ORC-1731: Upgrade `maven-dependency-plugin` to 3.7.0 · apache/orc@7b6df29

Commit

ORC-1731: Upgrade maven-dependency-plugin to 3.7.0
Bumps [org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin) from 3.6.1 to 3.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/apache/maven-dependency-plugin/releases">org.apache.maven.plugins:maven-dependency-plugin's releases</a>.</em></p>
<blockquote>
<h2>3.7.0</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-941">[MDEP-941]</a> - Deprecate dependency:sources in favor of dependency:resolv… (<a href="https://github.com/apache/maven-dependency-plugin/pull/411">#411</a>) <a href="https://github.com/michael-o"><code>michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-838">[MDEP-838]</a> - &quot;Artifact has not been packaged yet&quot; error message is not … (<a href="https://github.com/apache/maven-dependency-plugin/pull/412">#412</a>) <a href="https://github.com/michael-o"><code>michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-939">[MDEP-939]</a> - Lock down classifier in dependency:sources goal (<a href="https://github.com/apache/maven-dependency-plugin/pull/409">#409</a>) <a href="https://github.com/michael-o"><code>michael-o</code></a></li>
<li>Revert &quot;Fix sources goal for multimodule projects&quot; (<a href="https://github.com/apache/maven-dependency-plugin/pull/408">#408</a>) <a href="https://github.com/michael-o"><code>michael-o</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-923">[MDEP-923]</a> - Move methods in place where are used (<a href="https://github.com/apache/maven-dependency-plugin/pull/407">#407</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li>MDEP-938] Correct invalid property name and add deprecated old one (<a href="https://github.com/apache/maven-dependency-plugin/pull/404">#404</a>) <a href="https://github.com/hazendaz"><code>hazendaz</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-835">[MDEP-835]</a> - Add optional dependency for tree IT (<a href="https://github.com/apache/maven-dependency-plugin/pull/403">#403</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li>Add missing dependency (<a href="https://github.com/apache/maven-dependency-plugin/pull/401">#401</a>) <a href="https://github.com/michael-o"><code>michael-o</code></a></li>
</ul>
<h2>🚀 New features and improvements</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-799">[MDEP-799]</a> - tree: add optional output type json (<a href="https://github.com/apache/maven-dependency-plugin/pull/391">#391</a>) <a href="https://github.com/LogFlames"><code>LogFlames</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-928">[MDEP-928]</a> - Allow excluding classes from dependency:analyze (<a href="https://github.com/apache/maven-dependency-plugin/pull/393">#393</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-924">[MDEP-924]</a> - Get rid of maven-artifact-transfer from list-classes goal (<a href="https://github.com/apache/maven-dependency-plugin/pull/382">#382</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-925">[MDEP-925]</a> - Require Maven 3.6.3 (<a href="https://github.com/apache/maven-dependency-plugin/pull/381">#381</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-922">[MDEP-922]</a> - dependency:analyze-exclusions - should report issue only in current project (<a href="https://github.com/apache/maven-dependency-plugin/pull/378">#378</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-917">[MDEP-917]</a> - dependency:analyze-exclusions - use Resolver API instead of ProjectBuilder (<a href="https://github.com/apache/maven-dependency-plugin/pull/374">#374</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-317">[MDEP-317]</a> - add mojo to analyze invalid exclusions (<a href="https://github.com/apache/maven-dependency-plugin/pull/362">#362</a>) <a href="https://github.com/vbreivik"><code>vbreivik</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-894">[MDEP-894]</a> - Use <code>Component</code> only - fix tests (<a href="https://github.com/apache/maven-dependency-plugin/pull/360">#360</a>) <a href="https://github.com/michael-o"><code>michael-o</code></a></li>
</ul>
<h2>🐛 Bug Fixes</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-914">[MDEP-914]</a> - Fix link in collect goal description (<a href="https://github.com/apache/maven-dependency-plugin/pull/380">#380</a>) <a href="https://github.com/slawekjaranowski"><code>slawekjaranowski</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-895">[MDEP-895]</a> - dependency:sources fails for multi-module project (<a href="https://github.com/apache/maven-dependency-plugin/pull/349">#349</a>) <a href="https://github.com/jmle"><code>jmle</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-771">[MDEP-771]</a> - Remove broken 404 link (<a href="https://github.com/apache/maven-dependency-plugin/pull/344">#344</a>) <a href="https://github.com/elharo"><code>elharo</code></a></li>
</ul>
<h2>📦 Dependency updates</h2>
<ul>
