diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e1cf4c3..d8b8bb9 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -2,6 +2,8 @@ name: Java CI
on: [workflow_dispatch, push, pull_request]
+permissions: read-all
+
jobs:
test:
runs-on: ${{ matrix.os }}
@@ -9,7 +11,7 @@ jobs:
matrix:
cache: [maven]
distribution: [temurin]
- java: [17, 21, 22, 23-ea]
+ java: [17, 21, 24, 25-ea]
os: [ubuntu-latest, macos-latest, windows-latest]
fail-fast: false
max-parallel: 4
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 6c15fc3..2c7d184 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -1,90 +1,49 @@
-# For most projects, this workflow file will not need changing; you simply need
-# to commit it to your repository.
-#
-# You may wish to alter this file to override the set of languages analyzed,
-# or to provide custom queries or build logic.
-#
-# ******** NOTE ********
-# We have attempted to detect the languages in your repository. Please check
-# the `language` matrix defined below to confirm you have the correct set of
-# supported CodeQL languages.
-#
name: "CodeQL"
on:
push:
- branches: [ "master" ]
+ branches: [ master ]
pull_request:
- branches: [ "master" ]
+ branches: [ master ]
schedule:
- cron: '41 6 * * 3'
jobs:
analyze:
name: Analyze
- # Runner size impacts CodeQL analysis time. To learn more, please see:
- # - https://gh.io/recommended-hardware-resources-for-running-codeql
- # - https://gh.io/supported-runners-and-hardware-resources
- # - https://gh.io/using-larger-runners
- # Consider using larger runners for possible analysis time improvements.
runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
timeout-minutes: ${{ (matrix.language == 'swift' && 120) || 360 }}
permissions:
- # required for all workflows
- security-events: write
-
- # only required for workflows in private repositories
actions: read
contents: read
+ security-events: write
strategy:
fail-fast: false
matrix:
language: [ 'java-kotlin' ]
- # CodeQL supports [ 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'swift' ]
- # Use only 'java-kotlin' to analyze code written in Java, Kotlin or both
- # Use only 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
- # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support
steps:
- - name: Checkout repository
- uses: actions/checkout@v4
-
- - name: Setup Java
- uses: actions/setup-java@v4
- with:
- java-version: 21
- distribution: 'temurin'
-
- # Initializes the CodeQL tools for scanning.
- - name: Initialize CodeQL
- uses: github/codeql-action/init@v3
- with:
- languages: ${{ matrix.language }}
- # If you wish to specify custom queries, you can do so here or in a config file.
- # By default, queries listed here will override any specified in a config file.
- # Prefix the list here with "+" to use these queries and those in the config file.
-
- # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
- # queries: security-extended,security-and-quality
-
-
- # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift).
- # If this step fails, then you should remove it and run the build manually (see below)
- - name: Autobuild
- uses: github/codeql-action/autobuild@v3
-
- # âšī¸ Command-line programs to run using the OS shell.
- # đ See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
-
- # If the Autobuild fails above, remove it and uncomment the following three lines.
- # modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance.
