)]}' { "log": [ { "commit": "3dcd686638ddee706cedf517b172da7511712db1", "tree": "135e5f5b408b943f06958a159e0254347814ddfa", "parents": [ "155bf5ae08678a739602dc788dc518277a31ade0" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Jun 12 14:27:34 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jun 12 14:27:34 2026 +0200" }, "message": "Bump dev.sigstore:sigstore-java from 2.1.0 to 2.2.0 (#1918)\n\nBumps [dev.sigstore:sigstore-java](https://github.com/sigstore/sigstore-java) from 2.1.0 to 2.2.0.\n- [Release notes](https://github.com/sigstore/sigstore-java/releases)\n- [Changelog](https://github.com/sigstore/sigstore-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/sigstore/sigstore-java/compare/v2.1.0...v2.2.0)\n\n---\nupdated-dependencies:\n- dependency-name: dev.sigstore:sigstore-java\n dependency-version: 2.2.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "155bf5ae08678a739602dc788dc518277a31ade0", "tree": "5d8f3d789089e4e68299510ff558f492db3d796a", "parents": [ "702d754ec41c9cbbe1c5ec5befe9ffa3df395397" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed Jun 10 14:15:56 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Jun 10 14:15:56 2026 +0200" }, "message": "Bump io.minio:minio from 9.0.1 to 9.0.2 (#1916)\n\nBumps [io.minio:minio](https://github.com/minio/minio-java) from 9.0.1 to 9.0.2.\n- [Release notes](https://github.com/minio/minio-java/releases)\n- [Commits](https://github.com/minio/minio-java/compare/9.0.1...9.0.2)\n\n---\nupdated-dependencies:\n- dependency-name: io.minio:minio\n dependency-version: 9.0.2\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "702d754ec41c9cbbe1c5ec5befe9ffa3df395397", "tree": "e075f1427ddfac1e01584bcb4039a2d1387bca14", "parents": [ "b06e62f6e1020be7fa45eddcb5ee8249056ac14b" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Jun 09 21:14:42 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jun 09 21:14:42 2026 +0200" }, "message": "Bump okhttpVersion from 5.3.2 to 5.4.0 (#1914)\n\nBumps `okhttpVersion` from 5.3.2 to 5.4.0.\n\nUpdates `com.squareup.okhttp3:okhttp-bom` from 5.3.2 to 5.4.0\n- [Changelog](https://github.com/square/okhttp/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/square/okhttp/compare/parent-5.3.2...parent-5.4.0)\n\nUpdates `com.squareup.okhttp3:okhttp-jvm` from 5.3.2 to 5.4.0\n- [Changelog](https://github.com/square/okhttp/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/square/okhttp/compare/parent-5.3.2...parent-5.4.0)\n\n---\nupdated-dependencies:\n- dependency-name: com.squareup.okhttp3:okhttp-bom\n dependency-version: 5.4.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n- dependency-name: com.squareup.okhttp3:okhttp-jvm\n dependency-version: 5.4.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "b06e62f6e1020be7fa45eddcb5ee8249056ac14b", "tree": "095c210c268425fb8f33d4683f5cb77172af6781", "parents": [ "f31325afa4c3441b985916779535912fe73cb775" ], "author": { "name": "Guillaume Nodet", "email": "gnodet@gmail.com", "time": "Tue Jun 09 11:37:10 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Jun 09 11:37:10 2026 +0200" }, "message": "Fix inverted SIGTSTP condition in IPC server (#1915)\n\nThe condition for ignoring SIGTSTP was inverted: it tried to\nignore TSTP on Windows (where it does not exist, causing a crash)\nand did nothing on Unix (where TSTP exists, causing the daemon\nto suspend on Ctrl-Z).\n\nFix: ignore SIGTSTP only on non-Windows (Unix) systems." }, { "commit": "f31325afa4c3441b985916779535912fe73cb775", "tree": "f6298382fadddaff3b6465557081367474a5a910", "parents": [ "9975d7825ca58baa70d4e1f01e4e9e294cffb2ff" ], "author": { "name": "Guillaume Nodet", "email": "gnodet@gmail.com", "time": "Mon Jun 08 20:17:39 2026 +0000" }, "committer": { "name": "Guillaume Nodet", "email": "gnodet@gmail.com", "time": "Mon Jun 08 20:17:39 2026 +0000" }, "message": "Disable IPC named lock ITs on Windows\n\nUnix domain sockets (AF_UNIX) used by the IPC named lock implementation\nare not reliably supported on Windows, causing intermittent deadlocks and\ntimeouts in CI. Disable the ITs on Windows until the implementation is\nfixed to handle Windows socket cleanup properly.\n" }, { "commit": "9975d7825ca58baa70d4e1f01e4e9e294cffb2ff", "tree": "f45eff57ae5617c953821ba56c9a0df21c28e635", "parents": [ "74605684d6ebd38251ca1791c8acd42ff8d6aa78" ], "author": { "name": "Guillaume Nodet", "email": "gnodet@gmail.com", "time": "Mon Jun 08 22:03:22 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jun 08 22:03:22 2026 +0200" }, "message": "Bug: fix IPC named lock client-side robustness for Windows (#1910)\n\n* Bug: fix IPC named lock client-side robustness for Windows\n\nWhen lock acquisition times out in IpcNamedLock, the cleanup call to\nclient.unlock() could either hang forever (Long.MAX_VALUE timeout) or\nthrow RuntimeException. On Windows, where IPC socket behavior can\ndiffer, this causes test threads to either block indefinitely or crash\nwithout signaling their CountDownLatch, making the test appear to hang.\n\nFour changes:\n\n1. IpcNamedLock: wrap cleanup unlock in try-catch (tryUnlock) so that a\n failure during timeout handling returns false instead of crashing the\n calling thread. This is the primary fix for the exclusiveAccess test\n hang on Windows.\n\n2. IpcClient.unlock/stopServer: replace Long.MAX_VALUE timeouts with\n bounded values (10s/30s) so operations fail fast when the server is\n unresponsive.\n\n3. IpcClient.receive: complete the future exceptionally on empty\n responses instead of throwing, which would kill the receiver thread\n and break all subsequent operations on the shared client.\n\n4. IpcClient.close: properly call close() on EOF to clean up pending\n futures, and reset the initialized flag to prevent stale state.\n\n* Bug: fix race condition in IpcClient.send() causing NPE on Windows\n\nThe send() method read the `output` field multiple times without holding\nthe same lock as close(Throwable), which nulls it under synchronized(this).\nBetween ensureInitialized() returning and reaching synchronized(output),\nthe receiver thread could close the connection and null out the field,\ncausing a NullPointerException at output.flush().\n\nFix by capturing the output field in a local variable immediately after\nensureInitialized(), checking for null, and using the local throughout\nthe synchronized block.\n\n* ci: retrigger Windows CI validation (run 3/3)" }, { "commit": "74605684d6ebd38251ca1791c8acd42ff8d6aa78", "tree": "c34ffb305cc30479f08332ac4bc5604d2e41a464", "parents": [ "b88ec756681cf59853692177de68d3916b79f3c4" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Jun 08 21:49:54 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jun 08 21:49:54 2026 +0200" }, "message": "Create simple JMH benchmark to compare CCR and PCR (#1908)\n\nA simple JMH benchmark that compares classic and path conflict resolvers.\n\nMy local results:\n```\nBenchmark Mode Cnt Score Error Units\nConflictResolverJMHBenchmark.diamondFan_10x5_classic avgt 10 0.100 ± 0.002 ms/op\nConflictResolverJMHBenchmark.diamondFan_10x5_path avgt 10 0.043 ± 0.003 ms/op\nConflictResolverJMHBenchmark.diamondFan_20x10_classic avgt 10 1.076 ± 0.016 ms/op\nConflictResolverJMHBenchmark.diamondFan_20x10_path avgt 10 0.159 ± 0.004 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_10_classic avgt 10 1.795 ± 0.078 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_10_path avgt 10 1.291 ± 0.025 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_5_classic avgt 10 0.115 ± 0.021 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_5_path avgt 10 0.049 ± 0.002 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_10_classic avgt 10 125.530 ± 6.725 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_10_path avgt 10 1.932 ± 0.047 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_5_classic avgt 10 0.130 ± 0.002 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_5_path avgt 10 0.046 ± 0.002 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_20_classic avgt 10 0.037 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_20_path avgt 10 0.020 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_40_classic avgt 10 0.104 ± 0.002 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_40_path avgt 10 0.042 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_20_classic avgt 10 0.024 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_20_path avgt 10 0.017 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_40_classic avgt 10 0.059 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_40_path avgt 10 0.037 ± 0.001 ms/op\n```\n\nRepeated run, as 125 was sus:\n```\nConflictResolverJMHBenchmark.diamondFan_10x5_classic avgt 10 0.095 ± 0.001 ms/op\nConflictResolverJMHBenchmark.diamondFan_10x5_path avgt 10 0.041 ± 0.002 ms/op\nConflictResolverJMHBenchmark.diamondFan_20x10_classic avgt 10 1.047 ± 0.008 ms/op\nConflictResolverJMHBenchmark.diamondFan_20x10_path avgt 10 0.158 ± 0.008 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_10_classic avgt 10 1.762 ± 0.110 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_10_path avgt 10 1.264 ± 0.019 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_5_classic avgt 10 0.113 ± 0.006 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeMod50_5_path avgt 10 0.048 ± 0.002 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_10_classic avgt 10 122.906 ± 3.403 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_10_path avgt 10 1.901 ± 0.026 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_5_classic avgt 10 0.131 ± 0.014 ms/op\nConflictResolverJMHBenchmark.symmetricBinaryTreeUnique_5_path avgt 10 0.044 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_20_classic avgt 10 0.037 ± 0.006 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_20_path avgt 10 0.020 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_40_classic avgt 10 0.104 ± 0.003 ms/op\nConflictResolverJMHBenchmark.uniqueSnakeWithRootCycle_40_path avgt 10 0.042 ± 0.002 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_20_classic avgt 10 0.024 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_20_path avgt 10 0.018 ± 0.001 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_40_classic avgt 10 0.061 ± 0.011 ms/op\nConflictResolverJMHBenchmark.uniqueSnake_40_path avgt 10 0.037 ± 0.001 ms/op\n```" }, { "commit": "b88ec756681cf59853692177de68d3916b79f3c4", "tree": "c854826ef337873fc5a5772a38231c08ae790a72", "parents": [ "ef2b075db337b95579be14c3419a75895af560b8" ], "author": { "name": "Jitesh Khatri", "email": "jiteshkhatri990@gmail.com", "time": "Tue Jun 09 01:15:16 2026 +0530" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jun 08 21:45:16 2026 +0200" }, "message": "Extend AuthenticationBuilder to support SSLContext for mTLS authentication (#1907)\n\n### Problem\n\n`AuthenticationBuilder` currently has no way to set an `SSLContext` for \nclient certificate / mTLS based authentication.