6fc9f2e6b"><code>7681276</code></a> Bump maven-project-info-reports-plugin from 3.4.4 to 3.4.5</li>
<li><a href="https://github.com/google/truth/commit/3b73756bf7eda3c44fd2c24edda3f119626bdd48"><code>3b73756</code></a> Bump maven-surefire-plugin from 3.1.0 to 3.1.2</li>
<li><a href="https://github.com/google/truth/commit/012dc2fb5be2ebdf53dd553868ca2a8828c2a907"><code>012dc2f</code></a> Bump checker-qual from 3.34.0 to 3.35.0</li>
<li><a href="https://github.com/google/truth/commit/80d1996f281e4b83e8662617b4ec2da34e058591"><code>80d1996</code></a> Bump protobuf-java from 3.23.1 to 3.23.2</li>
<li><a href="https://github.com/google/truth/commit/f3f5ab00c572d51eb87f1ba99aace1b532644463"><code>f3f5ab0</code></a> Bump maven-gpg-plugin from 3.0.1 to 3.1.0</li>
<li><a href="https://github.com/google/truth/commit/7d0c7966a095c291612d399b800d34e096d19bed"><code>7d0c796</code></a> Remove old release script.</li>
<li>See full diff in <a href="https://github.com/google/truth/compare/v1.1.4...v1.1.5">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.google.truth:truth&package-manager=maven&previous-version=1.1.4&new-version=1.1.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1555
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1555 from google:dependabot/maven/factory/com.google.truth-truth-1.1.5 ecef49294604e8f4d584792ef1fafb6bbf85af91
PiperOrigin-RevId: 541926734
|
|
Specifically, these problems show up in the GitHub CI.
RELNOTES=n/a
PiperOrigin-RevId: 541921547
|
|
Bumps `truth.version` from 1.1.4 to 1.1.5.
Updates `truth` from 1.1.4 to 1.1.5
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/truth/commit/33387149b465f82712a817e6744847fe136949b3"><code>3338714</code></a> Set version number for truth-parent to 1.1.5.</li>
<li><a href="https://github.com/google/truth/commit/bf913b072cfda4d4fca9e90fb6fc25eed1a9e67d"><code>bf913b0</code></a> Bump actions/checkout from 3.5.2 to 3.5.3</li>
<li><a href="https://github.com/google/truth/commit/d75d0b6a082df43751adececda0a6256bbe60c16"><code>d75d0b6</code></a> Fix NPE when actual is null</li>
<li><a href="https://github.com/google/truth/commit/70523e2980e236f4a852cda259ed62f05c1cd584"><code>70523e2</code></a> Bump guava.android.version from 32.0.0-android to 32.0.1-android</li>
<li><a href="https://github.com/google/truth/commit/76812768d72bb07ea2c8dec0026378b6fc9f2e6b"><code>7681276</code></a> Bump maven-project-info-reports-plugin from 3.4.4 to 3.4.5</li>
<li><a href="https://github.com/google/truth/commit/3b73756bf7eda3c44fd2c24edda3f119626bdd48"><code>3b73756</code></a> Bump maven-surefire-plugin from 3.1.0 to 3.1.2</li>
<li><a href="https://github.com/google/truth/commit/012dc2fb5be2ebdf53dd553868ca2a8828c2a907"><code>012dc2f</code></a> Bump checker-qual from 3.34.0 to 3.35.0</li>
<li><a href="https://github.com/google/truth/commit/80d1996f281e4b83e8662617b4ec2da34e058591"><code>80d1996</code></a> Bump protobuf-java from 3.23.1 to 3.23.2</li>
<li><a href="https://github.com/google/truth/commit/f3f5ab00c572d51eb87f1ba99aace1b532644463"><code>f3f5ab0</code></a> Bump maven-gpg-plugin from 3.0.1 to 3.1.0</li>
<li><a href="https://github.com/google/truth/commit/7d0c7966a095c291612d399b800d34e096d19bed"><code>7d0c796</code></a> Remove old release script.</li>
<li>See full diff in <a href="https://github.com/google/truth/compare/v1.1.4...v1.1.5">compare view</a></li>
</ul>
</details>
<br />
Updates `truth-java8-extension` from 1.1.4 to 1.1.5
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1556
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1556 from google:dependabot/maven/value/truth.version-1.1.5 79c20ad926fdbb0c6d263921883c5cbed13ed9be
PiperOrigin-RevId: 541915594
|
|
Bumps [maven-invoker-plugin](https://github.com/apache/maven-invoker-plugin) from 3.5.1 to 3.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/apache/maven-invoker-plugin/releases">maven-invoker-plugin's releases</a>.</em></p>
<blockquote>
<h2>3.6.0</h2>
<!-- raw HTML omitted -->
<h2><a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12353076">Release Notes</a></h2>
<h2>🚀 New features and improvements</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-345">[MINVOKER-345]</a> - Use ChoiceFormat to selectively render percentage and … (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/194">#194</a>) <a href="https://github.com/michael-o"><code>@michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-342">[MINVOKER-342]</a> - Use ChoiceFormat to selectively render elapsed time in AbstractInvokerMojo (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/192">#192</a>) <a href="https://github.com/michael-o"><code>@michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-341">[MINVOKER-341]</a> - Make elapsed time field type consistent with Maven Sur… (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/191">#191</a>) <a href="https://github.com/michael-o"><code>@michael-o</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li>Bump maven-shared-utils from 3.3.4 to 3.4.1 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/186">#186</a>) <a href="https://github.com/dependabot"><code>@dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-338">[MINVOKER-338]</a> - Bump groovy-bom from 4.0.10 to 4.0.12 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/188">#188</a>) <a href="https://github.com/dependabot"><code>@dependabot</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MNG-6829">[MNG-6829]</a> - Replace StringUtils#isEmpty(String) and #isNotEmpty(String) (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/189">#189</a>) <a href="https://github.com/timtebeek"><code>@timtebeek</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MNG-6825">[MNG-6825]</a> - Replace StringUtils with Commons Lang3 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/185">#185</a>) <a href="https://github.com/timtebeek"><code>@timtebeek</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/d612eb63f2e5797728c29fec9ce7cef62541a87a"><code>d612eb6</code></a> [maven-release-plugin] prepare release maven-invoker-plugin-3.6.0</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/14ffae65a9f0db6cf623da820e7444a9d9cd0501"><code>14ffae6</code></a> [MINVOKER-347] Document upcoming report file name change</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/3df7c384accf3489122a7f17995c778755d7ba88"><code>3df7c38</code></a> [MINVOKER-345] Use ChoiceFormat to selectively render percentage and elapsed ...</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/a154e5b13dd7d900829d1d951efff50c41f25738"><code>a154e5b</code></a> [MINVOKER-344] Move reporting rendering logic into a ReportRenderer class</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/3dff59f19ab1b810a4a300a7f06ee8d90b605782"><code>3dff59f</code></a> [MINVOKER-342] Use ChoiceFormat to selectively render elapsed time in Abstrac...</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/26f2dcfcb76b8e23f986954f4670c189f3ead153"><code>26f2dcf</code></a> [MINVOKER-341] Make elapsed time field type consistent with Maven Surefire</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/6c0c181e09c45c0d1e02c8ccfa51f503ad7751f7"><code>6c0c181</code></a> Bump maven-shared-utils from 3.3.4 to 3.4.1</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/401c229952bce1842756fb72963ae9b343c2517f"><code>401c229</code></a> [MNG-6829] Replace StringUtils#isEmpty(String) and #isNotEmpty(String) (<a href="https://redirect.github.com/apache/maven-invoker-plugin/issues/189">#189</a>)</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/4afec1d322e912b188982255de9801dcaf793186"><code>4afec1d</code></a> [MINVOKER-338] Bump groovy-bom from 4.0.10 to 4.0.12 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/issues/188">#188</a>)</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/9c3e913e04cbf3b930c537a07ee5946e3251c24e"><code>9c3e913</code></a> configure notifications</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-invoker-plugin/compare/maven-invoker-plugin-3.5.1...maven-invoker-plugin-3.6.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-invoker-plugin&package-manager=maven&previous-version=3.5.1&new-version=3.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1551
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1551 from google:dependabot/maven/factory/org.apache.maven.plugins-maven-invoker-plugin-3.6.0 1a04bf7d3340183a9e29ccbc2c7b7fd28d7c8875
PiperOrigin-RevId: 540869276
|
|
Bumps [maven-invoker-plugin](https://github.com/apache/maven-invoker-plugin) from 3.5.1 to 3.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/apache/maven-invoker-plugin/releases">maven-invoker-plugin's releases</a>.</em></p>
<blockquote>
<h2>3.6.0</h2>
<!-- raw HTML omitted -->
<h2><a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12353076">Release Notes</a></h2>
<h2>🚀 New features and improvements</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-345">[MINVOKER-345]</a> - Use ChoiceFormat to selectively render percentage and … (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/194">#194</a>) <a href="https://github.com/michael-o"><code>@michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-342">[MINVOKER-342]</a> - Use ChoiceFormat to selectively render elapsed time in AbstractInvokerMojo (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/192">#192</a>) <a href="https://github.com/michael-o"><code>@michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-341">[MINVOKER-341]</a> - Make elapsed time field type consistent with Maven Sur… (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/191">#191</a>) <a href="https://github.com/michael-o"><code>@michael-o</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li>Bump maven-shared-utils from 3.3.4 to 3.4.1 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/186">#186</a>) <a href="https://github.com/dependabot"><code>@dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MINVOKER-338">[MINVOKER-338]</a> - Bump groovy-bom from 4.0.10 to 4.0.12 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/188">#188</a>) <a href="https://github.com/dependabot"><code>@dependabot</code></a></li>
</ul>
<h2>👻 Maintenance</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MNG-6829">[MNG-6829]</a> - Replace StringUtils#isEmpty(String) and #isNotEmpty(String) (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/189">#189</a>) <a href="https://github.com/timtebeek"><code>@timtebeek</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MNG-6825">[MNG-6825]</a> - Replace StringUtils with Commons Lang3 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/pull/185">#185</a>) <a href="https://github.com/timtebeek"><code>@timtebeek</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/d612eb63f2e5797728c29fec9ce7cef62541a87a"><code>d612eb6</code></a> [maven-release-plugin] prepare release maven-invoker-plugin-3.6.0</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/14ffae65a9f0db6cf623da820e7444a9d9cd0501"><code>14ffae6</code></a> [MINVOKER-347] Document upcoming report file name change</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/3df7c384accf3489122a7f17995c778755d7ba88"><code>3df7c38</code></a> [MINVOKER-345] Use ChoiceFormat to selectively render percentage and elapsed ...</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/a154e5b13dd7d900829d1d951efff50c41f25738"><code>a154e5b</code></a> [MINVOKER-344] Move reporting rendering logic into a ReportRenderer class</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/3dff59f19ab1b810a4a300a7f06ee8d90b605782"><code>3dff59f</code></a> [MINVOKER-342] Use ChoiceFormat to selectively render elapsed time in Abstrac...</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/26f2dcfcb76b8e23f986954f4670c189f3ead153"><code>26f2dcf</code></a> [MINVOKER-341] Make elapsed time field type consistent with Maven Surefire</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/6c0c181e09c45c0d1e02c8ccfa51f503ad7751f7"><code>6c0c181</code></a> Bump maven-shared-utils from 3.3.4 to 3.4.1</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/401c229952bce1842756fb72963ae9b343c2517f"><code>401c229</code></a> [MNG-6829] Replace StringUtils#isEmpty(String) and #isNotEmpty(String) (<a href="https://redirect.github.com/apache/maven-invoker-plugin/issues/189">#189</a>)</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/4afec1d322e912b188982255de9801dcaf793186"><code>4afec1d</code></a> [MINVOKER-338] Bump groovy-bom from 4.0.10 to 4.0.12 (<a href="https://redirect.github.com/apache/maven-invoker-plugin/issues/188">#188</a>)</li>
<li><a href="https://github.com/apache/maven-invoker-plugin/commit/9c3e913e04cbf3b930c537a07ee5946e3251c24e"><code>9c3e913</code></a> configure notifications</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-invoker-plugin/compare/maven-invoker-plugin-3.5.1...maven-invoker-plugin-3.6.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-invoker-plugin&package-manager=maven&previous-version=3.5.1&new-version=3.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1550
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1550 from google:dependabot/maven/value/org.apache.maven.plugins-maven-invoker-plugin-3.6.0 8cc2d64316667ebb1eac0be1094a4b68c201ee3e
PiperOrigin-RevId: 540865199
|
|
RELNOTES=n/a
PiperOrigin-RevId: 540119503
|
|
RELNOTES=n/a
PiperOrigin-RevId: 539723998
|
|
The current type is `ImmutableSet<? extends AnnotationMirror>`. The wildcard serves no real purpose, especially since there are no standard subtypes of `AnnotationMirror`. It just means extra typing for people who want to assign the returned value to an explicitly-typed variable.
