Skip to content

Bump the production-dependencies group across 1 directory with 6 updates #1140

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the production-dependencies group across 1 directory with 6 updates #1140

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 14, 2025

Bumps the production-dependencies group with 6 updates in the / directory:

Package From To
org.apache.logging.log4j:log4j-api 2.25.0 2.25.1
org.apache.logging.log4j:log4j-slf4j2-impl 2.25.0 2.25.1
org.apache.logging.log4j:log4j-core 2.25.0 2.25.1
org.jetbrains.kotlinx:kotlinx-datetime-jvm 0.7.0-0.6.x-compat 0.7.1-0.6.x-compat
org.apache.maven.plugins:maven-gpg-plugin 3.2.7 3.2.8
org.junit:junit-bom 5.12.2 5.13.3

Updates org.apache.logging.log4j:log4j-api from 2.25.0 to 2.25.1

Updates org.apache.logging.log4j:log4j-slf4j2-impl from 2.25.0 to 2.25.1

Updates org.apache.logging.log4j:log4j-core from 2.25.0 to 2.25.1

Updates org.apache.logging.log4j:log4j-slf4j2-impl from 2.25.0 to 2.25.1

Updates org.apache.logging.log4j:log4j-core from 2.25.0 to 2.25.1

Updates org.jetbrains.kotlinx:kotlinx-datetime-jvm from 0.7.0-0.6.x-compat to 0.7.1-0.6.x-compat

Release notes

Sourced from org.jetbrains.kotlinx:kotlinx-datetime-jvm's releases.

v0.7.1

  • Add kotlinx.datetime.Instant and kotlinx.datetime.Clock type aliases to, respectively, kotlin.time.Instant and kotlin.time.Clock to make migration more convenient.
  • Add a fallback timezone database implementation for Darwin that uses the Foundation framework if the timezone database is unavailable on the filesystem (#485).
  • Restore binary compatibility in string format definitions utilizing dates on the JVM (#545).
Changelog

Sourced from org.jetbrains.kotlinx:kotlinx-datetime-jvm's changelog.

CHANGELOG

0.7.1

  • Add kotlinx.datetime.Instant and kotlinx.datetime.Clock type aliases to, respectively, kotlin.time.Instant and kotlin.time.Clock to make migration more convenient.
  • Add a fallback timezone database implementation for Darwin that uses the Foundation framework if the timezone database is unavailable on the filesystem (#485).
  • Restore binary compatibility in string format definitions utilizing dates on the JVM (#545).

0.7.0

Breaking changes:

  • Remove kotlinx.datetime.Instant and kotlinx.datetime.Clock in favor of kotlin.time.Instant (#506). See https://github.com/Kotlin/kotlinx-datetime?tab=readme-ov-file#deprecation-of-instant for a description of what to do if this causes problems.
  • Unify the range of admissible LocalDate and LocalDateTime values on all platforms (#432).
  • Rename dayOfMonth to day, monthNumber to month (#84).
  • Make DayOfWeek and Month no longer type aliases to java.time.DayOfWeek and java.time.Month (#96).
  • Make "UTC" and not "Z" be the timezone identifier for TimeZone.UTC (#474).
  • Accept "z" in TimeZone.of, with the same meaning as "Z" (#529).
  • Add DateTimeFormat-based KSerializer implementations for datetime entities, and change the default serializers to be based on toString/parse pairs (#415).

Additions:

  • Add java.io.Serializable implementations for most of the entities in the library (#143). Thanks for spotting and fixing a potential vulnerability, @​lukellmann!
  • Add LocalDateRange, a range of LocalDate values (#190). Thanks, @​PeterAttardo!
  • Add YearMonth and YearMonthRange (#457).

Tweaks and fixes:

  • Support obtaining the system timezone on old Debian-based distributions (#430).
  • Fix not being able to parse some valid timezone identifiers using the timeZoneId() directive (#444).
  • Use the grammar defined in RFC 9557 for parsing timezone identifiers in the timeZoneId() directive, allowing parsing values not present in the timezone database (#531).
  • Improved error messages when formatting an invalid DateTimeComponents value (#471).
  • Set the JPMS dependency on kotlinx.serialization.core to be optional (#496).

0.6.2

  • Add the Wasm/WASI target support (#366). Thanks, @​igoriakovlev!
  • Add TimeSource.asClock (#164). Thanks, @​hfhbd!
  • Implement parsing and formatting day-of-year (#414)
  • Improve the precision of NSDate to Instant conversions (#427)
  • Deprecate DatePeriod.plus and DateTimePeriod.plus with a warning (#381)
  • Deprecate Clock.asTimeSource with a warning (#372)
  • Fix a bug in module-info preventing using kotlinx.datetime.format together with JPMS (#438). Thanks, @​cdelabou!
  • Small tweaks and fixes.

0.6.1

  • Prohibit parsing non-ASCII digits as numbers in DateTimeFormat (#405)
  • More accurately determine which files represent time zones and which don't on Linux and Darwin (#395)
  • Fix a regression that occasionally considered the right boundary of a time overlap to be a part of it on Native (#399)

... (truncated)

Commits

Updates org.apache.maven.plugins:maven-gpg-plugin from 3.2.7 to 3.2.8

Release notes

Sourced from org.apache.maven.plugins:maven-gpg-plugin's releases.

