Niklas
45b0799f1e
Merge pull request #5388 from DependencyTrack/dependabot/maven/org.eclipse.jetty.ee10-jetty-ee10-maven-plugin-12.1.2
2025-10-13 10:14:46 +02:00
Niklas
f9740a2f05
Merge pull request #5389 from DependencyTrack/dependabot/docker/src/main/docker/alpine-4b7ce07
2025-10-13 10:14:14 +02:00
Niklas
50fdb1871c
Merge pull request #5394 from DependencyTrack/dependabot/maven/com.puppycrawl.tools-checkstyle-12.0.0
2025-10-13 10:13:58 +02:00
dependabot[bot]
f77a8363a5
build(deps): bump com.puppycrawl.tools:checkstyle from 11.1.0 to 12.0.0
...
Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle ) from 11.1.0 to 12.0.0.
- [Release notes](https://github.com/checkstyle/checkstyle/releases )
- [Commits](https://github.com/checkstyle/checkstyle/compare/checkstyle-11.1.0...checkstyle-12.0.0 )
---
updated-dependencies:
- dependency-name: com.puppycrawl.tools:checkstyle
dependency-version: 12.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-10 08:02:13 +00:00
dependabot[bot]
1db4a4c671
build(deps): bump alpine from 4bcff63 to 4b7ce07 in /src/main/docker
...
Bumps alpine from `4bcff63` to `4b7ce07`.
---
updated-dependencies:
- dependency-name: alpine
dependency-version: '3.22'
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-09 08:03:35 +00:00
dependabot[bot]
2e8ed53949
build(deps): bump org.eclipse.jetty.ee10:jetty-ee10-maven-plugin
...
Bumps org.eclipse.jetty.ee10:jetty-ee10-maven-plugin from 12.1.1 to 12.1.2.
---
updated-dependencies:
- dependency-name: org.eclipse.jetty.ee10:jetty-ee10-maven-plugin
dependency-version: 12.1.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-09 08:01:58 +00:00
Niklas
db4c4d1503
Update versions in issue template for defects
...
Signed-off-by: Niklas <nscuro@protonmail.com>
2025-10-07 17:04:24 +02:00
Niklas
2b8c531abc
Add changelog for v4.13.5
...
Signed-off-by: Niklas <nscuro@protonmail.com>
2025-10-07 17:03:51 +02:00
Niklas
cb3a360913
Merge pull request #5383 from DependencyTrack/nscuro-patch-1
2025-10-07 16:52:23 +02:00
Niklas
851ba164ba
Bump bundled frontend to 4.13.5
...
Signed-off-by: Niklas <nscuro@protonmail.com>
2025-10-07 16:43:56 +02:00
Niklas
335e4be757
Add Scarf to docs
...
Signed-off-by: Niklas <nscuro@protonmail.com>
2025-10-07 14:55:07 +02:00
Niklas
d5f76d8b51
Merge pull request #5376 from DependencyTrack/dependabot/github_actions/docker/login-action-3.6.0
2025-10-06 16:48:11 +02:00
Niklas
5ab48bdbf6
Merge pull request #5374 from DependencyTrack/dependabot/maven/org.codehaus.mojo-exec-maven-plugin-3.6.1
2025-10-06 16:46:11 +02:00
Niklas
57e256b333
Merge pull request #5375 from DependencyTrack/dependabot/github_actions/github/codeql-action-3.30.6
2025-10-06 16:45:29 +02:00
Niklas
7b2398079e
Merge pull request #5377 from DependencyTrack/dependabot/maven/io.github.ascopes-protobuf-maven-plugin-3.10.1
2025-10-06 16:45:05 +02:00
Niklas
82fc4962dc
Merge pull request #5373 from DependencyTrack/dependabot/maven/org.metaeffekt.core-ae-security-0.145.2
2025-10-06 16:44:45 +02:00
Niklas
da70954471
Merge commit from fork
...
NuGet Analyzer Improvements
2025-10-06 16:41:12 +02:00
dependabot[bot]
d3af42d2e8
build(deps): bump io.github.ascopes:protobuf-maven-plugin
...
Bumps [io.github.ascopes:protobuf-maven-plugin](https://github.com/ascopes/protobuf-maven-plugin ) from 3.10.0 to 3.10.1.