This change should be both binary- and source-compatible. Erasure means that the JVM signature is unchanged. `ImmutableSet<AnnotationMirror>` is assignable to `ImmutableSet<? extends AnnotationMirror>` so callers that were expecting the old type should also be able to handle the new one.
RELNOTES=The return type of `AnnotationMirrors.getAnnotedAnnotations` is now `ImmutableSet<AnnotationMirror>` rather than `ImmutableSet<? extends AnnotationMirror>`.
PiperOrigin-RevId: 539683468
|
|
The meta-annotation `@AutoFactory.AnnotationsToApply` specifies an annotation that can be applied alongside `@AutoFactory` to specify the annotations to be applied to the generated class. Its javadoc has more details.
RELNOTES=There is now a way to add annotations to generated AutoFactory classes. See the javadoc for `@AutoFactory.AnnotationsToApply`.
PiperOrigin-RevId: 539648904
|
|
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.2 to 3.5.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p>
<blockquote>
<h2>v3.5.3</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by <a href="https://github.com/megamanics"><code>@megamanics</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1196">actions/checkout#1196</a></li>
<li>Fix typos found by codespell by <a href="https://github.com/DimitriPapadopoulos"><code>@DimitriPapadopoulos</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1287">actions/checkout#1287</a></li>
<li>Add support for sparse checkouts by <a href="https://github.com/dscho"><code>@dscho</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1369">actions/checkout#1369</a></li>
<li>Release v3.5.3 by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1376">actions/checkout#1376</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/megamanics"><code>@megamanics</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1196">actions/checkout#1196</a></li>
<li><a href="https://github.com/DimitriPapadopoulos"><code>@DimitriPapadopoulos</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1287">actions/checkout#1287</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v3...v3.5.3">https://github.com/actions/checkout/compare/v3...v3.5.3</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>v3.5.3</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1196">Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1287">Fix typos found by codespell</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1369">Add support for sparse checkouts</a></li>
</ul>
<h2>v3.5.2</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1289">Fix api endpoint for GHES</a></li>
</ul>
<h2>v3.5.1</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1246">Fix slow checkout on Windows</a></li>
</ul>
<h2>v3.5.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1237">Add new public key for known_hosts</a></li>
</ul>
<h2>v3.4.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1209">Upgrade codeql actions to v2</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1210">Upgrade dependencies</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1225">Upgrade <code>@actions/io</code></a></li>
</ul>
<h2>v3.3.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1045">Implement branch list using callbacks from exec function</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1050">Add in explicit reference to private checkout options</a></li>
<li>[Fix comment typos (that got added in <a href="https://redirect.github.com/actions/checkout/issues/770">#770</a>)](<a href="https://redirect.github.com/actions/checkout/pull/1057">actions/checkout#1057</a>)</li>
</ul>
<h2>v3.2.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/942">Add GitHub Action to perform release</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/967">Fix status badge</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1002">Replace datadog/squid with ubuntu/squid Docker image</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/964">Wrap pipeline commands for submoduleForeach in quotes</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1029">Update <code>@actions/io</code> to 1.1.2</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1039">Upgrading version to 3.2.0</a></li>
</ul>
<h2>v3.1.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/939">Use <code>@actions/core</code> <code>saveState</code> and <code>getState</code></a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/922">Add <code>github-server-url</code> input</a></li>
</ul>
<h2>v3.0.2</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/770">Add input <code>set-safe-directory</code></a></li>
</ul>
<h2>v3.0.1</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/762">Fixed an issue where checkout failed to run in container jobs due to the new git setting <code>safe.directory</code></a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/744">Bumped various npm package versions</a></li>
</ul>
<h2>v3.0.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/689">Update to node 16</a></li>
</ul>
<h2>v2.3.1</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/actions/checkout/commit/c85c95e3d7251135ab7dc9ce3241c5835cc595a9"><code>c85c95e</code></a> Release v3.5.3 (<a href="https://redirect.github.com/actions/checkout/issues/1376">#1376</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/d106d4669b3bfcb17f11f83f98e1cab478e9f635"><code>d106d46</code></a> Add support for sparse checkouts (<a href="https://redirect.github.com/actions/checkout/issues/1369">#1369</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/f095bcc56b7c2baf48f3ac70d6d6782f4f553222"><code>f095bcc</code></a> Fix typos found by codespell (<a href="https://redirect.github.com/actions/checkout/issues/1287">#1287</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/47fbe2df0ad0e27efb67a70beac3555f192b062f"><code>47fbe2d</code></a> Fix: Checkout fail in self-hosted runners when faulty submodule are checked-i...</li>
<li>See full diff in <a href="https://github.com/actions/checkout/compare/8e5e7e5ab8b370d6c329ec480221332ada57f0ab...c85c95e3d7251135ab7dc9ce3241c5835cc595a9">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=3.5.2&new-version=3.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1543
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1543 from google:dependabot/github_actions/actions/checkout-3.5.3 8c099bf2ddb34a65a4ad275dce16a843442a5c75
PiperOrigin-RevId: 539634801
|
|
RELNOTES=n/a
PiperOrigin-RevId: 539064634
|
|
We will shortly be supporting both `javax.inject` and `jakarta.inject`. The test here is being parameterized, though it only has one value for the parameter at the moment. With the `jakarta.inject` change, we will have several.
RELNOTES=n/a
PiperOrigin-RevId: 538848481
|
|
Bumps `kotlin.version` from 1.8.21 to 1.8.22.
Updates `kotlin-stdlib` from 1.8.21 to 1.8.22
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/JetBrains/kotlin/commits">compare view</a></li>
</ul>
</details>
<br />
Updates `kotlin-maven-plugin` from 1.8.21 to 1.8.22
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1540
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1540 from google:dependabot/maven/value/kotlin.version-1.8.22 b920e45b35290d410146de4ca5e1dd78502bca56
PiperOrigin-RevId: 538607407
|
|
Bumps [maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.1.0 to 3.1.2.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-surefire/commit/5e097b58edfe8317ef043e0d2e553cb475305b67"><code>5e097b5</code></a> [maven-release-plugin] prepare release surefire-3.1.2</li>
<li><a href="https://github.com/apache/maven-surefire/commit/255bb51cc0cdc627d1570a073d8c38e52a6ca55d"><code>255bb51</code></a> Update commons compress to 1.23.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/a77dfb24f8872b44635204d8bab844c78a022cf6"><code>a77dfb2</code></a> Drop unused commons-lang 2.6 from management (<a href="https://redirect.github.com/apache/maven-surefire/issues/661">#661</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/95e8e95ee02ee0e12af70850440bd3d4c053d5db"><code>95e8e95</code></a> [SUREFIRE-2157] Upgrade junit-jupiter to 5.9.3/junit-platform to 1.9.2</li>
<li><a href="https://github.com/apache/maven-surefire/commit/9092b5ec59ef638a6d9d84ca940cca597594c560"><code>9092b5e</code></a> [SUREFIRE-2157] Upgrade surefire IT to 3.1.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/1af92f5ffe91d111278ee9b88dddcf6721885c6c"><code>1af92f5</code></a> Remove old junittoolbox dependency no longer used (<a href="https://redirect.github.com/apache/maven-surefire/issues/658">#658</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/8878ed5e5cda4e0d365bf19e1d5d15fece8a5d17"><code>8878ed5</code></a> update test libraries (<a href="https://redirect.github.com/apache/maven-surefire/issues/657">#657</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/a6613a815018c832cf0bd5fd1a7f37731a727e79"><code>a6613a8</code></a> Remove redundant space</li>
<li><a href="https://github.com/apache/maven-surefire/commit/e0e89e44ab78445b25cc99bf5f7f2b2b1430756b"><code>e0e89e4</code></a> update commons-io to 2.12.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/d8ac134c3ac8019043ce4c7f523e1eaf5b26055b"><code>d8ac134</code></a> [MNGSITE-393] remove descriptions of Maven 2.x and very old versions</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-surefire/compare/surefire-3.1.0...surefire-3.1.2">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-surefire-plugin&package-manager=maven&previous-version=3.1.0&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1538
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1538 from google:dependabot/maven/factory/org.apache.maven.plugins-maven-surefire-plugin-3.1.2 63c2d76a05945dbba99d8cac017372b4a814b963
PiperOrigin-RevId: 538478677
|
|
Bumps [maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.1.0 to 3.1.2.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-surefire/commit/5e097b58edfe8317ef043e0d2e553cb475305b67"><code>5e097b5</code></a> [maven-release-plugin] prepare release surefire-3.1.2</li>
<li><a href="https://github.com/apache/maven-surefire/commit/255bb51cc0cdc627d1570a073d8c38e52a6ca55d"><code>255bb51</code></a> Update commons compress to 1.23.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/a77dfb24f8872b44635204d8bab844c78a022cf6"><code>a77dfb2</code></a> Drop unused commons-lang 2.6 from management (<a href="https://redirect.github.com/apache/maven-surefire/issues/661">#661</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/95e8e95ee02ee0e12af70850440bd3d4c053d5db"><code>95e8e95</code></a> [SUREFIRE-2157] Upgrade junit-jupiter to 5.9.3/junit-platform to 1.9.2</li>
<li><a href="https://github.com/apache/maven-surefire/commit/9092b5ec59ef638a6d9d84ca940cca597594c560"><code>9092b5e</code></a> [SUREFIRE-2157] Upgrade surefire IT to 3.1.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/1af92f5ffe91d111278ee9b88dddcf6721885c6c"><code>1af92f5</code></a> Remove old junittoolbox dependency no longer used (<a href="https://redirect.github.com/apache/maven-surefire/issues/658">#658</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/8878ed5e5cda4e0d365bf19e1d5d15fece8a5d17"><code>8878ed5</code></a> update test libraries (<a href="https://redirect.github.com/apache/maven-surefire/issues/657">#657</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/a6613a815018c832cf0bd5fd1a7f37731a727e79"><code>a6613a8</code></a> Remove redundant space</li>
