I did some testing, and it looks like dependabot understands this kind
of variable usage, and will update the variable, which should save us
several updates (and resulting conflicting merges).
Bumps [jackson-bom](https://github.com/FasterXML/jackson-bom) from
2.13.4.20221013 to 2.14.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cd99403b64"><code>cd99403</code></a>
[maven-release-plugin] prepare release jackson-bom-2.14.0</li>
<li><a
href="50dedf02e5"><code>50dedf0</code></a>
Prepare for 2.14.0</li>
<li><a
href="69023b4ec9"><code>69023b4</code></a>
Back to snapshots</li>
<li><a
href="ffb3dd2940"><code>ffb3dd2</code></a>
[maven-release-plugin] prepare for next development iteration</li>
<li><a
href="229c0be857"><code>229c0be</code></a>
[maven-release-plugin] prepare release jackson-bom-2.14.0-rc3</li>
<li><a
href="b3e3950eb7"><code>b3e3950</code></a>
Prepare for 2.14.0-rc3 release</li>
<li><a
href="babf49afc8"><code>babf49a</code></a>
Merge branch '2.13' into 2.14</li>
<li><a
href="f52258f22a"><code>f52258f</code></a>
[maven-release-plugin] prepare for next development iteration</li>
<li><a
href="20416ee364"><code>20416ee</code></a>
Merge branch '2.13' into 2.14</li>
<li><a
href="fd343f3524"><code>fd343f3</code></a>
Merge branch '2.13' into 2.14</li>
<li>Additional commits viewable in <a
href="https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.13.4.20221013...jackson-bom-2.14.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Trask Stalnaker <trask.stalnaker@gmail.com>
Working PR to capture all the changes required to update to otel java
1.19.0. The new log API force allows
`:instrumentation-appender-api-internal` and
`:instrumentation-appender-sdk-internal`, but necessitates a decent
amount of refactoring as a result.
The PR points at the `1.19.0-SNAPSHOT`, which I'll update upon
publication.
Co-authored-by: Mateusz Rzeszutek <mrzeszutek@splunk.com>
Co-authored-by: Trask Stalnaker <trask.stalnaker@gmail.com>
Co-authored-by: Lauri Tulmin <ltulmin@splunk.com>
Bumps
[opentelemetry-proto](https://github.com/open-telemetry/opentelemetry-proto-java)
from 0.17.0-alpha to 0.19.0-alpha.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/open-telemetry/opentelemetry-proto-java/releases">opentelemetry-proto's
releases</a>.</em></p>
<blockquote>
<h2>Release v0.19.0-alpha</h2>
<p>Java Bindings for <a
href="https://github.com/open-telemetry/opentelemetry-proto/releases/tag/v0.19.0">OTLP
v0.19.0</a></p>
<h2>Release v0.18.0-alpha</h2>
<p>Java Bindings for <a
href="https://github.com/open-telemetry/opentelemetry-proto/releases/tag/v0.18.0">OTLP
v0.18.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/open-telemetry/opentelemetry-proto-java/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Trask Stalnaker <trask.stalnaker@gmail.com>
Bumps [objenesis](https://github.com/easymock/objenesis) from 3.2 to
3.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/easymock/objenesis/releases">objenesis's
releases</a>.</em></p>
<blockquote>
<h2>3.3</h2>
<ul>
<li>migrate from TravisCI to GitHub Actions (<a
href="https://github-redirect.dependabot.com/easymock/objenesis/issues/88">#88</a>)</li>
<li><code>org.objenesis:objenesis-test</code> missing in Maven Central
(<a
href="https://github-redirect.dependabot.com/easymock/objenesis/issues/85">#85</a>)</li>
<li>added instructions for running Android TCK for Windows users (<a
href="https://github-redirect.dependabot.com/easymock/objenesis/issues/84">#84</a>)</li>
<li>Copyright and Owner is missing in license (<a
href="https://github-redirect.dependabot.com/easymock/objenesis/issues/83">#83</a>)</li>
<li>add Dependabot (<a
href="https://github-redirect.dependabot.com/easymock/objenesis/issues/77">#77</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="15c04843c5"><code>15c0484</code></a>
[maven-release-plugin] prepare release 3.3</li>
<li><a
href="6e6b3a9a3d"><code>6e6b3a9</code></a>
Add 3.3 release notes</li>
<li><a
href="29292d86a8"><code>29292d8</code></a>
Missing $ in the command</li>
<li><a
href="9dd5e8f7ad"><code>9dd5e8f</code></a>
We should not skip objenesis-test deployment since it's a test
dependency for...</li>
<li><a
href="fe1751a44e"><code>fe1751a</code></a>
Add modernizer</li>
<li><a
href="00bb6ff780"><code>00bb6ff</code></a>
Bump maven-remote-resources-plugin from 1.7.0 to 3.0.0</li>
<li><a
href="5a3a07ee12"><code>5a3a07e</code></a>
Add up to version 18</li>
<li><a
href="76af6a8120"><code>76af6a8</code></a>
New version of IntelliJ</li>
<li><a
href="1c05d97ecc"><code>1c05d97</code></a>
Remove the android module to let it compile on Java 9+</li>
<li><a
href="22371940cf"><code>2237194</code></a>
Bump junit5.version from 5.8.2 to 5.9.0</li>
<li>Additional commits viewable in <a
href="https://github.com/easymock/objenesis/compare/3.2...3.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps `groovyVersion` from 4.0.4 to 4.0.5.
