Bump jackson-bom from 2.13.4.20221013 to 2.14.0 in /dependencyManagement (#7091)

Bumps [jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.13.4.20221013 to 2.14.0. <details> <summary>Commits</summary> <ul> <li><a href="cd99403b64"><code>cd99403</code></a> [maven-release-plugin] prepare release jackson-bom-2.14.0</li> <li><a href="50dedf02e5"><code>50dedf0</code></a> Prepare for 2.14.0</li> <li><a href="69023b4ec9"><code>69023b4</code></a> Back to snapshots</li> <li><a href="ffb3dd2940"><code>ffb3dd2</code></a> [maven-release-plugin] prepare for next development iteration</li> <li><a href="229c0be857"><code>229c0be</code></a> [maven-release-plugin] prepare release jackson-bom-2.14.0-rc3</li> <li><a href="b3e3950eb7"><code>b3e3950</code></a> Prepare for 2.14.0-rc3 release</li> <li><a href="babf49afc8"><code>babf49a</code></a> Merge branch '2.13' into 2.14</li> <li><a href="f52258f22a"><code>f52258f</code></a> [maven-release-plugin] prepare for next development iteration</li> <li><a href="20416ee364"><code>20416ee</code></a> Merge branch '2.13' into 2.14</li> <li><a href="fd343f3524"><code>fd343f3</code></a> Merge branch '2.13' into 2.14</li> <li>Additional commits viewable in <a href="https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.13.4.20221013...jackson-bom-2.14.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.fasterxml.jackson:jackson-bom&package-manager=gradle&previous-version=2.13.4.20221013&new-version=2.14.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Trask Stalnaker <trask.stalnaker@gmail.com>
2022-11-08 13:19:09 +01:00 · 2022-11-08 13:19:09 +01:00 · cfb475d7dd
parent d0c21e63cd
commit cfb475d7dd
7 changed files with 11 additions and 10 deletions
--- a/dependencyManagement/build.gradle.kts
+++ b/dependencyManagement/build.gradle.kts
@ -31,7 +31,7 @@ val groovyVersion = "4.0.6"
 // configurations.testRuntimeClasspath.resolutionStrategy.force "com.google.guava:guava:19.0"

 val DEPENDENCY_BOMS = listOf(
-  "com.fasterxml.jackson:jackson-bom:2.13.4.20221013",
+  "com.fasterxml.jackson:jackson-bom:2.14.0",
  "com.google.guava:guava-bom:31.1-jre",
  "org.apache.groovy:groovy-bom:${groovyVersion}",
  "io.opentelemetry:opentelemetry-bom:${otelVersion}",
--- a/javaagent-tooling/src/main/java/io/opentelemetry/javaagent/tooling/ignore/AdditionalLibraryIgnoredTypesConfigurer.java
+++ b/javaagent-tooling/src/main/java/io/opentelemetry/javaagent/tooling/ignore/AdditionalLibraryIgnoredTypesConfigurer.java
@ -265,7 +265,8 @@ public class AdditionalLibraryIgnoredTypesConfigurer implements IgnoredTypesConf

    builder
        .ignoreClass("com.fasterxml.jackson.")
-        .allowClass("com.fasterxml.jackson.module.afterburner.util.MyClassLoader");
+        .allowClass("com.fasterxml.jackson.module.afterburner.util.MyClassLoader")
+        .allowClass("com.fasterxml.jackson.databind.util.internal.PrivateMaxEntriesMap$AddTask");

    // kotlin, note we do not ignore kotlinx because we instrument coroutines code
    builder.ignoreClass("kotlin.").allowClass("kotlin.coroutines.jvm.internal.DebugProbesKt");
--- a/licenses/jackson-core-2.14.0.jar/META-INF/LICENSE
+++ b/licenses/jackson-core-2.14.0.jar/META-INF/LICENSE
--- a/licenses/jackson-core-2.14.0.jar/META-INF/NOTICE
+++ b/licenses/jackson-core-2.14.0.jar/META-INF/NOTICE
--- a/licenses/jackson-jr-objects-2.14.0.jar/META-INF/LICENSE
+++ b/licenses/jackson-jr-objects-2.14.0.jar/META-INF/LICENSE
--- a/licenses/jackson-jr-objects-2.14.0.jar/META-INF/NOTICE
+++ b/licenses/jackson-jr-objects-2.14.0.jar/META-INF/NOTICE
--- a/licenses/licenses.md
+++ b/licenses/licenses.md
@ -1,7 +1,7 @@