\n\nAlthough HTTP transporters already consume `AuthenticationContext.SSL_CONTEXT`, \nfor example in `JdkTransporter`:\n\n```java\nsslContext \u003d repoAuthContext.get(AuthenticationContext.SSL_CONTEXT, SSLContext.class);\n```\n\nthere was no way for callers to actually set it via `AuthenticationBuilder`. \nThe only workaround was via system properties as described in \nhttps://maven.apache.org/guides/mini/guide-repository-ssl.html\n\nCloses #1851\n\n---\n\n### Solution\n\nAdds a new `addSslContext(SSLContext)` method to `AuthenticationBuilder`, \nconsistent with the existing `addHostnameVerifier(HostnameVerifier)` pattern, \nso that mTLS credentials can be set and consumed through \n`AuthenticationContext.SSL_CONTEXT`.\n\n### Usage\n\n```java\nAuthentication auth \u003d new AuthenticationBuilder()\n .addSslContext(mySSLContext)\n .build();\n```\n\n---\n\n### Testing\n\n- `mvn verify` passes locally — 422 tests, 0 failures, 0 errors.\n- Unit test for `addSslContext()` can be added if maintainer requests it.\n\n---\n\n### Checklist\n\n- [x] Pull request addresses just one issue\n- [x] Description explains what, how, and why\n- [x] Commit has a meaningful subject line and body\n- [ ] Unit tests written\n- [x] `mvn verify` passed locally\n- [ ] Integration tests run\n- [x] I hereby declare this contribution to be licenced under the \n Apache License Version 2.0, January 2004" }, { "commit": "ef2b075db337b95579be14c3419a75895af560b8", "tree": "7f8732fce4da1e21505aec98d368c5ac699d7ae3", "parents": [ "1a432a713d2e5950941034aab98adf3373cfa5be" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Jun 08 19:04:44 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jun 08 19:04:44 2026 +0200" }, "message": "Bugfix: Fix NPE in PathConflictResolver (#1904)\n\nFixes #1903 bug in `PathConflictResolver` (PCR).\n\nAlso, the fix in 5e97fd15f8dbc562c481252bc8ea1037992e6407 is wrong, and this PR redoes now all.\n\nProblem was cycle detection. Original (2.0.18) PCR did left \"uncovered\" nodes, still causing cycles, that should have been removed by PCR (causing SO in client code). The commit above remedied it, but caused another issue how cycles were detected (it opted to reuse existing `CYCLIC_CONFLICT_IDS`), but was again wrong.\n\nThen I realized: PCR by its design is \"rebuilding\" tree with `conflictIds` on Path instances, so it can easily spot properly when a cycle is about to happen (when a next node is partitioned into same `CONFLICT_ID` that is already contained in the path to root.\n\nProof: the demo code (added comment) is now working as expected, plus, Quarkus build is buildable with Maven 3.10-SNAPSHOT using Resolver with this patch.\n\nAs an interesting side-effect, this PR also fixes an issue applicable to _all released maven versions so far_:\nhttps://gist.github.com/cstamas/e24577162083f1e100d78a3e5d398cd3\n\nAs the demo now produces \"proper\" tree as:\n```\ndom4j:dom4j:jar:1.6.1 [compile]\n+- jaxme:jaxme-api:jar:0.3 [compile, optional]\n+- jaxen:jaxen:jar:1.1-beta-6 [compile, optional]\n| +- jdom:jdom:jar:1.0 [compile, optional]\n| +- xerces:xmlParserAPIs:jar:2.6.2 [compile, optional]\n| +- xerces:xercesImpl:jar:2.6.2 [compile, optional]\n| \\- xom:xom:jar:1.0b3 [compile, optional]\n| +- com.ibm.icu:icu4j:jar:2.6.1 [compile, optional]\n| +- xalan:xalan:jar:2.6.0 [compile, optional]\n| \\- org.ccil.cowan.tagsoup:tagsoup:jar:0.9.7 [compile, optional]\n+- msv:xsdlib:jar:20030807 [compile, optional]\n+- msv:relaxngDatatype:jar:20030807 [compile, optional]\n+- pull-parser:pull-parser:jar:2 [compile, optional]\n+- xpp3:xpp3:jar:1.1.3.3 [compile, optional]\n+- stax:stax-api:jar:1.0 [compile, optional]\n\\- xml-apis:xml-apis:jar:1.0.b2 [compile]\n```\n\nThe duplicate `dom4j:dom4j:jar:1.5.2` is gone from the tree (but is present in Maven 3.9, Maven 3.8 and all other versions)." }, { "commit": "1a432a713d2e5950941034aab98adf3373cfa5be", "tree": "90cffd260c64e7b2a46cddfb64838bb112fb1d27", "parents": [ "5e4334a744cfb874edac17a75e8053a8c01a5d4d" ], "author": { "name": "Guillaume Nodet", "email": "gnodet@gmail.com", "time": "Mon Jun 08 13:47:49 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jun 08 13:47:49 2026 +0200" }, "message": "Bug: fix IPC named lock server-side waiter leak on client timeout (#1901)\n\nFixes #1743\n\n## Problem\n\nThe IPC lock tests are increasingly flaky on Windows CI. The root cause is a protocol-level bug where the server accumulates orphaned waiters and contexts when clients time out waiting for lock acquisition.\n\n### The race condition\n\nWhen two threads compete for an exclusive lock via IPC:\n\n1. Thread A acquires the lock, Thread B is added as a waiter on the server\n2. B\u0027s client-side `CompletableFuture.get(time, unit)` times out → `doLockExclusively()` returns `false`\n3. A unlocks → server promotes B\u0027s waiter → server sends RESPONSE_ACQUIRE to client\n4. **But B already moved on** — the response hits a stale/missing entry in the `responses` map\n5. **B\u0027s context is never closed** (no REQUEST_CLOSE sent) → server thinks B holds the lock → corrupted state for subsequent tests\n\nOn Windows, higher IPC latency widens the race window significantly.\n\n## Fix\n\nThree targeted changes:\n\n1. **`IpcNamedLock.doLockShared()` / `doLockExclusively()`**: When `client.lock()` throws `TimeoutException`, send `client.unlock(contextId)` to clean up the server-side context and waiter before returning `false`. Previously the context was leaked.\n\n2. **`IpcClient.send()`**: On `TimeoutException`, remove the `CompletableFuture` from the `responses` map so late server responses don\u0027t hit stale entries.\n\n3. **`IpcClient.receive()`**: When the response map lookup returns `null` (response arrived for a timed-out request), `continue` gracefully instead of throwing `IllegalStateException(\"Protocol error\")` and killing the connection.\n\nRe-enabled all three IPC test classes on Windows (`@DisabledOnOs(OS.WINDOWS)` removed from `IpcAdapterIT`, `IpcAdapterNoForkIT`, `IpcNamedLockFactoryIT`).\n\nAll 32 tests pass consistently." }, { "commit": "5e4334a744cfb874edac17a75e8053a8c01a5d4d", "tree": "b5355ccb67e4586a5320156604e3bc20807f0b31", "parents": [ "233916560fc4ddf1dbdf0b0a11d96995fee25365" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jun 08 13:46:26 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jun 08 13:46:26 2026 +0200" }, "message": "Bump biz.aQute.bnd:bnd-maven-plugin from 7.2.3 to 7.3.0 (#1897)\n\nBumps [biz.aQute.bnd:bnd-maven-plugin](https://github.com/bndtools/bnd) from 7.2.3 to 7.3.0.\n- [Release notes](https://github.com/bndtools/bnd/releases)\n- [Commits](https://github.com/bndtools/bnd/compare/7.2.3...7.3.0)\n\n---\nupdated-dependencies:\n- dependency-name: biz.aQute.bnd:bnd-maven-plugin\n dependency-version: 7.3.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "233916560fc4ddf1dbdf0b0a11d96995fee25365", "tree": "67e426f48652f28cd3681ebd7712ea3f7f173243", "parents": [ "af16fe81d3c0343964df64890182962de5340e53" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Jun 08 13:46:01 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Jun 08 13:46:01 2026 +0200" }, "message": "Bump org.redisson:redisson from 4.4.0 to 4.5.0 (#1906)\n\nBumps [org.redisson:redisson](https://github.com/redisson/redisson) from 4.4.0 to 4.5.0.\n- [Release notes](https://github.com/redisson/redisson/releases)\n- [Changelog](https://github.com/redisson/redisson/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/redisson/redisson/compare/redisson-4.4.0...redisson-4.5.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.redisson:redisson\n dependency-version: 4.5.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "af16fe81d3c0343964df64890182962de5340e53", "tree": "2a7629c550b0b642c7c58a3ac8cc88caca88a6e3", "parents": [ "0447a67c2a8c6733da297d00a733928abb77f5ea" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Sat Jun 06 18:30:28 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat Jun 06 18:30:28 2026 +0200" }, "message": "Tidy up suppliers (#1898)\n\nClean up, make scope manager optional, and hence, make them really reusable.\n\nThis prepares dedup in Maven 3.10+ as those counterparts (duplicates) can now be dropped.\n\nFinally, open up suppliers, making them extension and integration friendly." }, { "commit": "0447a67c2a8c6733da297d00a733928abb77f5ea", "tree": "3a360b5eae281a5c1181b745bea19db315c4f5a6", "parents": [ "6cd25d373bdf99db2d40fb081f99dd0414e2c759" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Sat Jun 06 18:30:12 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat Jun 06 18:30:12 2026 +0200" }, "message": "DependencyCollectionChecker: new session member (#1899)\n\nIntroduce DependencyCollectionChecker, that is able to augment and re-collect the graph. By default, there is only NOOP implementation and this PR causes no change in Resolver behaviour, but this leaves ability to Resolver integrator to use this feature.\n\nAlso, prepare OptionDependencySelector to be parameterized (by default is not) to be able to ignore or collect optional/excluded artifacts.\n\nNote: DependencyCollectorDelegate may be best seen without whitespace, change is only about putting existing logic into loop w/ some cleanup." }, { "commit": "6cd25d373bdf99db2d40fb081f99dd0414e2c759", "tree": "603f724f0eb41b9d35ec684ae68d68b8dd792171", "parents": [ "5e97fd15f8dbc562c481252bc8ea1037992e6407" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Jun 05 15:58:50 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jun 05 15:58:50 2026 +0200" }, "message": "Disable IPC lock tests on Windows (#1900)\n\nThe are unstable and flakey and just cause noise.