<li><a href="https://github.com/apache/maven-surefire/commit/e0e89e44ab78445b25cc99bf5f7f2b2b1430756b"><code>e0e89e4</code></a> update commons-io to 2.12.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/d8ac134c3ac8019043ce4c7f523e1eaf5b26055b"><code>d8ac134</code></a> [MNGSITE-393] remove descriptions of Maven 2.x and very old versions</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-surefire/compare/surefire-3.1.0...surefire-3.1.2">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-surefire-plugin&package-manager=maven&previous-version=3.1.0&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1539
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1539 from google:dependabot/maven/value/org.apache.maven.plugins-maven-surefire-plugin-3.1.2 d5e3ed24eefeb0a42af001c88824d0fd13f6a5ab
PiperOrigin-RevId: 538463528
|
|
Bumps [maven-failsafe-plugin](https://github.com/apache/maven-surefire) from 3.1.0 to 3.1.2.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-surefire/commit/5e097b58edfe8317ef043e0d2e553cb475305b67"><code>5e097b5</code></a> [maven-release-plugin] prepare release surefire-3.1.2</li>
<li><a href="https://github.com/apache/maven-surefire/commit/255bb51cc0cdc627d1570a073d8c38e52a6ca55d"><code>255bb51</code></a> Update commons compress to 1.23.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/a77dfb24f8872b44635204d8bab844c78a022cf6"><code>a77dfb2</code></a> Drop unused commons-lang 2.6 from management (<a href="https://redirect.github.com/apache/maven-surefire/issues/661">#661</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/95e8e95ee02ee0e12af70850440bd3d4c053d5db"><code>95e8e95</code></a> [SUREFIRE-2157] Upgrade junit-jupiter to 5.9.3/junit-platform to 1.9.2</li>
<li><a href="https://github.com/apache/maven-surefire/commit/9092b5ec59ef638a6d9d84ca940cca597594c560"><code>9092b5e</code></a> [SUREFIRE-2157] Upgrade surefire IT to 3.1.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/1af92f5ffe91d111278ee9b88dddcf6721885c6c"><code>1af92f5</code></a> Remove old junittoolbox dependency no longer used (<a href="https://redirect.github.com/apache/maven-surefire/issues/658">#658</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/8878ed5e5cda4e0d365bf19e1d5d15fece8a5d17"><code>8878ed5</code></a> update test libraries (<a href="https://redirect.github.com/apache/maven-surefire/issues/657">#657</a>)</li>
<li><a href="https://github.com/apache/maven-surefire/commit/a6613a815018c832cf0bd5fd1a7f37731a727e79"><code>a6613a8</code></a> Remove redundant space</li>
<li><a href="https://github.com/apache/maven-surefire/commit/e0e89e44ab78445b25cc99bf5f7f2b2b1430756b"><code>e0e89e4</code></a> update commons-io to 2.12.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/d8ac134c3ac8019043ce4c7f523e1eaf5b26055b"><code>d8ac134</code></a> [MNGSITE-393] remove descriptions of Maven 2.x and very old versions</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-surefire/compare/surefire-3.1.0...surefire-3.1.2">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-failsafe-plugin&package-manager=maven&previous-version=3.1.0&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1537
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1537 from google:dependabot/maven/value/org.apache.maven.plugins-maven-failsafe-plugin-3.1.2 1d33f78b5cf5c5971565a0676d445371a288628f
PiperOrigin-RevId: 538449035
|
|
RELNOTES=n/a
PiperOrigin-RevId: 537940469
|
|
RELNOTES=n/a
PiperOrigin-RevId: 537883384
|
|
RELNOTES=n/a
PiperOrigin-RevId: 537311624
|
|
Bumps [kotlinx-metadata-jvm](https://github.com/JetBrains/kotlin) from 0.6.1 to 0.6.2.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/JetBrains/kotlin/commit/440716c81713a3a14cace55e335d7bddec2c5e06"><code>440716c</code></a> Updated to IDEA 132.27 EAP.</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/e29c593c58a3c9da7491b5999974b9ec041834ce"><code>e29c593</code></a> Fix check in JetQuickDocumentationProvider#isKotlinDeclaration</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/1072b1943f8b96d4631ddee0d6970c77cc46688f"><code>1072b19</code></a> Provide sources of dependency in AbstractJavaWithLibCompletionTest</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/3bf32c09a991c41018780a773b39ad49699bd6cf"><code>3bf32c0</code></a> JS backend: added ability to debug kotlin code in browser with using JavaScri...</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/b3658472ac4f8cb06cf7e01c568b056d47dbc091"><code>b365847</code></a> JS backend: improved sourcemap generation and moved SourceMap3Builder and JsS...</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/e05ffd03c33fd39f4d8c901e4cdb1494dee29b8c"><code>e05ffd0</code></a> JS backend: sourcemap should use absolute file urls.</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/3ab095a4f5f127a503eeb334aa95e8b66773be5a"><code>3ab095a</code></a> JS backend: started to implement source maps</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/e39943f9bd9ff0de15e0912006b379c4236642b0"><code>e39943f</code></a> JS backend: report expression location on error in StringTemplateTranslator.</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/1c173c5224c6d325a7043c109e64a22f337e9211"><code>1c173c5</code></a> JS backend: improve compilation performance -- don't create extra list.</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/4f9485b40e85472d93ace0c7a4cf1cba069d4a1d"><code>4f9485b</code></a> JS backend: fixed bug when explicitly use invoke method in function literal c...</li>
<li>Additional commits viewable in <a href="https://github.com/JetBrains/kotlin/compare/build-0.6.1...build-0.6.2">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.jetbrains.kotlinx:kotlinx-metadata-jvm&package-manager=maven&previous-version=0.6.1&new-version=0.6.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1530
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1530 from google:dependabot/maven/value/org.jetbrains.kotlinx-kotlinx-metadata-jvm-0.6.2 703075a140771f19bcdcdff894f03fbfc4a901b0
PiperOrigin-RevId: 537308542
|
|
Bumps [truth](https://github.com/google/truth) from 1.1.3 to 1.1.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/truth/releases">truth's releases</a>.</em></p>
<blockquote>
<h2>1.1.4</h2>
<ul>
<li>Updated Truth to build with <code>-source 8 -target 8</code>. This means that it no longer runs under Java 7 VMs. It continues to run under Android, even old versions, for all apps that have <a href="https://developer.android.com/studio/write/java8-support#supported_features">enabled support for Java 8 language features</a>. (db5db2429)</li>
<li>Updated Truth to depend on Guava 32.0.0. That release contains changes related to CVEs. Neither of the CVEs relates to any methods that are used by Truth, so this version bump is just about eliminating any warnings related to the old version and helping tools like Maven to select the newest version of Guava. (f8d4dbba8adc65effba70879d59a39da092dce51, 99b1df8852a25b5638590bea1b55a31ae536936d)</li>
<li>Added support for <code>value of: method()</code> to <code>expect.that</code>, matching the existing support for <code>assertThat</code>. (bd8efd003)</li>
<li>Enhanced <code>IterableSubject.containsAtLeastElementsIn().inOrder()</code> to print an extra line that shows only the expected elements in their actual order. (9da7dd184)</li>
<li>Annotated Truth for nullness. (2151add71)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/google/truth/commits/v1.1.4">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.google.truth:truth&package-manager=maven&previous-version=1.1.3&new-version=1.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1526
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1526 from google:dependabot/maven/factory/com.google.truth-truth-1.1.4 68410127af8930c76e5e22b0bf25d8a6043df17c
PiperOrigin-RevId: 537023031
|
|
Bumps `truth.version` from 1.1.3 to 1.1.4.
Updates `truth` from 1.1.3 to 1.1.4
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/truth/releases">truth's releases</a>.</em></p>
<blockquote>
<h2>1.1.4</h2>
<ul>
<li>Updated Truth to build with <code>-source 8 -target 8</code>. This means that it no longer runs under Java 7 VMs. It continues to run under Android, even old versions, for all apps that have <a href="https://developer.android.com/studio/write/java8-support#supported_features">enabled support for Java 8 language features</a>. (db5db2429)</li>
<li>Updated Truth to depend on Guava 32.0.0. That release contains changes related to CVEs. Neither of the CVEs relates to any methods that are used by Truth, so this version bump is just about eliminating any warnings related to the old version and helping tools like Maven to select the newest version of Guava. (f8d4dbba8adc65effba70879d59a39da092dce51, 99b1df8852a25b5638590bea1b55a31ae536936d)</li>
<li>Added support for <code>value of: method()</code> to <code>expect.that</code>, matching the existing support for <code>assertThat</code>. (bd8efd003)</li>
<li>Enhanced <code>IterableSubject.containsAtLeastElementsIn().inOrder()</code> to print an extra line that shows only the expected elements in their actual order. (9da7dd184)</li>
<li>Annotated Truth for nullness. (2151add71)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/google/truth/commits/v1.1.4">compare view</a></li>
</ul>
</details>
<br />
Updates `truth-java8-extension` from 1.1.3 to 1.1.4
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1527
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1527 from google:dependabot/maven/value/truth.version-1.1.4 69571c7e5395c529c385b844f9b1a4492ad433c4
PiperOrigin-RevId: 536697469
|
|
Bumps [kotlinx-metadata-jvm](https://github.com/JetBrains/kotlin) from 0.6.0 to 0.6.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/JetBrains/kotlin/commits/build-0.6.1">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.jetbrains.kotlinx:kotlinx-metadata-jvm&package-manager=maven&previous-version=0.6.0&new-version=0.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1528
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1528 from google:dependabot/maven/value/org.jetbrains.kotlinx-kotlinx-metadata-jvm-0.6.1 e783df1a5445c0575e424755e4f6daae58aa1a06
PiperOrigin-RevId: 536697468
|
|
Bumps [guava](https://github.com/google/guava) from 31.1-jre to 32.0.0-jre.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/guava/releases">guava's releases</a>.</em></p>
<blockquote>
<h2>32.0.0</h2>
<h3>Maven</h3>
<pre lang="xml"><code><dependency>
<groupId>com.google.guava</groupId>
<artifactId>guava</artifactId>
<version>32.0.0-jre</version>
<!-- or, for Android: -->
<version>32.0.0-android</version>
</dependency>
</code></pre>
<h3>Jar files</h3>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-jre/guava-32.0.0-jre.jar">32.0.0-jre.jar</a></li>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-android/guava-32.0.0-android.jar">32.0.0-android.jar</a></li>
</ul>
<p>Guava requires <a href="https://github.com/google/guava/wiki/UseGuavaInYourBuild#what-about-guavas-own-dependencies">one runtime dependency</a>, which you can download here:</p>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/failureaccess/1.0.1/failureaccess-1.0.1.jar">failureaccess-1.0.1.jar</a></li>
</ul>
<h3>Javadoc</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/docs/">32.0.0-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/docs/">32.0.0-android</a></li>