 #javaagent
 ##Dependency License Report
-_2022-10-11 13:01:17 PDT_
+_2022-11-07 16:43:40 PST_
 ## Apache License, Version 2.0

 **1** **Group:** `com.blogspot.mydailyjava` **Name:** `weak-lock-free` **Version:** `0.18` 
@ -9,19 +9,19 @@ _2022-10-11 13:01:17 PDT_
 > - **POM Project URL**: [https://github.com/raphw/weak-lock-free](https://github.com/raphw/weak-lock-free)
 > - **POM License**: Apache License, Version 2.0 - [http://www.apache.org/licenses/LICENSE-2.0](http://www.apache.org/licenses/LICENSE-2.0)

-**2** **Group:** `com.fasterxml.jackson.core` **Name:** `jackson-core` **Version:** `2.13.4` 
+**2** **Group:** `com.fasterxml.jackson.core` **Name:** `jackson-core` **Version:** `2.14.0` 
 > - **Project URL**: [https://github.com/FasterXML/jackson-core](https://github.com/FasterXML/jackson-core)
 > - **Manifest License**: Apache License, Version 2.0 (Not Packaged)
 > - **POM License**: Apache License, Version 2.0 - [https://www.apache.org/licenses/LICENSE-2.0](https://www.apache.org/licenses/LICENSE-2.0)
-> - **Embedded license files**: [jackson-core-2.13.4.jar/META-INF/LICENSE](jackson-core-2.13.4.jar/META-INF/LICENSE) 
-    - [jackson-core-2.13.4.jar/META-INF/NOTICE](jackson-core-2.13.4.jar/META-INF/NOTICE)
+> - **Embedded license files**: [jackson-core-2.14.0.jar/META-INF/LICENSE](jackson-core-2.14.0.jar/META-INF/LICENSE) 
+    - [jackson-core-2.14.0.jar/META-INF/NOTICE](jackson-core-2.14.0.jar/META-INF/NOTICE)

-**3** **Group:** `com.fasterxml.jackson.jr` **Name:** `jackson-jr-objects` **Version:** `2.13.4` 
-> - **Project URL**: [http://wiki.fasterxml.com/JacksonHome](http://wiki.fasterxml.com/JacksonHome)
+**3** **Group:** `com.fasterxml.jackson.jr` **Name:** `jackson-jr-objects` **Version:** `2.14.0` 
+> - **Project URL**: [https://github.com/FasterXML/jackson-jr](https://github.com/FasterXML/jackson-jr)
 > - **Manifest License**: Apache License, Version 2.0 (Not Packaged)
 > - **POM License**: Apache License, Version 2.0 - [https://www.apache.org/licenses/LICENSE-2.0](https://www.apache.org/licenses/LICENSE-2.0)
-> - **Embedded license files**: [jackson-jr-objects-2.13.4.jar/META-INF/LICENSE](jackson-jr-objects-2.13.4.jar/META-INF/LICENSE) 
-    - [jackson-jr-objects-2.13.4.jar/META-INF/NOTICE](jackson-jr-objects-2.13.4.jar/META-INF/NOTICE)
+> - **Embedded license files**: [jackson-jr-objects-2.14.0.jar/META-INF/LICENSE](jackson-jr-objects-2.14.0.jar/META-INF/LICENSE) 
+    - [jackson-jr-objects-2.14.0.jar/META-INF/NOTICE](jackson-jr-objects-2.14.0.jar/META-INF/NOTICE)

 **4** **Group:** `com.googlecode.concurrentlinkedhashmap` **Name:** `concurrentlinkedhashmap-lru` **Version:** `1.4.2` 
 > - **Manifest License**: Apache License, Version 2.0 (Not Packaged)