-
- # - run: |
- # echo "Run, Build Application using script"
- # ./location_of_script_within_repo/buildscript.sh
-
- - name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@v3
- with:
- category: "/language:${{matrix.language}}"
+ - name: Checkout repository
+ uses: actions/checkout@v4
+
+ - name: Setup Java
+ uses: actions/setup-java@v4
+ with:
+ cache: maven
+ distribution: 'temurin'
+ java-version: 21
+
+ - name: Initialize CodeQL
+ uses: github/codeql-action/init@v3
+ with:
+ languages: ${{ matrix.language }}
+ queries: +security-and-quality
+
+ - name: Autobuild
+ uses: github/codeql-action/autobuild@v3
+
+ - name: Perform CodeQL Analysis
+ uses: github/codeql-action/analyze@v3
+ with:
+ category: "/language:${{ matrix.language }}"
diff --git a/.github/workflows/coveralls.yaml b/.github/workflows/coveralls.yaml
index dc1756c..4d9e18b 100644
--- a/.github/workflows/coveralls.yaml
+++ b/.github/workflows/coveralls.yaml
@@ -2,6 +2,8 @@ name: Coveralls
on: [push, pull_request]
+permissions: read-all
+
jobs:
build:
if: github.repository_owner == 'mybatis'
diff --git a/.github/workflows/site.yaml b/.github/workflows/site.yaml
index 5d69980..de1babe 100644
--- a/.github/workflows/site.yaml
+++ b/.github/workflows/site.yaml
@@ -5,6 +5,9 @@ on:
branches:
- site
+permissions:
+ contents: write
+
jobs:
build:
if: github.repository_owner == 'mybatis' && ! contains(toJSON(github.event.head_commit.message), '[maven-release-plugin]')
@@ -20,7 +23,6 @@ jobs:
- name: Build site
run: ./mvnw site site:stage -DskipTests -Dlicense.skip=true -B -V --no-transfer-progress --settings ./.mvn/settings.xml
env:
- CI_DEPLOY_USERNAME: ${{ secrets.CI_DEPLOY_USERNAME }}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
NVD_API_KEY: ${{ secrets.NVD_API_KEY }}
- name: Deploy Site to gh-pages
@@ -28,4 +30,3 @@ jobs:
with:
branch: gh-pages
folder: target/staging
- ssh-key: ${{ secrets.DEPLOY_KEY }}
diff --git a/.github/workflows/sonar.yaml b/.github/workflows/sonar.yaml
index cf647f5..d398c86 100644
--- a/.github/workflows/sonar.yaml
+++ b/.github/workflows/sonar.yaml
@@ -5,6 +5,8 @@ on:
branches:
- master
+permissions: read-all
+
jobs:
build:
if: github.repository_owner == 'mybatis'
diff --git a/.github/workflows/sonatype.yaml b/.github/workflows/sonatype.yaml
index 752b491..ea36fcb 100644
--- a/.github/workflows/sonatype.yaml
+++ b/.github/workflows/sonatype.yaml
@@ -5,6 +5,8 @@ on:
branches:
- master
+permissions: read-all
+
jobs:
build:
if: github.repository_owner == 'mybatis' && ! contains(toJSON(github.event.head_commit.message), '[maven-release-plugin]')
diff --git a/.mvn/extensions.xml b/.mvn/extensions.xml
index 1e884cc..cb5fcb0 100644
--- a/.mvn/extensions.xml
+++ b/.mvn/extensions.xml
@@ -1,7 +1,7 @@
- ossrh
+ central
${env.CI_DEPLOY_USERNAME}
${env.CI_DEPLOY_PASSWORD}
@@ -39,7 +39,6 @@
github
- ${env.CI_DEPLOY_USERNAME}
${env.GITHUB_TOKEN}
diff --git a/.mvn/wrapper/maven-wrapper.properties b/.mvn/wrapper/maven-wrapper.properties
index 01aa665..b06697c 100755
--- a/.mvn/wrapper/maven-wrapper.properties
+++ b/.mvn/wrapper/maven-wrapper.properties
@@ -16,5 +16,5 @@
# under the License.
wrapperVersion=3.3.2
distributionType=source
-distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.9.9/apache-maven-3.9.9-bin.zip
+distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.9.11/apache-maven-3.9.11-bin.zip
wrapperUrl=https://repo.maven.apache.org/maven2/org/apache/maven/wrapper/maven-wrapper/3.3.2/maven-wrapper-3.3.2.jar
diff --git a/pom.xml b/pom.xml
index 3b9e47b..c0a33fd 100644
--- a/pom.xml
+++ b/pom.xml
@@ -1,7 +1,7 @@
- 3.5.16
- 3.1.2.RELEASE
+ 3.5.19
+ 3.1.3.RELEASE
- 3.0.0
+ 3.2.0
org.mybatis.scripting.thymeleaf
1.0.0
- 1727226361
+ 1727226406
--add-opens java.base/java.lang=ALL-UNNAMED
@@ -104,13 +104,13 @@
org.junit.jupiter
junit-jupiter-engine
- 5.11.0
+ 5.13.4
test
org.hsqldb
hsqldb
- 2.7.3
+ 2.7.4
test
@@ -122,13 +122,13 @@
ch.qos.logback
logback-classic
- 1.5.8
+ 1.5.18
test
org.springframework
spring-jdbc
- 6.1.13
+ 6.2.9
test
pFad - Phonifier reborn
Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.
Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.
Alternative Proxies:
Alternative Proxy
pFad Proxy
pFad v3 Proxy
pFad v4 Proxy