Merge master #1039

lukaszlenart · 2024-09-02T06:38:17Z

Reverse merge all changes from the master branch

Bumps [org.apache.maven.plugins:maven-project-info-reports-plugin](https://github.com/apache/maven-project-info-reports-plugin) from 3.5.0 to 3.6.2. - [Commits](apache/maven-project-info-reports-plugin@maven-project-info-reports-plugin-3.5.0...maven-project-info-reports-plugin-3.6.2) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-project-info-reports-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [org.owasp:dependency-check-maven](https://github.com/jeremylong/DependencyCheck) from 9.2.0 to 10.0.3. - [Release notes](https://github.com/jeremylong/DependencyCheck/releases) - [Changelog](https://github.com/jeremylong/DependencyCheck/blob/main/CHANGELOG.md) - [Commits](jeremylong/DependencyCheck@v9.2.0...v10.0.3) --- updated-dependencies: - dependency-name: org.owasp:dependency-check-maven dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0. --- updated-dependencies: - dependency-name: org.apache.commons:commons-lang3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

…ons-commons-lang3-3.15.0 Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.3 to 2.4.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](ossf/scorecard-action@dc50aa9...62b2cac) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

WW-5451 Fixes NPE when iterator starts with null

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.11 to 3.25.15. - [Release notes](https://github.com/github/codeql-action/releases) - [Commits](github/codeql-action@v2.22.11...v3.25.15) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.4 to 4.3.5. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@0b2256b...89ef406) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

…/codeql-action-3.25.15 Bump github/codeql-action from 2.22.11 to 3.25.15

…s/upload-artifact-4.3.5 Bump actions/upload-artifact from 4.3.4 to 4.3.5

….plugins-maven-project-info-reports-plugin-3.6.2 Bump org.apache.maven.plugins:maven-project-info-reports-plugin from 3.5.0 to 3.6.2

…ency-check-maven-10.0.3 Bump org.owasp:dependency-check-maven from 9.2.0 to 10.0.3

…corecard-action-2.4.0 Bump ossf/scorecard-action from 2.3.3 to 2.4.0

WW-4062 Cache OgnlException thrown on compilation

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.5 to 4.3.6. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@89ef406...834a144) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.15 to 3.26.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Commits](github/codeql-action@v3.25.15...v3.26.0) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps commons-logging:commons-logging from 1.3.0 to 1.3.3. --- updated-dependencies: - dependency-name: commons-logging:commons-logging dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [org.apache.maven.plugins:maven-wrapper-plugin](https://github.com/apache/maven-wrapper) from 3.2.0 to 3.3.2. - [Release notes](https://github.com/apache/maven-wrapper/releases) - [Commits](apache/maven-wrapper@maven-wrapper-3.2.0...maven-wrapper-3.3.2) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-wrapper-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [org.codehaus.mojo:versions-maven-plugin](https://github.com/mojohaus/versions) from 2.16.2 to 2.17.1. - [Release notes](https://github.com/mojohaus/versions/releases) - [Changelog](https://github.com/mojohaus/versions/blob/master/ReleaseNotes.md) - [Commits](mojohaus/versions@2.16.2...2.17.1) --- updated-dependencies: - dependency-name: org.codehaus.mojo:versions-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [org.apache.maven.plugins:maven-failsafe-plugin](https://github.com/apache/maven-surefire) from 3.3.0 to 3.3.1. - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-3.3.0...surefire-3.3.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-failsafe-plugin dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [org.easymock:easymock](https://github.com/easymock/easymock) from 5.2.0 to 5.4.0. - [Release notes](https://github.com/easymock/easymock/releases) - [Changelog](https://github.com/easymock/easymock/blob/master/ReleaseNotes.md) - [Commits](easymock/easymock@easymock-5.2.0...easymock-5.4.0) --- updated-dependencies: - dependency-name: org.easymock:easymock dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

…s/upload-artifact-4.3.6 Bump actions/upload-artifact from 4.3.5 to 4.3.6

…/codeql-action-3.26.0 Bump github/codeql-action from 3.25.15 to 3.26.0

…-commons-logging-1.3.3 Bump commons-logging:commons-logging from 1.3.0 to 1.3.3

…n.plugins-maven-wrapper-plugin-3.3.2 Bump org.apache.maven.plugins:maven-wrapper-plugin from 3.2.0 to 3.3.2

…jo-versions-maven-plugin-2.17.1 Bump org.codehaus.mojo:versions-maven-plugin from 2.16.2 to 2.17.1

…n.plugins-maven-failsafe-plugin-3.3.1 Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 to 3.3.1

