Keep dependencies up-to-date #879

zengyu714 · 2021-12-20T22:06:58Z

Issue #, if available:

Description of changes:

Add dependabot configuration file under folder .github to trigger checks for dependencies updates
Update doclint configuration to accommodate 3.x version of maven-javadoc-plugin
Update various dependencies:
- Bump aws-java-sdk.version from 1.12.3 to 1.12.130
- Bump awssdk.version from 2.17.52 to 2.17.101
- Bump commons-collections4 from 4.2 to 4.4
- Bump commons-io from 2.7 to 2.11.0
- Bump commons-lang3 from 3.8.1 to 3.12.0
- Bump gsr.version from 1.1.5 to 1.1.8
- Bump guava from 29.0-jre to 31.0.1-jre
- Bump jcommander from 1.72 to 1.81
- Bump junit from 4.13.1 to 4.13.2
- Bump logback-classic from 1.2.7 to 1.2.9
- Bump lombok from 1.16.20 to 1.18.22
- Bump maven-compiler-plugin from 3.8.0 to 3.8.1
- Bump maven-failsafe-plugin from 2.19.1 to 2.22.2
- Bump maven-gpg-plugin from 1.6 to 3.0.1
- Bump maven-javadoc-plugin from 2.10.3 to 3.3.1
- Bump maven-source-plugin from 3.0.1 to 3.2.1
- Bump maven-surefire-plugin from 2.19.1 to 2.22.2
- Bump protobuf-java from 3.11.4 to 3.19.1
- Bump rxjava from 2.1.14 to 2.2.21
- Bump slf4j-api from 1.7.25 to 1.7.32

Test

[INFO] ------------------------------------------------------------------------
[INFO] Reactor Summary for Amazon Kinesis Client Library 2.3.9:
[INFO] 
[INFO] Amazon Kinesis Client Library ...................... SUCCESS [  0.003 s]
[INFO] Amazon Kinesis Client Library for Java ............. SUCCESS [01:19 min]
[INFO] amazon-kinesis-client-multilang .................... SUCCESS [  6.004 s]
[INFO] ------------------------------------------------------------------------
[INFO] BUILD SUCCESS
[INFO] ------------------------------------------------------------------------
[INFO] Total time:  01:25 min
[INFO] Finished at: 2021-12-20T16:07:18-08:00
[INFO] ------------------------------------------------------------------------

