dependabot: bump org.slf4j:slf4j-api from 1.7.30 to 1.7.36 #3249

dependabot · 2023-08-28T06:46:02Z

Bumps org.slf4j:slf4j-api from 1.7.30 to 1.7.36.

Commits

e9ee55c update timestamp before release
3b6a92f reproducible builds
8825027 prepare release 1.7.36, fix SLF4J-541
5617387 add relase.sh
02860b6 prepare relase 1.7.35
a622f51 fix maven deploy issues
26068bd slf4j no longer references log4j
0a21ee1 replace references to slf4j-log4j12
51b6d20 prepare release 1.7.34
d22943f relocate slf4j-log4j12 as slf4j-reload4j
Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
org.slf4j:slf4j-api	[>= 2.a, < 3]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [org.slf4j:slf4j-api](https://github.com/qos-ch/slf4j) from 1.7.30 to 1.7.36. - [Commits](qos-ch/slf4j@v_1.7.30...v_1.7.36) --- updated-dependencies: - dependency-name: org.slf4j:slf4j-api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

codecov · 2023-08-28T06:50:03Z

Codecov Report

Merging #3249 (9745dd9) into main (d7eabcf) will decrease coverage by 0.03%.
Report is 1 commits behind head on main.
The diff coverage is n/a.

@@             Coverage Diff              @@
##               main    #3249      +/-   ##
============================================
- Coverage     62.51%   62.49%   -0.03%     
+ Complexity     3403     3399       -4     
============================================
  Files           259      259              
  Lines         20055    20055              
  Branches       3370     3370              
============================================
- Hits          12538    12533       -5     
- Misses         5866     5872       +6     
+ Partials       1651     1650       -1

see 2 files with indirect coverage changes

Bumps [org.slf4j:slf4j-api](https://github.com/qos-ch/slf4j) from 1.7.30 to 1.7.36. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/qos-ch/slf4j/commit/e9ee55cca93c2bf26f14482a9bdf961c750d2a56"><code>e9ee55c</code></a> update timestamp before release</li> <li><a href="https://github.com/qos-ch/slf4j/commit/3b6a92f66815605ce851671dd1d6e0758c29ed4c"><code>3b6a92f</code></a> reproducible builds</li> <li><a href="https://github.com/qos-ch/slf4j/commit/882502706063b460997a3c6018223018f36cecd3"><code>8825027</code></a> prepare release 1.7.36, fix SLF4J-541</li> <li><a href="https://github.com/qos-ch/slf4j/commit/561738747da5813b8a9d2e2ebd10f0128a78a960"><code>5617387</code></a> add relase.sh</li> <li><a href="https://github.com/qos-ch/slf4j/commit/02860b67ef7ff39fa9c7d98fd00da2ee913faeda"><code>02860b6</code></a> prepare relase 1.7.35</li> <li><a href="https://github.com/qos-ch/slf4j/commit/a622f5186a57188dab7f71651245eb91c6ac263b"><code>a622f51</code></a> fix maven deploy issues</li> <li><a href="https://github.com/qos-ch/slf4j/commit/26068bd4bf93fcbd00185ad986dc43b79aceeb4a"><code>26068bd</code></a> slf4j no longer references log4j</li> <li><a href="https://github.com/qos-ch/slf4j/commit/0a21ee1ac1daa2d8e077bec68815421dd7a7a54a"><code>0a21ee1</code></a> replace references to slf4j-log4j12</li> <li><a href="https://github.com/qos-ch/slf4j/commit/51b6d20b71de75f69ee68167afbf4073c1be7c31"><code>51b6d20</code></a> prepare release 1.7.34</li> <li><a href="https://github.com/qos-ch/slf4j/commit/d22943faedd5da8d0321cf60437796fb53618481"><code>d22943f</code></a> relocate slf4j-log4j12 as slf4j-reload4j</li> <li>Additional commits viewable in <a href="https://github.com/qos-ch/slf4j/compare/v_1.7.30...v_1.7.36">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | org.slf4j:slf4j-api | [>= 2.a, < 3] | </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.slf4j:slf4j-api&package-manager=gradle&previous-version=1.7.30&new-version=1.7.36)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (cherry picked from commit 3e66d54) Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>

…7.36 (#3253) Backport 3e66d54 from #3249. Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot bot requested review from cliu123, cwperks, DarshitChanpura, davidlago, peternied, RyanL1997, stephen-crawford and reta as code owners August 28, 2023 06:46

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Aug 28, 2023

dependabot bot requested a review from willyborankin as a code owner August 28, 2023 06:46

reta approved these changes Aug 28, 2023

View reviewed changes

cwperks added the backport 2.x backport to 2.x branch label Aug 28, 2023

cwperks approved these changes Aug 28, 2023

View reviewed changes

cwperks merged commit 3e66d54 into main Aug 28, 2023

cwperks deleted the dependabot/gradle/org.slf4j-slf4j-api-1.7.36 branch August 28, 2023 12:27

opensearch-trigger-bot bot mentioned this pull request Aug 28, 2023

[Backport 2.x] dependabot: bump org.slf4j:slf4j-api from 1.7.30 to 1.7.36 #3253

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

dependabot: bump org.slf4j:slf4j-api from 1.7.30 to 1.7.36 #3249

dependabot: bump org.slf4j:slf4j-api from 1.7.30 to 1.7.36 #3249

dependabot bot commented on behalf of github Aug 28, 2023

codecov bot commented Aug 28, 2023 •

edited

Loading

dependabot: bump org.slf4j:slf4j-api from 1.7.30 to 1.7.36 #3249

dependabot: bump org.slf4j:slf4j-api from 1.7.30 to 1.7.36 #3249

Conversation

dependabot bot commented on behalf of github Aug 28, 2023

codecov bot commented Aug 28, 2023 • edited Loading

Codecov Report

codecov bot commented Aug 28, 2023 •

edited

Loading