1 ========================
2 ODL Parent release notes
3 ========================
7 This is a bug-fix/feature upgrade from version 13.0.11.
9 Improvements and new features
10 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
11 * ``SingleFeatureTest`` is now executed by a dedicated Maven plugin, leading to faster execution times and better
12 multi-threaded behaviour.
13 See `ODLPARENT-262 <https://jira.opendaylight.org/browse/ODLPARENT-262>`__ for more information.
14 * ``sporbugs-maven-plugin`` now runs with ``spotbugs.fork=false``. This setting improves build time by removing
15 the need to warm up a JVM for each SpotBugs analysis.
16 * Apache Derby is now excluded from PAX JDBC features due to a vulnerability which is not fixed in a suitable
17 release. See `ODLPARENT-262 <https://jira.opendaylight.org/browse/ODLPARENT-306>`__ for more information.
19 Third-party dependencies
20 ~~~~~~~~~~~~~~~~~~~~~~~~
21 * Checkstyle 10.14.0 → 10.15.0, release notes:
22 * `10.14.1 <https://checkstyle.org/releasenotes.html#Release_10.14.1>`__
23 * `10.14.2 <https://checkstyle.org/releasenotes.html#Release_10.14.2>`__
24 * `10.15.0 <https://checkstyle.org/releasenotes.html#Release_10.15.0>`__
26 * commons-io `2.15.1 → 2.16.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.16.0>`__
28 * error_prone_annotations 2.25.0 → 2.26.1, release notes:
29 * `2.26.0 <https://github.com/google/error-prone/releases/tag/v2.26.0>`__
30 * `2.26.1 <https://github.com/google/error-prone/releases/tag/v2.26.1>`__
32 * Jackson 2.15.3 → 2.16.2, release notes:
33 * `2.16 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.16>`__
34 * `2.16.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.16.1>`__
35 * `2.16.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.16.2>`__
37 * Jetty `9.4.53.v20231009 → 9.4.54.v20240208 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.54.v20240208>`__
39 * jdt-annotations `2.2.800 → 2.3.0 <https://github.com/eclipse-jdt/eclipse.jdt.core/pull/1716>`__
41 * Jersey `2.41 → 2.42 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.42>`__
43 * Karaf `4.4.5 → 4.4.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12354057>`__
45 * Netty `4.1.107 → 4.1.108 <https://netty.io/news/2024/03/21/4-1-108-Final.html>`__
47 * Pax JDBC `1.5.6 → 1.5.7 <https://github.com/ops4j/org.ops4j.pax.jdbc/milestone/33?closed=1>`__
49 * Woodstox `6.6.1 → 6.6.2 <https://github.com/FasterXML/woodstox/milestone/34?closed=1>`__
53 * cyclonedx-maven-plugin `2.7.11 → 2.8.0 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.8.0>`__
55 * git-commit-id-maven-plugin 7.0.0 → 8.0.0, release notes:
56 * `8.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v8.0.0>`__
57 * `8.0.1 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v8.0.1>`__
59 * Jacoco Maven plugin `0.8.11 → 0.8.12 <https://github.com/jacoco/jacoco/releases/tag/v0.8.12>`__
61 * maven-assembly-plugin 3.6.0 → 3.7.1, release notes:
62 * `3.7.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12353243>`__
63 * `3.7.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12354406>`__
65 * maven-compiler-plugin `2.12.1 → 2.13.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12354079>`__
67 * maven-deploy-plugin 2.8.2 → 3.1.1, release notes:
68 * `3.0.0-M1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317228&version=12330476>`__
69 * `3.0.0-M2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317228&version=12344166>`__
70 * `3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317228&version=12351654>`__
71 * `3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317228&version=12352181>`__
72 * `3.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317228&version=12352894>`__
74 * maven-install-plugin 2.5.2 → 3.1.1, release notes:
75 * `3.0.0-M1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317524&version=12334343>`__
76 * `3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317524&version=12344165>`__
77 * `3.0.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317524&version=12352096>`__
78 * `3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317524&version=12352107>`__
79 * `3.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317524&version=12353026>`__
81 * maven-invoker-plugin `3.6.0 → 3.6.1 <https://github.com/apache/maven-invoker-plugin/releases/tag/maven-invoker-plugin-3.6.1>`__
83 * maven-jar-plugin `3.3.0 → 3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12352303>`__
85 * maven-plugin-plugin 3.10.2 → 3.12.0, release notes:
86 * `3.11.0 <https://github.com/apache/maven-plugin-tools/releases/tag/maven-plugin-tools-3.11.0>`__
87 * `3.12.0 <https://github.com/apache/maven-plugin-tools/releases/tag/maven-plugin-tools-3.12.0>`__
89 * maven-remote-resources-plugin `3.1.0 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317825&version=12353591>`__
91 * maven-source-plugin `3.3.0 → 3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12353471>`__
