Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency org.owasp:dependency-check-maven to v8.4.3 #33

Merged
merged 1 commit into from
Apr 29, 2024
Merged

Update dependency org.owasp:dependency-check-maven to v8.4.3 #33

merged 1 commit into from
Apr 29, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Apr 29, 2024

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
org.owasp:dependency-check-maven (source) 8.3.1 -> 8.4.3 age adoption passing confidence

Release Notes

jeremylong/DependencyCheck (org.owasp:dependency-check-maven)

v8.4.3

Compare Source

  • fix: bump jcs3 (#​6047)
  • docs: Corrected docs on hostedSuppressions (#​6035)

See the full listing of changes.

v8.4.2

Compare Source

  • fix: correct log configuration in cli (#​6002)

See the full listing of changes.

v8.4.1

Compare Source

Fixed
  • fix: upgrade to JCS3 (#​5114)
  • fix: Support ~= version specifier in requirements.txt and pipfile (#​5902)
  • fix: Version of dependency no longer ignored when CPE product has a 'java' suffix in a product name (#​5901)
  • fix: Do not filter out evidences added by hints (#​5900)
  • fix: fixes FP #​5925 (#​5927)

See the full listing of changes.

v8.4.0

Compare Source

Added
  • feat: Add support for Nexus v3 to NexusAnalyzer (#​5849)
Fixed
  • fix: Hint Analyzer should run before VersionFilter Analyzer (#​5818)
  • chore: switch to sha1-pinning as suggested by Semgrep
  • fix: OSS Index Analyzer SocketTimeoutException exception handling based on warn only parameter (#​5845)
  • fix: use curl with -L to follow github redirect (#​5808)
  • fix: use curl with -L to follow github redirect
  • fix: #​5671 out of memory error (#​5789)
  • fix: #​5671 Exit method as soon as we detect a loop to prevent an infinite loop leading to an OutOfMemoryError

See the full listing of changes.

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled because a matching PR was automerged previously.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@elomagic elomagic merged commit 080c2ca into main Apr 29, 2024
1 check passed
@elomagic elomagic deleted the renovate/dependency-check-maven.version branch April 29, 2024 18:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@elomagic