\nAm unsure how much are they used anyway.\nUntil someone on Windows fixes them, they are disabled." }, { "commit": "5e97fd15f8dbc562c481252bc8ea1037992e6407", "tree": "02ab68a197f0df9767497167ab4880ecae865b67", "parents": [ "dc3999f7a582faaf50552e4490ed40a769fbe55c" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Jun 04 10:54:22 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jun 04 10:54:22 2026 +0200" }, "message": "Bug: fix new PCR as it in certain cases left duplicates (#1896)\n\nThe was spotted by Quarkus plugin that was building own \"app graph\" and bellied up because of discovered duplicated in graph.\n\nBug was caused by bad cycle detection, and it resulted in `DependencyNode` graph had uncovered branches by `Path` parallel tree, and hence, those were left fully uninspected and caused duplications.\n\nFixes #1895 " }, { "commit": "dc3999f7a582faaf50552e4490ed40a769fbe55c", "tree": "389d7348653a8e32478cc0c776f804d3cd222254", "parents": [ "99a907e51bb961c7f18db6f4104da67766f59628" ], "author": { "name": "Slawomir Jaranowski", "email": "s.jaranowski@gmail.com", "time": "Sat May 30 12:47:16 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat May 30 12:47:16 2026 +0200" }, "message": "Add any media type to RFC9457 content type header (#1894)\n\n* Add any media type to RFC9457 content type header" }, { "commit": "99a907e51bb961c7f18db6f4104da67766f59628", "tree": "a68ce3482d022c2209cf0c5d48d1ddd8990e905e", "parents": [ "a44bed71f6bc7d35e177ded17f6ea917519563f3" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Thu May 28 13:14:32 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu May 28 13:14:32 2026 +0200" }, "message": "Bump com.github.siom79.japicmp:japicmp-maven-plugin (#1892)\n\nBumps [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) from 0.26.0 to 0.26.1.\n- [Release notes](https://github.com/siom79/japicmp/releases)\n- [Changelog](https://github.com/siom79/japicmp/blob/master/release.py)\n- [Commits](https://github.com/siom79/japicmp/compare/japicmp-base-0.26.0...japicmp-base-0.26.1)\n\n---\nupdated-dependencies:\n- dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin\n dependency-version: 0.26.1\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "a44bed71f6bc7d35e177ded17f6ea917519563f3", "tree": "9375637576cd10f5d9b93dfe3d7d6905822d197b", "parents": [ "560ce1a3e49fa94a347d9d47513b78cb94f8cd59" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed May 27 15:05:11 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed May 27 15:05:11 2026 +0200" }, "message": "fix: Configuration to be able to control sending RFC 9457 related Accept HTTP header (#1891)\n\nSome servers have issues handling it (esp the Accept HTTP header), so make it possible to disable it. Moreover, the new config accepts REPO_ID suffix, so this can happen per-server basis." }, { "commit": "560ce1a3e49fa94a347d9d47513b78cb94f8cd59", "tree": "8a2b085dc5f979c875fdde30934d1323728ff300", "parents": [ "5d87990c5c9fedf52f8f3e81f64e6bfc6af13905" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed May 27 15:02:11 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed May 27 15:02:11 2026 +0200" }, "message": "Improvement: BF dependency selector hot methods (#1882)\n\nBF selector creates many complex objects just to toss them away.\nReason was flawed filter method, that required complete prepared\ncontext only to toss it away, if needed.\n\nRevert the logic: test dependencySelector (if present) with\nupcoming dependency and only if accepted, continue with complex\nobject creation." }, { "commit": "5d87990c5c9fedf52f8f3e81f64e6bfc6af13905", "tree": "77416f3d852ff67ca51381c8ca6c941400e0b092", "parents": [ "676279d18194bd4d7c910f4d2fe9c2ceb7c0a753" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed May 27 15:00:10 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed May 27 15:00:10 2026 +0200" }, "message": "Bump io.minio:minio from 9.0.0 to 9.0.1 (#1883)\n\nBumps [io.minio:minio](https://github.com/minio/minio-java) from 9.0.0 to 9.0.1.\n- [Release notes](https://github.com/minio/minio-java/releases)\n- [Commits](https://github.com/minio/minio-java/compare/9.0.0...9.0.1)\n\n---\nupdated-dependencies:\n- dependency-name: io.minio:minio\n dependency-version: 9.0.1\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "676279d18194bd4d7c910f4d2fe9c2ceb7c0a753", "tree": "3007fa337ac21d2c5dc96713ca793b88d3732b2f", "parents": [ "ec585cbb097e4db8e047caedf43b5c895f9b6615" ], "author": { "name": "Adam Kaplan", "email": "adam.kaplan@redhat.com", "time": "Wed May 27 08:59:31 2026 -0400" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed May 27 14:59:31 2026 +0200" }, "message": "Doc: Trusted Checksums Summary File Procedure (#1886)\n\nDocument the procedure to save Trusted Checksum summary files to\nversion control. This procedure utilizes the `.mvn/config` file for\nconsistent invocation and the `${session.rootDirectory}` variable,\nwhich is only available in Maven 3.9.x. The configuration was taken\nfrom an example \"locked down\" repository provided by @cstamas. [1]\n\nUnfortunately, saving Trusted Checksum summary files to version control\ncan cause dependency management tools like Renovate and GitHub\nDependabot to break builds. It is my hope that with improved\ndocumentation, the dependency management tool ecosystem will be able to\nappropriately update these trusted checksum files if present.\n\n[1] https://github.com/ipfs-shipyard/java-ipfs-http-client\n\nSigned-off-by: Adam Kaplan \u003cadam@adambkaplan.com\u003e" }, { "commit": "ec585cbb097e4db8e047caedf43b5c895f9b6615", "tree": "16e4846abfd8845c944987d51f3d39a57f37f2b1", "parents": [ "a861223a7dafb92eec5597cc968eed8c2730fbc3" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed May 27 11:45:56 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed May 27 11:45:56 2026 +0200" }, "message": "Bump org.ow2.asm:asm from 9.10 to 9.10.1 (#1890)\n\nBumps org.ow2.asm:asm from 9.10 to 9.10.1.\n\n---\nupdated-dependencies:\n- dependency-name: org.ow2.asm:asm\n dependency-version: 9.10.1\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "a861223a7dafb92eec5597cc968eed8c2730fbc3", "tree": "252383a792c7572aa84860913e4190e864aa5a2b", "parents": [ "1a17dfcaaf0d3f34b3da19f85a69ea3ce7809876" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri May 22 22:00:21 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri May 22 22:00:21 2026 +0200" }, "message": "Bump com.github.siom79.japicmp:japicmp-maven-plugin (#1887)\n\nBumps [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) from 0.25.7 to 0.26.0.\n- [Release notes](https://github.com/siom79/japicmp/releases)\n- [Changelog](https://github.com/siom79/japicmp/blob/master/release.py)\n- [Commits](https://github.com/siom79/japicmp/compare/japicmp-base-0.25.7...japicmp-base-0.26.0)\n\n---\nupdated-dependencies:\n- dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin\n dependency-version: 0.26.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "1a17dfcaaf0d3f34b3da19f85a69ea3ce7809876", "tree": "97c180c04716ebbada4a45a83e7ba7122d3aee0f", "parents": [ "6fd224be4cab6eaf9a478f930beefeee28ea631f" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri May 22 17:01:25 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri May 22 17:01:25 2026 +0200" }, "message": "Bump dev.sigstore:sigstore-java from 2.0.0 to 2.1.0 (#1889)\n\nBumps [dev.sigstore:sigstore-java](https://github.com/sigstore/sigstore-java) from 2.0.0 to 2.1.0.\n- [Release notes](https://github.com/sigstore/sigstore-java/releases)\n- [Changelog](https://github.com/sigstore/sigstore-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/sigstore/sigstore-java/compare/v2.0.0...v2.1.0)\n\n---\nupdated-dependencies:\n- dependency-name: dev.sigstore:sigstore-java\n dependency-version: 2.1.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "6fd224be4cab6eaf9a478f930beefeee28ea631f", "tree": "269fb60f1d1d87d76a8e8bd65406e719605df41b", "parents": [ "a69321790345ab8ebd7d81bdda96b03a5e65a368" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed May 20 10:30:33 2026 +0000" }, "committer": { "name": "Sylwester Lachiewicz", "email": "slachiewicz@apache.org", "time": "Wed May 20 16:05:41 2026 +0200" }, "message": "Bump org.codehaus.plexus:plexus-classworlds from 2.11.0 to 2.12.0\n\nBumps [org.codehaus.plexus:plexus-classworlds](https://github.com/codehaus-plexus/plexus-classworlds) from 2.11.0 to 2.12.0.\n- [Release notes](https://github.com/codehaus-plexus/plexus-classworlds/releases)\n- [Commits](https://github.com/codehaus-plexus/plexus-classworlds/compare/plexus-classworlds-2.11.0...plexus-classworlds-2.12.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.codehaus.plexus:plexus-classworlds\n dependency-version: 2.12.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e" }, { "commit": "a69321790345ab8ebd7d81bdda96b03a5e65a368", "tree": "4d854de6e584ad11af1b333fe8db0be968d239c5", "parents": [ "022003cd010b3ad44bba0a93bc55a872a5b4343c" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue May 19 16:58:39 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue May 19 16:58:39 2026 +0200" }, "message": "Bump org.ow2.asm:asm from 9.9.1 to 9.10 (#1879)\n\nBumps org.ow2.asm:asm from 9.9.1 to 9.10.\n\n---\nupdated-dependencies:\n- dependency-name: org.ow2.asm:asm\n dependency-version: \u00279.10\u0027\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "022003cd010b3ad44bba0a93bc55a872a5b4343c", "tree": "4eb1c961c4f429091cf1dc54d09e98c75d133240", "parents": [ "41f2c7b113b6ed6422680171c1216a6c82db22d0" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue May 19 16:57:49 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue May 19 16:57:49 2026 +0200" }, "message": "Bump maven3Version from 3.9.15 to 3.9.16 (#1880)\n\nBumps `maven3Version` from 3.9.15 to 3.9.16.