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

Bumps `aws-java-sdk.version` from 1.12.3 to 1.12.125. Updates `aws-java-sdk-core` from 1.12.3 to 1.12.125 - [Release notes](https://github.com/aws/aws-sdk-java/releases) - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.3...1.12.125) Updates `aws-java-sdk-sts` from 1.12.3 to 1.12.125 - [Release notes](https://github.com/aws/aws-sdk-java/releases) - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.3...1.12.125) --- updated-dependencies: - dependency-name: com.amazonaws:aws-java-sdk-core dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: com.amazonaws:aws-java-sdk-sts dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps `gsr.version` from 1.1.5 to 1.1.8. Updates `schema-registry-serde` from 1.1.5 to 1.1.8 - [Release notes](https://github.com/awslabs/aws-glue-schema-registry/releases) - [Changelog](https://github.com/awslabs/aws-glue-schema-registry/blob/master/CHANGELOG.md) - [Commits](awslabs/aws-glue-schema-registry@v1.1.5...v1.1.8) Updates `schema-registry-common` from 1.1.5 to 1.1.8 - [Release notes](https://github.com/awslabs/aws-glue-schema-registry/releases) - [Changelog](https://github.com/awslabs/aws-glue-schema-registry/blob/master/CHANGELOG.md) - [Commits](awslabs/aws-glue-schema-registry@v1.1.5...v1.1.8) --- updated-dependencies: - dependency-name: software.amazon.glue:schema-registry-serde dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.glue:schema-registry-common dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [maven-source-plugin](https://github.com/apache/maven-source-plugin) from 3.0.1 to 3.2.1. - [Release notes](https://github.com/apache/maven-source-plugin/releases) - [Commits](apache/maven-source-plugin@maven-source-plugin-3.0.1...maven-source-plugin-3.2.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-source-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [lombok](https://github.com/projectlombok/lombok) from 1.16.20 to 1.18.22. - [Release notes](https://github.com/projectlombok/lombok/releases) - [Changelog](https://github.com/projectlombok/lombok/blob/master/doc/changelog.markdown) - [Commits](projectlombok/lombok@v1.16.20...v1.18.22) --- updated-dependencies: - dependency-name: org.projectlombok:lombok dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) from 2.10.3 to 3.3.1. - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-2.10.3...maven-javadoc-plugin-3.3.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [rxjava](https://github.com/ReactiveX/RxJava) from 2.1.14 to 2.2.21. - [Release notes](https://github.com/ReactiveX/RxJava/releases) - [Changelog](https://github.com/ReactiveX/RxJava/blob/v2.2.21/CHANGES.md) - [Commits](ReactiveX/RxJava@v2.1.14...v2.2.21) --- updated-dependencies: - dependency-name: io.reactivex.rxjava2:rxjava dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) from 3.8.0 to 3.8.1. - [Release notes](https://github.com/apache/maven-compiler-plugin/releases) - [Commits](apache/maven-compiler-plugin@maven-compiler-plugin-3.8.0...maven-compiler-plugin-3.8.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-compiler-plugin dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [guava](https://github.com/google/guava) from 29.0-jre to 31.0.1-jre. - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [protobuf-java](https://github.com/protocolbuffers/protobuf) from 3.11.4 to 3.19.1. - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Changelog](https://github.com/protocolbuffers/protobuf/blob/master/generate_changelog.py) - [Commits](protocolbuffers/protobuf@v3.11.4...v3.19.1) --- updated-dependencies: - dependency-name: com.google.protobuf:protobuf-java dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) from 1.6 to 3.0.1. - [Release notes](https://github.com/apache/maven-gpg-plugin/releases) - [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-1.6...maven-gpg-plugin-3.0.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-gpg-plugin dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps `awssdk.version` from 2.17.52 to 2.17.100. Updates `kinesis` from 2.17.52 to 2.17.100 Updates `dynamodb` from 2.17.52 to 2.17.100 Updates `cloudwatch` from 2.17.52 to 2.17.100 Updates `netty-nio-client` from 2.17.52 to 2.17.100 Updates `sts` from 2.17.52 to 2.17.100 --- updated-dependencies: - dependency-name: software.amazon.awssdk:kinesis dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:dynamodb dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:cloudwatch dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:netty-nio-client dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:sts dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps logback-classic from 1.2.7 to 1.2.9. --- updated-dependencies: - dependency-name: ch.qos.logback:logback-classic dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [maven-surefire-plugin](https://github.com/apache/maven-surefire) from 2.19.1 to 2.22.2. - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-2.19.1...surefire-2.22.2) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-surefire-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [junit](https://github.com/junit-team/junit4) from 4.13.1 to 4.13.2. - [Release notes](https://github.com/junit-team/junit4/releases) - [Changelog](https://github.com/junit-team/junit4/blob/main/doc/ReleaseNotes4.13.1.md) - [Commits](junit-team/junit4@r4.13.1...r4.13.2) --- updated-dependencies: - dependency-name: junit:junit dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps commons-collections4 from 4.2 to 4.4. --- updated-dependencies: - dependency-name: org.apache.commons:commons-collections4 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps `aws-java-sdk.version` from 1.12.125 to 1.12.130. Updates `aws-java-sdk-core` from 1.12.125 to 1.12.130 - [Release notes](https://github.com/aws/aws-sdk-java/releases) - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.125...1.12.130) Updates `aws-java-sdk-sts` from 1.12.125 to 1.12.130 - [Release notes](https://github.com/aws/aws-sdk-java/releases) - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.125...1.12.130) --- updated-dependencies: - dependency-name: com.amazonaws:aws-java-sdk-core dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: com.amazonaws:aws-java-sdk-sts dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps `awssdk.version` from 2.17.100 to 2.17.101. Updates `kinesis` from 2.17.100 to 2.17.101 Updates `dynamodb` from 2.17.100 to 2.17.101 Updates `cloudwatch` from 2.17.100 to 2.17.101 Updates `netty-nio-client` from 2.17.100 to 2.17.101 Updates `sts` from 2.17.100 to 2.17.101 --- updated-dependencies: - dependency-name: software.amazon.awssdk:kinesis dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:dynamodb dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:cloudwatch dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:netty-nio-client dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: software.amazon.awssdk:sts dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps commons-io from 2.7 to 2.11.0. --- updated-dependencies: - dependency-name: commons-io:commons-io dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [slf4j-api](https://github.com/qos-ch/slf4j) from 1.7.25 to 1.7.32. - [Release notes](https://github.com/qos-ch/slf4j/releases) - [Commits](qos-ch/slf4j@v_1.7.25...v_1.7.32) --- updated-dependencies: - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [maven-failsafe-plugin](https://github.com/apache/maven-surefire) from 2.19.1 to 2.22.2. - [Release notes](https://github.com/apache/maven-surefire/releases) - [Commits](apache/maven-surefire@surefire-2.19.1...surefire-2.22.2) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-failsafe-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [jcommander](https://github.com/cbeust/jcommander) from 1.72 to 1.81. - [Release notes](https://github.com/cbeust/jcommander/releases) - [Changelog](https://github.com/cbeust/jcommander/blob/master/CHANGELOG.md) - [Commits](https://github.com/cbeust/jcommander/commits/1.81) --- updated-dependencies: - dependency-name: com.beust:jcommander dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps commons-lang3 from 3.8.1 to 3.12.0. --- updated-dependencies: - dependency-name: org.apache.commons:commons-lang3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…doc-plugin

shanmsac

lgtm

zengyu714 and others added 25 commits December 5, 2021 19:54

Test dependabot for upgrading dependencies automatically

1dcdb51

Add required field version in the configuration file

6d8cc95

Merge branch 'awslabs:master' into master

848d4b9

Bump commons-io from 2.7 to 2.11.0

e3dd114

Bumps commons-io from 2.7 to 2.11.0. --- updated-dependencies: - dependency-name: commons-io:commons-io dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

zengyu714 requested a review from shanmsac December 20, 2021 22:07

Update doclint configuration to accommodate 3.x version of maven-java…

652e184

…doc-plugin

shanmsac approved these changes Dec 21, 2021

View reviewed changes

zengyu714 merged commit 9c53c0c into awslabs:master Dec 21, 2021

zengyu714 mentioned this pull request Dec 21, 2021

Update logback dependency to 1.2.8 #878

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Keep dependencies up-to-date #879

Keep dependencies up-to-date #879

zengyu714 commented Dec 20, 2021 •

edited

Loading

shanmsac left a comment

Keep dependencies up-to-date #879

Keep dependencies up-to-date #879

Conversation

zengyu714 commented Dec 20, 2021 • edited Loading

shanmsac left a comment

Choose a reason for hiding this comment

zengyu714 commented Dec 20, 2021 •

edited

Loading