Bump mojo-executor from 2.3.3 to 2.4.0 #308

dependabot · 2022-03-13T18:26:38Z

Bumps mojo-executor from 2.3.3 to 2.4.0.

Release notes

Sourced from mojo-executor's releases.

2.4.0

The minimum supported Maven version is now 3.3.1

Dependencies provided by Maven have been moved to the provided scope where possible

The plexus-utils dependency must remain in the compile scope due to MNG-6965. It has been updated to version 3.0.24 to avoid spurious security vulnerability notifications due to this dependency.

Thank you to @cowwoc and @kwin for contributing to this release!

Commits

70e8487 [maven-release-plugin] prepare release mojo-executor-parent-2.4.0
215f32b Skip GitHub Action deployments on release builds (#77)
77a8947 Merge pull request #75 from kwin/feature/fix-scopes
a7cb86b update to forward-compatible plexus-utils version to silence security
69f42b6 remove duplicate dependency
b4967fa Merge pull request #76 from mojo-executor/update-actions-workflow-default-branch
b0d1114 Update default branch name from master to main
e7b5e42 Set correct scope for dependencies exposed by the Maven Core Classloader
1900f19 Merge pull request #73 from cowwoc/dropped-maven-3.2.5
ff2794a Dropped support for Maven 3.2.5 to avoid security vulnerabilities in outdated...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [mojo-executor](https://github.com/mojo-executor/mojo-executor) from 2.3.3 to 2.4.0. - [Release notes](https://github.com/mojo-executor/mojo-executor/releases) - [Commits](mojo-executor/mojo-executor@mojo-executor-parent-2.3.3...mojo-executor-parent-2.4.0) --- updated-dependencies: - dependency-name: org.twdata.maven:mojo-executor dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Mar 13, 2022

basil approved these changes Mar 13, 2022

View reviewed changes

basil merged commit c21cfb2 into master Mar 13, 2022

dependabot bot deleted the dependabot/maven/org.twdata.maven-mojo-executor-2.4.0 branch March 13, 2022 19:34

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump mojo-executor from 2.3.3 to 2.4.0 #308

Bump mojo-executor from 2.3.3 to 2.4.0 #308

dependabot bot commented on behalf of github Mar 13, 2022

Bump mojo-executor from 2.3.3 to 2.4.0 #308

Bump mojo-executor from 2.3.3 to 2.4.0 #308

Conversation

dependabot bot commented on behalf of github Mar 13, 2022

2.4.0