Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Bump org.owasp:dependency-check-maven from 10.0.3 to 10.0.4 #261

Merged
merged 1 commit into from
Sep 2, 2024
Merged

Bump org.owasp:dependency-check-maven from 10.0.3 to 10.0.4 #261

merged 1 commit into from
Sep 2, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 2, 2024

Bumps org.owasp:dependency-check-maven from 10.0.3 to 10.0.4.

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 10.0.4

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 10.0.4 (2024-09-01)

  • build(deps): exclude unused dependency (#6916)
  • fix: improve regex (#6917)
  • fix: correctly handle null values in cpeMatch (#6915)
  • fix(site): Update Fluido skin to resolve broken fork-me-on-github image (#6914)
  • fix: do not report over 100% download complete (#6899)
  • fix: Correct spelling of occurring in NvdApiDataSource.java (#6883)
  • fix: skip blank lines in requirements.txt (#6867)
  • fix: correct percentage calculation (#6868)
  • docs: remove old recommendation (#6860)

See the full listing of changes.

Commits
  • 5120cbd build: prepare release v10.0.4
  • 05df233 docs: release notes for 10.0.4
  • a3a74bc build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 t...
  • 67c9d9e build(deps): bump golang from 1.22.6-alpine to 1.23.0-alpine (#6893)
  • 1bc85e2 build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin
  • 2fe67ed build(deps): bump commons-codec:commons-codec from 1.17.0 to 1.17.1 (#6900)
  • e835fad build(deps): exclude unused dependency (#6916)
  • ccc151a fix: improve regex (#6917)
  • e090d40 chore: additional tests (#6918)
  • b4339ce fix: correctly handle null values in cpeMatch (#6915)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump org.owasp:dependency-check-maven from 10.0.3 to 10.0.4
de571b2 
Bumps [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 10.0.3 to 10.0.4.
- [Release notes](https://github.com/jeremylong/DependencyCheck/releases)
- [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md)
- [Commits](jeremylong/DependencyCheck@v10.0.3...v10.0.4)

---
updated-dependencies:
- dependency-name: org.owasp:dependency-check-maven
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Sep 2, 2024
@dschadow dschadow merged commit 6bf4b47 into main Sep 2, 2024
3 checks passed
@dschadow dschadow deleted the dependabot/maven/org.owasp-dependency-check-maven-10.0.4 branch September 2, 2024 05:31
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@dschadow