WW-4062 Further optimisation of OgnlException caching

Bumps `maven-surefire-plugin.version` from 3.3.1 to 3.4.0. Updates `org.apache.maven.surefire:surefire-junit47` from 3.3.1 to 3.4.0 Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.3.1 to 3.4.0 - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-3.3.1...surefire-3.4.0) --- updated-dependencies: - dependency-name: org.apache.maven.surefire:surefire-junit47 dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [org.apache.maven.plugins:maven-release-plugin](https://github.com/apache/maven-release) from 3.0.1 to 3.1.1. - [Release notes](https://github.com/apache/maven-release/releases) - [Commits](apache/maven-release@maven-release-3.0.1...maven-release-3.1.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-release-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.0 to 3.26.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Commits](github/codeql-action@v3.26.0...v3.26.2) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

…/codeql-action-3.26.2 Bump github/codeql-action from 3.26.0 to 3.26.2

…plugin.version-3.4.0 Bump maven-surefire-plugin.version from 3.3.1 to 3.4.0

…symock-5.4.0 Bump org.easymock:easymock from 5.2.0 to 5.4.0

…n.plugins-maven-release-plugin-3.1.1 Bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.1

Bumps `slf4j.version` from 2.0.13 to 2.0.16. Updates `org.slf4j:slf4j-api` from 2.0.13 to 2.0.16 Updates `org.slf4j:slf4j-simple` from 2.0.13 to 2.0.16 --- updated-dependencies: - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.slf4j:slf4j-simple dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps org.apache.commons:commons-compress from 1.26.2 to 1.27.1. --- updated-dependencies: - dependency-name: org.apache.commons:commons-compress dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.6 to 4.4.0. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@834a144...5076954) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.2 to 3.26.6. - [Release notes](https://github.com/github/codeql-action/releases) - [Commits](github/codeql-action@v3.26.2...v3.26.6) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

….0.16 Bump slf4j.version from 2.0.13 to 2.0.16

Bumps `spring.platformVersion` from 5.3.37 to 5.3.39. Updates `org.springframework:spring-core` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) Updates `org.springframework:spring-context` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) Updates `org.springframework:spring-aop` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) Updates `org.springframework:spring-aspects` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) Updates `org.springframework:spring-beans` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) Updates `org.springframework:spring-test` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) Updates `org.springframework:spring-context-support` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) Updates `org.springframework:spring-web` from 5.3.37 to 5.3.39 - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](spring-projects/spring-framework@v5.3.37...v5.3.39) --- updated-dependencies: - dependency-name: org.springframework:spring-core dependency-type: direct:development update-type: version-update:semver-patch - dependency-name: org.springframework:spring-context dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework:spring-aop dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework:spring-aspects dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework:spring-beans dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework:spring-test dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.springframework:spring-context-support dependency-type: direct:development update-type: version-update:semver-patch - dependency-name: org.springframework:spring-web dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

…ons-commons-compress-1.27.1 Bump org.apache.commons:commons-compress from 1.26.2 to 1.27.1

…s/upload-artifact-4.4.0 Bump actions/upload-artifact from 4.3.6 to 4.4.0

…/codeql-action-3.26.6 Bump github/codeql-action from 3.26.2 to 3.26.6

…Version-5.3.39 Bump spring.platformVersion from 5.3.37 to 5.3.39

sonarcloud · 2024-09-02T06:44:24Z

Quality Gate passed

Issues
3 New issues
0 Accepted issues

Measures
0 Security Hotspots
90.5% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

dependabot bot and others added 30 commits July 22, 2024 01:29

Merge pull request #1000 from apache/dependabot/maven/org.apache.comm…

e3e854a

…ons-commons-lang3-3.15.0 Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0

WW-5451 Fixes NPE when iterator starts with null

479a9d8

Merge pull request #1008 from apache/feature/WW-5451-null-iterator

935868c

WW-5451 Fixes NPE when iterator starts with null

Merge pull request #1011 from apache/dependabot/github_actions/github…

adbfab8

…/codeql-action-3.25.15 Bump github/codeql-action from 2.22.11 to 3.25.15

Merge pull request #1012 from apache/dependabot/github_actions/action…

9280a47

…s/upload-artifact-4.3.5 Bump actions/upload-artifact from 4.3.4 to 4.3.5

Merge pull request #997 from apache/dependabot/maven/org.apache.maven…

e7cce1b

….plugins-maven-project-info-reports-plugin-3.6.2 Bump org.apache.maven.plugins:maven-project-info-reports-plugin from 3.5.0 to 3.6.2

