New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update dependabot config and update dependencies where possible #1346
base: main
Are you sure you want to change the base?
Conversation
Thanks for your pull request! This pull request does not follow the contribution rules. Could you have a look? ❌ All commit messages should start with a JIRA issue key matching pattern › This message was automatically generated. |
I would say +1 but CI looks unhappy? |
f4f02a4
to
e232f02
Compare
Aw shoot, I'm missing all the fun 😁 |
e232f02
to
01764c3
Compare
🙈 😄 mmmmmmmm ooooook... so the problem is caused by:
Which, if we don't upgrade the surefire plugin, is:
For some reason with the plugin upgrade
which isn't surefire related 🤔😕 and that's happening inside of the TCK classes .... it's fixable, but I guess we aren't getting a new version of TCK to make this work 🤔 |
I remember similar problems from when we worked on running Jandex indexing on startup in Hibernate Search... I don't remember what I changed to fix it, but here's the test that checked it worked, and I suppose the fix is somewhere in the same commit: hibernate/hibernate-search@2773f90#diff-fa81f1bd295eb29f597f67849a355691e3672277da2aa60d41156433b3935971R257-R258 Does that help in any way? |
Thanks 😃
|
Thanks. @gsmet could you add your +1 to that PR, since I guess your opinion has great weight over there? I imagine Scott is quite busy right now, so your advice could help expedite things.
Probably a good idea if we merge this in HV 9.0 with Jakarta 11 support.
That's going to be challenging, as the part of the path that causes the problem is somewhat standard (it's a temp dir that's available to each job) and not configurable AFAICS.
Or... we upgrade, but find some config option that reverts to the old behavior. Not sure if this is possible though. |
01764c3
to
f7eb028
Compare
--- updated-dependencies: - dependency-name: net.bytebuddy:byte-buddy dependency-type: direct:development update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.logging.log4j:log4j-core dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.logging.log4j:log4j-slf4j-impl dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.slf4j:jcl-over-slf4j dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.slf4j:slf4j-jdk14 dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.logging.log4j:log4j-slf4j-impl dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: junit:junit dependency-type: direct:development update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: org.testng:testng dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.easymock:easymock dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.assertj:assertj-core dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: io.rest-assured:rest-assured dependency-type: direct:development update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.jboss.arquillian:arquillian-bom dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.jboss.weld:weld-core-impl dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: org.wildfly.arquillian:wildfly-arquillian-container-managed dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.jboss.arquillian.container:arquillian-weld-embedded dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: com.google.guava:guava dependency-type: direct:production dependency-group: build-dependencies - dependency-name: org.springframework:spring-expression dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: com.fasterxml.jackson.core:jackson-annotations dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: com.puppycrawl.tools:checkstyle dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.slf4j:jcl-over-slf4j dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.slf4j:slf4j-jdk14 dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.ow2.asm:asm dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.asciidoctor:asciidoctorj dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: org.asciidoctor:asciidoctorj-pdf dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.fasterxml.woodstox:woodstox-core dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.wildfly.core:wildfly-patching dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.wildfly.core:wildfly-cli dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.wildfly.core:wildfly-cli dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-enforcer-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: com.mycila:license-maven-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-antrun-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-clean-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-jar-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-compiler-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-checkstyle-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: de.thetaphi:forbiddenapis dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-surefire-report-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-surefire-report-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-failsafe-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-dependency-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-install-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-assembly-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-release-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.asciidoctor:asciidoctor-maven-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: ch.mfrey.maven.plugin:copy-maven-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.felix:maven-bundle-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-deploy-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-resources-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.codehaus.gmavenplus:gmavenplus-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.apache.servicemix.tooling:depends-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.codehaus.mojo:build-helper-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.apache.maven.plugins:maven-shade-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.jboss.as:patch-gen-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: org.wildfly.plugins:wildfly-maven-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.netbeans.tools:sigtest-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.sonatype.plugins:nexus-staging-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.buschmais.jqassistant:jqassistant-maven-plugin dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies - dependency-name: org.openjdk.jmh:jmh-core dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.openjdk.jmh:jmh-generator-annprocess dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.openjdk.jmh:jmh-generator-annprocess dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.slf4j:slf4j-log4j12 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: org.jboss.modules:jboss-modules dependency-type: direct:production update-type: version-update:semver-major dependency-group: build-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
f7eb028
to
80b6b16
Compare
