Skip to content

Comments

deps: bump redis.clients:jedis from 7.2.1 to 7.3.0#78

Merged
SebastianLopezO merged 1 commit intomainfrom
dependabot/maven/redis.clients-jedis-7.3.0
Feb 21, 2026
Merged

deps: bump redis.clients:jedis from 7.2.1 to 7.3.0#78
SebastianLopezO merged 1 commit intomainfrom
dependabot/maven/redis.clients-jedis-7.3.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 17, 2026

Bumps redis.clients:jedis from 7.2.1 to 7.3.0.

Release notes

Sourced from redis.clients:jedis's releases.

7.3.0

Changes

Jedis 7.3.0 introduces support for Redis 8.6, including new commands and features for streams idempotent production, and HOTKEYS.

🚀 New Features

  • [streams] Preserve field insertion order in stream entries (CAE-2341) (#4419)
  • [automatic failover] Add support for initialization policy for multidb connection (#4427)
  • feat: Add support for FT.HYBRID command (#4342) (#4405)
  • feat: Add support for HOTKEYS command (#4421) (#4417)(#4426)
  • feat: [TS] Add support for NaN values and new aggregations (#4415)
  • Add support for XADD idempotency (at-most-once guarantee) with new IDMPAUTO and IDMP arguments. (#4422) (#4413)
  • Add DELEX and DIGEST commands to pipeline interfaces (#4414)
  • Add configurable retry delay for Sentinel reconnection (#2864) (#4379)

🐛 Bug Fixes

  • RedisClient builder does not use credentials from JedisClientConfig (#4424)
  • Calculate maxTotalRetriesDuration from socketTimeout * maxAttempts if not set (#4396)

🧰 Maintenance

  • Bump org.junit:junit-bom from 5.14.2 to 5.14.3 (#4433)
  • Refactor TLS tests (#4431)
  • Bump org.apache.httpcomponents.client5:httpclient5-fluent from 5.5.1 to 5.6 (#4380)
  • Bump org.apache.maven.plugins:maven-compiler-plugin from 3.14.1 to 3.15.0 (#4418)
  • Add 8.6 pre to test matrix (#4410)
  • Bump jackson.version from 2.20.1 to 2.21.0 (#4408)
  • Add missing command deprecations (#4397)
  • Fix flaky cluster tests by accepting either retry limit error (maxAttempts or maxTotalRetriesDuration) (#4399)
  • Use endpoint instead of env variable in module tests (#4398)
  • Fix flaky AccessControlListCommandsTest (#4394)
  • Bump org.sonatype.central:central-publishing-maven-plugin from 0.9.0 to 0.10.0 (#4390)
  • Bump org.json:json from 20250517 to 20251224 (#4391)
  • Bump org.junit:junit-bom from 5.13.4 to 5.14.2 (#4392)
  • Remove hard-coded endpoints from the tests and rely solely on endpoints.json (#4385)
  • Fix ClusterTopologyRefreshIT (#4389)
  • Bump org.apache.maven.plugins:maven-jar-plugin from 3.4.2 to 3.5.0 (#4383)
  • Bump org.apache.maven.plugins:maven-release-plugin from 3.3.0 to 3.3.1 (#4381)

Contributors

We'd like to thank all the contributors who worked on this release!

@​Dgramada, @​Peter-Sh, @​a-TODO-rov, @​atakavci, @​dependabot, @​dependabot[bot], @​ggivo, @​uglide and @​viktoriya-kutsarova

Commits
  • c80601e run release drafter manually (#4434)
  • 295f770 Bump org.junit:junit-bom from 5.14.2 to 5.14.3 (#4433)
  • f6b4175 Remove cluster-stack endpoint (#4432)
  • cc42541 Refactor TLS tests (#4431)
  • 2ab42df ci: add reusable run-tests action and support custom test image/tag (#4425)
  • d7f046a [streams] Preserve field insertion order in stream entries (CAE-2341) (#4419)
  • 6aabfcf [automatic failover] Add support for initialization policy for multidb connec...
  • 0af1fb8 Add hybrid search (#4405)
  • 3582046 HOTKEYS - Fix slots parsing (#4426)
  • a7897b3 RedisClient builder does not use credentials from JedisClientConfig (#4424)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
deps: bump redis.clients:jedis from 7.2.1 to 7.3.0
3e1da4a 
Bumps [redis.clients:jedis](https://github.com/redis/jedis) from 7.2.1 to 7.3.0.
- [Release notes](https://github.com/redis/jedis/releases)
- [Commits](redis/jedis@v7.2.1...v7.3.0)

---
updated-dependencies:
- dependency-name: redis.clients:jedis
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Feb 17, 2026
@github-actions
Copy link

github-actions bot commented Feb 17, 2026

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 1 package(s) with unknown licenses.
See the Details below.

License Issues

pom.xml

PackageVersionLicenseIssue Type
redis.clients:jedis7.3.0NullUnknown License

OpenSSF Scorecard

PackageVersionScoreDetails
maven/redis.clients:jedis 7.3.0 🟢 6.2
Details
CheckScoreReason
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Code-Review🟢 9Found 20/21 approved changesets -- score normalized to 9
Maintained🟢 1030 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Binary-Artifacts🟢 10no binaries found in the repo
Security-Policy⚠️ 0security policy file not detected
License🟢 10license file detected
Fuzzing🟢 10project is fuzzed
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
Signed-Releases⚠️ -1no releases found
Packaging🟢 10packaging workflow detected
SAST🟢 10SAST tool is run on all commits
Branch-Protection🟢 5branch protection is not maximal on development and all release branches
Vulnerabilities⚠️ 011 existing vulnerabilities detected

Scanned Files

  • pom.xml

@SebastianLopezO SebastianLopezO self-requested a review February 21, 2026 19:04
SebastianLopezO
SebastianLopezO approved these changes Feb 21, 2026
View reviewed changes
Copy link
Member

@SebastianLopezO SebastianLopezO left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updates the Redis Java client to the latest patch version.
Includes minor improvements and bug fixes with no expected breaking changes, but Redis connectivity and caching behavior should be verified.

@SebastianLopezO SebastianLopezO merged commit 2c01f7e into main Feb 21, 2026
12 of 13 checks passed
@SebastianLopezO SebastianLopezO deleted the dependabot/maven/redis.clients-jedis-7.3.0 branch February 21, 2026 19:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@SebastianLopezO SebastianLopezO SebastianLopezO approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@SebastianLopezO