MINOR: [Java] Bump com.google.errorprone:error_prone_core from 2.4.0 to 2.24.0 in /java #39409

dependabot · 2024-01-01T16:23:56Z

Bumps com.google.errorprone:error_prone_core from 2.4.0 to 2.24.0.

Release notes

Sourced from com.google.errorprone:error_prone_core's releases.

Error Prone 2.24.0

New checks:

MultipleNullnessAnnotations: Discourage multiple nullness annotations

NullableTypeParameter: Discourage nullness annotations on type parameters

NullableWildcard: Discourage nullness annotations on wildcards

SuperCallToObjectMethod: Generalization of SuperEqualsIsObjectEquals, now covers hashCode

Full Changelog: google/error-prone@v2.23.0...v2.24.0

Error Prone 2.23.0

New checks:

DuplicateDateFormatField

NonFinalStaticField

StringCharset

StringFormatWithLiteral

SuperEqualsIsObjectEquals

Bug fixes and improvements: #3897, #4114, #4123

Full Changelog: google/error-prone@v2.22.0...v2.23.0

Error Prone 2.22.0

We are considering raising the minimum supported JDK from JDK 11 to JDK 17 in a future release of Error Prone, see #3803. Note that using a newer JDK version to run javac during the build doesn't prevent building code that is deployed to earlier versions, for example it's supported to use the JDK 17 javac and pass --release 11 to compile Java 11 code that is deployed to a JDK 11 runtime. If you have feedback, please comment on #3803.

New checks:

ClosingStandardOutputStreams: Prevents accidentally closing System.{out,err} with try-with-resources

TruthContainsExactlyElementsInUsage: containsExactly is preferred over containsExactlyElementsIn when creating new iterables

UnnecessaryAsync: detects unnecessary use of async primitives in local (and hence single-threaded) scopes

ReturnAtTheEndOfVoidFunction: detects unnecessary return statements at the end of void functions

MultimapKeys: Suggests using keySet() instead of iterating over Multimap.keys(), which does not collapse duplicates

Bug fixes and improvements:

Don't complain about literal IP addresses in AddressSelection (google/error-prone@44b6552)

Prevent SuggestedFixes#renameMethod from modifying return type declaration (#4043)

Fix UnusedVariable false positives for private record parameters (#2713)

When running in conservative mode, no longer assume that implementations of Map.get, etc. return null (#2910)

CanIgnoreReturnValueSuggester: Support additional exempting method annotations (#4009)

UnusedVariable: exclude junit5's @RegisterExtension (#3892)

Support running all available patch checks (#947)

Upgrade java-diff-utils 4.0 -> 4.12 (#4081)

Flag unused Refaster template parameters (#4060)

Support @SuppressWarnings("all") (#4065)

Prevent Refaster UMemberSelect from matching method parameters (#2456)

MissingDefault : Don't require // fall out comments on expression switches (#2709)

Skip UnnecessaryLambda findings for usages in enhanced for loops (#2518)

Fix bug where nested MissingBraces violations' suggested fixes result in broken code (#3797)

... (truncated)

Commits

2cc8504 Release Error Prone 2.24.0
21c190a Document that javadoc shouldn't appear between annotations and the documented...
d272dfa Automated rollback of commit 654d1dbf1e6dd652cd6e8ca003643ddf02266ec2.
654d1db Handle Joiner.on(...) in AbstractToString.
da7be27 Descend into VariableTrees when looking for variables to check.
affa37a Do not flag unused parameters on abstract methods.
d78dd6d Don't report NonFinalStaticField findings for fields modified in `@BeforeClas...
aadfdc3 WellKnownThreadSafety: Add common PKIX types to known thread-safe list.
ac52ca9 AutoValueFinalMethods: support method-level suppression.
336323a Import eisop/checker-framework from GitHub.
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [com.google.errorprone:error_prone_core](https://github.com/google/error-prone) from 2.4.0 to 2.24.0. - [Release notes](https://github.com/google/error-prone/releases) - [Commits](google/error-prone@v2.4.0...v2.24.0) --- updated-dependencies: - dependency-name: com.google.errorprone:error_prone_core dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

lidavidm · 2024-01-02T14:23:11Z

@vibhatha @davisusanibar can you evaluate what happened here? It seems we should pin to 2.10.0 until we drop Java 8 support (and when we do, we should upgrade to the latest version): https://errorprone.info/docs/installation#jdk-8