\n\nUpdates `org.apache.maven:maven-resolver-provider` from 3.9.15 to 3.9.16\n\nUpdates `org.apache.maven:maven-model-builder` from 3.9.15 to 3.9.16\n\nUpdates `org.apache.maven:maven-plugin-api` from 3.9.15 to 3.9.16\n- [Release notes](https://github.com/apache/maven/releases)\n- [Commits](https://github.com/apache/maven/compare/maven-3.9.15...maven-3.9.16)\n\n---\nupdated-dependencies:\n- dependency-name: org.apache.maven:maven-resolver-provider\n dependency-version: 3.9.16\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.apache.maven:maven-model-builder\n dependency-version: 3.9.16\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.apache.maven:maven-plugin-api\n dependency-version: 3.9.16\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "41f2c7b113b6ed6422680171c1216a6c82db22d0", "tree": "ad43f2d03122b1721335aadfbc5e1a8b219850ca", "parents": [ "e815ccd8173cff2f35980680031a0159a9327ead" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu May 14 10:48:07 2026 +0200" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu May 14 10:48:07 2026 +0200" }, "message": "[maven-release-plugin] prepare for next development iteration\n" }, { "commit": "e815ccd8173cff2f35980680031a0159a9327ead", "tree": "c13708da0ea82dfa73fd8c5c043edd327bc696de", "parents": [ "60ebc53ed202520beb165f9beb45eb755407a570" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu May 14 10:47:29 2026 +0200" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu May 14 10:47:29 2026 +0200" }, "message": "[maven-release-plugin] prepare release maven-resolver-2.0.18\n" }, { "commit": "60ebc53ed202520beb165f9beb45eb755407a570", "tree": "b5cd48a9796a80ad6aa6df9f7f41038bd08b5428", "parents": [ "71fffc1ad90af8f461b4a0b9e122f5d9189237bf" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu May 14 09:20:24 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu May 14 09:20:24 2026 +0200" }, "message": "Feat: Reuse same RemoteRepository to HTTP URI creation logic (#1878)\n\nAll HTTP remote repositories have pretty much same or similar expectations regarding base URI of a HTTP remote repository." }, { "commit": "71fffc1ad90af8f461b4a0b9e122f5d9189237bf", "tree": "e1dc09c306ed14f4ca49a1f77cc13f74e04aee42", "parents": [ "db9a2a53f0042d0c4b6218f28e234de807a05b2a" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed May 13 09:29:39 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed May 13 09:29:39 2026 +0200" }, "message": "Deps: update slf4j to 2.0.18 (#1872)" }, { "commit": "db9a2a53f0042d0c4b6218f28e234de807a05b2a", "tree": "9e70048111c6ab3a63f87e6609851d22fa2c42d8", "parents": [ "f669174b9c6c160656a3a163d0c6f03982fcc050" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed May 13 09:29:29 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed May 13 09:29:29 2026 +0200" }, "message": "Deps: bump Redisson to 4.4.0 (#1873)" }, { "commit": "f669174b9c6c160656a3a163d0c6f03982fcc050", "tree": "575c7eab12b40fdd2e18dbd6b110a308531a468f", "parents": [ "ff0f18fdb10703f5bb26768316f0684b5dfe5730" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue May 12 21:43:53 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue May 12 21:43:53 2026 +0200" }, "message": "Bump org.codehaus.plexus:plexus-classworlds from 2.10.0 to 2.11.0 (#1871)\n\nBumps [org.codehaus.plexus:plexus-classworlds](https://github.com/codehaus-plexus/plexus-classworlds) from 2.10.0 to 2.11.0.\n- [Release notes](https://github.com/codehaus-plexus/plexus-classworlds/releases)\n- [Commits](https://github.com/codehaus-plexus/plexus-classworlds/compare/plexus-classworlds-2.10.0...plexus-classworlds-2.11.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.codehaus.plexus:plexus-classworlds\n dependency-version: 2.11.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "ff0f18fdb10703f5bb26768316f0684b5dfe5730", "tree": "5f663b12fc67cf68f578e836104c5bc802b2505e", "parents": [ "bbac290e7804bd0805f59d3c5589b97d12430e1b" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon May 11 23:09:50 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon May 11 23:09:50 2026 +0200" }, "message": "Enh: Maven 3 is with us (#1869)\n\nUndeprecate things needed to use Resolver 2.x without ScopeManager.\n\nThese classes and methods were originally here, and should remain here to make Resolver 2.x Maven-3 friendly, as Maven 3 unlike Maven 4, relies on these." }, { "commit": "bbac290e7804bd0805f59d3c5589b97d12430e1b", "tree": "b40e6dc641f000eb39e344b829ba092ad93d709b", "parents": [ "afe56ab396d6ba3183e3356845a787fb4eacfb94" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon May 11 23:09:22 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon May 11 23:09:22 2026 +0200" }, "message": "Feat: Maven 3 experimental scope manager (#1868)\n\nJust FTR, but is not used." }, { "commit": "afe56ab396d6ba3183e3356845a787fb4eacfb94", "tree": "eca03acac3a1ca006e72459b6ca23e0ec22a2c65", "parents": [ "0f2283a51001d50c663557e935ea63a163730ff4" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon May 11 23:08:37 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon May 11 23:08:37 2026 +0200" }, "message": "Feat: Pull in version filter builder (#1867)\n\nVersion builder filter should be shared across all Resolver users, hence it makes sense to have it in Resolver (instead of 2 copies in Maven 3.10 and 4)." }, { "commit": "0f2283a51001d50c663557e935ea63a163730ff4", "tree": "2a9f4e000311c4799d08e6332d53b19928c041f3", "parents": [ "0ba854d8d98fec87105116ff9b90ce1157d7ed39" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon May 11 23:08:15 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon May 11 23:08:15 2026 +0200" }, "message": "Feat: Resolution scope aliases (#1863)\n\nA simple feature that simplifies legacy support." }, { "commit": "0ba854d8d98fec87105116ff9b90ce1157d7ed39", "tree": "4d9fd76fd8c0158b0ffbe30a7712870d77138655", "parents": [ "551491afdc9983e1c3cc30fa886ce5dc71e12fd3" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon May 11 23:07:52 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon May 11 23:07:52 2026 +0200" }, "message": "Feat: Expose scope related bits via scope manager (#1862)\n\nWhen Resolver 2.x is used with ScopeManager, the scope semantics cannot be\ntaken for granted as it was in Maven 3.9 and before, as in this case\nscope manager configuration is the one who defines them, and their semantics\nas well.\n\nHence, any scope related operation, like filtering and selecting (during collection)\nmust be done in with scope manager prepared filter or selector." }, { "commit": "551491afdc9983e1c3cc30fa886ce5dc71e12fd3", "tree": "b9da73bae813817ea5d5cc5ebfa989516e10a33a", "parents": [ "4143720901a79111a46c02479b34c484de89a124" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon May 11 19:46:46 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon May 11 19:46:46 2026 +0200" }, "message": "Deps: Update parent POM 48 (#1866)\n\nApply reformatting, also minor updates for\n* Jetty\n* JUnit" }, { "commit": "4143720901a79111a46c02479b34c484de89a124", "tree": "306baade886e5575f0baa432a3983d37cef1ceff", "parents": [ "14c6bc599a39a2fbdc24515f2a2b55c1abf307f5" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Sun May 10 13:48:26 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sun May 10 13:48:26 2026 +0200" }, "message": "Bump com.github.siom79.japicmp:japicmp-maven-plugin (#1861)\n\nBumps [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) from 0.25.6 to 0.25.7.\n- [Release notes](https://github.com/siom79/japicmp/releases)\n- [Changelog](https://github.com/siom79/japicmp/blob/master/release.py)\n- [Commits](https://github.com/siom79/japicmp/compare/japicmp-base-0.25.6...japicmp-base-0.25.7)\n\n---\nupdated-dependencies:\n- dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin\n dependency-version: 0.25.7\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "14c6bc599a39a2fbdc24515f2a2b55c1abf307f5", "tree": "8d50ecf4de15199e394ca32649767b0eb1bc91d5", "parents": [ "36df28226a5582bf3cd2bd4547312ad477014035" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri May 08 13:24:05 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri May 08 13:24:05 2026 +0200" }, "message": "Fix: Remove javax.inject dependency (#1859)\n\nAs it was wrongly introduced in PM #1814. Core of resolver object graph declares javax.inject as optional, but the mentioned PR made it mandatory.\n\nFixes #1858" }, { "commit": "36df28226a5582bf3cd2bd4547312ad477014035", "tree": "59107d1216a188f57414c49fa20720214bc12bf6", "parents": [ "3ac48ac65afa2c6c2effb420acd09b93800b9cc7" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Apr 27 14:51:57 2026 +0200" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Apr 27 14:51:57 2026 +0200" }, "message": "[maven-release-plugin] prepare for next development iteration\n" }, { "commit": "3ac48ac65afa2c6c2effb420acd09b93800b9cc7", "tree": "00aff6d2479ccac6e9645e1d869d684399bc2b97", "parents": [ "b68922c29f25d3c65128c61d1a25f16ec847e7da" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Apr 27 14:51:27 2026 +0200" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Apr 27 14:51:27 2026 +0200" }, "message": "[maven-release-plugin] prepare release maven-resolver-2.0.17\n" }, { "commit": "b68922c29f25d3c65128c61d1a25f16ec847e7da", "tree": "921467a968cc465be32bb22d9c9f1f77c1b7f424", "parents": [ "73476f2a1a4f8747e251477894c50cca2318e93d" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Apr 27 05:47:29 2026 +0000" }, "committer": { "name": "Slawomir Jaranowski", "email": "s.jaranowski@gmail.com", "time": "Mon Apr 27 08:01:37 2026 +0200" }, "message": "Bump commons-codec:commons-codec from 1.21.0 to 1.22.0\n\nBumps [commons-codec:commons-codec](https://github.com/apache/commons-codec) from 1.21.0 to 1.22.0.\n- [Changelog](https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt)\n- [Commits](https://github.com/apache/commons-codec/compare/rel/commons-codec-1.21.0...rel/commons-codec-1.22.0)\n\n---\nupdated-dependencies:\n- dependency-name: commons-codec:commons-codec\n dependency-version: 1.22.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e" }, { "commit": "73476f2a1a4f8747e251477894c50cca2318e93d", "tree": "4d06bab2daf62dbb080ecb3391573062e35389c0", "parents": [ "a62d79f399cc7559dc5db3980484c8e7d962b814" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Apr 24 09:31:22 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Apr 24 09:31:22 2026 +0200" }, "message": "Bump com.google.code.gson:gson from 2.13.2 to 2.14.0 (#1853)\n\nBumps [com.google.code.gson:gson](https://github.com/google/gson) from 2.13.2 to 2.14.0.\n- [Release notes](https://github.com/google/gson/releases)\n- [Changelog](https://github.com/google/gson/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/google/gson/compare/gson-parent-2.13.2...gson-parent-2.14.0)\n\n---\nupdated-dependencies:\n- dependency-name: com.google.code.gson:gson\n dependency-version: 2.14.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "a62d79f399cc7559dc5db3980484c8e7d962b814", "tree": "0a7bb3b13e34a5fe28925e4c921f85d1cd906fc6", "parents": [ "080149d7277657742c8618d45cc82775bffc8d73" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Tue Apr 21 20:39:11 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Apr 21 20:39:11 2026 +0200" }, "message": "Deps: Updates (#1848)\n\nChanges\n* Jetty 12.1.8\n* Junit 5.14.3" }, { "commit": "080149d7277657742c8618d45cc82775bffc8d73", "tree": "aa8ee70164ec50ebf06d03019dd41096cf744cdd", "parents": [ "a4c424007cfaa791cb3d8130516aa579bd043e10" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Tue Apr 21 20:38:33 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Apr 21 20:38:33 2026 +0200" }, "message": "Maintenance: tidy up IPC locks, make exclusive test timeout a bit longer (#1849)" }, { "commit": "a4c424007cfaa791cb3d8130516aa579bd043e10", "tree": "e19ea5f908463c95202fbbe230aff1ce4408415f", "parents": [ "41fe1ebc3fa941fa25874b5c9941643ae3052307" ], "author": { "name": "Konrad Windszus", "email": "kwin@apache.org", "time": "Tue Apr 21 20:36:40 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Apr 21 20:36:40 2026 +0200" }, "message": "Send \"Accept\" request header to indicate RFC 9457 compliance (#1846)\n\nAlso evaluate RFC 9457 responses for PUT requests\nIgnore content-type attributes when checking for RFC 9457 responses.\n\nAdd tests to check for proper \"Accept\" headers for GET/HEAD/PUT\nAdd IT against Cloudflare provided RFC 9457 endpoints\n(https://blog.cloudflare.com/rfc-9457-agent-error-pages/#how-to-use-it)\n\nThis closes #1845" }, { "commit": "41fe1ebc3fa941fa25874b5c9941643ae3052307", "tree": "a60ab79b167428fbf5df0e728133ca256a8befea", "parents": [ "9c764b98815adb95267b8ffee842f1c87eaa7e93" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Apr 21 19:59:50 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Apr 21 19:59:50 2026 +0200" }, "message": "Bump testcontainersVersion from 2.0.4 to 2.0.5 (#1847)\n\nBumps `testcontainersVersion` from 2.0.4 to 2.0.5.\n\nUpdates `org.testcontainers:testcontainers` from 2.0.4 to 2.0.5\n- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)\n- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/testcontainers/testcontainers-java/compare/2.0.4...2.0.5)\n\nUpdates `org.testcontainers:testcontainers-junit-jupiter` from 2.0.4 to 2.0.5\n- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)\n- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/testcontainers/testcontainers-java/compare/2.0.4...2.0.5)\n\nUpdates `org.testcontainers:testcontainers-minio` from 2.0.4 to 2.0.5\n- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)\n- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/testcontainers/testcontainers-java/compare/2.0.4...2.0.5)\n\n---\nupdated-dependencies:\n- dependency-name: org.testcontainers:testcontainers\n dependency-version: 2.0.5\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.testcontainers:testcontainers-junit-jupiter\n dependency-version: 2.0.5\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.testcontainers:testcontainers-minio\n dependency-version: 2.0.5\n dependency-type: direct:development\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "9c764b98815adb95267b8ffee842f1c87eaa7e93", "tree": "b9e0af41b064d648f2cbaa3634c4b24235f5ad8b", "parents": [ "f7bbd35ef3baf3fbdc15356be43f6c81d6d827ec" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Apr 20 17:55:11 2026 +0200" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Mon Apr 20 17:56:19 2026 +0200" }, "message": "Add missing message\n\nAll providers except thins one emit message when selection happened.\nAdd the missing message here too.\n" }, { "commit": "f7bbd35ef3baf3fbdc15356be43f6c81d6d827ec", "tree": "50d6158f2d713e2ab3c7456a24860ceffb788120", "parents": [ "64fc4af12bae08138eb818849697ac480240a3c1" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Apr 20 17:24:36 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Apr 20 17:24:36 2026 +0200" }, "message": "Bump maven3Version from 3.9.14 to 3.9.15 (#1842)\n\nBumps `maven3Version` from 3.9.14 to 3.9.15.\n\nUpdates `org.apache.maven:maven-resolver-provider` from 3.9.14 to 3.9.15\n\nUpdates `org.apache.maven:maven-model-builder` from 3.9.14 to 3.9.15\n\nUpdates `org.apache.maven:maven-plugin-api` from 3.9.14 to 3.9.15\n- [Release notes](https://github.com/apache/maven/releases)\n- [Commits](https://github.com/apache/maven/compare/maven-3.9.14...maven-3.9.15)\n\n---\nupdated-dependencies:\n- dependency-name: org.apache.maven:maven-resolver-provider\n dependency-version: 3.9.15\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.apache.maven:maven-model-builder\n dependency-version: 3.9.15\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.apache.maven:maven-plugin-api\n dependency-version: 3.9.15\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "64fc4af12bae08138eb818849697ac480240a3c1", "tree": "94cb9c179bdde6458c6dee70b1248f8da3478166", "parents": [ "283b542024f6a45d46c89cf0bcc5ec3495c7b8c6" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Sun Apr 19 18:29:21 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sun Apr 19 18:29:21 2026 +0200" }, "message": "Lower various component selection debug noise (#1841)\n\nThey all emit stack traces, and just make noise.\nMake clear at DEBUG what is happening, while retain\nability for stack traces at TRACE level." }, { "commit": "283b542024f6a45d46c89cf0bcc5ec3495c7b8c6", "tree": "cd1cc1fe0bc1d6e77146afbc2e10e11abc8e6cd2", "parents": [ "ff7d23a28a460f745ddb912c12b3906c579fe976" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Apr 17 17:56:20 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Apr 17 17:56:20 2026 +0200" }, "message": "GH-1835: Expose qualifiers for generic version scheme (#1837)\n\nThis allows nice version selection. Also, provide a version filter that\nleaves out preview (sans snapshot) versions.\n\nCleaned up existing filters, and added new context predicate one.\n\nFinally, made generic classes public, they were package protected.\n\nFixes #1835" }, { "commit": "ff7d23a28a460f745ddb912c12b3906c579fe976", "tree": "25fb9bde04383d7ce451322f1c26d10c4c43e603", "parents": [ "b44db2860310a198c3baa8c13f544c8ce21d53d1" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Apr 17 16:45:00 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Apr 17 16:45:00 2026 +0200" }, "message": "Bump com.github.siom79.japicmp:japicmp-maven-plugin (#1840)\n\nBumps [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) from 0.25.5 to 0.25.6.\n- [Release notes](https://github.com/siom79/japicmp/releases)\n- [Changelog](https://github.com/siom79/japicmp/blob/master/release.py)\n- [Commits](https://github.com/siom79/japicmp/compare/japicmp-base-0.25.5...japicmp-base-0.25.6)\n\n---\nupdated-dependencies:\n- dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin\n dependency-version: 0.25.6\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "b44db2860310a198c3baa8c13f544c8ce21d53d1", "tree": "8cc68a50d22db6f02ee2083c687065737d3341e7", "parents": [ "f5e006ff9be879cc4346f538f0dcad9d7432395d" ], "author": { "name": "Slawomir Jaranowski", "email": "s.jaranowski@gmail.com", "time": "Thu Apr 16 18:35:06 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Apr 16 18:35:06 2026 +0200" }, "message": "Remove unnecessary repository preparation in metadata resolution for prefixes (#1830)\n\nRepository should be already configured, it is too late to change configuration.\nThe same configuration should be used for standard operation and resolving metadata.\n\nExample: plugins can provide unconfigured repo,\nwhen we have configuration for mirror in settings - mirror will be used only for metadata." }, { "commit": "f5e006ff9be879cc4346f538f0dcad9d7432395d", "tree": "06869f9b622a2da5695722a391a5b103df05bb44", "parents": [ "3422c35b401437693cecd30816e409ef4a802604" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Apr 16 17:04:59 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Apr 16 17:04:59 2026 +0200" }, "message": "GH-1834: Version filtering context with BF fails (#1836)\n\nBF is by default going aggressively (in parallel, unlike old DF)\nfor collection, and causes ConcurrentModificationEx if filtering\nis used as well.\n\nThis simple change fixes that.\n\nFixes #1834" }, { "commit": "3422c35b401437693cecd30816e409ef4a802604", "tree": "e6e2583f34bb3ac6bfa871a4ec1b93e4a5d6b256", "parents": [ "0199682432fe4b3c1985a44d40a6d1b5f744a0cf" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Thu Apr 16 14:07:28 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Apr 16 14:07:28 2026 +0200" }, "message": "Bump bouncycastleVersion from 1.83 to 1.84 (#1831)\n\nBumps `bouncycastleVersion` from 1.83 to 1.84.