Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: apache/maven-checkstyle-plugin
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: maven-checkstyle-plugin-3.2.1
Choose a base ref
...
head repository: apache/maven-checkstyle-plugin
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: maven-checkstyle-plugin-3.2.2
Choose a head ref
  • 9 commits
  • 17 files changed
  • 6 contributors

Commits on Jan 6, 2023

  1. [maven-release-plugin] prepare for next development iteration

    @michael-o
    michael-o committed Jan 6, 2023
    Configuration menu
    Copy the full SHA
    1068ace View commit details
    Browse the repository at this point in the history

Commits on Jan 26, 2023

  1. [MCHECKSTYLE-426] Don't use Sink#figure()/Sink#figureCaption() since … 

    …it distorts the output

This closes #106
    @michael-o
    michael-o committed Jan 26, 2023
    Configuration menu
    Copy the full SHA
    000fab6 View commit details
    Browse the repository at this point in the history

Commits on Mar 18, 2023

  1. [MCHECKSTYLE-427] Upgrade maven-invoker-plugin to 3.5.0 

    Adds support to run integration tests with Java 19+
    @slachiewicz
    slachiewicz committed Mar 18, 2023
    Configuration menu
    Copy the full SHA
    bc45db6 View commit details
    Browse the repository at this point in the history

Commits on Apr 2, 2023

  1. Bump animal-sniffer-maven-plugin from 1.22 to 1.23 

    Bumps [animal-sniffer-maven-plugin](https://github.com/mojohaus/animal-sniffer) from 1.22 to 1.23.
- [Release notes](https://github.com/mojohaus/animal-sniffer/releases)
- [Commits](mojohaus/animal-sniffer@animal-sniffer-parent-1.22...1.23)

---
updated-dependencies:
- dependency-name: org.codehaus.mojo:animal-sniffer-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
    @dependabot @slachiewicz
    dependabot[bot] authored and slachiewicz committed Apr 2, 2023
    Configuration menu
    Copy the full SHA
    d168a85 View commit details
    Browse the repository at this point in the history

Commits on Apr 8, 2023

  1. Bump maven-invoker-plugin from 3.5.0 to 3.5.1 

    Bumps [maven-invoker-plugin](https://github.com/apache/maven-invoker-plugin) from 3.5.0 to 3.5.1.
- [Release notes](https://github.com/apache/maven-invoker-plugin/releases)
- [Commits](apache/maven-invoker-plugin@maven-invoker-plugin-3.5.0...maven-invoker-plugin-3.5.1)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-invoker-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
    @dependabot @slachiewicz
    dependabot[bot] authored and slachiewicz committed Apr 8, 2023
    Configuration menu
    Copy the full SHA
    07add96 View commit details
    Browse the repository at this point in the history

Commits on Apr 15, 2023

  1. [MNG-6825] Replace StringUtils with Commons Lang3 

    Co-authored-by: Moderne <[email protected]>
    @timtebeek @TeamModerne @slachiewicz
    2 people authored and slachiewicz committed Apr 15, 2023
    Configuration menu
    Copy the full SHA
    997f1e4 View commit details
    Browse the repository at this point in the history

Commits on Apr 18, 2023

  1. [MCHECKSTYLE-432] Inline configuration does not work when creating si… 

    …te reports with multiple locales

Co-authored-by: Peter Lamby <[email protected]>

This closes #112 and closes #113
    @michael-o
    michael-o committed Apr 18, 2023
    Configuration menu
    Copy the full SHA
    7efb92f View commit details
    Browse the repository at this point in the history

  2. vuln-fix: Temporary File Information Disclosure 

    This fixes temporary file information disclosure vulnerability due to the use
of the vulnerable `File.createTempFile()` method. The vulnerability is fixed by
using the `Files.createTempFile()` method which sets the correct posix permissions.

Weakness: CWE-377: Insecure Temporary File
Severity: Medium
CVSSS: 5.5
Detection: CodeQL & OpenRewrite (https://public.moderne.io/recipes/org.openrewrite.java.security.SecureTempFileCreation)

Reported-by: Jonathan Leitschuh <[email protected]>
Signed-off-by: Jonathan Leitschuh <[email protected]>

Bug-tracker: JLLeitschuh/security-research#18


Co-authored-by: Moderne <[email protected]>
    @JLLeitschuh @TeamModerne @michael-o
    2 people authored and michael-o committed Apr 18, 2023
    Configuration menu
    Copy the full SHA
    ff1e8a5 View commit details
    Browse the repository at this point in the history

  3. [maven-release-plugin] prepare release maven-checkstyle-plugin-3.2.2

    @michael-o
    michael-o committed Apr 18, 2023
    Configuration menu
    Copy the full SHA
    d757053 View commit details
    Browse the repository at this point in the history
Loading