From 2b7ea083cfa373c79377ddcd3f015ff5682b80cf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Oct 2023 11:13:07 -0400 Subject: [PATCH] Bump org.owasp.dependencycheck from 8.4.0 to 8.4.2 (#680) * Bump org.owasp.dependencycheck from 8.4.0 to 8.4.2 Bumps org.owasp.dependencycheck from 8.4.0 to 8.4.2. --- updated-dependencies: - dependency-name: org.owasp.dependencycheck dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] * Update changelog Signed-off-by: dependabot[bot] --------- Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] Signed-off-by: Karthik Subramanian --- CHANGELOG.md | 1 + java-client/build.gradle.kts | 2 +- 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 4b7c5f1ce4..c63d34a092 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -4,6 +4,7 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) ## [Unreleased 3.0] ### Dependencies - Bumps `io.github.classgraph:classgraph` from 4.8.162 to 4.8.163 +- Bumps `org.owasp.dependencycheck` from 8.4.0 to 8.4.2 This section is for maintaining a changelog for all breaking changes for the client that cannot be released in the 2.x line. All other non-breaking changes should be added to [Unreleased 2.x] section. diff --git a/java-client/build.gradle.kts b/java-client/build.gradle.kts index 0b1247b325..6c9a52e4a5 100644 --- a/java-client/build.gradle.kts +++ b/java-client/build.gradle.kts @@ -51,7 +51,7 @@ plugins { `java-library` `maven-publish` id("com.github.jk1.dependency-license-report") version "2.5" - id("org.owasp.dependencycheck") version "8.4.0" + id("org.owasp.dependencycheck") version "8.4.2" id("com.diffplug.spotless") version "6.22.0" } apply(plugin = "opensearch.repositories")