\n\nUpdates `org.bouncycastle:bcpg-jdk18on` from 1.83 to 1.84\n- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)\n- [Commits](https://github.com/bcgit/bc-java/commits)\n\nUpdates `org.bouncycastle:bcpkix-jdk18on` from 1.83 to 1.84\n- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)\n- [Commits](https://github.com/bcgit/bc-java/commits)\n\nUpdates `org.bouncycastle:bcprov-jdk18on` from 1.83 to 1.84\n- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)\n- [Commits](https://github.com/bcgit/bc-java/commits)\n\nUpdates `org.bouncycastle:bcutil-jdk18on` from 1.83 to 1.84\n- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)\n- [Commits](https://github.com/bcgit/bc-java/commits)\n\n---\nupdated-dependencies:\n- dependency-name: org.bouncycastle:bcpg-jdk18on\n dependency-version: \u00271.84\u0027\n dependency-type: direct:production\n update-type: version-update:semver-minor\n- dependency-name: org.bouncycastle:bcpkix-jdk18on\n dependency-version: \u00271.84\u0027\n dependency-type: direct:production\n update-type: version-update:semver-minor\n- dependency-name: org.bouncycastle:bcprov-jdk18on\n dependency-version: \u00271.84\u0027\n dependency-type: direct:production\n update-type: version-update:semver-minor\n- dependency-name: org.bouncycastle:bcutil-jdk18on\n dependency-version: \u00271.84\u0027\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "0199682432fe4b3c1985a44d40a6d1b5f744a0cf", "tree": "417a884678699a52d1d40bd7f649ba748bda9664", "parents": [ "9d574ca0760c7cccca615e388f9f0650823d7de2" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Thu Apr 16 14:07:21 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Apr 16 14:07:21 2026 +0200" }, "message": "Bump com.google.guava:guava from 33.5.0-jre to 33.6.0-jre (#1833)\n\nBumps [com.google.guava:guava](https://github.com/google/guava) from 33.5.0-jre to 33.6.0-jre.\n- [Release notes](https://github.com/google/guava/releases)\n- [Commits](https://github.com/google/guava/commits)\n\n---\nupdated-dependencies:\n- dependency-name: com.google.guava:guava\n dependency-version: 33.6.0-jre\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "9d574ca0760c7cccca615e388f9f0650823d7de2", "tree": "5527a47aac4a58f8cd1de2aec1c7e55f2ee5999b", "parents": [ "1b93d22120890b37d7bdffdf4b8700f42c5e0a65" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Tue Apr 14 18:33:57 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Tue Apr 14 18:33:57 2026 +0200" }, "message": "Bump com.github.siom79.japicmp:japicmp-maven-plugin (#1828)\n\nBumps [com.github.siom79.japicmp:japicmp-maven-plugin](https://github.com/siom79/japicmp) from 0.25.4 to 0.25.5.\n- [Release notes](https://github.com/siom79/japicmp/releases)\n- [Changelog](https://github.com/siom79/japicmp/blob/master/release.py)\n- [Commits](https://github.com/siom79/japicmp/compare/japicmp-base-0.25.4...japicmp-base-0.25.5)\n\n---\nupdated-dependencies:\n- dependency-name: com.github.siom79.japicmp:japicmp-maven-plugin\n dependency-version: 0.25.5\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "1b93d22120890b37d7bdffdf4b8700f42c5e0a65", "tree": "f4ed2f8e80b6b489c679890334fdf3374d2ab6eb", "parents": [ "f168b40b7e1cbccc6a1415f562d559cbb601fdef" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed Apr 08 22:30:14 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Apr 08 22:30:14 2026 +0200" }, "message": "Better control of plexus-utils (#1826)\n\nResolver DOES NOT USE IT (only Wagon), still, it is constantly around\nas mvn transitive dependency. We still need to manage it properly,\ngiven it comes from parent as well." }, { "commit": "f168b40b7e1cbccc6a1415f562d559cbb601fdef", "tree": "d5bb314bbe1c030d3ad70cc4724679fda9a68eef", "parents": [ "50cbed379ab15dc5fc627390776f7d27685a2165" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed Apr 08 20:17:14 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Apr 08 20:17:14 2026 +0200" }, "message": "RRF: Place remark about broken MRMs (#1820)\n\n* RRF: Place remark about broken MRMs\n\nIn certain cases, when group/virtual repositories are involved,\nand MRMs leak random resources from member repositories,\ndocument the possible circumvention.\n\n* Apply suggestion from @cstamas" }, { "commit": "50cbed379ab15dc5fc627390776f7d27685a2165", "tree": "994b44205582b6748fb3c44f5df13587b81f3bca", "parents": [ "8ee6b2038ce1449936aaaa258c564f412eb52309" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Wed Apr 08 20:16:55 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Apr 08 20:16:55 2026 +0200" }, "message": "Bump org.redisson:redisson from 4.3.0 to 4.3.1 (#1824)\n\nBumps [org.redisson:redisson](https://github.com/redisson/redisson) from 4.3.0 to 4.3.1.\n- [Release notes](https://github.com/redisson/redisson/releases)\n- [Changelog](https://github.com/redisson/redisson/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/redisson/redisson/compare/redisson-4.3.0...redisson-4.3.1)\n\n---\nupdated-dependencies:\n- dependency-name: org.redisson:redisson\n dependency-version: 4.3.1\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "8ee6b2038ce1449936aaaa258c564f412eb52309", "tree": "6124e1a80dfd656e13577268a7bf8667ad9dd552", "parents": [ "8a76814d6d74e6a5ae016c066c5e1061974fb42c" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Apr 06 13:14:01 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Apr 06 13:14:01 2026 +0200" }, "message": "Bump org.codehaus.plexus:plexus-classworlds from 2.9.0 to 2.10.0 (#1822)\n\nBumps [org.codehaus.plexus:plexus-classworlds](https://github.com/codehaus-plexus/plexus-classworlds) from 2.9.0 to 2.10.0.\n- [Release notes](https://github.com/codehaus-plexus/plexus-classworlds/releases)\n- [Commits](https://github.com/codehaus-plexus/plexus-classworlds/compare/plexus-classworlds-2.9.0...plexus-classworlds-2.10.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.codehaus.plexus:plexus-classworlds\n dependency-version: 2.10.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "8a76814d6d74e6a5ae016c066c5e1061974fb42c", "tree": "fe0ec07c33c90a75b1fa88214c94610662245242", "parents": [ "7f82ab5bd7f9f5c5a87e5d6b514ca47018566ca7" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Thu Apr 02 06:43:42 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Apr 02 06:43:42 2026 +0200" }, "message": "Bump biz.aQute.bnd:bnd-maven-plugin from 7.2.1 to 7.2.3 (#1818)\n\nBumps [biz.aQute.bnd:bnd-maven-plugin](https://github.com/bndtools/bnd) from 7.2.1 to 7.2.3.\n- [Release notes](https://github.com/bndtools/bnd/releases)\n- [Commits](https://github.com/bndtools/bnd/compare/7.2.1...7.2.3)\n\n---\nupdated-dependencies:\n- dependency-name: biz.aQute.bnd:bnd-maven-plugin\n dependency-version: 7.2.3\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "7f82ab5bd7f9f5c5a87e5d6b514ca47018566ca7", "tree": "0c90c0603e76f758530c07c835eaba2cb9cd960d", "parents": [ "194128ae22ab4eda525250960105fae5667b9fcb" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Sun Mar 29 13:47:47 2026 +0200" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sun Mar 29 13:47:47 2026 +0200" }, "message": "Bump org.codehaus.plexus:plexus-utils (#1817)\n\nBumps [org.codehaus.plexus:plexus-utils](https://github.com/codehaus-plexus/plexus-utils) from 4.0.2 to 4.0.3.\n- [Release notes](https://github.com/codehaus-plexus/plexus-utils/releases)\n- [Commits](https://github.com/codehaus-plexus/plexus-utils/compare/plexus-utils-4.0.2...plexus-utils-4.0.3)\n\n---\nupdated-dependencies:\n- dependency-name: org.codehaus.plexus:plexus-utils\n dependency-version: 4.0.3\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "194128ae22ab4eda525250960105fae5667b9fcb", "tree": "657d3efc46633de60b4b8b9231142b2ee02b5009", "parents": [ "4ab6c594f6b581cea79ace34a37c29685fe686ed" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Mar 27 18:58:43 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Mar 27 18:58:43 2026 +0100" }, "message": "Increase timeout in tests (#1816)\n\nThere is one test that creates a swarm of 1000 threads\nall going for same file. Seems timeout of 1s is not enough?" }, { "commit": "4ab6c594f6b581cea79ace34a37c29685fe686ed", "tree": "a4ee10997ec91613d39c2bb3d1e03b37a058d2da", "parents": [ "60a8d363b2c45af19b68ce58da7dcc60fc672114" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Mar 27 15:33:53 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Mar 27 15:33:53 2026 +0100" }, "message": "Provide modern TrackingFileManager (#1814)\n\nStill, provide escape hatch for those that must share their local repository with some parallel running Maven 3.9.x or older.\n\nChanges:\n* provide \"legacy\" and \"named locks\" based TrackingFileManager\n* demote both from being components, instead introduce TrackingFileManagerProvider that performs \"selection\" of wanted instance\n* **contains refactoring regarding NamedLocks** making them usable system-wide, unlike so far, only in scope of SyncContext that requires session\n\nRefactoring: NamedLocks are a standalone API in Resolver. But SyncContext today is implemented with combination of NamedLocks and NameMapper. But, NameMapper was _never_ a standalone API on its own (is part of synccontext implementation done with NamedLocks), and NameMapper also depends on RepositorySystemSession. This caused that NamedLocks were \"washed into same (component) scope\" as NameMappers, and made them somewhat unusable outside of a session. Also, due this mixup, NamedLockFactoryAdapterFactoryImpl had to deal with locks lifecycle, totally wrongly (fx it was registering locks lifecycle multiple times while system existed, ie in case of daemon). Registering lifecycle is needed only once.\n\nThis refactoring clear things up: NamedLocks do live a life independently of existence of repository system session. " }, { "commit": "60a8d363b2c45af19b68ce58da7dcc60fc672114", "tree": "619ffa6941617352b6b42c50af16b165a48db77d", "parents": [ "6baad966c334eddec9ba8160be86f020f84c9f03" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Mar 27 15:22:37 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Mar 27 15:22:37 2026 +0100" }, "message": "Bump io.minio:minio from 8.6.0 to 9.0.0 (#1813)\n\nBumps [io.minio:minio](https://github.com/minio/minio-java) from 8.6.0 to 9.0.0.\n- [Release notes](https://github.com/minio/minio-java/releases)\n- [Commits](https://github.com/minio/minio-java/compare/8.6.0...9.0.0)\n\n---\nupdated-dependencies:\n- dependency-name: io.minio:minio\n dependency-version: 9.0.0\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "6baad966c334eddec9ba8160be86f020f84c9f03", "tree": "1496f8d0b995ff204ad0a43ff5e14d1b504c9c7d", "parents": [ "0a4ca926c9940866801f67c30ca230e7d99cb27a" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Mar 27 15:22:29 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Mar 27 15:22:29 2026 +0100" }, "message": "Bump testcontainersVersion from 2.0.3 to 2.0.4 (#1811)\n\nBumps `testcontainersVersion` from 2.0.3 to 2.0.4.