95 This is a bug-fix upgrade from version 13.0.10.
97 Third-party dependencies
98 ~~~~~~~~~~~~~~~~~~~~~~~~
99 * Checkstyle 10.12.6 → 10.14.0, release notes:
100 * `10.12.7 <https://checkstyle.org/releasenotes.html#Release_10.12.7>`__
101 * `10.13.0 <https://checkstyle.org/releasenotes.html#Release_10.13.0>`__
102 * `10.14.0 <https://checkstyle.org/releasenotes.html#Release_10.14.0>`__
104 * AssertJ 3.24.2 → 3.25.1, release notes:
105 * `3.25.0 <https://github.com/assertj/assertj/releases/tag/assertj-build-3.25.0>`__
106 * `3.25.1 <https://github.com/assertj/assertj/releases/tag/assertj-build-3.25.1>`__
107 * `3.25.2 <https://github.com/assertj/assertj/releases/tag/assertj-build-3.25.2>`__
108 * `3.25.3 <https://github.com/assertj/assertj/releases/tag/assertj-build-3.25.3>`__
110 * Dropwizard Metrics 4.2.23 → 4.2.25, release notes:
111 * `4.2.24 <https://github.com/dropwizard/metrics/releases/tag/v4.2.24>`__
112 * `4.2.25 <https://github.com/dropwizard/metrics/releases/tag/v4.2.25>`__
114 * immutables.org `2.10.0 → 2.10.1 <https://github.com/immutables/immutables/releases/tag/2.10.1>`__
116 * Jackson `2.15.3 → 2.15.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15.4>`__
118 * Jetty `9.4.52.v20230823 → 9.4.53.v20231009 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.53.v20231009>`__
120 * JUnit `5.10.1 → 5.10.2 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.10.2>`__
122 * Karaf `4.4.4 → 4.4.5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12353604>`__
124 * Logback `1.2.12 → 1.2.13 <https://logback.qos.ch/news.html#1.2.13>`__
126 * Mockito 5.8.0 → 5.11.0, release notes:
127 * `5.9.0 <https://github.com/mockito/mockito/releases/tag/v5.9.0>`__
128 * `5.10.0 <https://github.com/mockito/mockito/releases/tag/v5.10.0>`__
129 * `5.11.0 <https://github.com/mockito/mockito/releases/tag/v5.11.0>`__
131 * Netty 4.1.104 → 4.1.107, release notes:
132 * `4.1.105 <https://netty.io/news/2024/01/16/4-1-105-Final.html>`__
133 * `4.1.106 <https://netty.io/news/2024/01/19/4-1-106-Final.html>`__
134 * `4.1.107 <https://netty.io/news/2024/02/13/4-1-107-Final.html>`__
136 * Woodstox 6.5.1 → 6.6.1, release notes:
137 * `6.6.0 <https://github.com/FasterXML/woodstox/milestone/31?closed=1>`__
138 * `6.6.1 <https://github.com/FasterXML/woodstox/milestone/33?closed=1>`__
142 * asciidoctor-jdiagram `2.2.14 → 2.2.17 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.17>`__
144 * asciidoctor-maven-plugin 2.2.4 → 2.2.6, release notes:
145 * `2.2.5 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.5>`__
146 * `2.2.6 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.6>`__
148 * cyclonedx-maven-plugin `2.7.10 → 2.7.11 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.11>`__
150 * exec-maven-plugin `3.1.1 → 3.2.0 <https://github.com/mojohaus/exec-maven-plugin/releases/tag/exec-maven-plugin-3.2.0>`__
152 * maven-shade-plugin `3.5.1 → 3.5.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12352505>`__
154 * maven-surefire-plugin `3.2.3 → 3.2.5 <https://github.com/apache/maven-surefire/releases/tag/surefire-3.2.5>`__
156 * spotbugs-maven-plugin 4.8.2.0 → 4.8.3.1, release notes:
157 * `4.8.3.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.8.3.0>`__
158 * `4.8.3.1 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.8.3.1>`__
162 This is a bug-fix upgrade from version 13.0.9.
166 * Previous upgrade of ``commons-lang3`` caused duplicate packaging against. This has been fixed.
170 * The SpotBugs upgrade to 4.8.2+ is more touching about ``CT_CONSTRUCTOR_THROW``. Fixing these is quite verbose
171 and flaky. This release globally disables this check.
173 * Single Feature Test is now enabled for all Java versions <= 21.
175 Third-party dependencies
176 ~~~~~~~~~~~~~~~~~~~~~~~~
177 * checker-qual 3.41.0 → 3.42.0
179 * Dropwizard Metrics `4.2.22 → 4.2.23 <https://github.com/dropwizard/metrics/releases/tag/v4.2.23>`__
181 * Javassist 3.29.2-GA → 3.30.2-GA, release notes:
182 * `3.30.0-GA <https://github.com/jboss-javassist/javassist/releases/tag/rel_3_30_0_ga>`__
183 * `3.30.1-GA <https://github.com/jboss-javassist/javassist/releases/tag/rel_3_30_1_ga>`__
184 * `3.30.2-GA <https://github.com/jboss-javassist/javassist/releases/tag/rel_3_30_2_ga>`__
186 * Netty 4.1.101 → 4.1.104, release notes:
187 * `4.1.103 <https://netty.io/news/2023/12/13/4-1-103-Final.html>`__
188 * `4.1.104 <https://netty.io/news/2023/12/15/4-1-104-Final.html>`__
190 * jdt-annotations 2.2.700 → 2.2.800
192 * SpotBugs `4.8.2 → 4.8.3 <https://github.com/spotbugs/spotbugs/releases/tag/4.8.3>`__
196 * asciidoctor-jdiagram `2.2.13 → 2.2.14 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.14>`__
198 * maven-compiler-plugin 3.11.0 → 3.12.1, release notes:
199 * `3.12.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12353748>`__
200 * `3.12.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12354061>`__
202 * maven-surefire-plugin `3.2.2 → 3.2.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12353823>`__
206 This is a bug-fix upgrade from version 13.0.8.
210 * The SpotBugs upgrade to 4.8.2 ends up emitting a lot of ``SE_PREVENT_EXT_OBJ_OVERWRITE`` violations, which cannot
211 be sanely fixed. This check is now globally disabled.
213 Third-party dependencies
214 ~~~~~~~~~~~~~~~~~~~~~~~~
215 * Checkstyle `10.12.5 → 10.12.6 <https://checkstyle.org/releasenotes.html#Release_10.12.6>`__
219 This is a bug-fix upgrade from version 13.0.7.
221 Improvements and new features
222 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
223 * ``single-feature-test`` now supports injection of test-only feature dependencies. This allows testing features
224 which require externally-provided dependencies to complete their wiring.
