Bump ognl:ognl from 3.4.2 to 3.4.3 in /pgp-keys-map-test1 by dependabot[bot] · Pull Request #2202 · s4u/pgp-keys-map (original) (raw)

Bumps ognl:ognl from 3.4.2 to 3.4.3.

Release notes

Sourced from ognl:ognl's releases.

OGNL 3.4.3

What's Changed

• Cherry-picks "WW-5417 update OgnlRuntime & ObjectPropertyAccessor to do access check for set field value" by @​lukaszlenart in orphan-oss/ognl#265

Dependencies

• Bump actions/checkout from 3.5.3 to 3.6.0 by @​dependabot in orphan-oss/ognl#224
• Bump org.easymock:easymock from 5.1.0 to 5.2.0 by @​dependabot in orphan-oss/ognl#225
• Bump actions/cache from 3.3.1 to 3.3.2 by @​dependabot in orphan-oss/ognl#227
• Bump actions/checkout from 3.6.0 to 4.0.0 by @​dependabot in orphan-oss/ognl#226
• Bump org.sonatype.buildsupport:buildsupport from 37 to 38 by @​dependabot in orphan-oss/ognl#228
• Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.5.0 to 3.6.0 by @​dependabot in orphan-oss/ognl#229
• Bump actions/checkout from 4.0.0 to 4.1.0 by @​dependabot in orphan-oss/ognl#230
• Bump org.sonatype.buildsupport:buildsupport from 38 to 39 by @​dependabot in orphan-oss/ognl#231
• Bump actions/checkout from 4.1.0 to 4.1.1 by @​dependabot in orphan-oss/ognl#232
• Bump org.jacoco:jacoco-maven-plugin from 0.8.10 to 0.8.11 by @​dependabot in orphan-oss/ognl#233
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.1.2 to 3.2.1 by @​dependabot in orphan-oss/ognl#234
• Bump junit.version from 5.10.0 to 5.10.1 by @​dependabot in orphan-oss/ognl#235
• Bump org.sonatype.buildsupport:buildsupport from 39 to 41 by @​dependabot in orphan-oss/ognl#236
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.1 to 3.2.2 by @​dependabot in orphan-oss/ognl#238
• Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.0 to 3.6.2 by @​dependabot in orphan-oss/ognl#237
• Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.2 to 3.6.3 by @​dependabot in orphan-oss/ognl#239
• Bump actions/setup-java from 3 to 4 by @​dependabot in orphan-oss/ognl#240
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.2 to 3.2.3 by @​dependabot in orphan-oss/ognl#241
• Bump org.javassist:javassist from 3.29.2-GA to 3.30.2-GA by @​dependabot in orphan-oss/ognl#243
• Bump org.assertj:assertj-core from 3.24.2 to 3.25.0 by @​dependabot in orphan-oss/ognl#244
• Bump org.assertj:assertj-core from 3.25.0 to 3.25.1 by @​dependabot in orphan-oss/ognl#245
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.3 to 3.2.5 by @​dependabot in orphan-oss/ognl#246
• Bump actions/cache from 3.3.2 to 3.3.3 by @​dependabot in orphan-oss/ognl#247
• Bump actions/cache from 3.3.3 to 4.0.0 by @​dependabot in orphan-oss/ognl#248
• Bump org.assertj:assertj-core from 3.25.1 to 3.25.2 by @​dependabot in orphan-oss/ognl#249
• Bump org.assertj:assertj-core from 3.25.2 to 3.25.3 by @​dependabot in orphan-oss/ognl#251
• Bump junit.version from 5.10.1 to 5.10.2 by @​dependabot in orphan-oss/ognl#250
• Adds KEYS to allow verify signed artifacts by @​lukaszlenart in orphan-oss/ognl#253
• Bump org.sonatype.buildsupport:buildsupport from 41 to 43 by @​dependabot in orphan-oss/ognl#254
• Bump org.sonatype.buildsupport:buildsupport from 43 to 44 by @​dependabot in orphan-oss/ognl#256
• Bump org.codehaus.mojo:javacc-maven-plugin from 3.0.1 to 3.1.0 by @​dependabot in orphan-oss/ognl#255
• Bump actions/cache from 4.0.0 to 4.0.1 by @​dependabot in orphan-oss/ognl#257
• Bump actions/checkout from 4.1.1 to 4.1.2 by @​dependabot in orphan-oss/ognl#258
• Bump actions/cache from 4.0.1 to 4.0.2 by @​dependabot in orphan-oss/ognl#259
• Bump org.jacoco:jacoco-maven-plugin from 0.8.11 to 0.8.12 by @​dependabot in orphan-oss/ognl#260
• Bump org.sonatype.buildsupport:buildsupport from 44 to 46 by @​dependabot in orphan-oss/ognl#261

Full Changelog: orphan-oss/ognl@OGNL_3_4_2...OGNL_3_4_3

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)