[Backport to 2.x] Manual backport of several dependabot PRs #5330
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ch-project#4808) * Bump gradle-extra-configurations-plugin from 7.0.0 to 8.0.0 Bumps [gradle-extra-configurations-plugin](https://github.com/nebula-plugins/gradle-extra-configurations-plugin) from 7.0.0 to 8.0.0. - [Release notes](https://github.com/nebula-plugins/gradle-extra-configurations-plugin/releases) - [Changelog](https://github.com/nebula-plugins/gradle-extra-configurations-plugin/blob/main/CHANGELOG.md) - [Commits](nebula-plugins/gradle-extra-configurations-plugin@v7.0.0...v8.0.0) --- updated-dependencies: - dependency-name: com.netflix.nebula:gradle-extra-configurations-plugin dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * add changelog Signed-off-by: Poojita Raj <poojiraj@amazon.com> * add changelog Signed-off-by: Poojita Raj <poojiraj@amazon.com> * Fix fully-qualified plugin name after version bump Signed-off-by: Kartik Ganesh <gkart@amazon.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Poojita Raj <poojiraj@amazon.com> Signed-off-by: Kartik Ganesh <gkart@amazon.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Poojita Raj <poojiraj@amazon.com> Co-authored-by: Kartik Ganesh <gkart@amazon.com> (cherry picked from commit a0d3073)
…#5233) * Bump jcodings from 1.0.57 to 1.0.58 in /libs/grok Bumps [jcodings](https://github.com/jruby/jcodings) from 1.0.57 to 1.0.58. - [Release notes](https://github.com/jruby/jcodings/releases) - [Commits](jruby/jcodings@jcodings-1.0.57...jcodings-1.0.58) --- updated-dependencies: - dependency-name: org.jruby.jcodings:jcodings dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Updating SHAs Signed-off-by: dependabot[bot] <support@github.com> * Update changelog Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> (cherry picked from commit cbb0953)
…pository-gcs (opensearch-project#5234) * Bump google-http-client-jackson2 in /plugins/repository-gcs Bumps [google-http-client-jackson2](https://github.com/googleapis/google-http-java-client) from 1.35.0 to 1.42.3. - [Release notes](https://github.com/googleapis/google-http-java-client/releases) - [Changelog](https://github.com/googleapis/google-http-java-client/blob/main/CHANGELOG.md) - [Commits](googleapis/google-http-java-client@v1.35.0...v1.42.3) --- updated-dependencies: - dependency-name: com.google.http-client:google-http-client-jackson2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Updating SHAs Signed-off-by: dependabot[bot] <support@github.com> * Update changelog Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> (cherry picked from commit 933e8c3)
…1.12.4 to 1.12.7 in /plugins/repository-azure (opensearch-project#5235) * Bump azure-core from 1.33.0 to 1.34.0 This change also reverts the ignoreMissingClasses addition from the prior commit since it is incorrect. Signed-off-by: Kartik Ganesh <gkart@amazon.com> * Bump azure-core-http-netty in /plugins/repository-azure Bumps [azure-core-http-netty](https://github.com/Azure/azure-sdk-for-java) from 1.12.4 to 1.12.7. - [Release notes](https://github.com/Azure/azure-sdk-for-java/releases) - [Commits](Azure/azure-sdk-for-java@azure-core-http-netty_1.12.4...azure-core-http-netty_1.12.7) --- updated-dependencies: - dependency-name: com.azure:azure-core-http-netty dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Updating SHAs Signed-off-by: dependabot[bot] <support@github.com> * Update changelog Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Kartik Ganesh <gkart@amazon.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> Co-authored-by: Kartik Ganesh <gkart@amazon.com> (cherry picked from commit 0c6411a)
