diff options
| author | dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> | 2022-01-14 11:21:27 -0800 |
|---|---|---|
| committer | Javac Team <javac-team+copybara@google.com> | 2022-01-14 11:22:14 -0800 |
| commit | d5d12a26c22bebc14e727bd835f6be28a1487fa3 (patch) | |
| tree | 00b93490dcd1682f138720d55cf10d9f94053572 | |
| parent | 4ede66c625148d65a97e5392a23e5162c0e427f9 (diff) | |
| download | turbine-d5d12a26c22bebc14e727bd835f6be28a1487fa3.tar.gz | |
Bump protobuf-java from 3.10.0 to 3.19.3
Bumps [protobuf-java](https://github.com/protocolbuffers/protobuf) from 3.10.0 to 3.19.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/protocolbuffers/protobuf/releases">protobuf-java's releases</a>.</em></p>
<blockquote>
<h2>Protocol Buffers v3.19.3</h2>
<h1>Python</h1>
<ul>
<li>Fix missing Windows wheel for Python 3.10 on PyPI</li>
</ul>
<h2>Protocol Buffers v3.19.2</h2>
<h1>Java</h1>
<ul>
<li>Improve performance characteristics of UnknownFieldSet parsing (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9371">#9371</a>)</li>
<li>This release addresses a <a href="https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-wrvw-hg22-4m67">Security Advisory for Java users</a></li>
</ul>
<h2>Protocol Buffers v3.19.1</h2>
<h1>Bazel</h1>
<ul>
<li>Ensure that release archives contain everything needed for Bazel (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9131">#9131</a>)</li>
<li>Align dependency handling with Bazel best practices (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9165">#9165</a>)</li>
</ul>
<h1>JavaScript</h1>
<ul>
<li>Fix <code>ReferenceError: window is not defined</code> when getting the global object (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9156">#9156</a>)</li>
</ul>
<h1>Ruby</h1>
<ul>
<li>Fix memory leak in MessageClass.encode (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9150">#9150</a>)</li>
</ul>
<h2>Protocol Buffers v3.19.0</h2>
<h1>C++</h1>
<ul>
<li>Make proto2::Message::DiscardUnknownFields() non-virtual</li>
<li>Separate RepeatedPtrField into its own header file</li>
<li>For default floating point values of 0, consider all bits significant</li>
<li>cmake: support <code>MSVC_RUNTIME_LIBRARY</code> property (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8851">#8851</a>)</li>
<li>Fix shadowing warnings (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8926">#8926</a>)</li>
<li>Fix for issue <a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8484">#8484</a>, constant initialization doesn't compile in msvc clang-cl environment (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8993">#8993</a>)</li>
<li>Fix build on AIX and SunOS (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8373">#8373</a>) (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9065">#9065</a>)</li>
<li>Add Android stlport and default toolchains to BUILD. (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8290">#8290</a>)</li>
</ul>
<h1>Java</h1>
<ul>
<li>For default floating point values of 0, consider all bits significant</li>
<li>Annotate <code>//java/com/google/protobuf/util/...</code> with nullness annotations</li>
<li>Use ArrayList copy constructor (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/7853">#7853</a>)</li>
</ul>
<h1>Kotlin</h1>
<ul>
<li>Switch Kotlin proto DSLs to be implemented with inline value classes</li>
<li>Fixing inlining and deprecation for repeated string fields (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9120">#9120</a>)</li>
</ul>
<h1>Python</h1>
<ul>
<li>Proto2 DecodeError now includes message name in error message</li>
<li>Make MessageToDict convert map keys to strings (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8122">#8122</a>)</li>
<li>Add python-requires in setup.py (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8989">#8989</a>)</li>
<li>Add python 3.10 (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9034">#9034</a>)</li>
</ul>
<h1>JavaScript</h1>
<ul>
<li>Skip exports if not available by CommonJS (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8856">#8856</a>)</li>
<li>JS: Comply with CSP no-unsafe-eval. (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/8864">#8864</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/cc7b1b53234cd7a8f50d90ac3933b240dcf4cd97"><code>cc7b1b5</code></a> Update protobuf version</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/ee432e55b808a57e44115178e41cd5ceae91b205"><code>ee432e5</code></a> Update CHANGES.txt for 3.19.3</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/203c593b9681d98e7e05f3d8f862aa183f5d9c91"><code>203c593</code></a> Fix build error with Python 3.10 build on Windows</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/922a7ec18926aa2612d14a2b4abb8689477e97a4"><code>922a7ec</code></a> Fix Python 3.10 C++ tests (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9128">#9128</a>)</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/cb46755e6405e083b45481f5ea4754b180705529"><code>cb46755</code></a> Tweak wording of CHANGES.txt</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/eb94f17a8b8babc4851fb9bb27f9fb1919fe9cfc"><code>eb94f17</code></a> Update protobuf version</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/ea9a01a0f5c259e9597c199e447d99eaab19930b"><code>ea9a01a</code></a> Update CHANGES.txt for 3.19.2 release</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/9638a5e5315bf73f5e7148c16181676372321892"><code>9638a5e</code></a> Improve performance of parsing unknown fields in Java (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9371">#9371</a>)</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/0e02f95b876c40ecb04a76e729dd3f0d9185431e"><code>0e02f95</code></a> Fix Ruby release build by pinning rake-compiler-dock version (<a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9372">#9372</a>)</li>
<li><a href="https://github.com/protocolbuffers/protobuf/commit/9057466a7aea0b927f3bf7ab125355be3317d4a0"><code>9057466</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/protocolbuffers/protobuf/issues/9336">#9336</a> from acozzette/merge-3.18.x</li>
<li>Additional commits viewable in <a href="https://github.com/protocolbuffers/protobuf/compare/v3.10.0...v3.19.3">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Fixes #195
COPYBARA_INTEGRATE_REVIEW=https://github.com/google/turbine/pull/195 from google:dependabot/maven/com.google.protobuf-protobuf-java-3.19.3 2c693f572dcc5c8e4c9809dacd8b97a772764d38
PiperOrigin-RevId: 421872179
| -rw-r--r-- | pom.xml | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -69,7 +69,7 @@ <dependency> <groupId>com.google.protobuf</groupId> <artifactId>protobuf-java</artifactId> - <version>3.16.1</version> + <version>3.19.3</version> </dependency> <dependency> <groupId>org.ow2.asm</groupId> |