From c98da34747b3d0f72064f5f5f70ccc49d606d794 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Dec 2024 09:13:14 +0000 Subject: [PATCH 1/2] Bump org.owasp.dependencycheck from 11.1.0 to 11.1.1 Bumps org.owasp.dependencycheck from 11.1.0 to 11.1.1. --- updated-dependencies: - dependency-name: org.owasp.dependencycheck dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- java-client/build.gradle.kts | 2 +- java-codegen/build.gradle.kts | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/java-client/build.gradle.kts b/java-client/build.gradle.kts index 0f835d20f2..ca1d5eeb66 100644 --- a/java-client/build.gradle.kts +++ b/java-client/build.gradle.kts @@ -52,7 +52,7 @@ plugins { `java-library` `maven-publish` id("com.github.jk1.dependency-license-report") version "2.9" - id("org.owasp.dependencycheck") version "11.1.0" + id("org.owasp.dependencycheck") version "11.1.1" id("opensearch-java.spotless-conventions") } diff --git a/java-codegen/build.gradle.kts b/java-codegen/build.gradle.kts index 1fb5b501ed..fcd485a980 100644 --- a/java-codegen/build.gradle.kts +++ b/java-codegen/build.gradle.kts @@ -31,7 +31,7 @@ buildscript { plugins { application id("com.github.jk1.dependency-license-report") version "2.9" - id("org.owasp.dependencycheck") version "11.1.0" + id("org.owasp.dependencycheck") version "11.1.1" id("de.undercouch.download") version "5.6.0" id("opensearch-java.spotless-conventions") From a4a487b112c96a07c674aa21c2bc01b889a1aba8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" Date: Mon, 9 Dec 2024 09:14:16 +0000 Subject: [PATCH 2/2] Update changelog Signed-off-by: dependabot[bot] --- CHANGELOG.md | 1 + 1 file changed, 1 insertion(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index c8910abcfe..bd19577297 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -9,6 +9,7 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) - Bumps `com.github.jk1.dependency-license-report` from 2.8 to 2.9 - Bumps `org.apache.httpcomponents.client5:httpclient5` from 5.4 to 5.4.1 - Bumps `org.apache.httpcomponents.core5:httpcore5` from 5.3 to 5.3.1 +- Bump `org.owasp.dependencycheck` from 11.1.0 to 11.1.1 ([#1344](https://github.com/opensearch-project/opensearch-java/pull/1344)) This section is for maintaining a changelog for all breaking changes for the client that cannot be released in the 2.x line. All other non-breaking changes should be added to [Unreleased 2.x] section.