dependabot maven(deps): bump cyclonedx-maven-plugin from 2.7.8 to 2.7.9 (!172) · Merge requests · StackedCrypto / JaStaCry

Depen d'Abot requested to merge dependabot-maven-org.cyclonedx-cyclonedx-maven-plugin-2.7.9 into master May 17, 2023

Bumps cyclonedx-maven-plugin from 2.7.8 to 2.7.9.

Release notes

Sourced from cyclonedx-maven-plugin's releases.

2.7.9

Tidy up code (#351) @knrc

🚀 New features and improvements

Add a test to ensure we handle relocations, closes #289 (#360) @knrc

Add support for maven optionality, fixes #314 (#356) @knrc

Remove extra dependency collection through Mojo annotation, fixes #354 (#355) @knrc

support Reproducible SBOM: drop UUID and timestamp when RB mode enabled (#353) @hboutemy

🐛 Bug Fixes

Fix makeAggregateBom failed: Unknown constant pool type 17 (#358) @garydgregory

📦 Dependency updates

Bump maven-gpg-plugin from 3.0.1 to 3.1.0 (#359) @dependabot

Bump junit-bom from 5.9.2 to 5.9.3 (#349) @dependabot

Commits

4258a68 [maven-release-plugin] prepare release cyclonedx-maven-plugin-2.7.9
0deaeec Merge pull request #360 from knrc/issue-289
14533c9 Merge branch 'knrc-maven_optionality'
c76fd03 rename maven.optional SBOM property to maven.optional.unused, inserted in SBO...
6a4ac89 Merge pull request #359 from CycloneDX/dependabot/maven/org.apache.maven.plug...
a4ef9d6 Add a test to ensure we handle relocations, closes #289
508c4fa Bump maven-gpg-plugin from 3.0.1 to 3.1.0
f23deec Add support for maven optionality, fixes #314
886f8ab Merge pull request #358 from garydgregory/unknown_constant_pool_type_17
df822b0 Fix makeAggregateBom failed: Unknown constant pool type 17 by updating maven-...
Additional commits viewable in compare view

dependabot maven(deps): bump cyclonedx-maven-plugin from 2.7.8 to 2.7.9

2.7.9

🚀 New features and improvements

🐛 Bug Fixes

📦 Dependency updates

Merge request reports