<li><a href="https://issues.apache.org/jira/browse/MDEP-936">[MDEP-936]</a> - Bump org.apache.maven.shared:maven-dependency-tree from 3.2.1 to 3.3.0 (<a href="https://github.com/apache/maven-dependency-plugin/pull/397">#397</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-920">[MDEP-920]</a> - Bump org.assertj:assertj-core from 3.25.3 to 3.26.0 (<a href="https://github.com/apache/maven-dependency-plugin/pull/395">#395</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-929">[MDEP-929]</a> - Bump org.apache.maven.shared:maven-dependency-analyzer from 1.14.0 to 1.14.1 (<a href="https://github.com/apache/maven-dependency-plugin/pull/394">#394</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.apache.maven.shared:maven-dependency-analyzer from 1.13.2 to 1.14.0 (<a href="https://github.com/apache/maven-dependency-plugin/pull/392">#392</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-921">[MDEP-921]</a> - Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0 (<a href="https://github.com/apache/maven-dependency-plugin/pull/376">#376</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.apache.maven.plugins:maven-plugins from 41 to 42 (<a href="https://github.com/apache/maven-dependency-plugin/pull/377">#377</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-920">[MDEP-920]</a> - Bump org.assertj:assertj-core from 3.24.2 to 3.25.3 (<a href="https://github.com/apache/maven-dependency-plugin/pull/373">#373</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-915">[MDEP-915]</a> - Bump commons-io:commons-io from 2.16.0 to 2.16.1 (<a href="https://github.com/apache/maven-dependency-plugin/pull/370">#370</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump jettyVersion from 9.4.53.v20231009 to 9.4.54.v20240208 (<a href="https://github.com/apache/maven-dependency-plugin/pull/364">#364</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li><a href="https://issues.apache.org/jira/browse/MDEP-915">[MDEP-915]</a> - Bump commons-io:commons-io from 2.15.1 to 2.16.0 (<a href="https://github.com/apache/maven-dependency-plugin/pull/369">#369</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.9.1 to 4.9.2 (<a href="https://github.com/apache/maven-dependency-plugin/pull/366">#366</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump apache/maven-gh-actions-shared from 3 to 4 (<a href="https://github.com/apache/maven-dependency-plugin/pull/365">#365</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.9.0 to 4.9.1 (<a href="https://github.com/apache/maven-dependency-plugin/pull/358">#358</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-io from 3.4.1 to 3.4.2 (<a href="https://github.com/apache/maven-dependency-plugin/pull/359">#359</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.jsoup:jsoup from 1.17.1 to 1.17.2 (<a href="https://github.com/apache/maven-dependency-plugin/pull/361">#361</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump ch.qos.logback:logback-classic from 1.2.3 to 1.2.13 in /src/it/projects/mdep-204-go-offline-resolve-intermodule/module-2 (<a href="https://github.com/apache/maven-dependency-plugin/pull/354">#354</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.apache.commons:commons-text from 1.10.0 to 1.11.0 (<a href="https://github.com/apache/maven-dependency-plugin/pull/357">#357</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.codehaus.plexus:plexus-archiver from 4.8.0 to 4.9.0 (<a href="https://github.com/apache/maven-dependency-plugin/pull/348">#348</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump org.jsoup:jsoup from 1.16.2 to 1.17.1 (<a href="https://github.com/apache/maven-dependency-plugin/pull/350">#350</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
<li>Bump commons-io:commons-io from 2.14.0 to 2.15.1 (<a href="https://github.com/apache/maven-dependency-plugin/pull/352">#352</a>) <a href="https://github.com/dependabot"><code>dependabot</code></a></li>
</ul>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/f975bcb68bbd200d9890c44abe219c3712462f17"><code>f975bcb</code></a> [maven-release-plugin] prepare release maven-dependency-plugin-3.7.0</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/dbdda0ccba8bebb98c0f2390e000b0561bfc5f4b"><code>dbdda0c</code></a> [MDEP-941] Deprecate dependency:sources in favor of dependency:resolve-sources</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/f090b5efdeff0b2f2ebcc88a40f4b02dc4a6f408"><code>f090b5e</code></a> [MDEP-838] &quot;Artifact has not been packaged yet&quot; error message is not very hel...</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/9902456ae515769daa6068a278267c62fb300e67"><code>9902456</code></a> [MDEP-669] Optimize the documentation of &lt;outputProperty&gt; of build-classpath ...</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/04c32164bcb3ecef6115616fee291d5ee071d370"><code>04c3216</code></a> [MDEP-939] Lock down classifier in dependency:sources goal</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/9fd4ed53b23e35de8ad8179e5b379acf3721ffbe"><code>9fd4ed5</code></a> Revert &quot;Fix sources goal for multimodule projects&quot;</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/fd17de46e7ac8cc8778ab697192b4c343ff6f94d"><code>fd17de4</code></a> [MDEP-923] Move methods in place where are used</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/ad5fdc57ef8bee311138b8586e9dba8a219dda4d"><code>ad5fdc5</code></a> [MDEP-938] Correct invalid property name and add deprecated old one</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/d95615fa6b4c9c2e41a124116e948d146e79018c"><code>d95615f</code></a> [MDEP-835] Add optional dependency for tree IT</li>
<li><a href="https://github.com/apache/maven-dependency-plugin/commit/07dbccc8db436374a22ea6a698e50e3a15af755b"><code>07dbccc</code></a> Remove useless exclude</li>
<li>Additional commits viewable in <a href="https://github.com/apache/maven-dependency-plugin/compare/maven-dependency-plugin-3.6.1...maven-dependency-plugin-3.7.0">compare view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.maven.plugins:maven-dependency-plugin&package-manager=maven&previous-version=3.6.1&new-version=3.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