3.2.8

🐛 Bug Fixes

📝 Documentation updates

👻 Maintenance

📦 Dependency updates

Commits
  • 8a46455 [maven-release-plugin] prepare release maven-gpg-plugin-3.2.8
  • 7012821 Fix issueManagement, ciManagement system and url
  • a9a8c84 Make empty classifier null (not empty string) (#287)
  • a8368b0 Add .mvn
  • f0e45e0 Update parent POM to 45 (#284)
  • cb1236c Bump bouncycastleVersion from 1.78.1 to 1.80 (#127)
  • 5377a10 Bump commons-io:commons-io from 2.18.0 to 2.19.0 (#133)
  • 8b63932 Bump org.apache.maven.plugins:maven-invoker-plugin from 3.8.0 to 3.9.0 (#125)
  • 54ea518 Bump org.simplify4u.plugins:pgpverify-maven-plugin from 1.18.2 to 1.19.1
  • a6a412d Remove old JIRA issue link
  • Additional commits viewable in compare view

Updates org.junit:junit-bom from 5.12.2 to 5.13.3

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.13.3 = Platform 1.13.3 + Jupiter 5.13.3 + Vintage 5.13.3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.2...r5.13.3

JUnit 5.13.2 = Platform 1.13.2 + Jupiter 5.13.2 + Vintage 5.13.2

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.1...r5.13.2

JUnit 5.13.1 = Platform 1.13.1 + Jupiter 5.13.1 + Vintage 5.13.1

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.0...r5.13.1

JUnit 5.13.0 = Platform 1.13.0 + Jupiter 5.13.0 + Vintage 5.13.0

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r5.12.2...r5.13.0

JUnit 5.13.0-RC1 = Platform 1.13.0-RC1 + Jupiter 5.13.0-RC1 + Vintage 5.13.0-RC1

See Release Notes.

New Contributors

Full Changelog: junit-team/junit-framework@r5.13.0-M3...r5.13.0-RC1

JUnit 5.13.0-M3 = Platform 1.13.0-M3 + Jupiter 5.13.0-M3 + Vintage 5.13.0-M3

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.0-M2...r5.13.0-M3

JUnit 5.13.0-M2 = Platform 1.13.0-M2 + Jupiter 5.13.0-M2 + Vintage 5.13.0-M2

See Release Notes.

Full Changelog: junit-team/junit-framework@r5.13.0-M1...r5.13.0-M2

... (truncated)

Commits
  • 9e8abdd Release 5.13.3
  • 8a0be13 Improve message of discovery issues for ineffective @Order annotations (#4718)
  • 59d562e Fix Javadoc references
  • f4c202b Strip reasons when concatenating them in ConditionEvaluationResult
  • e5d0e0b Fix multiple issues with ConditionEvaluationResult reason values
  • e5c9a56 Improve display names in tests
  • cf19095 Polish release notes
  • aec59d2 Update dependency com.puppycrawl.tools:checkstyle to v10.26.1
  • 7d8fe2a Update dependency com.puppycrawl.tools:checkstyle to v10.26.0
  • d1ffa36 Update dependency com.puppycrawl.tools:checkstyle to v10.25.1
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the production-dependencies group across 1 directory with 6 updates
70eb8a4 
Bumps the production-dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| org.apache.logging.log4j:log4j-api | `2.25.0` | `2.25.1` |
| org.apache.logging.log4j:log4j-slf4j2-impl | `2.25.0` | `2.25.1` |
| org.apache.logging.log4j:log4j-core | `2.25.0` | `2.25.1` |
| [org.jetbrains.kotlinx:kotlinx-datetime-jvm](https://github.com/Kotlin/kotlinx-datetime) | `0.7.0-0.6.x-compat` | `0.7.1-0.6.x-compat` |
| [org.apache.maven.plugins:maven-gpg-plugin](https://github.com/apache/maven-gpg-plugin) | `3.2.7` | `3.2.8` |
| [org.junit:junit-bom](https://github.com/junit-team/junit-framework) | `5.12.2` | `5.13.3` |



Updates `org.apache.logging.log4j:log4j-api` from 2.25.0 to 2.25.1

Updates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.0 to 2.25.1

Updates `org.apache.logging.log4j:log4j-core` from 2.25.0 to 2.25.1

Updates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.25.0 to 2.25.1

Updates `org.apache.logging.log4j:log4j-core` from 2.25.0 to 2.25.1

Updates `org.jetbrains.kotlinx:kotlinx-datetime-jvm` from 0.7.0-0.6.x-compat to 0.7.1-0.6.x-compat
- [Release notes](https://github.com/Kotlin/kotlinx-datetime/releases)
- [Changelog](https://github.com/Kotlin/kotlinx-datetime/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Kotlin/kotlinx-datetime/commits)

Updates `org.apache.maven.plugins:maven-gpg-plugin` from 3.2.7 to 3.2.8
- [Release notes](https://github.com/apache/maven-gpg-plugin/releases)
- [Commits](apache/maven-gpg-plugin@maven-gpg-plugin-3.2.7...maven-gpg-plugin-3.2.8)

Updates `org.junit:junit-bom` from 5.12.2 to 5.13.3
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](junit-team/junit-framework@r5.12.2...r5.13.3)

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-api
  dependency-version: 2.25.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.apache.logging.log4j:log4j-slf4j2-impl
  dependency-version: 2.25.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-version: 2.25.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.apache.logging.log4j:log4j-slf4j2-impl
  dependency-version: 2.25.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-version: 2.25.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.jetbrains.kotlinx:kotlinx-datetime-jvm
  dependency-version: 0.7.1-0.6.x-compat
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.apache.maven.plugins:maven-gpg-plugin
  dependency-version: 3.2.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: org.junit:junit-bom
  dependency-version: 5.13.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jul 14, 2025
@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Jul 14, 2025

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Explain this complex logic.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai explain this code block.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read src/utils.ts and explain its main purpose.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Join our Discord community for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy