Bump org.openrewrite.recipe:rewrite-testing-frameworks from 2.21.0 to 2.23.1 #19

dependabot · 2024-12-02T15:28:47Z

Bumps org.openrewrite.recipe:rewrite-testing-frameworks from 2.21.0 to 2.23.1.

Release notes

Sourced from org.openrewrite.recipe:rewrite-testing-frameworks's releases.

2.23.1

What's Changed

OpenRewrite v8.41.1: https://github.com/openrewrite/rewrite

Full Changelog: https://github.com/openrewrite/rewrite-testing-frameworks

2.23.0

What's Changed

don't exclude junit4 for testcontainers jupiter by @sullis in openrewrite/rewrite-testing-frameworks#641

Use JUnit5's assertSame or assertNotSame instead of assertTrue(... == ...) by @mccartney in openrewrite/rewrite-testing-frameworks#642

Add support for Junit 4 matchers on AssertionsArgumentOrder by @adambir in openrewrite/rewrite-testing-frameworks#637

Move HtmlUnit migrations to rewrite-testing-frameworks by @timtebeek in openrewrite/rewrite-testing-frameworks#643

New Contributors

@mccartney made their first contribution in openrewrite/rewrite-testing-frameworks#642

Full Changelog: openrewrite/rewrite-testing-frameworks@v2.22.0...v2.23.0

2.22.0

What's Changed

refactor: add @Nullable to methods who may return null by @nielsdebruin in openrewrite/rewrite-testing-frameworks#621

Add @MockitoSettings(strictness = ...) based on how Mockito is used, not based on version alone by @Jenson3210 in openrewrite/rewrite-testing-frameworks#623

Drop RetainStrictnessWarn; replaced with #623 by @timtebeek in openrewrite/rewrite-testing-frameworks#625

Added default warn strictness if no strictness modifiers are used. by @Jenson3210 in openrewrite/rewrite-testing-frameworks#626

SimplifyChainedAssertJAssertion drops method calls in replacement by @jtymes in openrewrite/rewrite-testing-frameworks#629

Add JMockit's MockUp to Mockito migration by @SiBorea in openrewrite/rewrite-testing-frameworks#599

Initial support for DbRider migration from junit4 to junit5 by @Jenson3210 in openrewrite/rewrite-testing-frameworks#627

assertInstanceOf not converted from JUnit5 to assertJ by @timo-abele in openrewrite/rewrite-testing-frameworks#606

Add VerifyZeroToNoMoreInteractions for Mockito 2 by @jevanlingen in openrewrite/rewrite-testing-frameworks#631

Added handling of org.mockito.Mockito.eq(..) when simplifying mockito matchers by @adambir in openrewrite/rewrite-testing-frameworks#635

Update AssertJ recipes to current recipe code style by @jevanlingen in openrewrite/rewrite-testing-frameworks#633

New Contributors

@nielsdebruin made their first contribution in openrewrite/rewrite-testing-frameworks#621

@Jenson3210 made their first contribution in openrewrite/rewrite-testing-frameworks#623

@jtymes made their first contribution in openrewrite/rewrite-testing-frameworks#629

@SiBorea made their first contribution in openrewrite/rewrite-testing-frameworks#599

@jevanlingen made their first contribution in openrewrite/rewrite-testing-frameworks#631

@adambir made their first contribution in openrewrite/rewrite-testing-frameworks#635

Full Changelog: openrewrite/rewrite-testing-frameworks@v2.21.0...v2.22.0

Commits

b0df4cc Add testImplementation("org.openrewrite:rewrite-test")
ccbc138 Drop HtmlUnit to prevent circular dependency
72dbc65 Prevent class cast exception in MockitoWhenOnStaticToMockStatic
0f8f838 Move HtmlUnit migrations to rewrite-testing-frameworks (#643)
a530dbe Unconditionally add the import for assertThrows, got a report where the templ...
f9cc74c refactor: Update Gradle wrapper
d16c0a7 Polish UseAssertSame
b20da71 Add support for Junit 4 matchers on AssertionsArgumentOrder (#637)
93d76cf Use JUnit5's assertSame or assertNotSame instead of `assertTrue(... == .....
5091a38 don't exclude junit4 for testcontainers jupiter (#641)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [org.openrewrite.recipe:rewrite-testing-frameworks](https://github.com/openrewrite/rewrite-testing-frameworks) from 2.21.0 to 2.23.1. - [Release notes](https://github.com/openrewrite/rewrite-testing-frameworks/releases) - [Commits](openrewrite/rewrite-testing-frameworks@v2.21.0...v2.23.1) --- updated-dependencies: - dependency-name: org.openrewrite.recipe:rewrite-testing-frameworks dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [on-headers](https://github.com/jshttp/on-headers) and [compression](https://github.com/expressjs/compression). These dependencies needed to be updated together. Updates `on-headers` from 1.0.2 to 1.1.0 Release notes *Sourced from [on-headers's releases](https://github.com/jshttp/on-headers/releases).* > 1.1.0 > ----- > > Important > --------- > > * Fix [CVE-2025-7339](https://www.cve.org/CVERecord?id=CVE-2025-7339) ([GHSA-76c9-3jph-rj3q](GHSA-76c9-3jph-rj3q)) > > What's Changed > -------------- > > * Migrate CI pipeline to GitHub actions by [`@carpasse`](https://github.com/carpasse) in [jshttp/on-headers#12](https://redirect.github.com/jshttp/on-headers/pull/12) > * fix README.md badges by [`@carpasse`](https://github.com/carpasse) in [jshttp/on-headers#13](https://redirect.github.com/jshttp/on-headers/pull/13) > * add OSSF scorecard action by [`@carpasse`](https://github.com/carpasse) in [jshttp/on-headers#14](https://redirect.github.com/jshttp/on-headers/pull/14) > * fix: use `ubuntu-latest` as ci runner by [`@UlisesGascon`](https://github.com/UlisesGascon) in [jshttp/on-headers#19](https://redirect.github.com/jshttp/on-headers/pull/19) > * ci: apply OSSF Scorecard security best practices by [`@UlisesGascon`](https://github.com/UlisesGascon) in [jshttp/on-headers#20](https://redirect.github.com/jshttp/on-headers/pull/20) > * 👷 add upstream change detection by [`@ctcpip`](https://github.com/ctcpip) in [jshttp/on-headers#31](https://redirect.github.com/jshttp/on-headers/pull/31) > * ✨ add script to update known hashes by [`@ctcpip`](https://github.com/ctcpip) in [jshttp/on-headers#32](https://redirect.github.com/jshttp/on-headers/pull/32) > * 💚 update CI - add newer node versions by [`@ctcpip`](https://github.com/ctcpip) in [jshttp/on-headers#33](https://redirect.github.com/jshttp/on-headers/pull/33) > > New Contributors > ---------------- > > * [`@carpasse`](https://github.com/carpasse) made their first contribution in [jshttp/on-headers#12](https://redirect.github.com/jshttp/on-headers/pull/12) > * [`@UlisesGascon`](https://github.com/UlisesGascon) made their first contribution in [jshttp/on-headers#19](https://redirect.github.com/jshttp/on-headers/pull/19) > * [`@ctcpip`](https://github.com/ctcpip) made their first contribution in [jshttp/on-headers#31](https://redirect.github.com/jshttp/on-headers/pull/31) > > **Full Changelog**: <jshttp/on-headers@v1.0.2...v1.1.0> Changelog *Sourced from [on-headers's changelog](https://github.com/jshttp/on-headers/blob/master/HISTORY.md).* > 1.1.0 / 2025-07-17 > ================== > > * Fix [CVE-2025-7339](https://www.cve.org/CVERecord?id=CVE-2025-7339) ([GHSA-76c9-3jph-rj3q](GHSA-76c9-3jph-rj3q)) Commits * [`4b017af`](jshttp/on-headers@4b017af) 1.1.0 * [`b636f2d`](jshttp/on-headers@b636f2d) ♻️ refactor header array code * [`3e2c2d4`](jshttp/on-headers@3e2c2d4) ✨ ignore falsy header keys, matching node behavior * [`172eb41`](jshttp/on-headers@172eb41) ✨ support duplicate headers * [`c6e3849`](jshttp/on-headers@c6e3849) 🔒️ fix array handling * [`6893518`](jshttp/on-headers@6893518) 💚 update CI - add newer node versions * [`56a345d`](jshttp/on-headers@56a345d) ✨ add script to update known hashes * [`175ab21`](jshttp/on-headers@175ab21) 👷 add upstream change detection ([#31](https://redirect.github.com/jshttp/on-headers/issues/31)) * [`ce0b2c8`](jshttp/on-headers@ce0b2c8) ci: apply OSSF Scorecard security best practices ([#20](https://redirect.github.com/jshttp/on-headers/issues/20)) * [`1a38c54`](jshttp/on-headers@1a38c54) fix: use `ubuntu-latest` as ci runner ([#19](https://redirect.github.com/jshttp/on-headers/issues/19)) * Additional commits viewable in [compare view](jshttp/on-headers@v1.0.2...v1.1.0) Maintainer changes This version was pushed to npm by [ulisesgascon](https://www.npmjs.com/~ulisesgascon), a new releaser for on-headers since your current version. Updates `compression` from 1.8.0 to 1.8.1 Release notes *Sourced from [compression's releases](https://github.com/expressjs/compression/releases).* > v1.8.1 > ------ > > What's Changed > -------------- > > * fix(docs): update multiple links from http to https by [`@Phillip9587`](https://github.com/Phillip9587) in [expressjs/compression#222](https://redirect.github.com/expressjs/compression/pull/222) > * ci: add dependabot for github actions by [`@bjohansebas`](https://github.com/bjohansebas) in [expressjs/compression#207](https://redirect.github.com/expressjs/compression/pull/207) > * build(deps): bump github/codeql-action from 2.23.2 to 3.28.15 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#228](https://redirect.github.com/expressjs/compression/pull/228) > * build(deps): bump ossf/scorecard-action from 2.3.1 to 2.4.1 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#229](https://redirect.github.com/expressjs/compression/pull/229) > * build(deps-dev): bump eslint-plugin-import from 2.26.0 to 2.31.0 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#230](https://redirect.github.com/expressjs/compression/pull/230) > * build(deps-dev): bump supertest from 6.2.3 to 6.3.4 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#231](https://redirect.github.com/expressjs/compression/pull/231) > * [StepSecurity] ci: Harden GitHub Actions by [`@step-security-bot`](https://github.com/step-security-bot) in [expressjs/compression#235](https://redirect.github.com/expressjs/compression/pull/235) > * build(deps): bump github/codeql-action from 3.28.15 to 3.29.2 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#243](https://redirect.github.com/expressjs/compression/pull/243) > * build(deps): bump actions/upload-artifact from 4.3.1 to 4.6.2 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#239](https://redirect.github.com/expressjs/compression/pull/239) > * build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#240](https://redirect.github.com/expressjs/compression/pull/240) > * build(deps): bump actions/checkout from 4.1.1 to 4.2.2 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#241](https://redirect.github.com/expressjs/compression/pull/241) > * build(deps-dev): bump eslint-plugin-import from 2.31.0 to 2.32.0 by [`@dependabot`](https://github.com/dependabot)[bot] in [expressjs/compression#244](https://redirect.github.com/expressjs/compression/pull/244) > * deps: [email protected] by [`@UlisesGascon`](https://github.com/UlisesGascon) in [expressjs/compression#246](https://redirect.github.com/expressjs/compression/pull/246) > * Release: 1.8.1 by [`@UlisesGascon`](https://github.com/UlisesGascon) in [expressjs/compression#247](https://redirect.github.com/expressjs/compression/pull/247) > > New Contributors > ---------------- > > * [`@dependabot`](https://github.com/dependabot)[bot] made their first contribution in [expressjs/compression#228](https://redirect.github.com/expressjs/compression/pull/228) > * [`@step-security-bot`](https://github.com/step-security-bot) made their first contribution in [expressjs/compression#235](https://redirect.github.com/expressjs/compression/pull/235) > > **Full Changelog**: <expressjs/compression@1.8.0...v1.8.1> Changelog *Sourced from [compression's changelog](https://github.com/expressjs/compression/blob/master/HISTORY.md).* > 1.8.1 / 2025-07-17 > ================== > > * deps: on-headers@~1.1.0 > + Fix [CVE-2025-7339](https://www.cve.org/CVERecord?id=CVE-2025-7339) ([GHSA-76c9-3jph-rj3q](GHSA-76c9-3jph-rj3q)) Commits * [`83a0c45`](expressjs/compression@83a0c45) 1.8.1 * [`ce62713`](expressjs/compression@ce62713) deps: [email protected] ([#246](https://redirect.github.com/expressjs/compression/issues/246)) * [`f4acb23`](expressjs/compression@f4acb23) build(deps-dev): bump eslint-plugin-import from 2.31.0 to 2.32.0 ([#244](https://redirect.github.com/expressjs/compression/issues/244)) * [`6eaebe6`](expressjs/compression@6eaebe6) build(deps): bump actions/checkout from 4.1.1 to 4.2.2 ([#241](https://redirect.github.com/expressjs/compression/issues/241)) * [`37e0623`](expressjs/compression@37e0623) build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 ([#240](https://redirect.github.com/expressjs/compression/issues/240)) * [`bc436b2`](expressjs/compression@bc436b2) build(deps): bump actions/upload-artifact from 4.3.1 to 4.6.2 ([#239](https://redirect.github.com/expressjs/compression/issues/239)) * [`2f9f572`](expressjs/compression@2f9f572) build(deps): bump github/codeql-action from 3.28.15 to 3.29.2 ([#243](https://redirect.github.com/expressjs/compression/issues/243)) * [`5f13b14`](expressjs/compression@5f13b14) [StepSecurity] ci: Harden GitHub Actions ([#235](https://redirect.github.com/expressjs/compression/issues/235)) * [`76e0945`](expressjs/compression@76e0945) build(deps-dev): bump supertest from 6.2.3 to 6.3.4 ([#231](https://redirect.github.com/expressjs/compression/issues/231)) * [`ae6ee80`](expressjs/compression@ae6ee80) build(deps-dev): bump eslint-plugin-import from 2.26.0 to 2.31.0 ([#230](https://redirect.github.com/expressjs/compression/issues/230)) * Additional commits viewable in [compare view](expressjs/compression@1.8.0...v1.8.1) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/robfrank/linklift/network/alerts).

dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Dec 2, 2024

dependabot bot mentioned this pull request Dec 2, 2024

Bump org.openrewrite.recipe:rewrite-testing-frameworks from 2.21.0 to 2.22.0 #3

Closed

robfrank approved these changes Dec 2, 2024

View reviewed changes

robfrank added the dependency_approved label Dec 2, 2024

robfrank approved these changes Dec 14, 2024

View reviewed changes

robfrank added dependency_approved and removed dependency_approved labels Dec 14, 2024

robfrank merged commit bbf6c09 into main Dec 16, 2024
1 of 4 checks passed

dependabot bot deleted the dependabot/maven/org.openrewrite.recipe-rewrite-testing-frameworks-2.23.1 branch December 16, 2024 08:14

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump org.openrewrite.recipe:rewrite-testing-frameworks from 2.21.0 to 2.23.1 #19

Bump org.openrewrite.recipe:rewrite-testing-frameworks from 2.21.0 to 2.23.1 #19

Uh oh!

dependabot bot commented on behalf of github Dec 2, 2024

Uh oh!

Uh oh!

Uh oh!

Bump org.openrewrite.recipe:rewrite-testing-frameworks from 2.21.0 to 2.23.1 #19

Bump org.openrewrite.recipe:rewrite-testing-frameworks from 2.21.0 to 2.23.1 #19

Uh oh!

Conversation

dependabot bot commented on behalf of github Dec 2, 2024

2.23.1

What's Changed

2.23.0

What's Changed

New Contributors

2.22.0

What's Changed

New Contributors

Uh oh!

Uh oh!

Uh oh!