chore(deps-dev): bump org.bitbucket.b_c:jose4j from 0.9.3 to 0.9.4 in /jans-config-api #7911
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
requested review from
pujavs,
yuriyz and
yurem
as code owners
dependabot
bot
added
java
dependabot
bot
force-pushed
the
dependabot/maven/jans-config-api/org.bitbucket.b_c-jose4j-0.9.4
branch
from
9431984 to
43ac371
Compare
dependabot
bot
force-pushed
the
dependabot/maven/jans-config-api/org.bitbucket.b_c-jose4j-0.9.4
branch
2 times, most recently
from
74c4b65 to
f8a439e
Compare
Bumps [org.bitbucket.b_c:jose4j](https://bitbucket.org/b_c/jose4j) from 0.9.3 to 0.9.4. - [Commits](https://bitbucket.org/b_c/jose4j/branches/compare/jose4j-0.9.4..jose4j-0.9.3) --- updated-dependencies: - dependency-name: org.bitbucket.b_c:jose4j dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/maven/jans-config-api/org.bitbucket.b_c-jose4j-0.9.4
branch
from
f8a439e to
9725e94
Compare
…et.b_c-jose4j-0.9.4
DryRun Security SummaryThe code change updates the Expand for full summarySummary: This code change is a minor update to the However, it's always important to carefully review any dependency updates, especially for security-critical libraries like Files Changed:
Code AnalysisWe ran
Riskiness🟢 Risk threshold not exceeded. |
…et.b_c-jose4j-0.9.4
yurem
deleted the
dependabot/maven/jans-config-api/org.bitbucket.b_c-jose4j-0.9.4
branch
|
|
|
|
|
|
|
|
|
|
|
… /jans-config-api (#7911) chore(deps-dev): bump org.bitbucket.b_c:jose4j in /jans-config-api Bumps [org.bitbucket.b_c:jose4j](https://bitbucket.org/b_c/jose4j) from 0.9.3 to 0.9.4. - [Commits](https://bitbucket.org/b_c/jose4j/branches/compare/jose4j-0.9.4..jose4j-0.9.3) --- updated-dependencies: - dependency-name: org.bitbucket.b_c:jose4j dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Former-commit-id: 69d12c8
Bumps org.bitbucket.b_c:jose4j from 0.9.3 to 0.9.4.
Commits
1ec20f8[maven-release-plugin] prepare for next development iteratione4da603Update slf4j-api to 1.7.36 to avoid CVE-2018-8088b5720a2Merged in master (pull request #25)72739aefix spelling1afaa1eAdd the PBES2 algorithms to JWE's default blocked AlgorithmConstraints and pu...055225e[maven-release-plugin] prepare release jose4j-0.9.4You can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.