\n\nUpdates `org.testcontainers:testcontainers` from 2.0.3 to 2.0.4\n- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)\n- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/testcontainers/testcontainers-java/compare/2.0.3...2.0.4)\n\nUpdates `org.testcontainers:testcontainers-junit-jupiter` from 2.0.3 to 2.0.4\n- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)\n- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/testcontainers/testcontainers-java/compare/2.0.3...2.0.4)\n\nUpdates `org.testcontainers:testcontainers-minio` from 2.0.3 to 2.0.4\n- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)\n- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/testcontainers/testcontainers-java/compare/2.0.3...2.0.4)\n\n---\nupdated-dependencies:\n- dependency-name: org.testcontainers:testcontainers\n dependency-version: 2.0.4\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.testcontainers:testcontainers-junit-jupiter\n dependency-version: 2.0.4\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.testcontainers:testcontainers-minio\n dependency-version: 2.0.4\n dependency-type: direct:development\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "0a4ca926c9940866801f67c30ca230e7d99cb27a", "tree": "88ddc408786f552dafa69927e73264f91daa5ea7", "parents": [ "0bc1e3eb8867b7a3229f1e55bcd50d5c5e8e4bf9" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Mar 27 15:22:20 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Mar 27 15:22:20 2026 +0100" }, "message": "Bump maven3Version from 3.9.12 to 3.9.14 (#1810)\n\nBumps `maven3Version` from 3.9.12 to 3.9.14.\n\nUpdates `org.apache.maven:maven-resolver-provider` from 3.9.12 to 3.9.14\n\nUpdates `org.apache.maven:maven-model-builder` from 3.9.12 to 3.9.14\n\nUpdates `org.apache.maven:maven-plugin-api` from 3.9.12 to 3.9.14\n- [Release notes](https://github.com/apache/maven/releases)\n- [Commits](https://github.com/apache/maven/compare/maven-3.9.12...maven-3.9.14)\n\n---\nupdated-dependencies:\n- dependency-name: org.apache.maven:maven-resolver-provider\n dependency-version: 3.9.14\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.apache.maven:maven-model-builder\n dependency-version: 3.9.14\n dependency-type: direct:production\n update-type: version-update:semver-patch\n- dependency-name: org.apache.maven:maven-plugin-api\n dependency-version: 3.9.14\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "0bc1e3eb8867b7a3229f1e55bcd50d5c5e8e4bf9", "tree": "4f8fc9806926157bec165888126515ec2ad160ae", "parents": [ "d3e2cbd12f36a4299b2254354e775f4f8e625c89" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Mar 27 15:22:10 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Mar 27 15:22:10 2026 +0100" }, "message": "Bump org.mockito:mockito-core from 5.21.0 to 5.23.0 (#1808)\n\nBumps [org.mockito:mockito-core](https://github.com/mockito/mockito) from 5.21.0 to 5.23.0.\n- [Release notes](https://github.com/mockito/mockito/releases)\n- [Commits](https://github.com/mockito/mockito/compare/v5.21.0...v5.23.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.mockito:mockito-core\n dependency-version: 5.23.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "d3e2cbd12f36a4299b2254354e775f4f8e625c89", "tree": "eda861bba0a3ae04e9f35cf9b8b780102d56e9ad", "parents": [ "6b73efa6fe7121de6f24672fd63c24c6ed0366eb" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Mar 27 15:22:02 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Mar 27 15:22:02 2026 +0100" }, "message": "Bump org.redisson:redisson from 4.2.0 to 4.3.0 (#1805)\n\nBumps [org.redisson:redisson](https://github.com/redisson/redisson) from 4.2.0 to 4.3.0.\n- [Release notes](https://github.com/redisson/redisson/releases)\n- [Changelog](https://github.com/redisson/redisson/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/redisson/redisson/compare/redisson-4.2.0...redisson-4.3.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.redisson:redisson\n dependency-version: 4.3.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "6b73efa6fe7121de6f24672fd63c24c6ed0366eb", "tree": "26de67c1aa388af3484d13102a2cc21e97acc19b", "parents": [ "8457466c60bad78a04e1f3e5615545eea4c89a4d" ], "author": { "name": "Konrad Windszus", "email": "kwin@apache.org", "time": "Mon Mar 16 16:17:07 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Mar 16 16:17:07 2026 +0100" }, "message": "Enhance RRF section with repository order link\n\nUpdated the explanation of Remote Repository Filtering to include a link to the effective repository order documentation." }, { "commit": "8457466c60bad78a04e1f3e5615545eea4c89a4d", "tree": "88a0505a381f813bd999044b7a5c7c3f1141bbd4", "parents": [ "b7f7f767b73e42dfebf302d81d95ddbbc4736a97" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Feb 20 16:30:57 2026 +0100" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Feb 20 16:30:57 2026 +0100" }, "message": "[maven-release-plugin] prepare for next development iteration\n" }, { "commit": "b7f7f767b73e42dfebf302d81d95ddbbc4736a97", "tree": "b399b0591ecdaccab329848d50632b2befba6cdc", "parents": [ "66c773b0e3b5fe2497c17c0fb4776f32705c9fa6" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Feb 20 16:30:41 2026 +0100" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Feb 20 16:30:41 2026 +0100" }, "message": "[maven-release-plugin] prepare release maven-resolver-2.0.16\n" }, { "commit": "66c773b0e3b5fe2497c17c0fb4776f32705c9fa6", "tree": "60681676a591dd9d924716912b21ef5e617f3780", "parents": [ "74bfbc09eb1b0472917a9166cc09c43d53501cd4" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Fri Feb 20 13:19:26 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Feb 20 13:19:26 2026 +0100" }, "message": "Undo some changes TrackingFileManager happened in 1.9.25 (#1801)\n\nhttps://github.com/apache/maven-resolver/commit/82766b0e211f8bfa0ca346bf7352d0de7a7d6706\n\nThis change happened in 1.9.25, but it seems it may allow under\nsome circumstances (fx symlinked local repository) to pass\nmore then one thread going for same file.\n\nSomewhat return the same code as before, but using Paths.\n" }, { "commit": "74bfbc09eb1b0472917a9166cc09c43d53501cd4", "tree": "db02f18a4a7edb665e41580fd30e305e5bcc7b5b", "parents": [ "1020f3e13f9fa0e8a1d14bc594bc63f28fc26302" ], "author": { "name": "Olivier Lamy", "email": "olamy@apache.org", "time": "Fri Feb 20 00:27:19 2026 +1000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 19 15:27:19 2026 +0100" }, "message": "Catch IOException with message \"Resource deadlock avoided\" which can happen on Unix level when multiple process try to lock same file (#1799)\n\n* Catch IOException with message \"Resource deadlock avoided\" which can happen on Unix level when multiple process try to lock same file\n\nSigned-off-by: Olivier Lamy \u003colamy@apache.org\u003e\n\n* spotless\n\nSigned-off-by: Olivier Lamy \u003colamy@apache.org\u003e\n\n---------\n\nSigned-off-by: Olivier Lamy \u003colamy@apache.org\u003e" }, { "commit": "1020f3e13f9fa0e8a1d14bc594bc63f28fc26302", "tree": "0afaec46428b69cdc9941dd16dbe96070d02a4e4", "parents": [ "9247aeeb808317e7b257afa2a788e1e152d4122d" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed Feb 18 14:26:28 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Feb 18 14:26:28 2026 +0100" }, "message": "Set content length for PUT in JDK transport (#1798)\n\nThat got lost once we moved off from ugly temp file hack.\n\n---------\n\nCo-authored-by: Konrad Windszus \u003ckonrad@windszus.net\u003e" }, { "commit": "9247aeeb808317e7b257afa2a788e1e152d4122d", "tree": "a2b98eb59cf04308bff24e237412397ebb51ac51", "parents": [ "aa5588c0ad5e6c8897c598845137b1d79eb2f01b" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 17:02:49 2026 +0100" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 17:02:49 2026 +0100" }, "message": "[maven-release-plugin] prepare for next development iteration\n" }, { "commit": "aa5588c0ad5e6c8897c598845137b1d79eb2f01b", "tree": "fa8a4fc92047417aa61ebdd90edb9ac63ef2167f", "parents": [ "711b0e1757c520fd51a15678471f082b018b5fb9" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 17:02:32 2026 +0100" }, "committer": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 17:02:32 2026 +0100" }, "message": "[maven-release-plugin] prepare release maven-resolver-2.0.15\n" }, { "commit": "711b0e1757c520fd51a15678471f082b018b5fb9", "tree": "073939a6cb1e776a7bcdab53d9cb9dc504e64bbe", "parents": [ "d67da51fd0e9933d62a84ef88861ca5f6b2e5a36" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 16:41:11 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 12 16:41:11 2026 +0100" }, "message": "Fix javadoc errors on new class (#1796)\n\nSite failed on this class, param names were off.\nAlso, removed some logical issue." }, { "commit": "d67da51fd0e9933d62a84ef88861ca5f6b2e5a36", "tree": "bb9f11eb4ac8780d40591bbf6308368e0a921240", "parents": [ "fcd4290cdc4113dc6e4d45d2debc72e3fd3e9fcb" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 15:31:59 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 12 15:31:59 2026 +0100" }, "message": "Document how resolver works internally (#1794)\n\nTo have a place to direct users asking wrong questions,\nbut also to align \"lingo\" we use.\n" }, { "commit": "fcd4290cdc4113dc6e4d45d2debc72e3fd3e9fcb", "tree": "0c3954a05d02959b63b59b107789b0eaa517eb4e", "parents": [ "acbcbbe1bf80b26cfb9d33687b0f859ca624d233" ], "author": { "name": "Elliotte Rusty Harold", "email": "elharo@users.noreply.github.com", "time": "Thu Feb 12 13:32:20 2026 +0000" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 12 14:32:20 2026 +0100" }, "message": "Improve clarity and correctness in RRF documentation (#1795)\n\nRefined language and clarified concepts regarding Remote Repository Filtering in Maven documentation." }, { "commit": "acbcbbe1bf80b26cfb9d33687b0f859ca624d233", "tree": "c55f74fd6b4bb2d6f4888d0592508912b8abf268", "parents": [ "ad8dee92157a529ea35f388a559270d0787e55ce" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 12:21:39 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 12 12:21:39 2026 +0100" }, "message": "Minor bugfix: If proxy host cannot be resolved, fail (#1793)\n\nTo emit proper message saying what is the issue (ie typo in hostname of proxy)." }, { "commit": "ad8dee92157a529ea35f388a559270d0787e55ce", "tree": "0b7061c28a4f60ee0786af431775c9c193101668", "parents": [ "0c4f7a4fa3c476924e5f113eaa86ddb888fe58a0" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 12:20:33 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 12 12:20:33 2026 +0100" }, "message": "Document known transport issues (#1792)\n\nDocument \"known issues\" for transports, for start the HTTP capable transports." }, { "commit": "0c4f7a4fa3c476924e5f113eaa86ddb888fe58a0", "tree": "293fb12f49d71e23bb419c19c3c978d1d23140b2", "parents": [ "3d16457378b0a1e83484ea3519fa98fd818cbc77" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 12 12:18:07 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 12 12:18:07 2026 +0100" }, "message": "GH-1768 Drastically simplify auth caching (#1791)\n\nAs there is a reproducible issue for proxy auth cache. Seems auth cache fall apart in the moment non-single thread flow happens. Instead to chase and wrap around our head, I just went to drastically simplify the whole stuff, without dropping any existing feature, and making sure that reproducer does not reproduce anymore.