Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump com.zaxxer:HikariCP from 4.0.3 to 5.1.0 #272

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 13, 2024

Bumps com.zaxxer:HikariCP from 4.0.3 to 5.1.0.

Changelog

Sourced from com.zaxxer:HikariCP's changelog.

HikariCP Changes

Changes in 5.1.0

  • fixed #1907 re-added automatic.module.name that was lost along the way

  • fixed #1986 evict connection exceptions with (SQLState HY000) error code 1105.

  • merged #2059 add support for char[] in DataSource properties

  • merged #1979 and #1993 mask any property that looks like a password in URLs

  • add pool stats to connection acquisition timeout exception

  • merged #2076 don't case metric registry before it is checked for null

  • merged #1820 allow minimum login timeout to be set as system property

  • merged #1952 add more isolation levels

  • merged #1660 remove redundant error log for poll initialization exception

Changes in 5.0.1

  • Update log4j version to 2.17.1 to address Log4Shell vulnerability (although this is only used in tests, so it doesn't really impact users)

Changes in 5.0.0

  • rewrote connection elide/add code to fix an unconfirmed but occasionally reported race condition that results in the pool draining to 0 and not refilling.

Changes in 4.0.3

  • fixed #1735 added system property to permit override of lower limit of connectionTimeout and validation timeout

Changes in 4.0.2

  • fixed regression caused by #1605 affecting block-until-filled semantic

Changes in 4.0.1

  • fixed #1725 pom file change to be more gradle-friendly

  • fixed #1726 regression in micrometrics caused by lack of a strong reference to an object

Changes in 4.0.0

  • merged #1669 #1582 mark optional dependencies as 'require static' in module-info

... (truncated)

Commits
  • 98bd21c [maven-release-plugin] prepare release HikariCP-5.1.0
  • 7ba05c6 change version to 5.1.0
  • fd18a17 move oss-parent build into pom.xml and upgrade some build dependencies
  • 8c1a7c2 update changelog
  • 2021f90 Don't try to cast metric registry before it is checked for null (#2076)
  • 5b2852e Fix #1818 Add system property for minimum login timeout, regardless of the co...
  • 8c202e4 [cleanup] erefactor/EclipseJdt - Remove trailing whitespace - All lines (#1752)
  • c37074d [cleanup] erefactor/EclipseJdt - Simplify lambda expression and method refere...
  • ddf3246 [cleanup] erefactor/EclipseJdt - Remove redundant super() call in constructor...
  • b5a4373 [cleanup] erefactor/EclipseJdt - Evaluate without null check (#1751)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [com.zaxxer:HikariCP](https://github.com/brettwooldridge/HikariCP) from 4.0.3 to 5.1.0.
- [Changelog](https://github.com/brettwooldridge/HikariCP/blob/dev/CHANGES)
- [Commits](brettwooldridge/HikariCP@HikariCP-4.0.3...HikariCP-5.1.0)

---
updated-dependencies:
- dependency-name: com.zaxxer:HikariCP
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants