Skip to content

Bump the maven-build-plugins group across 1 directory with 3 updates #113

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump the maven-build-plugins group across 1 directory with 3 updates #113

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 1, 2025
edited
Loading

Bumps the maven-build-plugins group with 3 updates in the / directory: org.apache.maven.plugins:maven-clean-plugin, org.owasp:dependency-check-maven and org.codehaus.mojo:exec-maven-plugin.

Updates org.apache.maven.plugins:maven-clean-plugin from 3.4.1 to 3.5.0

Release notes

Sourced from org.apache.maven.plugins:maven-clean-plugin's releases.

3.5.0

🚀 New features and improvements

👻 Maintenance

📦 Dependency updates

Commits
  • d18c596 [maven-release-plugin] prepare release maven-clean-plugin-3.5.0
  • 5117885 Bump project to 3.5.0-SNAPSHOT version
  • 7350dbe Configuration parameter for deleting read-only files
  • bdf8c5d Bump org.apache.maven.resolver:maven-resolver-api from 1.9.22 to 1.9.23 (#251)
  • d720e18 Update README in 3.x branch
  • 6c0745c Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.5.0
  • 5dedab5 fix
  • c22ab2d Bump org.apache.maven.plugins:maven-plugins from 43 to 44
  • 68f2009 [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Updates org.owasp:dependency-check-maven from 12.1.1 to 12.1.3

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 12.1.3

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Version 12.1.2

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 12.1.3 (2025-06-10)

  • fix: correct regex matches introduced in 12.1.2 (#7726)
  • build(deps): bump org.semver4j:semver4j from 5.7.0 to 5.7.1 (#7718)
  • build(deps): bump junit.version from 5.13.0 to 5.13.1 (#7719)

See the full listing of changes

Version 12.1.2 (2025-06-07)

  • fix: Allow configuring OSS Index user/pw directly (#7640)
  • fix: remove vulnerable transitive dependency - beanutils (#7705)
  • fix: Simplify PHP framework suppression for Composer (#7693)
  • fix: update CPE pattern to remove FP (#7684)
  • fix(cli): Patch generated Windows shell script for JAVACMD installs with spaces (#7653)
  • fix: Resolve various WCAG accessibility / css issues in the HTML report (#7629)
  • fix: #7510 Display a dedicated message when receiving an HTTP 403 (#7575)
  • docs: Make Vulnerability Sources in Related Work clearer (#7691)
  • docs: #7610 add a reference to NVD mirroring in getting started documentation (#7611)

See the full listing of changes

Commits
  • dfd437e build: prepare release v12.1.3
  • 84d3436 docs: release 12.1.3
  • f9e6b79 fix: correct regex matches introduced in 12.1.2 (#7726)
  • 2b548f8 build(deps): bump org.semver4j:semver4j from 5.7.0 to 5.7.1 (#7718)
  • a58584f build(deps): bump junit.version from 5.13.0 to 5.13.1 (#7719)
  • 7fdad34 build(deps): bump org.semver4j:semver4j from 5.7.0 to 5.7.1
  • cc18626 build: Release 12.1.2 (#7714)
  • 7f9b258 build: prepare for next development iteration
  • 4744206 build: prepare release v12.1.2
  • 624c3ca docs: release 12.1.2
  • Additional commits viewable in compare view

Updates org.codehaus.mojo:exec-maven-plugin from 3.5.0 to 3.5.1

Release notes

Sourced from org.codehaus.mojo:exec-maven-plugin's releases.

3.5.1

🐛 Bug Fixes

📦 Dependency updates

👻 Maintenance

Commits
  • bd1f6f7 [maven-release-plugin] prepare release 3.5.1
  • ac27173 Bump org.codehaus.mojo:mojo-parent from 88 to 89
  • 1ed0f42 Bump org.codehaus.mojo:mojo-parent from 87 to 88 (#474)
  • d221e23 Bump org.apache.commons:commons-exec from 1.4.0 to 1.5.0
  • 42bc369 Add ClassLoader support for ASM ClassWriter
  • f4e8634 Bump commons-io:commons-io in /src/test/projects/project6/project5lib
  • 303978c Bump commons-io:commons-io in /src/test/projects/project1
  • fc7ccf0 Bump asm.version from 9.7.1 to 9.8
  • f544485 Bump commons-io:commons-io in /src/test/projects/project2
  • d0fffa5 Bump commons-io:commons-io in /src/test/projects/project14
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the maven-build-plugins group across 1 directory with 3 updates
f59a5ad 
Bumps the maven-build-plugins group with 3 updates in the / directory: [org.apache.maven.plugins:maven-clean-plugin](https://github.com/apache/maven-clean-plugin), [org.owasp:dependency-check-maven](https://github.com/dependency-check/DependencyCheck) and [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin).


Updates `org.apache.maven.plugins:maven-clean-plugin` from 3.4.1 to 3.5.0
- [Release notes](https://github.com/apache/maven-clean-plugin/releases)
- [Commits](apache/maven-clean-plugin@maven-clean-plugin-3.4.1...maven-clean-plugin-3.5.0)

Updates `org.owasp:dependency-check-maven` from 12.1.1 to 12.1.3
- [Release notes](https://github.com/dependency-check/DependencyCheck/releases)
- [Changelog](https://github.com/dependency-check/DependencyCheck/blob/main/CHANGELOG.md)
- [Commits](dependency-check/DependencyCheck@v12.1.1...v12.1.3)

Updates `org.codehaus.mojo:exec-maven-plugin` from 3.5.0 to 3.5.1
- [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases)
- [Commits](mojohaus/exec-maven-plugin@3.5.0...3.5.1)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-clean-plugin
  dependency-version: 3.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: maven-build-plugins
- dependency-name: org.owasp:dependency-check-maven
  dependency-version: 12.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven-build-plugins
- dependency-name: org.codehaus.mojo:exec-maven-plugin
  dependency-version: 3.5.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: maven-build-plugins
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 1, 2025
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 1, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Aug 1, 2025
@dependabot dependabot bot deleted the dependabot/maven/maven-build-plugins-d8934eca85 branch August 1, 2025 06:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants