Apache
/
maven
mirror of https://github.com/apache/maven.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,319 Commits 84 Branches 94 Tags 109 MiB
Commit Graph

12319 Commits

Author SHA1 Message Date
dependabot[bot] 6e31bacc93
Bump commons-cli:commons-cli from 1.8.0 to 1.9.0 (#1654) 
Bumps commons-cli:commons-cli from 1.8.0 to 1.9.0.

---
updated-dependencies:
- dependency-name: commons-cli:commons-cli
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-15 15:39:50 +02:00
dependabot[bot] ecdf7b5a7f
Bump org.junit:junit-bom from 5.10.3 to 5.11.0 (#1655) 
Bumps [org.junit:junit-bom](https://github.com/junit-team/junit5) from 5.10.3 to 5.11.0.
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](https://github.com/junit-team/junit5/compare/r5.10.3...r5.11.0)

---
updated-dependencies:
- dependency-name: org.junit:junit-bom
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-15 15:39:04 +02:00
Jan-Jelle Kester 5b61e95f23
[MNG-7344] Track dependencyManagement import location in effective Model for MPH-183 (#603) 
Co-authored-by: Maarten Mulders <mthmulders@apache.org>
Co-authored-by: Juul Hobert <juul.hobert@infosupport.com>
Co-authored-by: Giovanni van der Schelde <gvdschelde@gmail.com>
Co-authored-by: Guillaume Nodet <gnodet@gmail.com>
 2024-08-15 15:24:49 +02:00
Konrad Windszus 1ee18d36ce
[MPLUGIN-530] Deprecate requirements in plugin descriptor 1.1.0 (#1638) 
The replacement for v4 plugins should be Maven DI annotations while for
v3 plugins it is JSR 330 annotations
 2024-08-15 14:07:47 +02:00
Tamas Cservenak 09f3b9f500
[MNG-8165] Get rid of bashism creeped in (#1652) 
Use of "==" is a bashism.

---

https://issues.apache.org/jira/browse/MNG-8165
 2024-08-14 10:42:07 +02:00
Tamas Cservenak cf2934b6ad
[MNG-8165] Align mvn.sh script with mvn.cmd (#1648) 
As one does check for .mvn directory in FS root while other does not, stops one level before.

---

https://issues.apache.org/jira/browse/MNG-8165
 2024-08-13 09:11:25 +02:00
Guillaume Nodet 2a709dc038
[MNG-8176] Restrict classloader for Maven 4 plugins (#1336) 2024-08-12 23:57:01 +02:00
Guillaume Nodet 9c1871fd22
Fix StringIndexOutOfBoundsException (#1618) 2024-08-12 23:56:26 +02:00
HiuFung Kwok 97bc109a43
mvn-8010: Update doc (#1624) 2024-08-12 23:54:56 +02:00
dependabot[bot] aa3772beb3
[MNG-8209] Bump slf4jVersion from 2.0.14 to 2.0.16 (#1643) 
Bumps `slf4jVersion` from 2.0.14 to 2.0.16.

Updates `org.slf4j:slf4j-api` from 2.0.14 to 2.0.16

Updates `org.slf4j:slf4j-simple` from 2.0.14 to 2.0.16

Updates `org.slf4j:jcl-over-slf4j` from 2.0.14 to 2.0.16

---
updated-dependencies:
- dependency-name: org.slf4j:slf4j-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.slf4j:slf4j-simple
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.slf4j:jcl-over-slf4j
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

---

https://issues.apache.org/jira/browse/MNG-8209
 2024-08-12 17:27:24 +02:00
Tamas Cservenak 10e2fba0fb
[MNG-8177] Add contextual info for model warnings (#1636) 
As they really can come from anywhere. In case of this issue even from some eliminated POM that was read while collecting dirty tree, and was later eliminated. So confusing for users.

---

https://issues.apache.org/jira/browse/MNG-8177
 2024-08-12 13:51:34 +02:00
Guillaume Nodet e6b5c81a7d
[MNG-8206] Remove bad plugin.xml in maven-compat (#1644) 
Follow-up to https://github.com/apache/maven/pull/1642

---

https://issues.apache.org/jira/browse/MNG-8206
 2024-08-12 13:49:51 +02:00
Tamas Cservenak ad04d2c1fc
[MNG-8180] Back out from failing the build (#1645) 
Just warn the user for now.

Port of accepted change from 3.9.x: https://github.com/apache/maven/pull/1642

---

https://issues.apache.org/jira/browse/MNG-8180
 2024-08-12 13:06:59 +02:00
Tamas Cservenak da7c2110e4
[MNG-8180] Handle NPE due non-existent tags (#1639) 
There was an NPE possibility when plugin.xml had no expected tags present.

Also: maven-compat has plugin.xml (!) w/o "name" tag, it NPEd and failed build. This was NOT picked up by CI as "rebuild itself" step does not install (just verify).

---

https://issues.apache.org/jira/browse/MNG-8180
 2024-08-11 18:56:11 +02:00
Guillaume Nodet 182b87c246
[MNG-8132] Fix BOM dependency exclusions (#1622) 
The original patch from MNG-5600 had not been ported to the new model builder
 2024-08-11 00:42:29 +02:00
Guillaume Nodet 4369fa8dff
[API] Expose InputLocation formatter in the XmlFactory (#1616) 2024-08-11 00:21:50 +02:00
Martin Desruisseaux 473b5374f0
[MNG-8197] Use default classifier when Eclipse Aether specifies none (#1621) 
* Use default classifier when Eclipse Aether specifies none.
The important change in this commit is in the implementation of `getClassifier()` methods.
However, this commit opportunistically refactors the code with a base class shared by `DefaultDependency` and `DefaultDependencyCoordinate` implementations.

* Preserve the type declared in the dependency (e.g. "modular-jar") when wrapping the object from Maven model.
 2024-08-11 00:20:04 +02:00
Konrad Windszus 0f6d555073 [MNG-8192] Consistently throw InvalidArtifactRTException for invalid 
coordinates

This fixes throwing NPE for version being null.
 2024-08-10 20:30:18 +02:00
Tamas Cservenak 5ec110672e
[MNG-8182] Resolved errors were created based on collect exceptions (#1635) 
Hence, they missed resolution errors.

---

https://issues.apache.org/jira/browse/MNG-8182
 2024-08-09 23:10:29 +02:00
dependabot[bot] 1daa1d52b6
[MNG-8204] Bump com.github.siom79.japicmp:japicmp-maven-plugin (#1620) 
Bumps [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) from 0.21.2 to 0.22.0.
- [Release notes](https://github.com/siom79/japicmp/releases)
- [Changelog](https://github.com/siom79/japicmp/blob/master/release.py)
- [Commits](https://github.com/siom79/japicmp/compare/japicmp-base-0.21.2...japicmp-base-0.22.0)

---
updated-dependencies:
- dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

---

https://issues.apache.org/jira/browse/MNG-8204
 2024-08-09 22:06:38 +02:00
dependabot[bot] afd3729e81
[MNG-8203] Bump org.jline:jline from 3.26.2 to 3.26.3 (#1619) 
Bumps [org.jline:jline](https://github.com/jline/jline3) from 3.26.2 to 3.26.3.
- [Release notes](https://github.com/jline/jline3/releases)
- [Changelog](https://github.com/jline/jline3/blob/master/changelog.md)
- [Commits](https://github.com/jline/jline3/compare/jline-parent-3.26.2...jline-parent-3.26.3)

---
updated-dependencies:
- dependency-name: org.jline:jline
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

---

https://issues.apache.org/jira/browse/MNG-8203
 2024-08-09 22:05:09 +02:00
dependabot[bot] 0f2f263218
[MNG-8202] Bump org.hamcrest:hamcrest from 2.2 to 3.0 (#1623) 
Bumps [org.hamcrest:hamcrest](https://github.com/hamcrest/JavaHamcrest) from 2.2 to 3.0.
- [Release notes](https://github.com/hamcrest/JavaHamcrest/releases)
- [Changelog](https://github.com/hamcrest/JavaHamcrest/blob/master/CHANGES.md)
- [Commits](https://github.com/hamcrest/JavaHamcrest/compare/v2.2...v3.0)

---
updated-dependencies:
- dependency-name: org.hamcrest:hamcrest
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

---

https://issues.apache.org/jira/browse/MNG-8202
 2024-08-09 22:04:02 +02:00
dependabot[bot] 11cb9f419d
[MNG-8201] Bump slf4jVersion from 2.0.13 to 2.0.14 (#1629) 
Bumps `slf4jVersion` from 2.0.13 to 2.0.14.