Merge pull request #998 from apache/dependabot/maven/org.owasp-depend…

932eed2

…ency-check-maven-10.0.3 Bump org.owasp:dependency-check-maven from 9.2.0 to 10.0.3

Merge pull request #1006 from apache/dependabot/github_actions/ossf/s…

a446409

…corecard-action-2.4.0 Bump ossf/scorecard-action from 2.3.3 to 2.4.0

WW-4062 Cache OgnlException thrown on compilation

6caa932

Merge pull request #1013 from apache/WW-4062-ognl-exc-cache

663dd3a

WW-4062 Cache OgnlException thrown on compilation

Merge pull request #1014 from apache/dependabot/github_actions/action…

90fca13

…s/upload-artifact-4.3.6 Bump actions/upload-artifact from 4.3.5 to 4.3.6

Merge pull request #1015 from apache/dependabot/github_actions/github…

8bbe215

…/codeql-action-3.26.0 Bump github/codeql-action from 3.25.15 to 3.26.0

Merge pull request #1016 from apache/dependabot/maven/commons-logging…

9948258

…-commons-logging-1.3.3 Bump commons-logging:commons-logging from 1.3.0 to 1.3.3

Merge pull request #1017 from apache/dependabot/maven/org.apache.mave…

ea9d477

…n.plugins-maven-wrapper-plugin-3.3.2 Bump org.apache.maven.plugins:maven-wrapper-plugin from 3.2.0 to 3.3.2

Merge pull request #1018 from apache/dependabot/maven/org.codehaus.mo…

d42e530

…jo-versions-maven-plugin-2.17.1 Bump org.codehaus.mojo:versions-maven-plugin from 2.16.2 to 2.17.1

Merge pull request #1019 from apache/dependabot/maven/org.apache.mave…

8d07694

…n.plugins-maven-failsafe-plugin-3.3.1 Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 to 3.3.1

WW-4062 Further optimisation of OgnlException caching

0fd8551

kusalk and others added 19 commits August 13, 2024 19:22

Merge pull request #1021 from apache/WW-4062-ognl-exc-cache

9b259ae

WW-4062 Further optimisation of OgnlException caching

Merge pull request #1026 from apache/dependabot/github_actions/github…

bdace9b

…/codeql-action-3.26.2 Bump github/codeql-action from 3.26.0 to 3.26.2

Merge pull request #1022 from apache/dependabot/maven/maven-surefire-…

6f135ea

…plugin.version-3.4.0 Bump maven-surefire-plugin.version from 3.3.1 to 3.4.0

Merge pull request #1020 from apache/dependabot/maven/org.easymock-ea…

64a3d0c

…symock-5.4.0 Bump org.easymock:easymock from 5.2.0 to 5.4.0

Merge pull request #1025 from apache/dependabot/maven/org.apache.mave…

5b68d4b

…n.plugins-maven-release-plugin-3.1.1 Bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.1

Merge pull request #1028 from apache/dependabot/maven/slf4j.version-2…

f6a60fc

….0.16 Bump slf4j.version from 2.0.13 to 2.0.16

Merge pull request #1031 from apache/dependabot/maven/org.apache.comm…

f05a4d1

…ons-commons-compress-1.27.1 Bump org.apache.commons:commons-compress from 1.26.2 to 1.27.1

Merge pull request #1037 from apache/dependabot/github_actions/action…

93c9856

…s/upload-artifact-4.4.0 Bump actions/upload-artifact from 4.3.6 to 4.4.0

Merge pull request #1038 from apache/dependabot/github_actions/github…

e74d21b

…/codeql-action-3.26.6 Bump github/codeql-action from 3.26.2 to 3.26.6

Merge pull request #1030 from apache/dependabot/maven/spring.platform…

f388f6a

…Version-5.3.39 Bump spring.platformVersion from 5.3.37 to 5.3.39

Merge branch 'master' into merge/master-to-7xx-2024-09-01

9fa6dd9

lukaszlenart requested review from rgielen, aleksandr-m, yasserzamani, sdutry, cnenning and kusalk September 2, 2024 06:39

kusalk approved these changes Sep 2, 2024

View reviewed changes

lukaszlenart merged commit b69e441 into release/struts-7-0-x Sep 2, 2024
7 checks passed

lukaszlenart deleted the merge/master-to-7xx-2024-09-01 branch September 2, 2024 07:09

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge master #1039

Merge master #1039

lukaszlenart commented Sep 2, 2024

sonarcloud bot commented Sep 2, 2024

Merge master #1039

Merge master #1039

Conversation

lukaszlenart commented Sep 2, 2024

sonarcloud bot commented Sep 2, 2024

Quality Gate passed