Closes #1958 from dependabot[bot]/dependabot/maven/java/org.apache.maven.plugins-maven-dependency-plugin-3.7.0.

Authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Shaoyun Chen <[email protected]>
Loading branch information
dependabot[bot] authored and cxzl25 committed Jun 19, 2024
1 parent bae0ffa commit 7b6df29
java/pom.xml
-Original file line number
+Diff line change
@@ Expand Up / @@ -69,7 +69,7 @@ @@
         <javadoc.location>${project.basedir}/../target/javadoc</javadoc.location>
         <junit.version>5.10.2</junit.version>
         <maven-assembly-plugin.version>3.7.1</maven-assembly-plugin.version>
-        <maven-dependency-plugin.version>3.6.1</maven-dependency-plugin.version>
+        <maven-dependency-plugin.version>3.7.0</maven-dependency-plugin.version>
         <maven-shade-plugin.version>3.6.0</maven-shade-plugin.version>
         <maven.compiler.release>17</maven.compiler.release>
         <maven.compiler.useIncrementalCompilation>false</maven.compiler.useIncrementalCompilation>
@@ Expand Down @@
0 comments on commit `7b6df29`

Please sign in to comment.
Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Commit

There are no files selected for viewing

0 comments on commit `7b6df29`

Commit

There are no files selected for viewing

0 comments on commit 7b6df29

0 comments on commit `7b6df29`