Updates `org.slf4j:slf4j-api` from 2.0.13 to 2.0.14

Updates `org.slf4j:slf4j-simple` from 2.0.13 to 2.0.14

Updates `org.slf4j:jcl-over-slf4j` from 2.0.13 to 2.0.14

---
updated-dependencies:
- dependency-name: org.slf4j:slf4j-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.slf4j:slf4j-simple
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.slf4j:jcl-over-slf4j
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

---

https://issues.apache.org/jira/browse/MNG-8201
 2024-08-09 22:02:49 +02:00
Tamas Cservenak f8aaf280df
[MNG-8194] Update to Resolver 2.0.1 (#1626) 
Update to [Resolver 2.0.1](https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12320628&version=12354901), JIRA pending.

---

https://issues.apache.org/jira/browse/MNG-8194
 2024-08-09 12:49:04 +02:00
Tamas Cservenak c0012c08aa
[MNG-8180] Fail install/deploy if rogue Maven Plugin metadata found (#1612) 
Resolver handles transparently the repository metadata, and in case of plugins it peeks into META-INF/maven/plugin.xml of given artifact JAR to figure out needed metadata bits (prefix, name, etc).

But, this was done "blindly", while it is expected that GA of JAR artifact without classifier (requirement for maven plugins) and GA in embedded plugin metadata must be same.

Decision here is to fail hard, prevent this being installed and deployed, as this is most probably wrong (unsure what maven-indexer or even Sonatype search would do in this case).

---

https://issues.apache.org/jira/browse/MNG-8180
 2024-07-11 18:47:20 +02:00
Guillaume Nodet f2a0865c7a
[MNG-8178] Fall back to system properties for missing profile activation context properties (#1609) 
A call to context.getSystemProperties() may yield an empty map, or
one missing the desired key, which makes a subsequent call of
toLowerCase fail with a NullPointerException.

Fall-back to using system properties with the Os.OS_NAME and 
similar values instead.

---------

Co-authored-by: Christian Kohlschütter <christian@kohlschutter.com>
 2024-07-11 07:24:58 +02:00
Slawomir Jaranowski d35864e348 [MNG-8179] Upgrade Parent to 43 2024-07-10 22:52:34 +02:00
Guillaume Nodet fd8f99ed90
Fix Maven 4 extensions (#1601) 
* Add rootDirectory to XmlReaderRequest and fix maven-core exported artifacts
* Set the thread context classloader to the container realm to fix class loading from extensions
 2024-07-09 14:10:26 +02:00
dependabot[bot] 58e1a7b6a1
Bump resolverVersion from 2.0.0-alpha-11 to 2.0.0 (#1600) 
Bumps `resolverVersion` from 2.0.0-alpha-11 to 2.0.0.

Updates `org.apache.maven.resolver:maven-resolver-api` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-spi` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-impl` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-util` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-named-locks` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-connector-basic` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-transport-file` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-transport-apache` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

Updates `org.apache.maven.resolver:maven-resolver-transport-jdk` from 2.0.0-alpha-11 to 2.0.0

Updates `org.apache.maven.resolver:maven-resolver-transport-wagon` from 2.0.0-alpha-11 to 2.0.0
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-2.0.0-alpha-11...maven-resolver-2.0.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.resolver:maven-resolver-api
  dependency-type: direct:development
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-spi
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-impl
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-util
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-named-locks
  dependency-type: direct:development
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-connector-basic
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-transport-file
  dependency-type: direct:development
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-transport-apache
  dependency-type: direct:development
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-transport-jdk
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-transport-wagon
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-09 09:55:44 +02:00
dependabot[bot] 5e33036d3a
Bump net.bytebuddy:byte-buddy from 1.14.17 to 1.14.18 (#1602) 
Bumps [net.bytebuddy:byte-buddy](https://github.com/raphw/byte-buddy) from 1.14.17 to 1.14.18.
- [Release notes](https://github.com/raphw/byte-buddy/releases)
- [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md)
- [Commits](https://github.com/raphw/byte-buddy/compare/byte-buddy-1.14.17...byte-buddy-1.14.18)