Bumps the build-dependencies group with 5 updates: | Package | From | To | | --- | --- | --- | | [com.google.guava:guava](https://github.com/google/guava) | `33.1.0-jre` | `33.2.0-jre` | | [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.17.0` | `2.17.1` | | [com.fasterxml.jackson.core:jackson-annotations](https://github.com/FasterXML/jackson) | `2.17.0` | `2.17.1` | | [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) | `0.21.1` | `0.21.2` | | [com.buschmais.jqassistant:jqassistant-maven-plugin](https://github.com/jqassistant/jqa-maven-plugin) | `2.2.0` | `2.2.1` | Updates `com.google.guava:guava` from 33.1.0-jre to 33.2.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `com.fasterxml.jackson.core:jackson-databind` from 2.17.0 to 2.17.1 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `com.fasterxml.jackson.core:jackson-annotations` from 2.17.0 to 2.17.1 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `com.github.siom79.japicmp:japicmp-maven-plugin` from 0.21.1 to 0.21.2 - [Release notes](https://github.com/siom79/japicmp/releases) - [Changelog](https://github.com/siom79/japicmp/blob/master/release.py) - [Commits](siom79/japicmp@japicmp-base-0.21.1...japicmp-base-0.21.2) Updates `com.buschmais.jqassistant:jqassistant-maven-plugin` from 2.2.0 to 2.2.1 - [Commits](jQAssistant/jqa-maven-plugin@REL-2.2.0...REL-2.2.1) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.fasterxml.jackson.core:jackson-annotations dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.buschmais.jqassistant:jqassistant-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps the build-dependencies group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [net.bytebuddy:byte-buddy](https://github.com/raphw/byte-buddy) | `1.14.14` | `1.14.15` | | [com.google.guava:guava](https://github.com/google/guava) | `33.1.0-jre` | `33.2.0-jre` | | [com.fasterxml.jackson.core:jackson-databind](https://github.com/FasterXML/jackson) | `2.17.0` | `2.17.1` | | [com.fasterxml.jackson.core:jackson-annotations](https://github.com/FasterXML/jackson) | `2.17.0` | `2.17.1` | | [com.mycila:license-maven-plugin](https://github.com/mathieucarbou/license-maven-plugin) | `4.3` | `4.5` | | [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) | `0.21.1` | `0.21.2` | | [com.buschmais.jqassistant:jqassistant-maven-plugin](https://github.com/jqassistant/jqa-maven-plugin) | `2.2.0` | `2.2.1` | Updates `net.bytebuddy:byte-buddy` from 1.14.14 to 1.14.15 - [Release notes](https://github.com/raphw/byte-buddy/releases) - [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md) - [Commits](raphw/byte-buddy@byte-buddy-1.14.14...byte-buddy-1.14.15) Updates `com.google.guava:guava` from 33.1.0-jre to 33.2.0-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `com.fasterxml.jackson.core:jackson-databind` from 2.17.0 to 2.17.1 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `com.fasterxml.jackson.core:jackson-annotations` from 2.17.0 to 2.17.1 - [Commits](https://github.com/FasterXML/jackson/commits) Updates `com.mycila:license-maven-plugin` from 4.3 to 4.5 - [Commits](mathieucarbou/license-maven-plugin@license-maven-plugin-4.3...license-maven-plugin-4.5) Updates `com.github.siom79.japicmp:japicmp-maven-plugin` from 0.21.1 to 0.21.2 - [Release notes](https://github.com/siom79/japicmp/releases) - [Changelog](https://github.com/siom79/japicmp/blob/master/release.py) - [Commits](siom79/japicmp@japicmp-base-0.21.1...japicmp-base-0.21.2) Updates `com.buschmais.jqassistant:jqassistant-maven-plugin` from 2.2.0 to 2.2.1 - [Commits](jQAssistant/jqa-maven-plugin@REL-2.2.0...REL-2.2.1) --- updated-dependencies: - dependency-name: net.bytebuddy:byte-buddy dependency-type: direct:development update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.google.guava:guava dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: com.fasterxml.jackson.core:jackson-databind dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.fasterxml.jackson.core:jackson-annotations dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.mycila:license-maven-plugin dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-dependencies - dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies - dependency-name: com.buschmais.jqassistant:jqassistant-maven-plugin dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
- instead of relying on a one from the test-jar that is not there anymore with the newer versions of log4j
as it leads to build errors
Bumps [org.glassfish:javax.el](https://github.com/javaee/uel-ri) from 3.0.1-b11 to 3.0.1-b12. - [Commits](javaee/uel-ri@javax.el-3.0.1-b11...javax.el-3.0.1-b12) --- updated-dependencies: - dependency-name: org.glassfish:javax.el dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps org.openjfx:javafx-base from 11.0.2 to 22. --- updated-dependencies: - dependency-name: org.openjfx:javafx-base dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [joda-time:joda-time](https://github.com/JodaOrg/joda-time) from 2.9.7 to 2.12.7. - [Release notes](https://github.com/JodaOrg/joda-time/releases) - [Changelog](https://github.com/JodaOrg/joda-time/blob/main/RELEASE-NOTES.txt) - [Commits](JodaOrg/joda-time@v2.9.7...v2.12.7) --- updated-dependencies: - dependency-name: joda-time:joda-time dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [org.jboss.logging:jboss-logging](https://github.com/jboss-logging/jboss-logging) from 3.4.3.Final to 3.5.3.Final. - [Release notes](https://github.com/jboss-logging/jboss-logging/releases) - [Commits](jboss-logging/jboss-logging@3.4.3.Final...3.5.3.Final) --- updated-dependencies: - dependency-name: org.jboss.logging:jboss-logging dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [com.fasterxml:classmate](https://github.com/FasterXML/java-classmate) from 1.5.1 to 1.7.0. - [Commits](FasterXML/java-classmate@classmate-1.5.1...classmate-1.7.0) --- updated-dependencies: - dependency-name: com.fasterxml:classmate dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [javax.money:money-api](https://github.com/JavaMoney/jsr354-api) from 1.0.1 to 1.1. - [Release notes](https://github.com/JavaMoney/jsr354-api/releases) - [Commits](JavaMoney/jsr354-api@1.0.1...1.1) --- updated-dependencies: - dependency-name: javax.money:money-api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps org.openjfx:javafx-base from 11.0.2 to 22.0.1. --- updated-dependencies: - dependency-name: org.openjfx:javafx-base dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
some plugins like asciidoctor-maven-plugin require maven 3.8.5+
80b6b16
to
aee1e0f
Compare
126d1e9
to
9d82106
Compare
Hey @gsmet 😃
after opening #1344 because of the issues building the project when using the JDK 21 and doing the SM removal work in #1345 I thought that maybe we should enable dependabot and keep the build of the Validator more up to date so it'll be more straightforward to address any build issues rather than waiting for them to pileup...
I've used the similar dependabot config that we have in the Search.
The only thing I couldn't upgrade is Wildfly because of jbossas/patch-gen#34 😔 but it looks like that project is a bit stale 😔😔😔