</ul>
<h3>JDiff</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/diffs/">32.0.0-jre vs. 31.1-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/diffs/">32.0.0-android vs. 31.1-android</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/androiddiffs/">32.0.0-android vs. 32.0.0-jre</a></li>
</ul>
<h3>Changelog</h3>
<h4>Security fixes</h4>
<ul>
<li>Reimplemented <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> to further address <a href="https://redirect.github.com/google/guava/issues/4011">CVE-2020-8908</a> and [Guava issue <a href="https://redirect.github.com/google/guava/issues/2575">#2575</a>](<a href="https://redirect.github.com/google/guava/issues/2575">google/guava#2575</a>) (CVE forthcoming). (feb83a1c8f)</li>
</ul>
<p>While CVE-2020-8908 was officially closed when we deprecated <code>Files.createTempDir</code> in <a href="https://github.com/google/guava/releases/tag/v30.0">Guava 30.0</a>, we've heard from users that even recent versions of Guava have been listed as vulnerable in <em>other</em> databases of security vulnerabilities. In response, we've reimplemented the method (and the very rarely used <code>FileBackedOutputStream</code> class, which had a similar issue) to eliminate the insecure behavior entirely. This change technically carries small risks (dicussed under "Incompatible changes" below), but we expect no practical risk to users.</p>
<h4>Incompatible changes</h4>
<p>Although this release bumps Guava's major version number, it makes no binary-incompatible changes to the <code>guava</code> artifact. Still, it makes a few changes that may cause problems for users in less common situations:</p>
<ul>
<li>This release makes a binary-incompatible change to a <code>@Beta</code> API in the separate artifact <code>guava-testlib</code>. Specifically, we changed the return type of <code>TestingExecutors.sameThreadScheduledExecutor</code> to <code>ListeningScheduledExecutorService</code>. The old return type was a package-private class, which caused the Kotlin compiler to produce warnings. (dafaa3e435)</li>
<li>This release <em>adds</em> two methods to the Android flavor of Guava: <code>Invokable.getAnnotatedReturnType()</code> and <code>Parameter.getAnnotatedType()</code>. Those methods do not work under an Android VM; we added them only to help our tests of the Android flavor (since we also run those tests under a JRE). Android VMs tolerate such methods as long as the app does not call them or perform reflection on them, and builds tolerate them because of our new Proguard configurations (discussed below). Thus, we expect no impact to most users. However, we could imagine build problems for users who have set up their own build system for the Android flavor of Guava. Please report any problems so that we can judge how safely we might be able to add other methods to the Android flavor in the future, such as APIs that use Java 8 classes like <code>Stream</code>. (b30e73cfa81ad15c1023c17cfd083255a3df0105)</li>
<li>This release removes various APIs from the <code>guava-gwt</code>. This affects only users of <a href="https://www.gwtproject.org/">GWT</a>. The APIs we removed are <code>Enums</code>, <code>Sets.complementOf</code>, and the <code>Enum*BiMap</code> classes' <code>keyType()</code> and <code>valueType()</code> methods. These changes prepare for the removal of reflective enum-related APIs from <a href="https://github.com/google/j2cl">J2CL</a>. If one of these changes causes you problems as a GWT user, let us know. (c3a155dc85, 09db2c29ae, 3de12be516)</li>
<li>The new implementations of <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> are annotated as <code>@J2ObjCIncompatible</code>. If you need to use them under J2ObjC, contact us. (56dc928a25)</li>
<li>Because the new version of <code>Files.createTempDir</code> restricts permissions to the current user, it could break any user that relies on letting other users access the directory.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/google/guava/commits">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.google.guava:guava&package-manager=maven&previous-version=31.1-jre&new-version=32.0.0-jre)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1525
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1525 from google:dependabot/maven/factory/com.google.guava-guava-32.0.0-jre 5b921ec9392e40ba689875a2980ede4b6281634f
PiperOrigin-RevId: 536460069
|
|
Bumps `guava.version` from 31.1-jre to 32.0.0-jre.
Updates `guava` from 31.1-jre to 32.0.0-jre
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/guava/releases">guava's releases</a>.</em></p>
<blockquote>
<h2>32.0.0</h2>
<h3>Maven</h3>
<pre lang="xml"><code><dependency>
<groupId>com.google.guava</groupId>
<artifactId>guava</artifactId>
<version>32.0.0-jre</version>
<!-- or, for Android: -->
<version>32.0.0-android</version>
</dependency>
</code></pre>
<h3>Jar files</h3>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-jre/guava-32.0.0-jre.jar">32.0.0-jre.jar</a></li>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-android/guava-32.0.0-android.jar">32.0.0-android.jar</a></li>
</ul>
<p>Guava requires <a href="https://github.com/google/guava/wiki/UseGuavaInYourBuild#what-about-guavas-own-dependencies">one runtime dependency</a>, which you can download here:</p>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/failureaccess/1.0.1/failureaccess-1.0.1.jar">failureaccess-1.0.1.jar</a></li>
</ul>
<h3>Javadoc</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/docs/">32.0.0-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/docs/">32.0.0-android</a></li>
</ul>
<h3>JDiff</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/diffs/">32.0.0-jre vs. 31.1-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/diffs/">32.0.0-android vs. 31.1-android</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/androiddiffs/">32.0.0-android vs. 32.0.0-jre</a></li>
</ul>
<h3>Changelog</h3>
<h4>Security fixes</h4>
<ul>
<li>Reimplemented <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> to further address <a href="https://redirect.github.com/google/guava/issues/4011">CVE-2020-8908</a> and [Guava issue <a href="https://redirect.github.com/google/guava/issues/2575">#2575</a>](<a href="https://redirect.github.com/google/guava/issues/2575">google/guava#2575</a>) (CVE forthcoming). (feb83a1c8f)</li>
</ul>
<p>While CVE-2020-8908 was officially closed when we deprecated <code>Files.createTempDir</code> in <a href="https://github.com/google/guava/releases/tag/v30.0">Guava 30.0</a>, we've heard from users that even recent versions of Guava have been listed as vulnerable in <em>other</em> databases of security vulnerabilities. In response, we've reimplemented the method (and the very rarely used <code>FileBackedOutputStream</code> class, which had a similar issue) to eliminate the insecure behavior entirely. This change technically carries small risks (dicussed under "Incompatible changes" below), but we expect no practical risk to users.</p>
<h4>Incompatible changes</h4>
<p>Although this release bumps Guava's major version number, it makes no binary-incompatible changes to the <code>guava</code> artifact. Still, it makes a few changes that may cause problems for users in less common situations:</p>
<ul>
<li>This release makes a binary-incompatible change to a <code>@Beta</code> API in the separate artifact <code>guava-testlib</code>. Specifically, we changed the return type of <code>TestingExecutors.sameThreadScheduledExecutor</code> to <code>ListeningScheduledExecutorService</code>. The old return type was a package-private class, which caused the Kotlin compiler to produce warnings. (dafaa3e435)</li>
<li>This release <em>adds</em> two methods to the Android flavor of Guava: <code>Invokable.getAnnotatedReturnType()</code> and <code>Parameter.getAnnotatedType()</code>. Those methods do not work under an Android VM; we added them only to help our tests of the Android flavor (since we also run those tests under a JRE). Android VMs tolerate such methods as long as the app does not call them or perform reflection on them, and builds tolerate them because of our new Proguard configurations (discussed below). Thus, we expect no impact to most users. However, we could imagine build problems for users who have set up their own build system for the Android flavor of Guava. Please report any problems so that we can judge how safely we might be able to add other methods to the Android flavor in the future, such as APIs that use Java 8 classes like <code>Stream</code>. (b30e73cfa81ad15c1023c17cfd083255a3df0105)</li>
<li>This release removes various APIs from the <code>guava-gwt</code>. This affects only users of <a href="https://www.gwtproject.org/">GWT</a>. The APIs we removed are <code>Enums</code>, <code>Sets.complementOf</code>, and the <code>Enum*BiMap</code> classes' <code>keyType()</code> and <code>valueType()</code> methods. These changes prepare for the removal of reflective enum-related APIs from <a href="https://github.com/google/j2cl">J2CL</a>. If one of these changes causes you problems as a GWT user, let us know. (c3a155dc85, 09db2c29ae, 3de12be516)</li>
<li>The new implementations of <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> are annotated as <code>@J2ObjCIncompatible</code>. If you need to use them under J2ObjC, contact us. (56dc928a25)</li>
<li>Because the new version of <code>Files.createTempDir</code> restricts permissions to the current user, it could break any user that relies on letting other users access the directory.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/google/guava/commits">compare view</a></li>
</ul>
</details>
<br />
Updates `guava-gwt` from 31.1-jre to 32.0.0-jre
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/guava/releases">guava-gwt's releases</a>.</em></p>
<blockquote>
<h2>32.0.0</h2>
<h3>Maven</h3>
<pre lang="xml"><code><dependency>
<groupId>com.google.guava</groupId>
<artifactId>guava</artifactId>
<version>32.0.0-jre</version>
<!-- or, for Android: -->
<version>32.0.0-android</version>
</dependency>
</code></pre>
<h3>Jar files</h3>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-jre/guava-32.0.0-jre.jar">32.0.0-jre.jar</a></li>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-android/guava-32.0.0-android.jar">32.0.0-android.jar</a></li>
</ul>
<p>Guava requires <a href="https://github.com/google/guava/wiki/UseGuavaInYourBuild#what-about-guavas-own-dependencies">one runtime dependency</a>, which you can download here:</p>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/failureaccess/1.0.1/failureaccess-1.0.1.jar">failureaccess-1.0.1.jar</a></li>
</ul>
<h3>Javadoc</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/docs/">32.0.0-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/docs/">32.0.0-android</a></li>
</ul>
<h3>JDiff</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/diffs/">32.0.0-jre vs. 31.1-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/diffs/">32.0.0-android vs. 31.1-android</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/androiddiffs/">32.0.0-android vs. 32.0.0-jre</a></li>
</ul>
<h3>Changelog</h3>
<h4>Security fixes</h4>
<ul>
