Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.5.0 to 3.6.1 by dependabot[bot] · Pull Request #646 · mojohaus/mojo-parent (original) (raw)

Bumps org.apache.maven.plugins:maven-enforcer-plugin from 3.5.0 to 3.6.1.

Release notes

Sourced from org.apache.maven.plugins:maven-enforcer-plugin's releases.

3.6.1

🚀 New features and improvements

• Improve performance of transitive dependency checks (#904) @​harrisric

🐛 Bug Fixes

• Fix NPE when a classifier part is specified in bannedDependencies (#905) @​harrisric

📝 Documentation updates

• Move contributing information into README (#911) @​slawekjaranowski
• Rewrite CONTRIBUTING.md to use the Github issue tracker instead of JIRA (#898) @​elharo

👻 Maintenance

• Remove unused javax.annotations dependency (#899) @​elharo
• Remove unused methods (#900) @​elharo
• Remove the from parameter names (#901) @​elharo
• Fix a grab bag of typos and minor grammar errors (#897) @​elharo
• remove unneeded contains check as add already does that (#896) @​elharo

📦 Dependency updates

• Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#910) @dependabot[bot]

3.6.0

🚀 New features and improvements

• Warning about old enforcer api in rule implementation (#894) @​slawekjaranowski
• Introduce ruleName for rules configuration (#893) @​slawekjaranowski
• Improve performance of BannedPlugins and RequireReleaseDeps (#371) @​harrisric
• Enforce size bounds recursively on directory content (#368) @​zabetak
• Improve the performance of BannedDependencies (#367) @​harrisric
• [MENFORCER-516] - Use rule configuration in POM when executed from CLI (#344) @​bpfoster
• [MENFORCER-508] - Add option to enforce same versions among Maven modules (#328) @​kwin
• [MENFORCER-507] - Add xsltLocation parameter to ExternalRules (#322) @​ppalaga

🐛 Bug Fixes

• RequireSameVersions rule: consider entries in <plugins> when analyzing build- and report-plugins (#892) @​turing85
• [MENFORCER-495] - Remove "JAVA_HOME" from rule violation message (#346) @​elharo

📝 Documentation updates

• Improve example of custom rule (#890) @​slawekjaranowski
• Make documentation explicit about java versions for custom rules (#370) @​harrisric
• [MNGSITE-529] - Rename "Goals" to "Plugin Documentation" (#351) @​Bukama

... (truncated)

Commits

• 9b9b705 [maven-release-plugin] prepare release enforcer-3.6.1
• 469f45c Move contributing information into README - fix cla link
• fec424a Move contributing information into README
• 3abe11d Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.18.0 (#910)
• d58be76 Improve performance of transitive dependency checks (#904)
• 1f7ac3c null analysis (#907)
• 3bfbff8 Fix some typos
• 8da0311 Remove unused javax.annotations dependency (#899)
• 06bcf29 Remove unused methods (#900)
• b25c800 Fix NPE when a classifier part is specified but an artifact classifier is nul...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)