Bumps asm from 9.3 to 9.4.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
but do not make it a required check.
The reason for my change of mind here is:
When new library versions are released which break testLatestDeps, the
quick fix is to temporarily limit the upper bound, but it's not clear
what the quick fix is if we end up merging in a change which breaks
testLatestDeps (short of reverting the change, which then potentially
requires reengaging the contributor after they have moved on from the
PR).
Because our build takes a long time, and most of the time rebasing is
not required. We can always manually request `@dependabot rebase` if it
is needed due to conflicts.
Bumps [byte-buddy-gradle-plugin](https://github.com/raphw/byte-buddy)
from 1.12.16 to 1.12.17.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/raphw/byte-buddy/blob/master/release-notes.md">byte-buddy-gradle-plugin's
changelog</a>.</em></p>
<blockquote>
<h2>Byte Buddy release notes</h2>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2a080a8df9"><code>2a080a8</code></a>
[maven-release-plugin] prepare release byte-buddy-1.12.17</li>
<li><a
href="ae17a5589d"><code>ae17a55</code></a>
[release] Release new version.</li>
<li><a
href="399c4b28be"><code>399c4b2</code></a>
[release] Release new version.</li>
<li><a
href="0ce7a40689"><code>0ce7a40</code></a>
[release] Release new version</li>
<li><a
href="0cd4c912e1"><code>0cd4c91</code></a>
Add test rule and property for better handling JNA if not available or
in nee...</li>
<li><a
href="9c03f22c2e"><code>9c03f22</code></a>
Fix entry point.</li>
<li><a
href="dc18b405d3"><code>dc18b40</code></a>
Allow for different patch modes when patching transformers.</li>
<li><a
href="21a0b2591d"><code>21a0b25</code></a>
Restrict servers that are allowed during release step.</li>
<li><a
href="24198970ea"><code>2419897</code></a>
Update release notes and internal Byte Buddy.</li>
<li><a
href="9c12e711a3"><code>9c12e71</code></a>
[maven-release-plugin] prepare for next development iteration</li>
<li>See full diff in <a
href="https://github.com/raphw/byte-buddy/compare/byte-buddy-1.12.16...byte-buddy-1.12.17">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
CI on `main` is failing on publishing snapshot, because javadoc is
emitting a warning and we fail on warnings. See code comment for more
explanation.
I tried pointing to
`https://docs.oracle.com/en/java/javase/11/docs/api/`, but that gives a
different error:
> warning: The code being documented uses packages in the unnamed
module, but the packages defined in
https://docs.oracle.com/en/java/javase/11/docs/api/ are in named
modules.
Copying the changes from Mike W. This fixes the problem where the jaxrs
and http client request spans are siblings instead of parent/child.
@mateuszrzeszutek please review
Co-authored-by: Trask Stalnaker <trask.stalnaker@gmail.com>
Bumps [junit-bom](https://github.com/junit-team/junit5) from 5.9.0 to
5.9.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/junit-team/junit5/releases">junit-bom's
releases</a>.</em></p>
<blockquote>
<p>JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1</p>
<p>See <a
href="http://junit.org/junit5/docs/5.9.1/release-notes/">Release
Notes</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="732a5400f8"><code>732a540</code></a>
Release 5.9.1</li>
<li><a
href="88bf48d545"><code>88bf48d</code></a>
Prepare release notes for 5.9.1</li>
<li><a
href="d75e34d20f"><code>d75e34d</code></a>
Update scope for 5.9.1</li>
<li><a
href="9823f7329a"><code>9823f73</code></a>
Link to all 5.9 milestone pages</li>
<li><a
href="76719bb085"><code>76719bb</code></a>
Increase timeout for GraalVM test</li>
<li><a
href="2a809848e5"><code>2a80984</code></a>
Install GraalVM for main CI build on Linux</li>
<li><a
href="79f47f51aa"><code>79f47f5</code></a>
Refactor OpenTestReportGeneratingListener to work in native images</li>
<li><a
href="7229385d5e"><code>7229385</code></a>
Add failing integration test for execution on GraalVM native image</li>
<li><a
href="343170f314"><code>343170f</code></a>
Fix running tests in documentation from IntelliJ IDEA</li>
<li><a
href="352d06b3b2"><code>352d06b</code></a>
Attempt to stabilize test on Windows</li>
<li>Additional commits viewable in <a
href="https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [junit-bom](https://github.com/junit-team/junit5) from 5.9.0 to
5.9.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/junit-team/junit5/releases">junit-bom's
releases</a>.</em></p>
<blockquote>
<p>JUnit 5.9.1 = Platform 1.9.1 + Jupiter 5.9.1 + Vintage 5.9.1</p>
<p>See <a
href="http://junit.org/junit5/docs/5.9.1/release-notes/">Release
Notes</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="732a5400f8"><code>732a540</code></a>
Release 5.9.1</li>
<li><a
href="88bf48d545"><code>88bf48d</code></a>
Prepare release notes for 5.9.1</li>
<li><a
href="d75e34d20f"><code>d75e34d</code></a>
Update scope for 5.9.1</li>
<li><a
href="9823f7329a"><code>9823f73</code></a>
Link to all 5.9 milestone pages</li>
<li><a
href="76719bb085"><code>76719bb</code></a>
Increase timeout for GraalVM test</li>
<li><a
href="2a809848e5"><code>2a80984</code></a>
Install GraalVM for main CI build on Linux</li>
<li><a
href="79f47f51aa"><code>79f47f5</code></a>
Refactor OpenTestReportGeneratingListener to work in native images</li>
<li><a
href="7229385d5e"><code>7229385</code></a>
Add failing integration test for execution on GraalVM native image</li>
<li><a
href="343170f314"><code>343170f</code></a>
Fix running tests in documentation from IntelliJ IDEA</li>
<li><a
href="352d06b3b2"><code>352d06b</code></a>
Attempt to stabilize test on Windows</li>
<li>Additional commits viewable in <a
href="https://github.com/junit-team/junit5/compare/r5.9.0...r5.9.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot[bot]
Trask Stalnaker
Aaron Ai
Lauri Tulmin
Fabien Crespel
yingziisme
Hao Tu
Mateusz Rzeszutek
Jean Bisutti
jamesmartinpp