<li>Reimplemented <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> to further address <a href="https://redirect.github.com/google/guava/issues/4011">CVE-2020-8908</a> and [Guava issue <a href="https://redirect.github.com/google/guava/issues/2575">#2575</a>](<a href="https://redirect.github.com/google/guava/issues/2575">google/guava#2575</a>) (CVE forthcoming). (feb83a1c8f)</li>
</ul>
<p>While CVE-2020-8908 was officially closed when we deprecated <code>Files.createTempDir</code> in <a href="https://github.com/google/guava/releases/tag/v30.0">Guava 30.0</a>, we've heard from users that even recent versions of Guava have been listed as vulnerable in <em>other</em> databases of security vulnerabilities. In response, we've reimplemented the method (and the very rarely used <code>FileBackedOutputStream</code> class, which had a similar issue) to eliminate the insecure behavior entirely. This change technically carries small risks (dicussed under "Incompatible changes" below), but we expect no practical risk to users.</p>
<h4>Incompatible changes</h4>
<p>Although this release bumps Guava's major version number, it makes no binary-incompatible changes to the <code>guava</code> artifact. Still, it makes a few changes that may cause problems for users in less common situations:</p>
<ul>
<li>This release makes a binary-incompatible change to a <code>@Beta</code> API in the separate artifact <code>guava-testlib</code>. Specifically, we changed the return type of <code>TestingExecutors.sameThreadScheduledExecutor</code> to <code>ListeningScheduledExecutorService</code>. The old return type was a package-private class, which caused the Kotlin compiler to produce warnings. (dafaa3e435)</li>
<li>This release <em>adds</em> two methods to the Android flavor of Guava: <code>Invokable.getAnnotatedReturnType()</code> and <code>Parameter.getAnnotatedType()</code>. Those methods do not work under an Android VM; we added them only to help our tests of the Android flavor (since we also run those tests under a JRE). Android VMs tolerate such methods as long as the app does not call them or perform reflection on them, and builds tolerate them because of our new Proguard configurations (discussed below). Thus, we expect no impact to most users. However, we could imagine build problems for users who have set up their own build system for the Android flavor of Guava. Please report any problems so that we can judge how safely we might be able to add other methods to the Android flavor in the future, such as APIs that use Java 8 classes like <code>Stream</code>. (b30e73cfa81ad15c1023c17cfd083255a3df0105)</li>
<li>This release removes various APIs from the <code>guava-gwt</code>. This affects only users of <a href="https://www.gwtproject.org/">GWT</a>. The APIs we removed are <code>Enums</code>, <code>Sets.complementOf</code>, and the <code>Enum*BiMap</code> classes' <code>keyType()</code> and <code>valueType()</code> methods. These changes prepare for the removal of reflective enum-related APIs from <a href="https://github.com/google/j2cl">J2CL</a>. If one of these changes causes you problems as a GWT user, let us know. (c3a155dc85, 09db2c29ae, 3de12be516)</li>
<li>The new implementations of <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> are annotated as <code>@J2ObjCIncompatible</code>. If you need to use them under J2ObjC, contact us. (56dc928a25)</li>
<li>Because the new version of <code>Files.createTempDir</code> restricts permissions to the current user, it could break any user that relies on letting other users access the directory.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/google/guava/commits">compare view</a></li>
</ul>
</details>
<br />
Updates `guava-testlib` from 31.1-jre to 32.0.0-jre
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/guava/releases">guava-testlib's releases</a>.</em></p>
<blockquote>
<h2>32.0.0</h2>
<h3>Maven</h3>
<pre lang="xml"><code><dependency>
<groupId>com.google.guava</groupId>
<artifactId>guava</artifactId>
<version>32.0.0-jre</version>
<!-- or, for Android: -->
<version>32.0.0-android</version>
</dependency>
</code></pre>
<h3>Jar files</h3>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-jre/guava-32.0.0-jre.jar">32.0.0-jre.jar</a></li>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/guava/32.0.0-android/guava-32.0.0-android.jar">32.0.0-android.jar</a></li>
</ul>
<p>Guava requires <a href="https://github.com/google/guava/wiki/UseGuavaInYourBuild#what-about-guavas-own-dependencies">one runtime dependency</a>, which you can download here:</p>
<ul>
<li><a href="https://repo1.maven.org/maven2/com/google/guava/failureaccess/1.0.1/failureaccess-1.0.1.jar">failureaccess-1.0.1.jar</a></li>
</ul>
<h3>Javadoc</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/docs/">32.0.0-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/docs/">32.0.0-android</a></li>
</ul>
<h3>JDiff</h3>
<ul>
<li><a href="http://guava.dev/releases/32.0.0-jre/api/diffs/">32.0.0-jre vs. 31.1-jre</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/diffs/">32.0.0-android vs. 31.1-android</a></li>
<li><a href="http://guava.dev/releases/32.0.0-android/api/androiddiffs/">32.0.0-android vs. 32.0.0-jre</a></li>
</ul>
<h3>Changelog</h3>
<h4>Security fixes</h4>
<ul>
<li>Reimplemented <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> to further address <a href="https://redirect.github.com/google/guava/issues/4011">CVE-2020-8908</a> and [Guava issue <a href="https://redirect.github.com/google/guava/issues/2575">#2575</a>](<a href="https://redirect.github.com/google/guava/issues/2575">google/guava#2575</a>) (CVE forthcoming). (feb83a1c8f)</li>
</ul>
<p>While CVE-2020-8908 was officially closed when we deprecated <code>Files.createTempDir</code> in <a href="https://github.com/google/guava/releases/tag/v30.0">Guava 30.0</a>, we've heard from users that even recent versions of Guava have been listed as vulnerable in <em>other</em> databases of security vulnerabilities. In response, we've reimplemented the method (and the very rarely used <code>FileBackedOutputStream</code> class, which had a similar issue) to eliminate the insecure behavior entirely. This change technically carries small risks (dicussed under "Incompatible changes" below), but we expect no practical risk to users.</p>
<h4>Incompatible changes</h4>
<p>Although this release bumps Guava's major version number, it makes no binary-incompatible changes to the <code>guava</code> artifact. Still, it makes a few changes that may cause problems for users in less common situations:</p>
<ul>
<li>This release makes a binary-incompatible change to a <code>@Beta</code> API in the separate artifact <code>guava-testlib</code>. Specifically, we changed the return type of <code>TestingExecutors.sameThreadScheduledExecutor</code> to <code>ListeningScheduledExecutorService</code>. The old return type was a package-private class, which caused the Kotlin compiler to produce warnings. (dafaa3e435)</li>
<li>This release <em>adds</em> two methods to the Android flavor of Guava: <code>Invokable.getAnnotatedReturnType()</code> and <code>Parameter.getAnnotatedType()</code>. Those methods do not work under an Android VM; we added them only to help our tests of the Android flavor (since we also run those tests under a JRE). Android VMs tolerate such methods as long as the app does not call them or perform reflection on them, and builds tolerate them because of our new Proguard configurations (discussed below). Thus, we expect no impact to most users. However, we could imagine build problems for users who have set up their own build system for the Android flavor of Guava. Please report any problems so that we can judge how safely we might be able to add other methods to the Android flavor in the future, such as APIs that use Java 8 classes like <code>Stream</code>. (b30e73cfa81ad15c1023c17cfd083255a3df0105)</li>
<li>This release removes various APIs from the <code>guava-gwt</code>. This affects only users of <a href="https://www.gwtproject.org/">GWT</a>. The APIs we removed are <code>Enums</code>, <code>Sets.complementOf</code>, and the <code>Enum*BiMap</code> classes' <code>keyType()</code> and <code>valueType()</code> methods. These changes prepare for the removal of reflective enum-related APIs from <a href="https://github.com/google/j2cl">J2CL</a>. If one of these changes causes you problems as a GWT user, let us know. (c3a155dc85, 09db2c29ae, 3de12be516)</li>
<li>The new implementations of <code>Files.createTempDir</code> and <code>FileBackedOutputStream</code> are annotated as <code>@J2ObjCIncompatible</code>. If you need to use them under J2ObjC, contact us. (56dc928a25)</li>
<li>Because the new version of <code>Files.createTempDir</code> restricts permissions to the current user, it could break any user that relies on letting other users access the directory.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/google/guava/commits">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1524
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1524 from google:dependabot/maven/value/guava.version-32.0.0-jre f1b8c8cdde81ed4cf0092bd6b59b2b259e23dffe
PiperOrigin-RevId: 536460041
|
|
RELNOTES=n/a
PiperOrigin-RevId: 534484290
|
|
Bumps [maven-source-plugin](https://github.com/apache/maven-source-plugin) from 3.2.1 to 3.3.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-source-plugin/commit/02a984779ed6157698fdb9235e5e66154b3d24e7"><code>02a9847</code></a> [maven-release-plugin] prepare release maven-source-plugin-3.3.0</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/f186993414e076abcf70b960b487813a6b1df8b7"><code>f186993</code></a> [MSOURCES-135] Cleanup project code</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/021af551aedf361dec82a5f6808054030ac47e8b"><code>021af55</code></a> [MSOURCES-134] Refresh download page</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/b11a457ba99a83fb5808b132967b4ddcc9523e89"><code>b11a457</code></a> Use shared GitHub actions v3</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/7caf2b0debe39afa2d1aff4fa38fa38b8988acad"><code>7caf2b0</code></a> [MSOURCES-133] Upgrade Parent to 39 - ignore git blame</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/dee4c1000d57c8c385cfe1147c81950371437d4b"><code>dee4c10</code></a> [MSOURCES-133] Upgrade Parent to 39</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/452111f29c36260640ae2cebc2afd8ec5f6279a0"><code>452111f</code></a> Add dependabot configuration</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/e691ac3b7f0f451e9da973e7734e07671b21efa9"><code>e691ac3</code></a> s/MSOURCE/MSOURCES/</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/1ddffd8923b65e37b28abf60120f979ea6238a23"><code>1ddffd8</code></a> Auto-link MSOURCE Jira</li>
<li><a href="https://github.com/apache/maven-source-plugin/commit/37ffefea6f479bbd78e89a2df97b4acd5b57f5b3"><code>37ffefe</code></a> Add pull request template</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-source-plugin/compare/maven-source-plugin-3.2.1...maven-source-plugin-3.3.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-source-plugin&package-manager=maven&previous-version=3.2.1&new-version=3.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1521
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1521 from google:dependabot/maven/value/org.apache.maven.plugins-maven-source-plugin-3.3.0 29076c42f2a614ef3d7f3e129239713884c18d0c
PiperOrigin-RevId: 534426990
|
|
PiperOrigin-RevId: 533253621
|
|
Bumps `errorprone.version` from 2.19.0 to 2.19.1.