---
updated-dependencies:
- dependency-name: net.bytebuddy:byte-buddy
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-09 09:55:27 +02:00
Elliotte Rusty Harold 910b39cb2a
[MNG-8155] Improve not built error message (#1599) 
Part of MNG-8155
 2024-07-07 22:42:17 +00:00
dependabot[bot] 4810cc1fd6
Bump org.codehaus.plexus:plexus-testing from 1.3.0 to 1.4.0 (#1596) 
Bumps [org.codehaus.plexus:plexus-testing](https://github.com/codehaus-plexus/plexus-testing) from 1.3.0 to 1.4.0.
- [Release notes](https://github.com/codehaus-plexus/plexus-testing/releases)
- [Commits](https://github.com/codehaus-plexus/plexus-testing/compare/plexus-testing-1.3.0...plexus-testing-1.4.0)

---
updated-dependencies:
- dependency-name: org.codehaus.plexus:plexus-testing
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-06 06:24:25 +02:00
Guillaume Nodet ab457d814f
Fix Toolchain toString() method (#1593) 2024-07-06 06:24:05 +02:00
dependabot[bot] 76fbb4b278
Bump org.codehaus.woodstox:stax2-api from 4.2.1 to 4.2.2 (#1583) 
Bumps [org.codehaus.woodstox:stax2-api](https://github.com/FasterXML/stax2-api) from 4.2.1 to 4.2.2.
- [Commits](https://github.com/FasterXML/stax2-api/compare/stax2-api-4.2.1...stax2-api-4.2.2)

---
updated-dependencies:
- dependency-name: org.codehaus.woodstox:stax2-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-02 11:20:42 +02:00
dependabot[bot] 2322ab4060
Bump org.junit:junit-bom from 5.10.2 to 5.10.3 (#1592) 
Bumps [org.junit:junit-bom](https://github.com/junit-team/junit5) from 5.10.2 to 5.10.3.
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](https://github.com/junit-team/junit5/compare/r5.10.2...r5.10.3)

---
updated-dependencies:
- dependency-name: org.junit:junit-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-02 10:46:56 +02:00
dependabot[bot] fb239d7903
Bump com.fasterxml.woodstox:woodstox-core from 6.6.2 to 7.0.0 (#1590) 
Bumps [com.fasterxml.woodstox:woodstox-core](https://github.com/FasterXML/woodstox) from 6.6.2 to 7.0.0.
- [Commits](https://github.com/FasterXML/woodstox/compare/woodstox-core-6.6.2...woodstox-core-7.0.0)

---
updated-dependencies:
- dependency-name: com.fasterxml.woodstox:woodstox-core
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-02 10:46:38 +02:00
Piotrek Żygieło 57fd0dc69b
[MNG-7194] Test missing property evaluation (#1573) 
Co-authored-by: Piotrek Żygieło <pzygielo@users.noreply.github.com>
 2024-06-26 05:22:09 +02:00
Guillaume Nodet 5b4e17736b
[MNG-8164] Session#collectDependencies(Project) does not obey exclusions (#1591) 2024-06-25 22:07:29 +02:00
dependabot[bot] 60ff077409
Bump org.jline:jline from 3.26.1 to 3.26.2 (#1588) 
Bumps [org.jline:jline](https://github.com/jline/jline3) from 3.26.1 to 3.26.2.
- [Release notes](https://github.com/jline/jline3/releases)
- [Changelog](https://github.com/jline/jline3/blob/master/changelog.md)
- [Commits](https://github.com/jline/jline3/compare/jline-parent-3.26.1...jline-parent-3.26.2)

