Skip to content

MINOR: Bump io.netty:netty-bom from 4.1.118.Final to 4.1.119.Final#643

Merged
lidavidm merged 1 commit intomainfrom
dependabot/maven/io.netty-netty-bom-4.1.119.Final
Mar 4, 2025
Merged

MINOR: Bump io.netty:netty-bom from 4.1.118.Final to 4.1.119.Final#643
lidavidm merged 1 commit intomainfrom
dependabot/maven/io.netty-netty-bom-4.1.119.Final

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 3, 2025

Bumps io.netty:netty-bom from 4.1.118.Final to 4.1.119.Final.

Commits
  • fb7c786 [maven-release-plugin] prepare release netty-4.1.119.Final
  • f0a546d Use initialized BouncyCastle providers when available (#14855)
  • 7fc6a23 Add QueryStringDecoder option to leave '+' alone (#14850)
  • 8f3dd2f Consistently add channel info in HTTP/2 logs (#14829)
  • bd08643 Bump BlockHound version to 1.0.11.RELEASE (#14814)
  • 0138f23 SslHandler: Fix possible NPE when executor is used for delegating (#14830)
  • 84120a7 Fix NPE when upgrade message fails to aggregate (#14816)
  • dc6b051 Replace SSL assertion with explicit record length check (#14810)
  • 34011b5 chore: Sync the id when DefaultHttp2FrameStream's stream is updated. (#14803)
  • f3311e5 [maven-release-plugin] prepare for next development iteration
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
MINOR: Bump io.netty:netty-bom from 4.1.118.Final to 4.1.119.Final
43bbd81 
Bumps [io.netty:netty-bom](https://github.com/netty/netty) from 4.1.118.Final to 4.1.119.Final.
- [Commits](netty/netty@netty-4.1.118.Final...netty-4.1.119.Final)

---
updated-dependencies:
- dependency-name: io.netty:netty-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from lidavidm as a code owner March 3, 2025 06:51
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Mar 3, 2025
@dependabot dependabot bot requested review from laurentgo and wgtmac as code owners March 3, 2025 06:51
jbonofre
jbonofre approved these changes Mar 3, 2025
View reviewed changes
Copy link
Member

@jbonofre jbonofre left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

NB: the LICENSE/NOTICE should be updated. I would love to push a commit for that in this PR but I don't have permission to do so.

@kou
Copy link
Member

kou commented Mar 3, 2025

Should we update "This binary artifact contains Netty XXX" lines?

diff --git a/flight/flight-integration-tests/src/shade/LICENSE.txt b/flight/flight-integration-tests/src/shade/LICENSE.txt
index 499a3993..3ea8039b 100644
--- a/flight/flight-integration-tests/src/shade/LICENSE.txt
+++ b/flight/flight-integration-tests/src/shade/LICENSE.txt
@@ -225,7 +225,7 @@ License: https://www.apache.org/licenses/LICENSE-2.0
 
 --------------------------------------------------------------------------------
 
-This binary artifact contains Netty 4.1.117.Final.
+This binary artifact contains Netty 4.1.119.Final.
 
 Copyright: Copyright 2014 The Netty Project
 Home page: https://netty.io/
diff --git a/flight/flight-sql-jdbc-driver/src/shade/LICENSE.txt b/flight/flight-sql-jdbc-driver/src/shade/LICENSE.txt
index 3363121b..a1281b61 100644
--- a/flight/flight-sql-jdbc-driver/src/shade/LICENSE.txt
+++ b/flight/flight-sql-jdbc-driver/src/shade/LICENSE.txt
@@ -211,7 +211,7 @@ License: https://www.apache.org/licenses/LICENSE-2.0
 
 --------------------------------------------------------------------------------
 
-This binary artifact contains Netty 4.1.117.Final.
+This binary artifact contains Netty 4.1.119.Final.
 
 Copyright: Copyright 2014 The Netty Project
 Home page: https://netty.io/
diff --git a/tools/src/shade/LICENSE.txt b/tools/src/shade/LICENSE.txt
index 61fbdf25..3d11d489 100644
--- a/tools/src/shade/LICENSE.txt
+++ b/tools/src/shade/LICENSE.txt
@@ -203,7 +203,7 @@
 
 --------------------------------------------------------------------------------
 
-This binary artifact contains Netty 4.1.117.Final.
+This binary artifact contains Netty 4.1.119.Final.
 
 Copyright: Copyright 2014 The Netty Project
 Home page: https://netty.io/

It seems that we can automate this...

@jbonofre
Copy link
Member

jbonofre commented Mar 4, 2025

@kou yes. It's what I meant in my previous comment: we should push a commit on this PR to update LICEnSE/NOTICE. I would be happy to deal with that but I don't have the permission to do so.

@jbonofre
Copy link
Member

jbonofre commented Mar 4, 2025

I propose to merge this one as it is and I will update LICENSE/NOTICE in another PR.

@lidavidm lidavidm merged commit 82a5b71 into main Mar 4, 2025
26 checks passed
@lidavidm lidavidm deleted the dependabot/maven/io.netty-netty-bom-4.1.119.Final branch March 4, 2025 12:26
@jbonofre
Copy link
Member

jbonofre commented Mar 4, 2025

@lidavidm thanks, I'm preparing a PR to update LICENSE and NOTICE.

@lidavidm lidavidm added this to the 18.3.0 milestone Mar 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jbonofre jbonofre jbonofre approved these changes

@lidavidm lidavidm Awaiting requested review from lidavidm lidavidm is a code owner

@laurentgo laurentgo Awaiting requested review from laurentgo laurentgo is a code owner

@wgtmac wgtmac Awaiting requested review from wgtmac wgtmac is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Milestone

18.3.0

Development

Successfully merging this pull request may close these issues.

3 participants

@kou @jbonofre @lidavidm