\n\nFixes #1768" }, { "commit": "3d16457378b0a1e83484ea3519fa98fd818cbc77", "tree": "955ee8892b81e161c03b2c9e4a9583c3a10f45f5", "parents": [ "7a7a3daa64898fb551f07c9aa3f73e337c274228" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Mon Feb 09 13:12:08 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Mon Feb 09 13:12:08 2026 +0100" }, "message": "Bump sisuVersion from 0.9.0.M4 to 1.0.0 (#1789)\n\nBumps `sisuVersion` from 0.9.0.M4 to 1.0.0.\n\nUpdates `org.eclipse.sisu:org.eclipse.sisu.inject` from 0.9.0.M4 to 1.0.0\n- [Release notes](https://github.com/eclipse-sisu/sisu-project/releases)\n- [Changelog](https://github.com/eclipse-sisu/sisu-project/blob/main/RELEASE.md)\n- [Commits](https://github.com/eclipse-sisu/sisu-project/compare/milestones/0.9.0.M4...releases/1.0.0)\n\nUpdates `org.eclipse.sisu:org.eclipse.sisu.plexus` from 0.9.0.M4 to 1.0.0\n- [Release notes](https://github.com/eclipse-sisu/sisu-project/releases)\n- [Changelog](https://github.com/eclipse-sisu/sisu-project/blob/main/RELEASE.md)\n- [Commits](https://github.com/eclipse-sisu/sisu-project/compare/milestones/0.9.0.M4...releases/1.0.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.eclipse.sisu:org.eclipse.sisu.inject\n dependency-version: 1.0.0\n dependency-type: direct:production\n update-type: version-update:semver-major\n- dependency-name: org.eclipse.sisu:org.eclipse.sisu.plexus\n dependency-version: 1.0.0\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "7a7a3daa64898fb551f07c9aa3f73e337c274228", "tree": "bbbc9d4a247b2b6219fd2180be2c7e5271b6a729", "parents": [ "968692dd4e67504db9c031dec7aa99c429cfa44b" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Feb 06 18:13:27 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Feb 06 18:13:27 2026 +0100" }, "message": "Bump org.redisson:redisson from 4.1.0 to 4.2.0 (#1787)\n\nBumps [org.redisson:redisson](https://github.com/redisson/redisson) from 4.1.0 to 4.2.0.\n- [Release notes](https://github.com/redisson/redisson/releases)\n- [Changelog](https://github.com/redisson/redisson/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/redisson/redisson/compare/redisson-4.1.0...redisson-4.2.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.redisson:redisson\n dependency-version: 4.2.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "968692dd4e67504db9c031dec7aa99c429cfa44b", "tree": "31c9f71603a856c27a6b213527053752a186481c", "parents": [ "70696c0b5f2b4e74a1a910459dd94e1a6715303b" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Feb 05 18:39:55 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Feb 05 18:39:55 2026 +0100" }, "message": "Align configuration properties and more (#1785)\n\nInitial goal is to make Resolver 1.x configuration keys transparently supported, but also reduce the copy pasta around \"common\" HTTP configuration as well. Transport still needs to take care about their own \"native\" params (supported only by them).\n\nChanges:\n* removed \"smart\" from connector checksums, they are **included checksums** (aligned with enum)\n* removed \"maven2\" from newly (in 2.x) config property (class is named like it, but is totally internal). Property returned to \"checksums\".\n* made shared helper class for transports, that provides getter, validation and transformation for all \"common\" HTTP configurations, and reuse them.\n* checked other (important) properties, like split repo, and they already has \"legacy\" key support in place\n\nFixes #1783" }, { "commit": "70696c0b5f2b4e74a1a910459dd94e1a6715303b", "tree": "a5fbb2b10e87ba1d3cbb4a5f56ad631b757fce83", "parents": [ "ba18809776d676b04134c1be03e794586c6a0dba" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed Feb 04 13:03:44 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Feb 04 13:03:44 2026 +0100" }, "message": "Better checksum control (#1784)\n\nAbility to explicitly configure checksums for download (used to validate during donwloads) and for uploads (generated during uploads).\n\nFixes #1782" }, { "commit": "ba18809776d676b04134c1be03e794586c6a0dba", "tree": "4ec442ef635b4af8985bbe66d6db5ebb215ca7cf", "parents": [ "df7c28944f3684c2814a5ccba3e23367e11c6067" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Sat Jan 31 20:20:34 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat Jan 31 20:20:34 2026 +0100" }, "message": "Deps: Jetty 12.1.6 (#1779)\n\nUpdate to Jetty 12.1.6\nhttps://github.com/jetty/jetty.project/releases/tag/jetty-12.1.6" }, { "commit": "df7c28944f3684c2814a5ccba3e23367e11c6067", "tree": "40364da75d34fee3262a415bd97e71b93c16d427", "parents": [ "d13e45f79476e7239208396ed87902060555df84" ], "author": { "name": "Konrad Windszus", "email": "kwin@apache.org", "time": "Sat Jan 31 18:54:32 2026 +0100" }, "committer": { "name": "Konrad Windszus", "email": "konrad@windszus.net", "time": "Sat Jan 31 19:55:02 2026 +0100" }, "message": "Disable Brotli Support in JDK HTTP Client again\n\nReason: Incorrect logging tracked in\nhttps://github.com/mizosoft/methanol/issues/181 leading to WARN in\nMaven.\n\nThis relates to #1744" }, { "commit": "d13e45f79476e7239208396ed87902060555df84", "tree": "795f6e33c182fa992b2aafd34de0994c244d3c79", "parents": [ "30608be22c4e14bd35d4952d51830e8cf2c4a64a" ], "author": { "name": "Konrad Windszus", "email": "kwin@apache.org", "time": "Sat Jan 31 10:15:46 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Sat Jan 31 10:15:46 2026 +0100" }, "message": "JDK Transport: Do no longer leverage temp file for transfering artifact (#1755)\n\nDirectly transfer based on the PutTask\u0027s InputStream.\nImprove retry handling to not retry (some) BodyPublisher exceptions." }, { "commit": "30608be22c4e14bd35d4952d51830e8cf2c4a64a", "tree": "36e2b524d693055229b93aeb43588e3c57dce6b6", "parents": [ "88cc437bc313e9911c1ba1b7deb396148a2b31fb" ], "author": { "name": "Konrad Windszus", "email": "kwin@apache.org", "time": "Fri Jan 30 09:46:37 2026 +0100" }, "committer": { "name": "Konrad Windszus", "email": "konrad@windszus.net", "time": "Fri Jan 30 14:04:47 2026 +0100" }, "message": "Log retries in JDK HTTP Client" }, { "commit": "88cc437bc313e9911c1ba1b7deb396148a2b31fb", "tree": "b8d4ac4dc05c1e3e3086c6e21a9064960fa15cc9", "parents": [ "f3b42f78ed909da663caed360fc3727b1c09f0df" ], "author": { "name": "dependabot[bot]", "email": "49699333+dependabot[bot]@users.noreply.github.com", "time": "Fri Jan 30 13:38:11 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Fri Jan 30 13:38:11 2026 +0100" }, "message": "Bump commons-codec:commons-codec from 1.20.0 to 1.21.0 (#1777)\n\nBumps [commons-codec:commons-codec](https://github.com/apache/commons-codec) from 1.20.0 to 1.21.0.\n- [Changelog](https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt)\n- [Commits](https://github.com/apache/commons-codec/compare/rel/commons-codec-1.20.0...rel/commons-codec-1.21.0)\n\n---\nupdated-dependencies:\n- dependency-name: commons-codec:commons-codec\n dependency-version: 1.21.0\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e" }, { "commit": "f3b42f78ed909da663caed360fc3727b1c09f0df", "tree": "876aa71b89e77eb5489226cd857917a3228a978e", "parents": [ "b03f5c035624b9eac3c95e7baf8046cc6586f927" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Thu Jan 29 18:08:57 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Thu Jan 29 18:08:57 2026 +0100" }, "message": "GH-1773: Treat 410 Gone as 404 Not Found (#1775)\n\nFixes #1773\n" }, { "commit": "b03f5c035624b9eac3c95e7baf8046cc6586f927", "tree": "febb74fef9a32c032856f1c339e35c5239812a57", "parents": [ "700fcb04046973e513aace2c6a26f536cab428f7" ], "author": { "name": "Tamas Cservenak", "email": "tamas@cservenak.net", "time": "Wed Jan 28 19:15:50 2026 +0100" }, "committer": { "name": "GitHub", "email": "noreply@github.com", "time": "Wed Jan 28 19:15:50 2026 +0100" }, "message": "GH-1737: Revert partially parallel upload change (#1765)\n\nRevert partially (connector only) commit:\n09c3fa9f1880058a2d29ca9ebcd3d2c23da0af4c\n\nFixes #1737\n" }, { "commit": "700fcb04046973e513aace2c6a26f536cab428f7", "tree": "0a1b190a332ab55e14dfff051733302594c33d39", "parents": [ "08f8381d99865ced18a627b79842076cee4575a1" ], "author": { "name": "Konrad Windszus", "email": "kwin@apache.org", "time": "Tue Jan 27 17:52:27 2026 +0100" }, "committer": { "name": "Konrad Windszus", "email": "konrad@windszus.net", "time": "Wed Jan 28 18:24:23 2026 +0100" }, "message": "Clarify description of JDK Transport modules" }, { "commit": "08f8381d99865ced18a627b79842076cee4575a1", "tree": "640c9c6b8f1af226b62f5d078d76932905a02c63", "parents": [ "ec52693dc400578dd03f731c88c58807cca6a148" ], "author": { "name": "Konrad Windszus", "email": "kwin@apache.org", "time": "Wed Jan 28 10:17:30 2026 +0100" }, "committer": { "name": "Konrad Windszus", "email": "konrad@windszus.net", "time": "Wed Jan 28 14:33:27 2026 +0100" }, "message": "Remove generated configuration.md from Git\n\nPlace generated markdown source instead in\n\"target/generated-site/markdown/\" which is included by default\n(https://maven.apache.org/plugins/maven-site-plugin/site-mojo.html#generatedSiteDirectory)" } ], "next": "ec52693dc400578dd03f731c88c58807cca6a148" }