Updates `error_prone_annotations` from 2.19.0 to 2.19.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/error-prone/releases">error_prone_annotations's releases</a>.</em></p>
<blockquote>
<h2>Error Prone 2.19.1</h2>
<p>This release fixes a binary compatibility issue when running on JDK 11, see <a href="https://redirect.github.com/google/error-prone/issues/3895">#3895</a></p>
<p><strong>Full Changelog</strong>: <a href="https://github.com/google/error-prone/compare/v2.19.0...v2.19.1">https://github.com/google/error-prone/compare/v2.19.0...v2.19.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/error-prone/commit/66ca96fc662c82bd46120f7abdbac02260f62d04"><code>66ca96f</code></a> Release Error Prone 2.19.1</li>
<li><a href="https://github.com/google/error-prone/commit/c2b71f9d1ef980c8e7acc3d2801eaf2d1fe28e7a"><code>c2b71f9</code></a> Update ci.yml</li>
<li><a href="https://github.com/google/error-prone/commit/25d34deaa689bdc23e56397ec4c95e44a78f62ad"><code>25d34de</code></a> Update ci.yml</li>
<li><a href="https://github.com/google/error-prone/commit/62355bf462ff0e713eeae256aee1d9cbd33e1151"><code>62355bf</code></a> Update ci.yml</li>
<li><a href="https://github.com/google/error-prone/commit/020a541797c8fa1ac7d0c820695d03dc2e6e83f9"><code>020a541</code></a> Update JDK versions, and test compatibility on JDK 11</li>
<li><a href="https://github.com/google/error-prone/commit/5da8e9a6b53710d24ef3514c263ca122a4aeecc2"><code>5da8e9a</code></a> Fix binary compatibility issues when building on JDK 17 and running on JDK 11...</li>
<li><a href="https://github.com/google/error-prone/commit/7335ba2402aa0b725978c3686f144e6f3de11ef1"><code>7335ba2</code></a> Don't consider overloads to have a functional interface clash if the paramete...</li>
<li><a href="https://github.com/google/error-prone/commit/94a93e9ffd0aba7e0523f389a8d45cffd1b52c17"><code>94a93e9</code></a> Fix <code>ImmutableChecker</code> to allow wildcard <code>@ImmutableTypeParameter</code>s which are...</li>
<li>See full diff in <a href="https://github.com/google/error-prone/compare/v2.19.0...v2.19.1">compare view</a></li>
</ul>
</details>
<br />
Updates `error_prone_type_annotations` from 2.19.0 to 2.19.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/error-prone/releases">error_prone_type_annotations's releases</a>.</em></p>
<blockquote>
<h2>Error Prone 2.19.1</h2>
<p>This release fixes a binary compatibility issue when running on JDK 11, see <a href="https://redirect.github.com/google/error-prone/issues/3895">#3895</a></p>
<p><strong>Full Changelog</strong>: <a href="https://github.com/google/error-prone/compare/v2.19.0...v2.19.1">https://github.com/google/error-prone/compare/v2.19.0...v2.19.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/error-prone/commit/66ca96fc662c82bd46120f7abdbac02260f62d04"><code>66ca96f</code></a> Release Error Prone 2.19.1</li>
<li><a href="https://github.com/google/error-prone/commit/c2b71f9d1ef980c8e7acc3d2801eaf2d1fe28e7a"><code>c2b71f9</code></a> Update ci.yml</li>
<li><a href="https://github.com/google/error-prone/commit/25d34deaa689bdc23e56397ec4c95e44a78f62ad"><code>25d34de</code></a> Update ci.yml</li>
<li><a href="https://github.com/google/error-prone/commit/62355bf462ff0e713eeae256aee1d9cbd33e1151"><code>62355bf</code></a> Update ci.yml</li>
<li><a href="https://github.com/google/error-prone/commit/020a541797c8fa1ac7d0c820695d03dc2e6e83f9"><code>020a541</code></a> Update JDK versions, and test compatibility on JDK 11</li>
<li><a href="https://github.com/google/error-prone/commit/5da8e9a6b53710d24ef3514c263ca122a4aeecc2"><code>5da8e9a</code></a> Fix binary compatibility issues when building on JDK 17 and running on JDK 11...</li>
<li><a href="https://github.com/google/error-prone/commit/7335ba2402aa0b725978c3686f144e6f3de11ef1"><code>7335ba2</code></a> Don't consider overloads to have a functional interface clash if the paramete...</li>
<li><a href="https://github.com/google/error-prone/commit/94a93e9ffd0aba7e0523f389a8d45cffd1b52c17"><code>94a93e9</code></a> Fix <code>ImmutableChecker</code> to allow wildcard <code>@ImmutableTypeParameter</code>s which are...</li>
<li>See full diff in <a href="https://github.com/google/error-prone/compare/v2.19.0...v2.19.1">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1513
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1513 from google:dependabot/maven/value/errorprone.version-2.19.1 c6fdfaabd9fe29728b77d1485cedfeac1b34929a
PiperOrigin-RevId: 533127707
|
|
RELNOTES=n/a
PiperOrigin-RevId: 532527930
|
|
RELNOTES=The `@AutoService` annotation can no longer be applied to an interface or abstract class.
PiperOrigin-RevId: 532523629
|
|
If your AutoValue class inherits an abstract method from a module, and that abstract method has an annotation that is not exported from the module, then AutoValue will incorrectly try to copy the annotation onto the generated implementation of the abstract method.
In a later change we plan to fix this problem and invert the sense of the test.
RELNOTES=n/a
PiperOrigin-RevId: 532139999
|
|
Previously AutoService only verified that the annotated class actually implemented the service interface _if_ you compiled with `-Averify=true`. There doesn't seem to have been a good reason for that, so now AutoService verifies _unless_ you specify `-Averify=false`.
As an example, this will no longer compile:
```java
@AutoService(SomeService.class)
public class SomeServiceImpl {} // does not implement SomeService
```
Also add the ability to use `@SuppressWarnings("AutoService")` to disable this and other future verifications.
RELNOTES=AutoService now verifies by default that the annotated class does indeed implement the interface in `@AutoServce`. Previously this only happened when compiling with `-Averify=true`. The verification can be disabled either by compiling with `-Averify=false` or by adding `@SuppressWarnings("AutoService")` to the annotated class.
PiperOrigin-RevId: 531009313
|
|
Bumps `errorprone.version` from 2.18.0 to 2.19.0.
Updates `error_prone_annotations` from 2.18.0 to 2.19.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/error-prone/releases">error_prone_annotations's releases</a>.</em></p>
<blockquote>
<h2>Error Prone 2.19.0</h2>
<p>New Checkers:</p>
<ul>
<li><a href="https://errorprone.info/bugpattern/NotJavadoc"><code>NotJavadoc</code></a></li>
<li><a href="https://errorprone.info/bugpattern/StringCaseLocaleUsage"><code>StringCaseLocaleUsage</code></a></li>
<li><a href="https://errorprone.info/bugpattern/UnnecessaryTestMethodPrefix"><code>UnnecessaryTestMethodPrefix</code></a></li>
</ul>
<p>Fixes issues: <a href="https://redirect.github.com/google/error-prone/issues/956">#956</a>, <a href="https://redirect.github.com/google/error-prone/issues/3504">#3504</a>, <a href="https://redirect.github.com/google/error-prone/issues/3654">#3654</a>, <a href="https://redirect.github.com/google/error-prone/issues/3703">#3703</a>, <a href="https://redirect.github.com/google/error-prone/issues/3731">#3731</a>, <a href="https://redirect.github.com/google/error-prone/issues/3737">#3737</a>, <a href="https://redirect.github.com/google/error-prone/issues/3760">#3760</a>, <a href="https://redirect.github.com/google/error-prone/issues/3779">#3779</a>, <a href="https://redirect.github.com/google/error-prone/issues/3796">#3796</a>, <a href="https://redirect.github.com/google/error-prone/issues/3809">#3809</a>, <a href="https://redirect.github.com/google/error-prone/issues/3813">#3813</a></p>
<p><strong>Full Changelog</strong>: <a href="https://github.com/google/error-prone/compare/v2.18.0...v2.19.0">https://github.com/google/error-prone/compare/v2.18.0...v2.19.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/error-prone/commit/dca95f0494112d3b7fdd150a08660c7ce7ee5916"><code>dca95f0</code></a> Release Error Prone 2.19.0</li>
<li><a href="https://github.com/google/error-prone/commit/b482675b0a1a33d88244d48da87c765243004c38"><code>b482675</code></a> Fix some javadoc lint</li>
<li><a href="https://github.com/google/error-prone/commit/80a944ba59f029f40923004e98dea6a6464f407f"><code>80a944b</code></a> Update nexus-staging-maven-plugin version</li>
<li><a href="https://github.com/google/error-prone/commit/fee1ab9c74a2a0763363cd1ff1767d468870e63e"><code>fee1ab9</code></a> Release on JDK 17</li>
<li><a href="https://github.com/google/error-prone/commit/2000ac20747b3e23b90bddb183c179e26ce60dcd"><code>2000ac2</code></a> InvalidThrows: don't crash if <a href="https://github.com/throws"><code>@throws</code></a> references elements that aren't classes</li>
<li><a href="https://github.com/google/error-prone/commit/87d0f20e014bc643f15f098aed72ac7a61a1aa21"><code>87d0f20</code></a> Recognize more JSpecify annotations as type-use:</li>
<li><a href="https://github.com/google/error-prone/commit/b62636799adaa1f357579fd732cf1a68718e7686"><code>b626367</code></a> Regard java.lang.Enum as immutable.</li>
<li><a href="https://github.com/google/error-prone/commit/0518fb01b72bf39e6f380bb4c0c1ac5938479781"><code>0518fb0</code></a> Enforce that <a href="https://github.com/Element"><code>@Element</code></a> is only used on <a href="https://github.com/ThreadSafe-annotated"><code>@ThreadSafe-annotated</code></a> classes in the sa...</li>
<li><a href="https://github.com/google/error-prone/commit/379fc7f6c57dba837e04902f6d88bf2e060c4e26"><code>379fc7f</code></a> Fix an error with JDK 21 EA</li>
<li><a href="https://github.com/google/error-prone/commit/be4e826d0f69c318358769ea9c4814675433ff9a"><code>be4e826</code></a> Support <code>@CompileTimeConstant</code> for enum fields.</li>
<li>Additional commits viewable in <a href="https://github.com/google/error-prone/compare/v2.18.0...v2.19.0">compare view</a></li>
</ul>
</details>
<br />
Updates `error_prone_type_annotations` from 2.18.0 to 2.19.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/error-prone/releases">error_prone_type_annotations's releases</a>.</em></p>
<blockquote>
<h2>Error Prone 2.19.0</h2>
<p>New Checkers:</p>
<ul>
<li><a href="https://errorprone.info/bugpattern/NotJavadoc"><code>NotJavadoc</code></a></li>
<li><a href="https://errorprone.info/bugpattern/StringCaseLocaleUsage"><code>StringCaseLocaleUsage</code></a></li>
<li><a href="https://errorprone.info/bugpattern/UnnecessaryTestMethodPrefix"><code>UnnecessaryTestMethodPrefix</code></a></li>
</ul>
<p>Fixes issues: <a href="https://redirect.github.com/google/error-prone/issues/956">#956</a>, <a href="https://redirect.github.com/google/error-prone/issues/3504">#3504</a>, <a href="https://redirect.github.com/google/error-prone/issues/3654">#3654</a>, <a href="https://redirect.github.com/google/error-prone/issues/3703">#3703</a>, <a href="https://redirect.github.com/google/error-prone/issues/3731">#3731</a>, <a href="https://redirect.github.com/google/error-prone/issues/3737">#3737</a>, <a href="https://redirect.github.com/google/error-prone/issues/3760">#3760</a>, <a href="https://redirect.github.com/google/error-prone/issues/3779">#3779</a>, <a href="https://redirect.github.com/google/error-prone/issues/3796">#3796</a>, <a href="https://redirect.github.com/google/error-prone/issues/3809">#3809</a>, <a href="https://redirect.github.com/google/error-prone/issues/3813">#3813</a></p>
<p><strong>Full Changelog</strong>: <a href="https://github.com/google/error-prone/compare/v2.18.0...v2.19.0">https://github.com/google/error-prone/compare/v2.18.0...v2.19.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/google/error-prone/commit/dca95f0494112d3b7fdd150a08660c7ce7ee5916"><code>dca95f0</code></a> Release Error Prone 2.19.0</li>
<li><a href="https://github.com/google/error-prone/commit/b482675b0a1a33d88244d48da87c765243004c38"><code>b482675</code></a> Fix some javadoc lint</li>
<li><a href="https://github.com/google/error-prone/commit/80a944ba59f029f40923004e98dea6a6464f407f"><code>80a944b</code></a> Update nexus-staging-maven-plugin version</li>
<li><a href="https://github.com/google/error-prone/commit/fee1ab9c74a2a0763363cd1ff1767d468870e63e"><code>fee1ab9</code></a> Release on JDK 17</li>
<li><a href="https://github.com/google/error-prone/commit/2000ac20747b3e23b90bddb183c179e26ce60dcd"><code>2000ac2</code></a> InvalidThrows: don't crash if <a href="https://github.com/throws"><code>@throws</code></a> references elements that aren't classes</li>
<li><a href="https://github.com/google/error-prone/commit/87d0f20e014bc643f15f098aed72ac7a61a1aa21"><code>87d0f20</code></a> Recognize more JSpecify annotations as type-use:</li>
<li><a href="https://github.com/google/error-prone/commit/b62636799adaa1f357579fd732cf1a68718e7686"><code>b626367</code></a> Regard java.lang.Enum as immutable.</li>
<li><a href="https://github.com/google/error-prone/commit/0518fb01b72bf39e6f380bb4c0c1ac5938479781"><code>0518fb0</code></a> Enforce that <a href="https://github.com/Element"><code>@Element</code></a> is only used on <a href="https://github.com/ThreadSafe-annotated"><code>@ThreadSafe-annotated</code></a> classes in the sa...</li>
<li><a href="https://github.com/google/error-prone/commit/379fc7f6c57dba837e04902f6d88bf2e060c4e26"><code>379fc7f</code></a> Fix an error with JDK 21 EA</li>
