Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump sqlite-jdbc from 3.36.0.3 to 3.39.2.0 #3148

Merged
merged 1 commit into from
Aug 9, 2022
Merged

Bump sqlite-jdbc from 3.36.0.3 to 3.39.2.0 #3148

merged 1 commit into from
Aug 9, 2022

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 5, 2022

Bumps sqlite-jdbc from 3.36.0.3 to 3.39.2.0.

Release notes

Sourced from sqlite-jdbc's releases.

Release 3.39.2.0

Changelog

🛠 Build

  • 63e0467 create the release commit only after successful push to Maven Central
  • 5aaeb8c attach javadoc when creating the jar in release profile
  • 7310a45 add missing project url in pom.xml
  • 13d2369 automatic release via workflow_dispatch
  • 6537808 add jreleaser plugin
  • 9f9ce09 remove maven-release-plugin and adjust version number
  • 10ab71c add test for #720
  • c7b54a2 expand multiarch test to arm64/alpine and ppc64/ubuntu
  • 50c0458 simplify matrix on test job using include instead of exclude
  • 972f1db run mvn with --batch-mode --no-transfer-progress
  • 7fc747f use actions/checkout@v3
  • 8409e5c display more information during OSInfoTest
  • 062440a build on jdk 17 (#747)

📝 Documentation

  • 5c03f58 update list of supported platforms in README.md
  • d23711e remove bitbucket links
  • 766a51f syntax highlighting in README.md
  • 481b803 fix memory leak when calling Connection.getMetaData() (#757)

fix memory leak when calling Connection.getMetaData()

  • bb84601 show numeric code instead of UNKNOWN_ERROR (#689)

Show numeric code instead of UNKNOWN_ERROR

  • 085700f compile OSInfo on the fly if needed by make (#715)

Removed outdated version of OSInfo.class

  • 67159a5 add snapshot badge to README.md
  • 5da0039 Publish snapshots to OSSRH automatically from CI
  • 6c4f373 Use setUseCaches instead of setDefaultUseCaches (#755)

Use of setDefaultUseCaches impacts all URLClassLoaders and HttpURLConnections, which can lead to erratic behavior of non-sqlite components running on a system since the variable is static.

  • e1d282c Wrap Statement Pointers to prevent use after free race
  • 6ee09e1 add ppc64el/ppc64le mapping

Closes: #450

  • 49facf5 Update changelog for 3.35.0.1 through 3.36.0.3 (#702)
  • e737a19 Musl check improvements
  • Fix older linux compatibility with MUSL check
  • 14d5903 org.sqlite.SQLiteConfig.setDatePrecision(String) throws unnecessary S… (#751)
  • a6d63ee add native binary for Linux aarch64 with musl (#704)
  • f55b2aa Upgrade to 3.39.2 (#746)

... (truncated)

Commits
  • 40c9367 chore(release): 3.39.2.0 [skip ci]
  • 63e0467 ci: create the release commit only after successful push to Maven Central
  • 5aaeb8c build: attach javadoc when creating the jar in release profile
  • 7310a45 build: add missing project url in pom.xml
  • 481b803 fix: fix memory leak when calling Connection.getMetaData() (#757)
  • 13d2369 ci: automatic release via workflow_dispatch
  • 6537808 build: add jreleaser plugin
  • 9f9ce09 build: remove maven-release-plugin and adjust version number
  • bb84601 feat: show numeric code instead of UNKNOWN_ERROR (#689)
  • ff7a01a chore: spotless apply
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump sqlite-jdbc from 3.36.0.3 to 3.39.2.0
13b8ce2 
Bumps [sqlite-jdbc](https://github.com/xerial/sqlite-jdbc) from 3.36.0.3 to 3.39.2.0.
- [Release notes](https://github.com/xerial/sqlite-jdbc/releases)
- [Changelog](https://github.com/xerial/sqlite-jdbc/blob/master/CHANGELOG)
- [Commits](xerial/sqlite-jdbc@3.36.0.3...3.39.2.0)

---
updated-dependencies:
- dependency-name: org.xerial:sqlite-jdbc
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from nvoxland as a code owner August 5, 2022 02:22
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Aug 5, 2022
@github-actions
Copy link

github-actions bot commented Aug 5, 2022

Unit Test Results

  4 620 files  ±0    4 620 suites  ±0   33m 53s ⏱️ + 1m 4s
  4 611 tests ±0    4 392 ✔️ ±0     219 💤 ±0  0 ±0 
54 504 runs  ±0  49 480 ✔️ ±0  5 024 💤 ±0  0 ±0 

Results for commit 13b8ce2. ± Comparison against base commit bb78528.

@kataggart kataggart added this to To Do in Conditioning++ via automation Aug 5, 2022
@nvoxland
Copy link
Contributor

nvoxland commented Aug 8, 2022

Code review and test results:

Things to be aware of:

  • Upgrades shipped sqlite driver
  • No corresponding pro/test-harness/pro-tests PRs

Things to worry about:

  • Nothing

XDelphiGrl
XDelphiGrl approved these changes Aug 9, 2022
View reviewed changes
Copy link
Contributor

@XDelphiGrl XDelphiGrl left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • Update the version of the Sqlite JDBC driver shipped with Liquibase to 3.39.2.0.
  • No CVEs reported on Maven Central.
  • Passing test harness execution; functional tests n/a.

APPROVED

Maven Central

@nvoxland nvoxland merged commit 2379b4e into master Aug 9, 2022
Conditioning++ automation moved this from To Do to Done Aug 9, 2022
@dependabot dependabot bot deleted the dependabot/maven/org.xerial-sqlite-jdbc-3.39.2.0 branch August 9, 2022 19:42
@kataggart kataggart added this to the NEXT milestone Aug 15, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@XDelphiGrl XDelphiGrl XDelphiGrl approved these changes

@suryaaki2 suryaaki2 suryaaki2 approved these changes

@nvoxland nvoxland Awaiting requested review from nvoxland

Assignees
No one assigned
Labels
autocandidate dependencies Pull requests that update a dependency file java Pull requests that update Java code sprint2022-31
Projects
Liquibase Open Source
Archived in project
Conditioning++
Done
Milestone
v4.16.0
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@nvoxland @XDelphiGrl @suryaaki2 @kataggart