Updates `groovy-bom` from 4.0.4 to 4.0.5
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/apache/groovy/commits">compare view</a></li>
</ul>
</details>
<br />
Updates `groovy` from 4.0.4 to 4.0.5
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/apache/groovy/commits">compare view</a></li>
</ul>
</details>
<br />
Updates `groovy-json` from 4.0.4 to 4.0.5
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/apache/groovy/commits">compare view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [assertj-core](https://github.com/assertj/assertj-core) from
3.22.0 to 3.23.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0256688fcf"><code>0256688</code></a>
[maven-release-plugin] prepare release assertj-core-3.23.1</li>
<li><a
href="6529933700"><code>6529933</code></a>
Downgrade <code>junit-jupiter</code> from 5.9.0-M1 to 5.8.2</li>
<li><a
href="d9cd2da03a"><code>d9cd2da</code></a>
[maven-release-plugin] prepare for next development iteration</li>
<li><a
href="6f19754e57"><code>6f19754</code></a>
[maven-release-plugin] prepare release assertj-core-3.23.0</li>
<li><a
href="c592c18a59"><code>c592c18</code></a>
Expose <code>ComparisonStrategy::areEqual</code> in
<code>AbstractAssert</code> (<a
href="https://github-redirect.dependabot.com/assertj/assertj-core/issues/2633">#2633</a>)</li>
<li><a
href="69c66a9bb6"><code>69c66a9</code></a>
Bump maven-invoker-plugin from 3.2.2 to 3.3.0 (<a
href="https://github-redirect.dependabot.com/assertj/assertj-core/issues/2636">#2636</a>)</li>
<li><a
href="795f5278be"><code>795f527</code></a>
Fix test</li>
<li><a
href="b44460623b"><code>b444606</code></a>
Bump hibernate-core from 6.0.1.Final to 6.0.2.Final (<a
href="https://github-redirect.dependabot.com/assertj/assertj-core/issues/2626">#2626</a>)</li>
<li><a
href="793241125e"><code>7932411</code></a>
Fix typos in Javadoc of ObjectEnumerableAssert (<a
href="https://github-redirect.dependabot.com/assertj/assertj-core/issues/2624">#2624</a>)</li>
<li><a
href="b746e6aeb4"><code>b746e6a</code></a>
[mvn] Update maven wrapper to 3.1.1 (<a
href="https://github-redirect.dependabot.com/assertj/assertj-core/issues/2622">#2622</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/assertj/assertj-core/compare/assertj-core-3.22.0...assertj-core-3.23.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Update dependencies
* Strictly pin slf4j and logback versions
* logback 1.3
* Only use slf4j 2.0.0 internally in the javaagent
* Pre-initialize slf4j provider
* Bump jackson version
* licenses
* Add InternalJavadoc custom error prone check
* Add example usage
* Move to conventions
* Revert "Move to conventions"
This reverts commit d8a8209b59.
* Just get it working
* Clearer error message
* versions
* Apply almost everywhere
* feedback
* Always at the end of javadoc
* Fix test
* Missed (at least) one
* No longer internal
* Fix NPE
* Spotless
* Convert awslambda Java test to JUnit 5 so can reduce visibility
* Reduce visibility
* Rename the check
* More
* Move into errorprone-convention
* Fix UserExcludedClassesConfigurerTest
* Muzzle code generation moved to a separate plugin
* Restored old MuzzleCodeGenerationPlugin to use until the new one is published
* The simplest dependency management possible
Co-authored-by: Anuraag Agrawal <aanuraag@amazon.co.jp>
Trask Stalnaker
dependabot[bot]
jack-berg
Mateusz Rzeszutek
Lauri Tulmin
jason plumb
Anuraag Agrawal
Lauri Tulmin
Nikita Salnikov-Tarnovski
Anuraag Agrawal
HaloFour