Backporting missed dependency updates to 2.x #878

VachaShah · 2024-02-23T00:41:05Z

Description

While cleaning up the changelogs, I found some missing backports. Backport #762, #817 and #822 to 2.x

Issues Resolved

List any issues this PR will resolve, e.g. Closes [...].

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

…rch-project#762) * Bump io.github.classgraph:classgraph from 4.8.164 to 4.8.165 Bumps [io.github.classgraph:classgraph](https://github.com/classgraph/classgraph) from 4.8.164 to 4.8.165. - [Release notes](https://github.com/classgraph/classgraph/releases) - [Commits](classgraph/classgraph@classgraph-4.8.164...classgraph-4.8.165) --- updated-dependencies: - dependency-name: io.github.classgraph:classgraph dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Update changelog Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> Signed-off-by: Vacha Shah <[email protected]>

…pensearch-project#817) * Bump org.owasp.dependencycheck from 9.0.8 to 9.0.9 in /java-client Bumps org.owasp.dependencycheck from 9.0.8 to 9.0.9. --- updated-dependencies: - dependency-name: org.owasp.dependencycheck dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Update changelog Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> Signed-off-by: Vacha Shah <[email protected]>

…pensearch-project#822) * Bump org.apache.httpcomponents.client5:httpclient5 from 5.3 to 5.3.1 Bumps [org.apache.httpcomponents.client5:httpclient5](https://github.com/apache/httpcomponents-client) from 5.3 to 5.3.1. - [Changelog](https://github.com/apache/httpcomponents-client/blob/rel/v5.3.1/RELEASE_NOTES.txt) - [Commits](apache/httpcomponents-client@rel/v5.3...rel/v5.3.1) --- updated-dependencies: - dependency-name: org.apache.httpcomponents.client5:httpclient5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Update changelog Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <dependabot[bot]@users.noreply.github.com> Signed-off-by: Vacha Shah <[email protected]>

dependabot bot and others added 3 commits February 23, 2024 00:05

VachaShah requested review from reta, Bukhtawar, dblock, madhusudhankonda and saratvemulapalli as code owners February 23, 2024 00:41

reta approved these changes Feb 23, 2024

View reviewed changes

VachaShah merged commit 307e2be into opensearch-project:2.x Feb 23, 2024
47 checks passed

BrendonFaleiro mentioned this pull request Jun 21, 2024

2.x #1045

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Backporting missed dependency updates to 2.x #878

Backporting missed dependency updates to 2.x #878

VachaShah commented Feb 23, 2024

Backporting missed dependency updates to 2.x #878

Backporting missed dependency updates to 2.x #878

Conversation

VachaShah commented Feb 23, 2024

Description

Issues Resolved