Skip to content

[Backport 2.x] Enforce up-to-date Guava in buildSrc#9347

Merged
kotwanikunal merged 1 commit into2.xfrom
backport/backport-9335-to-2.x
Aug 15, 2023
Merged

[Backport 2.x] Enforce up-to-date Guava in buildSrc#9347
kotwanikunal merged 1 commit into2.xfrom
backport/backport-9335-to-2.x

Conversation

@opensearch-trigger-bot
Copy link
Copy Markdown
Contributor

@opensearch-trigger-bot opensearch-trigger-bot bot commented Aug 15, 2023

Backport 1342578 from #9335.

@github-actions
Enforce up-to-date Guava in buildSrc (#9335)
f7454e1 
Guava is a transitive dependency of spotless via google-java-format, the version that was being pulled in has CVE-2023-2976.
While this would not affect end users it causes excess alerts.

Signed-off-by: Thomas Farr <tsfarr@amazon.com>
(cherry picked from commit 1342578)
Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
@opensearch-trigger-bot
Copy link
Copy Markdown
Contributor Author

opensearch-trigger-bot bot commented Aug 15, 2023

Compatibility status:

> Task :checkCompatibility
Checking compatibility for: https://github.com/opensearch-project/opensearch-oci-object-storage.git with ref: 2.x
Skipping compatibility check for https://github.com/opensearch-project/opensearch-oci-object-storage.git
Incompatible components: [https://github.com/opensearch-project/alerting.git, https://github.com/opensearch-project/job-scheduler.git, https://github.com/opensearch-project/k-nn.git, https://github.com/opensearch-project/geospatial.git, https://github.com/opensearch-project/performance-analyzer.git]
Components skipped due to git failures: [https://github.com/opensearch-project/opensearch-oci-object-storage.git]
Compatible components: [https://github.com/opensearch-project/security.git, https://github.com/opensearch-project/anomaly-detection.git, https://github.com/opensearch-project/asynchronous-search.git, https://github.com/opensearch-project/index-management.git, https://github.com/opensearch-project/common-utils.git, https://github.com/opensearch-project/sql.git, https://github.com/opensearch-project/observability.git, https://github.com/opensearch-project/reporting.git, https://github.com/opensearch-project/cross-cluster-replication.git, https://github.com/opensearch-project/notifications.git, https://github.com/opensearch-project/neural-search.git, https://github.com/opensearch-project/performance-analyzer-rca.git, https://github.com/opensearch-project/security-analytics.git, https://github.com/opensearch-project/ml-commons.git]

BUILD SUCCESSFUL in 32m 29s

@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Aug 15, 2023

Gradle Check (Jenkins) Run Completed with:

@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Aug 15, 2023

Gradle Check (Jenkins) Run Completed with:

@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Aug 15, 2023

Gradle Check (Jenkins) Run Completed with:

  • RESULT: UNSTABLE ❕
  • TEST FAILURES:
      1 org.opensearch.index.translog.RemoteFSTranslogTests.testConcurrentWriteViewsAndSnapshot

@codecov
Copy link
Copy Markdown

codecov bot commented Aug 15, 2023

Codecov Report

Merging #9347 (f7454e1) into 2.x (55ab42d) will decrease coverage by 0.10%.
Report is 5 commits behind head on 2.x.
The diff coverage is n/a.

@@             Coverage Diff              @@
##                2.x    #9347      +/-   ##
============================================
- Coverage     70.93%   70.84%   -0.10%     
+ Complexity    57591    57530      -61     
============================================
  Files          4761     4761              
  Lines        271850   271850              
  Branches      40088    40088              
============================================
- Hits         192839   192580     -259     
- Misses        62515    62776     +261     
+ Partials      16496    16494       -2
Files Changed Coverage Δ
...in/java/org/opensearch/gradle/ConcatFilesTask.java 77.77% <ø> (ø)
.../main/java/org/opensearch/gradle/EmptyDirTask.java 53.33% <ø> (ø)
...rc/main/java/org/opensearch/gradle/LoggedExec.java 0.00% <ø> (ø)
...va/org/opensearch/gradle/OpenSearchJavaPlugin.java 61.32% <ø> (ø)
...rg/opensearch/gradle/OpenSearchTestBasePlugin.java 6.59% <ø> (ø)
.../org/opensearch/gradle/docker/DockerBuildTask.java 0.00% <ø> (ø)
...opensearch/gradle/docker/DockerSupportService.java 15.57% <ø> (ø)
...rg/opensearch/gradle/http/WaitForHttpResource.java 30.10% <ø> (ø)
.../opensearch/gradle/info/GlobalBuildInfoPlugin.java 38.46% <ø> (ø)
...ensearch/gradle/internal/InternalBwcGitPlugin.java 0.00% <ø> (ø)
... and 73 more

... and 448 files with indirect coverage changes

@kotwanikunal kotwanikunal merged commit 4fc6e31 into 2.x Aug 15, 2023
@github-actions github-actions bot deleted the backport/backport-9335-to-2.x branch August 15, 2023 18:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@reta reta reta approved these changes

@kotwanikunal kotwanikunal kotwanikunal approved these changes

@anasalkouz anasalkouz Awaiting requested review from anasalkouz anasalkouz is a code owner

@andrross andrross Awaiting requested review from andrross andrross is a code owner

@Bukhtawar Bukhtawar Awaiting requested review from Bukhtawar Bukhtawar is a code owner

@CEHENKLE CEHENKLE Awaiting requested review from CEHENKLE CEHENKLE is a code owner

@dblock dblock Awaiting requested review from dblock

@gbbafna gbbafna Awaiting requested review from gbbafna gbbafna is a code owner

@setiah setiah Awaiting requested review from setiah

@kartg kartg Awaiting requested review from kartg

@mch2 mch2 Awaiting requested review from mch2 mch2 is a code owner

@nknize nknize Awaiting requested review from nknize

@owaiskazi19 owaiskazi19 Awaiting requested review from owaiskazi19 owaiskazi19 is a code owner

@Rishikesh1159 Rishikesh1159 Awaiting requested review from Rishikesh1159 Rishikesh1159 is a code owner

@ryanbogan ryanbogan Awaiting requested review from ryanbogan

@saratvemulapalli saratvemulapalli Awaiting requested review from saratvemulapalli saratvemulapalli is a code owner

@shwetathareja shwetathareja Awaiting requested review from shwetathareja shwetathareja is a code owner

@dreamer-89 dreamer-89 Awaiting requested review from dreamer-89

@tlfeng tlfeng Awaiting requested review from tlfeng

@VachaShah VachaShah Awaiting requested review from VachaShah

@dbwiddis dbwiddis Awaiting requested review from dbwiddis dbwiddis is a code owner

@sachinpkale sachinpkale Awaiting requested review from sachinpkale sachinpkale is a code owner

@sohami sohami Awaiting requested review from sohami sohami is a code owner

Assignees

No one assigned

Labels

skip-changelog

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@reta @kotwanikunal