Alternatively we should pin 2.10.0 for JDK8 and use the latest version for JDK11+

vibhatha · 2024-01-03T02:27:44Z

@lidavidm I will take a look.

vibhatha · 2024-01-05T01:10:06Z

This has been updated here: #39452

…to 2.24.0 in /java (#39452) ### Rationale for this change This is a draft PR for fixing the dependabot PR #39409 ### What changes are included in this PR? Upgrading `com.google.errorprone` to 2.24.0 for JDK11+ and restricting `com.google.errorprone` to 2.10 to JDK8. ### Are these changes tested? N/A. CIs are implicitly testing this including existing test cases. ### Are there any user-facing changes? No Lead-authored-by: vibhatha <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: David Li <[email protected]>

dependabot · 2024-01-05T15:20:24Z

Superseded by #39474.

…to 2.24.0 in /java (apache#39452) ### Rationale for this change This is a draft PR for fixing the dependabot PR apache#39409 ### What changes are included in this PR? Upgrading `com.google.errorprone` to 2.24.0 for JDK11+ and restricting `com.google.errorprone` to 2.10 to JDK8. ### Are these changes tested? N/A. CIs are implicitly testing this including existing test cases. ### Are there any user-facing changes? No Lead-authored-by: vibhatha <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: David Li <[email protected]>

…to 2.24.0 in /java (#39452) ### Rationale for this change This is a draft PR for fixing the dependabot PR apache/arrow#39409 ### What changes are included in this PR? Upgrading `com.google.errorprone` to 2.24.0 for JDK11+ and restricting `com.google.errorprone` to 2.10 to JDK8. ### Are these changes tested? N/A. CIs are implicitly testing this including existing test cases. ### Are there any user-facing changes? No Lead-authored-by: vibhatha <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: David Li <[email protected]>

dependabot bot requested a review from lidavidm as a code owner January 1, 2024 16:23

dependabot bot added dependencies Dependabot-only java Dependabot-only labels Jan 1, 2024

github-actions bot added Component: Java awaiting review Awaiting review labels Jan 1, 2024

lidavidm mentioned this pull request Jan 2, 2024

[Java] Remove Java 8 support in Arrow v18 #38051

Closed

7 tasks

vibhatha mentioned this pull request Jan 4, 2024

MINOR: [Java] Bump com.google.errorprone:error_prone_core from 2.4.0 to 2.24.0 in /java #39452

Merged

dependabot bot closed this Jan 5, 2024

dependabot bot deleted the dependabot/maven/java/com.google.errorprone-error_prone_core-2.24.0 branch January 5, 2024 15:20

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

MINOR: [Java] Bump com.google.errorprone:error_prone_core from 2.4.0 to 2.24.0 in /java #39409

MINOR: [Java] Bump com.google.errorprone:error_prone_core from 2.4.0 to 2.24.0 in /java #39409

dependabot bot commented on behalf of github Jan 1, 2024 •

edited

Loading

lidavidm commented Jan 2, 2024

vibhatha commented Jan 3, 2024

vibhatha commented Jan 5, 2024

dependabot bot commented on behalf of github Jan 5, 2024

MINOR: [Java] Bump com.google.errorprone:error_prone_core from 2.4.0 to 2.24.0 in /java #39409

MINOR: [Java] Bump com.google.errorprone:error_prone_core from 2.4.0 to 2.24.0 in /java #39409

Conversation

dependabot bot commented on behalf of github Jan 1, 2024 • edited Loading

Error Prone 2.24.0

Error Prone 2.23.0

Error Prone 2.22.0

lidavidm commented Jan 2, 2024

vibhatha commented Jan 3, 2024

vibhatha commented Jan 5, 2024

dependabot bot commented on behalf of github Jan 5, 2024

dependabot bot commented on behalf of github Jan 1, 2024 •

edited

Loading