- [Release notes](https://github.com/ascopes/protobuf-maven-plugin/releases )
- [Commits](https://github.com/ascopes/protobuf-maven-plugin/compare/v3.10.0...v3.10.1 )
---
updated-dependencies:
- dependency-name: io.github.ascopes:protobuf-maven-plugin
dependency-version: 3.10.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-06 08:02:32 +00:00
dependabot[bot]
14ccf7ba97
build(deps): bump docker/login-action from 3.5.0 to 3.6.0
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.5.0 to 3.6.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](184bdaa072...5e57cd1181
2025-10-06 08:02:25 +00:00
dependabot[bot]
9f2f906bef
build(deps): bump github/codeql-action from 3.30.5 to 3.30.6
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.30.5 to 3.30.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](3599b3baa1...64d10c1313
2025-10-06 08:02:22 +00:00
dependabot[bot]
58855c3b55
build(deps): bump org.codehaus.mojo:exec-maven-plugin
...
Bumps [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin ) from 3.6.0 to 3.6.1.
- [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases )
- [Commits](https://github.com/mojohaus/exec-maven-plugin/compare/3.6.0...3.6.1 )
---
updated-dependencies:
- dependency-name: org.codehaus.mojo:exec-maven-plugin
dependency-version: 3.6.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-06 08:02:15 +00:00
dependabot[bot]
128b0b1d17
build(deps): bump org.metaeffekt.core:ae-security
...
Bumps org.metaeffekt.core:ae-security from 0.145.0 to 0.145.2.
---
updated-dependencies:
- dependency-name: org.metaeffekt.core:ae-security
dependency-version: 0.145.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-03 08:02:03 +00:00
Niklas
6cbafd3bef
Merge pull request #5367 from DependencyTrack/dependabot/maven/io.github.ascopes-protobuf-maven-plugin-3.10.0
2025-10-01 10:43:07 +02:00
Niklas
93109a5249
Merge pull request #5369 from DependencyTrack/dependabot/maven/org.metaeffekt.core-ae-security-0.145.0
2025-10-01 10:42:32 +02:00
dependabot[bot]
e130776fc9
build(deps): bump org.metaeffekt.core:ae-security
...
Bumps org.metaeffekt.core:ae-security from 0.144.1 to 0.145.0.
---
updated-dependencies:
- dependency-name: org.metaeffekt.core:ae-security
dependency-version: 0.145.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-01 08:02:41 +00:00
dependabot[bot]
d924b7e940
build(deps): bump io.github.ascopes:protobuf-maven-plugin
...
Bumps [io.github.ascopes:protobuf-maven-plugin](https://github.com/ascopes/protobuf-maven-plugin ) from 3.9.1 to 3.10.0.
- [Release notes](https://github.com/ascopes/protobuf-maven-plugin/releases )
- [Commits](https://github.com/ascopes/protobuf-maven-plugin/compare/v3.9.1...v3.10.0 )
---
updated-dependencies:
- dependency-name: io.github.ascopes:protobuf-maven-plugin
dependency-version: 3.10.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-01 08:01:33 +00:00
Niklas
c5baa3de4c
Merge pull request #5364 from DependencyTrack/dependabot/maven/com.icegreen-greenmail-junit5-2.1.6
2025-09-30 10:29:32 +02:00
Niklas
4346fb0573
Merge pull request #5362 from DependencyTrack/dependabot/maven/org.apache.httpcomponents.client5-httpclient5-5.5.1
2025-09-30 10:29:14 +02:00
Niklas
01e4434ad0
Merge pull request #5365 from DependencyTrack/dependabot/docker/src/main/docker/debian-d6743b7
2025-09-30 10:28:49 +02:00
Niklas
f1baf563f8
Merge pull request #5361 from DependencyTrack/dependabot/maven/org.codehaus.mojo-exec-maven-plugin-3.6.0
2025-09-30 10:27:21 +02:00
dependabot[bot]
8479debff6
build(deps): bump debian from 0c80836 to d6743b7 in /src/main/docker
...
Bumps debian from `0c80836` to `d6743b7`.
---
updated-dependencies:
- dependency-name: debian
dependency-version: stable-slim
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-30 08:04:10 +00:00
dependabot[bot]
0a4f065615
build(deps-dev): bump com.icegreen:greenmail-junit5 from 2.1.5 to 2.1.6
...
Bumps [com.icegreen:greenmail-junit5](https://github.com/greenmail-mail-test/greenmail ) from 2.1.5 to 2.1.6.
- [Release notes](https://github.com/greenmail-mail-test/greenmail/releases )
- [Commits](https://github.com/greenmail-mail-test/greenmail/compare/release-2.1.5...release-2.1.6 )
---
updated-dependencies:
- dependency-name: com.icegreen:greenmail-junit5
dependency-version: 2.1.6
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-30 08:02:49 +00:00
dependabot[bot]
bff326eead
build(deps): bump org.apache.httpcomponents.client5:httpclient5
...
Bumps [org.apache.httpcomponents.client5:httpclient5](https://github.com/apache/httpcomponents-client ) from 5.5 to 5.5.1.
