Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump parent from 2.9.0 to 2.10.0 #218

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 2, 2021

Bumps parent from 2.9.0 to 2.10.0.

Release notes

Sourced from parent's releases.

v2.10.0

What's Changed

New features

  • Reproducible build - no timestamp in javadoc

Dependency updates

  • Bump sign-maven-plugin from 0.1.0 to 0.2.0 #34

Thanks

Many thanks for collaboration on this release for: @slawekjaranowski

Commits
  • cbaa5ce [maven-release-plugin] prepare release v2.10.0
  • 7ff55ee Reproducible build - no timestamp in javadoc
  • a35d8d3 Merge pull request #34 from s4u/dependabot/maven/org.simplify4u.plugins-sign-...
  • cfa02e9 Bump sign-maven-plugin from 0.1.0 to 0.2.0
  • fd4794c File sync from s4u/.github
  • 02af2e8 File sync from s4u/.github
  • 37a143a File sync from s4u/.github
  • 0082b46 File sync from s4u/.github
  • f23183c [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

Bumps [parent](https://github.com/s4u/parent) from 2.9.0 to 2.10.0.
- [Release notes](https://github.com/s4u/parent/releases)
- [Commits](s4u/parent@v2.9.0...v2.10.0)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jan 2, 2021
@sonarqubecloud
Copy link

sonarqubecloud bot commented Jan 2, 2021

Kudos, SonarCloud Quality Gate passed!

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@slawekjaranowski slawekjaranowski merged commit 31cd94c into master Jan 2, 2021
@slawekjaranowski slawekjaranowski deleted the dependabot/maven/org.simplify4u-parent-2.10.0 branch January 2, 2021 20:51
pzygielo pushed a commit to pzygielo/pgpverify-maven-plugin that referenced this pull request May 31, 2024
Drop old and legacy code doing smart(er) things, use common shared primitives instead.

Also, make IO handling stricter, do not be "forgiving" by swallowing IOEx-es as they will inevitably lead to failures, it does not make resolver more robust, but actually makes it harder to figure out the problems, and could lead to incomplete downloads or uploads. Simply put, if reading or writing a file on disk fails with IOEx, do not assume "is fine" in any case. This probably shows some existing issue like permissions or whatever.

---

https://issues.apache.org/jira/browse/MRESOLVER-290
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Development

Successfully merging this pull request may close these issues.

1 participant