<li><a href="https://github.com/google/error-prone/commit/be4e826d0f69c318358769ea9c4814675433ff9a"><code>be4e826</code></a> Support <code>@CompileTimeConstant</code> for enum fields.</li>
<li>Additional commits viewable in <a href="https://github.com/google/error-prone/compare/v2.18.0...v2.19.0">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1511
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1511 from google:dependabot/maven/value/errorprone.version-2.19.0 3df86229c9afec724e2cbaf52ba26e29635481fd
PiperOrigin-RevId: 530746677
|
|
Bumps [maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.0.0 to 3.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/apache/maven-surefire/releases">maven-surefire-plugin's releases</a>.</em></p>
<blockquote>
<h2>3.1.0</h2>
<h2><a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351273">Release Notes - Maven Surefire - Version 3.1.0
</a>
Sub-task</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2162">SUREFIRE-2162</a>] - Document upcoming mojo and file names change</li>
</ul>
<h2>Bug</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2140">SUREFIRE-2140</a>] - Cannot release Surefire on Windows</li>
</ul>
<h2>Improvement</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2153">SUREFIRE-2153</a>] - Replace SurefireReportGenerator with a new SurefireReportRenderer</li>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2160">SUREFIRE-2160</a>] - Replace LocalizedProperties with (Custom)I18N approach from MPIR</li>
</ul>
<h2>Task</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2130">SUREFIRE-2130</a>] - Rewrite several test classes in report plugin for upcoming Doxia 2.0.0 stack</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-surefire/commit/36f2eff46bfe5146da179100143ad7e854721e69"><code>36f2eff</code></a> [maven-release-plugin] prepare release surefire-3.1.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/f48db530e096dd786567d8e43c3d8bd04cba7ce1"><code>f48db53</code></a> Mark class files in resources as binary</li>
<li><a href="https://github.com/apache/maven-surefire/commit/eed0065d7a2cdd1424830792f3f5dfda86fb0963"><code>eed0065</code></a> Fix invalid .gitattributes</li>
<li><a href="https://github.com/apache/maven-surefire/commit/3966e2f73b4bf0fdd65936fab0e45717958c54d9"><code>3966e2f</code></a> [SUREFIRE-2162] Document upcoming mojo and file names change</li>
<li><a href="https://github.com/apache/maven-surefire/commit/c7af2768ba226d4fd9247d150f8bbb34bf64107d"><code>c7af276</code></a> [SUREFIRE-2140] Cannot release Surefire on Windows</li>
<li><a href="https://github.com/apache/maven-surefire/commit/6718f14fd1031def148834c6bef71b61759021af"><code>6718f14</code></a> [SUREFIRE-2160] Replace LocalizedProperties with (Custom)I18N approach from MPIR</li>
<li><a href="https://github.com/apache/maven-surefire/commit/33d30c6e018c92447006765c90cb43153ef5385c"><code>33d30c6</code></a> [SUREFIRE-2153] Replace SurefireReportGenerator with a new SurefireReportRend...</li>
<li><a href="https://github.com/apache/maven-surefire/commit/da48b3a3a0832f5e3ec90f7a5010b88e22c6d77f"><code>da48b3a</code></a> configure notifications</li>
<li><a href="https://github.com/apache/maven-surefire/commit/fdbbb5c1062e3fee8cbe3373bf4aa6b51d9f2821"><code>fdbbb5c</code></a> (doc) ignore reformat</li>
<li><a href="https://github.com/apache/maven-surefire/commit/15c4014a04aa003909538d2777dced083b4323c3"><code>15c4014</code></a> [maven-release-plugin] prepare for next development iteration</li>
<li>See full diff in <a href="https://github.com/apache/maven-surefire/compare/surefire-3.0.0...surefire-3.1.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-surefire-plugin&package-manager=maven&previous-version=3.0.0&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1509
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1509 from google:dependabot/maven/value/org.apache.maven.plugins-maven-surefire-plugin-3.1.0 dbb59c831e6845777b01ec12806e0e914568f1f7
PiperOrigin-RevId: 530615717
|
|
Bumps [maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) from 3.0.1 to 3.1.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/699e2ad61179ef661693f99d1d9c147e2f6bcd04"><code>699e2ad</code></a> [maven-release-plugin] prepare release maven-gpg-plugin-3.1.0</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/f314f8e879d6acbfe88386538f882ecedc9ad18a"><code>f314f8e</code></a> [MGPG-97] use gpgverify plugin to check dependencies signatures</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/bad6b5708c58e5e4d868e30509acc38f552982fd"><code>bad6b57</code></a> [MGPG-96] add INFO message</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/0498a82b6b6b67bf46d61e66e945c093365e63df"><code>0498a82</code></a> [MGPG-95] don't GPG-sign .sigstore signatures</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/09b5be93972ae0c95c741fc0f111a96f51119aa7"><code>09b5be9</code></a> Auto-link MGPG Jira</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/1e0472f2e59d037bdde38ccde38897e04d89e206"><code>1e0472f</code></a> extract FilesCollector</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/af9ccfdd3b12502f9da225a7b394c541a6b4088c"><code>af9ccfd</code></a> [MGPG-94] Ignore reformatting</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/5e51734d22f4541fcbf2d03aae24f7501b67abe1"><code>5e51734</code></a> [MGPG-94] Integration tests - convert and reformat bsh to groovy</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/955ea0ed5c2a7a3189159158e1fcb10e1ed2964e"><code>955ea0e</code></a> [MGPG-94] Reformat code</li>
<li><a href="https://github.com/apache/maven-gpg-plugin/commit/e160f4358ccde49da7f3c7339a33774a536db457"><code>e160f43</code></a> [MGPG-94] Bump maven-plugins from 36 to 39</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-gpg-plugin/compare/maven-gpg-plugin-3.0.1...maven-gpg-plugin-3.1.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-gpg-plugin&package-manager=maven&previous-version=3.0.1&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1508
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1508 from google:dependabot/maven/value/org.apache.maven.plugins-maven-gpg-plugin-3.1.0 7afb41993942c93e55dd7ca5b730b855c8e1f228
PiperOrigin-RevId: 530614773
|
|
Bumps [maven-failsafe-plugin](https://github.com/apache/maven-surefire) from 3.0.0 to 3.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/apache/maven-surefire/releases">maven-failsafe-plugin's releases</a>.</em></p>
<blockquote>
<h2>3.1.0</h2>
<h2><a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351273">Release Notes - Maven Surefire - Version 3.1.0
</a>
Sub-task</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2162">SUREFIRE-2162</a>] - Document upcoming mojo and file names change</li>
</ul>
<h2>Bug</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2140">SUREFIRE-2140</a>] - Cannot release Surefire on Windows</li>
</ul>
<h2>Improvement</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2153">SUREFIRE-2153</a>] - Replace SurefireReportGenerator with a new SurefireReportRenderer</li>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2160">SUREFIRE-2160</a>] - Replace LocalizedProperties with (Custom)I18N approach from MPIR</li>
</ul>
<h2>Task</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2130">SUREFIRE-2130</a>] - Rewrite several test classes in report plugin for upcoming Doxia 2.0.0 stack</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-surefire/commit/36f2eff46bfe5146da179100143ad7e854721e69"><code>36f2eff</code></a> [maven-release-plugin] prepare release surefire-3.1.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/f48db530e096dd786567d8e43c3d8bd04cba7ce1"><code>f48db53</code></a> Mark class files in resources as binary</li>
<li><a href="https://github.com/apache/maven-surefire/commit/eed0065d7a2cdd1424830792f3f5dfda86fb0963"><code>eed0065</code></a> Fix invalid .gitattributes</li>
<li><a href="https://github.com/apache/maven-surefire/commit/3966e2f73b4bf0fdd65936fab0e45717958c54d9"><code>3966e2f</code></a> [SUREFIRE-2162] Document upcoming mojo and file names change</li>
<li><a href="https://github.com/apache/maven-surefire/commit/c7af2768ba226d4fd9247d150f8bbb34bf64107d"><code>c7af276</code></a> [SUREFIRE-2140] Cannot release Surefire on Windows</li>
<li><a href="https://github.com/apache/maven-surefire/commit/6718f14fd1031def148834c6bef71b61759021af"><code>6718f14</code></a> [SUREFIRE-2160] Replace LocalizedProperties with (Custom)I18N approach from MPIR</li>
<li><a href="https://github.com/apache/maven-surefire/commit/33d30c6e018c92447006765c90cb43153ef5385c"><code>33d30c6</code></a> [SUREFIRE-2153] Replace SurefireReportGenerator with a new SurefireReportRend...</li>
<li><a href="https://github.com/apache/maven-surefire/commit/da48b3a3a0832f5e3ec90f7a5010b88e22c6d77f"><code>da48b3a</code></a> configure notifications</li>
<li><a href="https://github.com/apache/maven-surefire/commit/fdbbb5c1062e3fee8cbe3373bf4aa6b51d9f2821"><code>fdbbb5c</code></a> (doc) ignore reformat</li>
<li><a href="https://github.com/apache/maven-surefire/commit/15c4014a04aa003909538d2777dced083b4323c3"><code>15c4014</code></a> [maven-release-plugin] prepare for next development iteration</li>
<li>See full diff in <a href="https://github.com/apache/maven-surefire/compare/surefire-3.0.0...surefire-3.1.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-failsafe-plugin&package-manager=maven&previous-version=3.0.0&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1510
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1510 from google:dependabot/maven/value/org.apache.maven.plugins-maven-failsafe-plugin-3.1.0 2213b92690086bc5f86539167d3290673debe871
PiperOrigin-RevId: 530614741
|
|
Bumps [maven-surefire-plugin](https://github.com/apache/maven-surefire) from 3.0.0 to 3.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/apache/maven-surefire/releases">maven-surefire-plugin's releases</a>.</em></p>
<blockquote>
<h2>3.1.0</h2>
<h2><a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351273">Release Notes - Maven Surefire - Version 3.1.0
</a>
Sub-task</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2162">SUREFIRE-2162</a>] - Document upcoming mojo and file names change</li>
</ul>
<h2>Bug</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2140">SUREFIRE-2140</a>] - Cannot release Surefire on Windows</li>
</ul>
<h2>Improvement</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2153">SUREFIRE-2153</a>] - Replace SurefireReportGenerator with a new SurefireReportRenderer</li>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2160">SUREFIRE-2160</a>] - Replace LocalizedProperties with (Custom)I18N approach from MPIR</li>
</ul>
<h2>Task</h2>
<ul>
<li>[<a href="https://issues.apache.org/jira/browse/SUREFIRE-2130">SUREFIRE-2130</a>] - Rewrite several test classes in report plugin for upcoming Doxia 2.0.0 stack</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-surefire/commit/36f2eff46bfe5146da179100143ad7e854721e69"><code>36f2eff</code></a> [maven-release-plugin] prepare release surefire-3.1.0</li>
<li><a href="https://github.com/apache/maven-surefire/commit/f48db530e096dd786567d8e43c3d8bd04cba7ce1"><code>f48db53</code></a> Mark class files in resources as binary</li>
<li><a href="https://github.com/apache/maven-surefire/commit/eed0065d7a2cdd1424830792f3f5dfda86fb0963"><code>eed0065</code></a> Fix invalid .gitattributes</li>
<li><a href="https://github.com/apache/maven-surefire/commit/3966e2f73b4bf0fdd65936fab0e45717958c54d9"><code>3966e2f</code></a> [SUREFIRE-2162] Document upcoming mojo and file names change</li>
<li><a href="https://github.com/apache/maven-surefire/commit/c7af2768ba226d4fd9247d150f8bbb34bf64107d"><code>c7af276</code></a> [SUREFIRE-2140] Cannot release Surefire on Windows</li>
<li><a href="https://github.com/apache/maven-surefire/commit/6718f14fd1031def148834c6bef71b61759021af"><code>6718f14</code></a> [SUREFIRE-2160] Replace LocalizedProperties with (Custom)I18N approach from MPIR</li>
<li><a href="https://github.com/apache/maven-surefire/commit/33d30c6e018c92447006765c90cb43153ef5385c"><code>33d30c6</code></a> [SUREFIRE-2153] Replace SurefireReportGenerator with a new SurefireReportRend...</li>
<li><a href="https://github.com/apache/maven-surefire/commit/da48b3a3a0832f5e3ec90f7a5010b88e22c6d77f"><code>da48b3a</code></a> configure notifications</li>
<li><a href="https://github.com/apache/maven-surefire/commit/fdbbb5c1062e3fee8cbe3373bf4aa6b51d9f2821"><code>fdbbb5c</code></a> (doc) ignore reformat</li>
<li><a href="https://github.com/apache/maven-surefire/commit/15c4014a04aa003909538d2777dced083b4323c3"><code>15c4014</code></a> [maven-release-plugin] prepare for next development iteration</li>
<li>See full diff in <a href="https://github.com/apache/maven-surefire/compare/surefire-3.0.0...surefire-3.1.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-surefire-plugin&package-manager=maven&previous-version=3.0.0&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1507
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1507 from google:dependabot/maven/factory/org.apache.maven.plugins-maven-surefire-plugin-3.1.0 347c74aaddc319c9fe36d447b2be1f31768c25be
PiperOrigin-RevId: 530612273
|
|
RELNOTES=n/a
PiperOrigin-RevId: 530417898
|
|
golden-file support.
