Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump jsoup from 1.8.3 to 1.14.3 #11643

Merged
merged 2 commits into from
Dec 11, 2021
Merged

Conversation

soenkekueper
Copy link
Contributor

I've updated the jsoup library from 1.8.3 to 1.14.3.

#11615 was created by dependabot, but the 1.14.2 has an OSGI dependency error (see https://jsoup.org/news/release-1.14.3),
so i've used the 1.14.3.

Due some build errors in several plugins i've updated all of them to use the osgi provided bundle instead of compile time dependency.

I've placed all of the plugins within my local test installation, after manual installation of required bundles all of them were installed and started successfully.

soenkekueper and others added 2 commits November 22, 2021 21:17
…version instaed of compile time dependency.

Signed-off-by: Sönke Küper <soenkekueper@gmx.de>
Copy link
Member

@fwolter fwolter left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@clinique, @cschneider, @digitaldan, @jochen314, @kgoderis, @lolodomo, @Skinah Can you please test if 1.14.3 behaves as you'd expect it with your code? The update is necessary due to a security issue. See https://jsoup.org/news/release-1.14.2

@fwolter fwolter added the additional testing preferred The change works for the pull request author. A test from someone else is preferred though. label Nov 27, 2021
@Skinah
Copy link
Contributor

Skinah commented Nov 28, 2021

It works in the ipobserver binding so all good here. However just a suggestion that if there are this many addons all using the same dependency, can it be change like in this PR so changing the version in the future only needs to be done in one line and in one file?

#11130

From then on it is just the main pom that needs the version to be changed and all the bindings will follow.

@wborn wborn added bug An unexpected problem or unintended behavior of an add-on security labels Nov 28, 2021
@fwolter fwolter merged commit f2996aa into openhab:main Dec 11, 2021
@fwolter
Copy link
Member

fwolter commented Dec 11, 2021

@clinique, @cschneider, @digitaldan, @jochen314, @kgoderis, @lolodomo Your binding will use the new jsoup version from OH 3.2.0.RC1 on. Please test your binding, if this update doesn't break anything. 3.2.0.RC1 will be released on Friday, December 17.

@fwolter fwolter added this to the 3.2 milestone Dec 11, 2021
@digitaldan
Copy link
Contributor

no problems here.

@wborn wborn removed the additional testing preferred The change works for the pull request author. A test from someone else is preferred though. label Dec 18, 2021
NickWaterton pushed a commit to NickWaterton/openhab-addons that referenced this pull request Dec 30, 2021
…version instaed of compile time dependency. (openhab#11643)

Signed-off-by: Sönke Küper <soenkekueper@gmx.de>

Co-authored-by: Sönke Küper <soenkekueper@gmx.de>
Signed-off-by: Nick Waterton <n.waterton@outlook.com>
mischmidt83 pushed a commit to mischmidt83/openhab-addons that referenced this pull request Jan 9, 2022
…version instaed of compile time dependency. (openhab#11643)

Signed-off-by: Sönke Küper <soenkekueper@gmx.de>

Co-authored-by: Sönke Küper <soenkekueper@gmx.de>
Signed-off-by: Michael Schmidt <mi.schmidt.83@gmail.com>
nemerdaud pushed a commit to nemerdaud/openhab-addons that referenced this pull request Jan 28, 2022
…version instaed of compile time dependency. (openhab#11643)

Signed-off-by: Sönke Küper <soenkekueper@gmx.de>

Co-authored-by: Sönke Küper <soenkekueper@gmx.de>
marcfischerboschio pushed a commit to bosch-io/openhab-addons that referenced this pull request May 5, 2022
…version instaed of compile time dependency. (openhab#11643)

Signed-off-by: Sönke Küper <soenkekueper@gmx.de>

Co-authored-by: Sönke Küper <soenkekueper@gmx.de>
andan67 pushed a commit to andan67/openhab-addons that referenced this pull request Nov 6, 2022
…version instaed of compile time dependency. (openhab#11643)

Signed-off-by: Sönke Küper <soenkekueper@gmx.de>

Co-authored-by: Sönke Küper <soenkekueper@gmx.de>
andrasU pushed a commit to andrasU/openhab-addons that referenced this pull request Nov 12, 2022
…version instaed of compile time dependency. (openhab#11643)

Signed-off-by: Sönke Küper <soenkekueper@gmx.de>

Co-authored-by: Sönke Küper <soenkekueper@gmx.de>
Signed-off-by: Andras Uhrin <andras.uhrin@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bug An unexpected problem or unintended behavior of an add-on security
Projects
None yet
Development

Successfully merging this pull request may close these issues.

5 participants