- [Changelog](https://github.com/apache/httpcomponents-client/blob/rel/v5.5.1/RELEASE_NOTES.txt )
- [Commits](https://github.com/apache/httpcomponents-client/compare/rel/v5.5...rel/v5.5.1 )
---
updated-dependencies:
- dependency-name: org.apache.httpcomponents.client5:httpclient5
dependency-version: 5.5.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-30 08:02:08 +00:00
dependabot[bot]
2034596898
build(deps): bump org.codehaus.mojo:exec-maven-plugin
...
Bumps [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin ) from 3.5.1 to 3.6.0.
- [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases )
- [Commits](https://github.com/mojohaus/exec-maven-plugin/compare/3.5.1...3.6.0 )
---
updated-dependencies:
- dependency-name: org.codehaus.mojo:exec-maven-plugin
dependency-version: 3.6.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-30 08:01:50 +00:00
Niklas
2e3476aae6
Merge pull request #5310 from stohrendorf/issue-5284
2025-09-29 15:33:38 +02:00
Niklas
760250061e
Merge pull request #5347 from DependencyTrack/dependabot/maven/com.google.cloud.sql-mysql-socket-factory-connector-j-8-1.25.3
2025-09-29 15:06:00 +02:00
dependabot[bot]
395fb8a738
build(deps): bump com.google.cloud.sql:mysql-socket-factory-connector-j-8
...
Bumps com.google.cloud.sql:mysql-socket-factory-connector-j-8 from 1.24.1 to 1.25.3.
---
updated-dependencies:
- dependency-name: com.google.cloud.sql:mysql-socket-factory-connector-j-8
dependency-version: 1.25.3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-29 12:41:13 +00:00
Niklas
c4752dba98
Merge pull request #5340 from DependencyTrack/dependabot/github_actions/github/codeql-action-3.30.5
2025-09-29 12:27:11 +02:00
Niklas
428845493d
Merge pull request #5345 from DependencyTrack/dependabot/github_actions/actions/dependency-review-action-4.8.0
2025-09-29 12:26:16 +02:00
Niklas
32a996619b
Merge pull request #5344 from DependencyTrack/dependabot/maven/com.puppycrawl.tools-checkstyle-11.1.0
2025-09-29 12:24:48 +02:00
dependabot[bot]
0c4bb92f60
build(deps): bump actions/dependency-review-action from 4.7.3 to 4.8.0
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.7.3 to 4.8.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](595b5aeba7...56339e523c
2025-09-29 09:58:19 +00:00
dependabot[bot]
599425f729
build(deps): bump com.puppycrawl.tools:checkstyle from 11.0.1 to 11.1.0
...
Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle ) from 11.0.1 to 11.1.0.
- [Release notes](https://github.com/checkstyle/checkstyle/releases )
- [Commits](https://github.com/checkstyle/checkstyle/compare/checkstyle-11.0.1...checkstyle-11.1.0 )
---
updated-dependencies:
- dependency-name: com.puppycrawl.tools:checkstyle
dependency-version: 11.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-29 09:58:18 +00:00
dependabot[bot]
f316bb98b7
build(deps): bump github/codeql-action from 3.30.3 to 3.30.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.30.3 to 3.30.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](192325c861...3599b3baa1
2025-09-29 09:31:43 +00:00
Niklas
9324e7bdbc
Merge pull request #5338 from nscuro/bump-license-list-3.27.0
2025-09-29 11:22:41 +02:00
Niklas
72ea155728
Merge pull request #5337 from nscuro/bump-alpine.3.3.0
2025-09-29 11:15:16 +02:00
nscuro
5bbd639992
Bump SPDX license list to 3.27.0
...
Signed-off-by: nscuro <nscuro@protonmail.com>
2025-09-29 11:06:59 +02:00
nscuro
95f81535a0
Fix BOM generation being skipped when not running deploy goal
...
Signed-off-by: nscuro <nscuro@protonmail.com>
2025-09-29 10:59:58 +02:00
nscuro
4fd419b658
Remove watchdog property
...
The watchdog logger feature has been removed in Alpine 3.3.0
Signed-off-by: nscuro <nscuro@protonmail.com>
2025-09-29 10:54:28 +02:00
nscuro
c8381ec19f
Remove redundantly managed commons-lang3 version
...
The newest version now comes in via `alpine-common`.
Signed-off-by: nscuro <nscuro@protonmail.com>
2025-09-29 10:51:31 +02:00
nscuro
5fd23fe72e
Switch to wiremock-standalone
...
To prevent it from interfering with our Jetty dependencies, or conversely being interfered with by the dependency versions defined by Alpine.
Signed-off-by: nscuro <nscuro@protonmail.com>
2025-09-29 10:50:36 +02:00