…rch-project#5236) * Bump maxmind-db from 2.0.0 to 2.1.0 in /modules/ingest-geoip Bumps [maxmind-db](https://github.com/maxmind/MaxMind-DB-Reader-java) from 2.0.0 to 2.1.0. - [Release notes](https://github.com/maxmind/MaxMind-DB-Reader-java/releases) - [Changelog](https://github.com/maxmind/MaxMind-DB-Reader-java/blob/main/CHANGELOG.md) - [Commits](maxmind/MaxMind-DB-Reader-java@v2.0.0...v2.1.0) --- updated-dependencies: - dependency-name: com.maxmind.db:maxmind-db dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Updating SHAs Signed-off-by: dependabot[bot] <support@github.com> * Update changelog Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> (cherry picked from commit 7dc137f)
…5316) * Bump json-schema-validator from 1.0.69 to 1.0.73 Bumps [json-schema-validator](https://github.com/networknt/json-schema-validator) from 1.0.69 to 1.0.73. - [Release notes](https://github.com/networknt/json-schema-validator/releases) - [Changelog](https://github.com/networknt/json-schema-validator/blob/master/CHANGELOG.md) - [Commits](networknt/json-schema-validator@1.0.69...1.0.73) --- updated-dependencies: - dependency-name: com.networknt:json-schema-validator dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Update changelog Signed-off-by: dependabot[bot] <support@github.com> * Fix changelog Signed-off-by: Kartik Ganesh <gkart@amazon.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Kartik Ganesh <gkart@amazon.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> Co-authored-by: Kartik Ganesh <gkart@amazon.com> (cherry picked from commit 0f666ef)
…sitory-gcs (opensearch-project#5318) * Bump proto-google-common-protos in /plugins/repository-gcs Bumps [proto-google-common-protos](https://github.com/googleapis/java-iam) from 2.8.0 to 2.10.0. - [Release notes](https://github.com/googleapis/java-iam/releases) - [Changelog](https://github.com/googleapis/java-iam/blob/main/CHANGELOG.md) - [Commits](https://github.com/googleapis/java-iam/commits) --- updated-dependencies: - dependency-name: com.google.api.grpc:proto-google-common-protos dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Updating SHAs Signed-off-by: dependabot[bot] <support@github.com> * Add changelog entry Signed-off-by: Kartik Ganesh <gkart@amazon.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Kartik Ganesh <gkart@amazon.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> Co-authored-by: Kartik Ganesh <gkart@amazon.com> (cherry picked from commit 0f78b9f)
…pensearch-project#5319) * Bump protobuf-java from 3.21.7 to 3.21.9 in /plugins/repository-hdfs Bumps [protobuf-java](https://github.com/protocolbuffers/protobuf) from 3.21.7 to 3.21.9. - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/generate_changelog.py) - [Commits](protocolbuffers/protobuf@v3.21.7...v3.21.9) --- updated-dependencies: - dependency-name: com.google.protobuf:protobuf-java dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Updating SHAs Signed-off-by: dependabot[bot] <support@github.com> * Add changelog entry Signed-off-by: Kartik Ganesh <gkart@amazon.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Kartik Ganesh <gkart@amazon.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> Co-authored-by: Kartik Ganesh <gkart@amazon.com> (cherry picked from commit 438369c)
SHA updates and Gradle build file updates Signed-off-by: Kartik Ganesh <gkart@amazon.com>
Gradle Check (Jenkins) Run Completed with:
|
Codecov Report
@@ Coverage Diff @@
## 2.x #5330 +/- ##
============================================
- Coverage 70.69% 70.60% -0.10%
+ Complexity 58384 58320 -64
============================================
Files 4700 4700
Lines 279111 279111
Branches 40749 40749
============================================
- Hits 197327 197067 -260
- Misses 65338 65643 +305
+ Partials 16446 16401 -45
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. |
CEHENKLE
approved these changes
Nov 22, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
This PR includes a manual backport of the following
dependabotPRs (since the auto-backport failed for them):Any conflicts that arose from cherry-picking the commits to backport have been resolved. SHAs have been updated and any
gradle precommitfailures have been mitigated.Issues Resolved
N/A
Check List
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.