---
updated-dependencies:
- dependency-name: org.jline:jline
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-25 21:47:12 +02:00
Guillaume Nodet c3f1cd6f76
[MNG-8160] Recreate the transformed artifact if it has been deleted (by the clean goal for example) (#1587) 2024-06-19 10:46:28 +02:00
Guillaume Nodet df94ee0d2c Remove hardcoded references to woodstox stax implementation 2024-06-14 00:26:16 +02:00
dependabot[bot] 56cfb7fa46 Bump net.bytebuddy:byte-buddy from 1.14.15 to 1.14.17 
Bumps [net.bytebuddy:byte-buddy](https://github.com/raphw/byte-buddy) from 1.14.15 to 1.14.17.
- [Release notes](https://github.com/raphw/byte-buddy/releases)
- [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md)
- [Commits](https://github.com/raphw/byte-buddy/compare/byte-buddy-1.14.15...byte-buddy-1.14.17)

---
updated-dependencies:
- dependency-name: net.bytebuddy:byte-buddy
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-12 21:33:17 +02:00
dependabot[bot] e0eb6697f4 Bump com.google.guava:guava from 33.2.0-jre to 33.2.1-jre 
Bumps [com.google.guava:guava](https://github.com/google/guava) from 33.2.0-jre to 33.2.1-jre.
- [Release notes](https://github.com/google/guava/releases)
- [Commits](https://github.com/google/guava/commits)

---
updated-dependencies:
- dependency-name: com.google.guava:guava
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-12 21:32:59 +02:00
Slawomir Jaranowski 768ebbc263
[MNG-7758] Report dependency problems for all repository (#1563) 2024-06-12 09:49:10 +02:00
Pavlo Shevchenko db33754938
[MNG-8150] Remove unused locale argument from FileSizeFormat (#1579) 
## Summary

Addressing https://github.com/apache/maven/pull/1575#discussion_r1634977808

 - [x] I hereby declare this contribution to be licenced under the [Apache License Version 2.0, January 2004](http://www.apache.org/licenses/LICENSE-2.0)

---

https://issues.apache.org/jira/browse/MNG-8150
 2024-06-11 23:48:41 +02:00
Pavlo Shevchenko e995ba62eb
[MNG-8150] Handle absent source/target files in transfer listener (#1575) 
The PR address two issues observed in the `SimplexTransferListener` and `ConsoleMavenTransferListener`:
1. [TransferResource#getFile()](https://github.com/apache/maven-resolver/blob/master/maven-resolver-api/src/main/java/org/eclipse/aether/transfer/TransferResource.java#L170) can be null. The current `SimplexTransferListener` will break with an NPE if the `file` is not set on the resource.
2. `TransferResource` is not immutable and does not implement `equals` or `hashCode,` making its usage in collections brittle. Listener consumers are not guaranteed to reuse the same instance across listener invocations. I suggest wrapping it in an immutable identifier.

Resolves https://issues.apache.org/jira/browse/MNG-8150

 - [x] I hereby declare this contribution to be licenced under the [Apache License Version 2.0, January 2004](http://www.apache.org/licenses/LICENSE-2.0)

---

https://issues.apache.org/jira/browse/MNG-8150
 2024-06-11 22:50:56 +02:00
dependabot[bot] 2a43242937 Bump org.codehaus.plexus:plexus-testing from 1.0.0 to 1.3.0 
updated-dependencies:
- dependency-name: org.codehaus.plexus:plexus-testing
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-11 11:13:34 +02:00
Guillaume Nodet e9ece0c9c9 Remove commons-io dependency 2024-06-11 11:06:12 +02:00
dependabot[bot] 75a234c0f6 Bump org.junit:junit-bom from 5.10.1 to 5.10.2 
Bumps [org.junit:junit-bom](https://github.com/junit-team/junit5) from 5.10.1 to 5.10.2.
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](https://github.com/junit-team/junit5/compare/r5.10.1...r5.10.2)

---
updated-dependencies:
- dependency-name: org.junit:junit-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-11 09:31:18 +02:00
dependabot[bot] c4bf01445d Bump commons-cli:commons-cli from 1.5.0 to 1.8.0 
Bumps commons-cli:commons-cli from 1.5.0 to 1.8.0.

---
updated-dependencies:
- dependency-name: commons-cli:commons-cli
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-11 09:31:00 +02:00