From 0d69542a0f9df3f76ccd687e4b865f901ddab422 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 15 Oct 2024 10:04:58 +0900
Subject: [PATCH] MINOR: [Java] Bump org.cyclonedx:cyclonedx-maven-plugin from
2.8.2 to 2.9.0 in /java (#44401)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [org.cyclonedx:cyclonedx-maven-plugin](https://github.com/CycloneDX/cyclonedx-maven-plugin) from 2.8.2 to 2.9.0.
Release notes
Sourced from org.cyclonedx:cyclonedx-maven-plugin's releases.
2.9.0
:tada: Major features and improvements
🔧 Build
Commits
4a217a9 [maven-release-plugin] prepare release cyclonedx-maven-plugin-2.9.02ffab8d run mvn verify in CI instead of package072dcd7 Avoid resources filtering warningbe23759 fix site issues created by upgrades #553 and #552999d5fb Bump org.apache.maven.plugins:maven-site-plugin from 3.12.1 to 3.20.069d3cfd Bump actions/checkout from 4.1.7 to 4.2.073a108d Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.8.0 to 3.10.1a86023a Merge pull request #556 from thesurlydev/support-1.6-spec567818d Add support for 1.6 specificationdce6ee2 [maven-release-plugin] prepare for next development iteration- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@ dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@ dependabot rebase` will rebase this PR
- `@ dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@ dependabot merge` will merge this PR after your CI passes on it
- `@ dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@ dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@ dependabot reopen` will reopen this PR if it is closed
- `@ dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@ dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@ dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@ dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@ dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: David Li
---
java/pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/java/pom.xml b/java/pom.xml
index ac32074b6bb4f..bccabc2020bea 100644
--- a/java/pom.xml
+++ b/java/pom.xml
@@ -530,7 +530,7 @@ under the License.
org.cyclonedx
cyclonedx-maven-plugin
- 2.8.2
+ 2.9.0
org.apache.drill.tools