RELNOTES=n/a
PiperOrigin-RevId: 529978770
|
|
PiperOrigin-RevId: 529969440
|
|
RELNOTES=n/a
PiperOrigin-RevId: 529782483
|
|
For now, only one test method uses the new scheme. The others will be converted in a later change.
RELNOTES=n/a
PiperOrigin-RevId: 529735383
|
|
This should simplify their maintenance in the future. The remaining golden files were unchanged after reformatting.
RELNOTES=n/a
PiperOrigin-RevId: 529413577
|
|
sorted out.
RELNOTES=n/a
PiperOrigin-RevId: 529268847
|
|
"Argument index 1" could plausibly mean the second argument, but "Argument 1 of 3" is more obviously the first. It also makes it easier to count backwards from the end if there are a lot of arguments.
Fixes https://github.com/google/auto/issues/1495.
RELNOTES=The exception message for a null value now indicates not only which number argument it is but also how many arguments there are in total. This may lead to a small increase in code size.
PiperOrigin-RevId: 529210616
|
|
RELNOTES=Update @Autoannotation documentation to say that it isn't needed in Kotlin.
PiperOrigin-RevId: 528617920
|
|
Bumps `kotlin.version` from 1.8.20 to 1.8.21.
Updates `kotlin-stdlib` from 1.8.20 to 1.8.21
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/JetBrains/kotlin/releases">kotlin-stdlib's releases</a>.</em></p>
<blockquote>
<h2>Kotlin 1.8.21</h2>
<h2>Changelog</h2>
<h3>Compiler</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57848"><code>KT-57848</code></a> Native: compilation of dynamic/static library fails with Xcode 14.3</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57875"><code>KT-57875</code></a> Native compilation failure: Suspend functions should be lowered out at this point, but FUN LOCAL_FUNCTION_FOR_LAMBDA</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57946"><code>KT-57946</code></a> KAPT: "RuntimeException: No type for expression" with delegate</li>
</ul>
<h3>JavaScript</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57356"><code>KT-57356</code></a> KJS: StackOverflowException on <code>@JsExport</code> with type parameters referring to one another</li>
</ul>
<h3>Tools. Commonizer</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57796"><code>KT-57796</code></a> NoSuchFileException in :module-B:commonizeCInterop with Kotlin 1.8.20</li>
</ul>
<h3>Tools. Compiler plugins. Serialization</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58067"><code>KT-58067</code></a> Serialization: NullPointerException caused by <code>@Contextual</code> property with type with generic</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57730"><code>KT-57730</code></a> Serialization: "IllegalStateException: Serializer for element of type <!-- raw HTML omitted -->.Foo has not been found" caused by serialization of Java type</li>
</ul>
<h3>Tools. Gradle. JS</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57766"><code>KT-57766</code></a> KJS / Gradle "Module not found: Error: Can't resolve 'kotlin-kotlin-stdlib-js-ir'" when using "useEsModules"</li>
</ul>
<h3>Tools. Kapt</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58027"><code>KT-58027</code></a> Kotlin 1.8.20 kapt issue "null: KtCallExpression: build()"</li>
</ul>
<h3>Tools. Maven</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58048"><code>KT-58048</code></a> Maven: "Too many source module declarations found" after upgrading to 1.8.20</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58101"><code>KT-58101</code></a> 'Unable to access class' in kotlin-maven-plugin after updating to Kotlin 1.8.20</li>
</ul>
<h2>Checksums</h2>
<table>
<thead>
<tr>
<th>File</th>
<th>Sha256</th>
</tr>
</thead>
<tbody>
<tr>
<td>kotlin-compiler-1.8.21.zip</td>
<td>6e43c5569ad067492d04d92c28cdf8095673699d81ce460bd7270443297e8fd7</td>
</tr>
<tr>
<td>kotlin-native-linux-x86_64-1.8.21.tar.gz</td>
<td>0fc854641dd6d88dce3cc044bb5bc99b9035480474e23541eff03771690c68cf</td>
</tr>
<tr>
<td>kotlin-native-macos-x86_64-1.8.21.tar.gz</td>
<td>e73bfdac0461ee0c84f25e61063c243bf8d4eb8e0ff5da250456d6a23c677fd6</td>
</tr>
<tr>
<td>kotlin-native-macos-aarch64-1.8.21.tar.gz</td>
<td>0a97957921ed55458f3e6cc9117643914ccf3663d8ad7eb161a4a03035a7521b</td>
</tr>
<tr>
<td>kotlin-native-windows-x86_64-1.8.21.zip</td>
<td>f23d3288a47ee580f82f862d55452a75074fce3d26fe7e7f55e27b6015226d8d</td>
</tr>
</tbody>
</table>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/JetBrains/kotlin/blob/master/ChangeLog.md">kotlin-stdlib's changelog</a>.</em></p>
<blockquote>
<h2>1.8.21</h2>
<h3>Compiler</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57848"><code>KT-57848</code></a> Native: compilation of dynamic/static library fails with Xcode 14.3</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57875"><code>KT-57875</code></a> Native compilation failure: Suspend functions should be lowered out at this point, but FUN LOCAL_FUNCTION_FOR_LAMBDA</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57946"><code>KT-57946</code></a> KAPT: "RuntimeException: No type for expression" with delegate</li>
</ul>
<h3>JavaScript</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57356"><code>KT-57356</code></a> KJS: StackOverflowException on <a href="https://github.com/JsExport"><code>@JsExport</code></a> with type parameters referring to one another</li>
</ul>
<h3>Tools. Compiler plugins. Serialization</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58067"><code>KT-58067</code></a> Serialization: NullPointerException caused by <a href="https://github.com/Contextual"><code>@Contextual</code></a> property with type with generic</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57730"><code>KT-57730</code></a> Serialization: "IllegalStateException: Serializer for element of type <!-- raw HTML omitted -->.Foo has not been found" caused by serialization of Java type</li>
</ul>
<h3>Tools. Gradle. JS</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-57766"><code>KT-57766</code></a> KJS / Gradle "Module not found: Error: Can't resolve 'kotlin-kotlin-stdlib-js-ir'" when using "useEsModules"</li>
</ul>
<h3>Tools. Kapt</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58027"><code>KT-58027</code></a> Kotlin 1.8.20 kapt issue "null: KtCallExpression: build()"</li>
</ul>
<h3>Tools. Maven</h3>
<ul>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58048"><code>KT-58048</code></a> Maven: "Too many source module declarations found" after upgrading to 1.8.20</li>
<li><a href="https://youtrack.jetbrains.com/issue/KT-58101"><code>KT-58101</code></a> 'Unable to access class' in kotlin-maven-plugin after updating to Kotlin 1.8.20</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/JetBrains/kotlin/commit/ec1553ae4123974f50f4f18a1b6f2656cac2dde1"><code>ec1553a</code></a> Add Changelog for 1.8.21</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/92c7d495e51fee8c5ec16631576c43d9e59d64e1"><code>92c7d49</code></a> [Maven] Filter duplicated source roots to avoid multiple module declarations ...</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/035172c30d47102138e3c9253587ae8481aba219"><code>035172c</code></a> [KxSerialization] Fix "IllegalAccessError: Update to static final field"</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/ea2e0bdc3ffd91661bd7dca599448dfda0b76925"><code>ea2e0bd</code></a> Fix maven script executor after changes in the jdk path processing</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/d44d8ea1a7ee3947964119070e4ae55b651f4bb1"><code>d44d8ea</code></a> Kapt+JVM_IR: generate delegated members correctly</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/ebdbaab6d8318ea2e9583681c3e4e0a487a514b1"><code>ebdbaab</code></a> Correctly support nullability in type arguments for serializer<T>() intrinsic.</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/34efee5474ac6bb56af53487b75a20e35d54399b"><code>34efee5</code></a> Don't fail if there is no serializer for type parameters of contextual serial...</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/a75271c97e61bcb4918ddf27cf4ff408fceafbb8"><code>a75271c</code></a> Do not create cacheableChildSerializers unless it is necessary</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/9f94142179eaa3fa2fd1ac2ba90cd191cfdb8795"><code>9f94142</code></a> [K/JS] Rework ES modules part with squashed JsImport and right renaming strat...</li>
<li><a href="https://github.com/JetBrains/kotlin/commit/153d7b9d6fe506380796e8245350ac2cdab74570"><code>153d7b9</code></a> [K/JS] Change strategy for implicitly exported declarations if there is a cyc...</li>
<li>Additional commits viewable in <a href="https://github.com/JetBrains/kotlin/compare/v1.8.20...v1.8.21">compare view</a></li>
</ul>
</details>
<br />
Updates `kotlin-maven-plugin` from 1.8.20 to 1.8.21
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #1494
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1494 from google:dependabot/maven/value/kotlin.version-1.8.21 84d9ba78ede885b3fdf20d1d0cc4dec7b1ac7a50
PiperOrigin-RevId: 527253818
|