225 See `ODLPARENT-257 <https://jira.opendaylight.org/browse/ODLPARENT-257>`__ for more information.
227 Third-party dependencies
228 ~~~~~~~~~~~~~~~~~~~~~~~~
229 * Bouncy Castle `1.76 → 1.77 <https://www.bouncycastle.org/releasenotes.html#r1rv77>`__
231 * checker-qual 3.39.0 → 3.41.0
233 * Checkstyle `10.12.4 → 10.12.5 <https://checkstyle.org/releasenotes.html#Release_10.12.5>`__
235 * commons-io `2.15.0 → 2.15.1 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.15.1>`__
237 * commons-lang3 `3.13.0 → 3.14.0 <https://commons.apache.org/proper/commons-lang/changes-report.html#a3.14.0>`__
239 * Dropwizard Metrics 4.2.20 → 4.2.22, release notes:
240 * `4.2.21 <https://github.com/dropwizard/metrics/releases/tag/v4.2.21>`__
241 * `4.2.22 <https://github.com/dropwizard/metrics/releases/tag/v4.2.22>`__
243 * JUnit `5.10.0 → 5.10.1 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.10.1>`__
245 * Mockito 5.6.0 → 5.8.0, release notes:
246 * `5.7.0 <https://github.com/mockito/mockito/releases/tag/v5.7.0>`__
247 * `5.8.0 <https://github.com/mockito/mockito/releases/tag/v5.8.0>`__
249 * Netty `4.1.100 → 4.1.101 <https://netty.io/news/2023/11/09/4-1-101-Final.html>`__
251 * SpotBugs 4.7.3 → 4.8.2, release notes:
252 * `4.8.0 <https://github.com/spotbugs/spotbugs/releases/tag/4.8.0>`__
253 * `4.8.1 <https://github.com/spotbugs/spotbugs/releases/tag/4.8.1>`__
254 * `4.8.2 <https://github.com/spotbugs/spotbugs/releases/tag/4.8.2>`__
258 * builder-helper-maven-plugin `3.4.0 → 3.5.0 <https://github.com/mojohaus/build-helper-maven-plugin/releases/tag/build-helper-maven-plugin-3.5.0>`__
260 * cyclonedx-maven-plugin `2.7.9 → 2.7.10 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.10>`__
262 * exec-maven-plugin `3.1.0 → 3.1.1 <https://github.com/mojohaus/exec-maven-plugin/releases/tag/exec-maven-plugin-3.1.1>`__
264 * maven-javadoc-plugin 3.6.0 → 3.6.3, release notes:
265 * `3.6.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12353815>`__
266 * `3.6.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12353857>`__
268 * maven-plugin-plugin 3.8.2 → 3.10.1, release notes:
269 * `3.9.0 <https://issues.apache.org/jira/projects/MPLUGIN/versions/12353224>`__
270 * `3.10.1 <https://issues.apache.org/jira/projects/MPLUGIN/versions/12353716>`__
271 * `3.10.2 <https://issues.apache.org/jira/projects/MPLUGIN/versions/12353719>`__
273 * maven-project-info-reports-plugin `3.4.5 → 3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12353875>`__
275 * maven-surefire-plugin `3.2.1 → 3.2.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12353764>`__
277 * spotbugs-maven-plugin 4.7.3.6 → 4.8.2.0, release notes:
278 * `4.8.1.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.8.1.0>`__
279 * `4.8.2.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.8.2.0>`__
281 * versions-maven-plugin `2.16.1 → 2.16.2 <https://github.com/mojohaus/versions/releases/tag/2.16.2>`__
285 This is a bug-fix upgrade from version 13.0.6.
289 The Dropwizard Metrics upgrade to 4.2.21 ends up making ``metics-graphite`` failing to load
290 in Karaf. This has been rectified by reverting back to 4.2.20.
292 Third-party dependencies
293 ~~~~~~~~~~~~~~~~~~~~~~~~
294 * commons-io 2.13.0 → 2.15.0, release notes:
295 * `2.14.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.14.0>`__
296 * `2.15.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.15.0>`__
298 * commons-text `1.10.0 → 1.11.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12318221&version=12352347>`__
302 * git-commit-id-maven-plugin `6.0.0 → 7.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v7.0.0>`__
304 * maven-checkstyle-plugin `3.3.0 → 3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12352729>`__
306 * maven-clean-plugin `3.3.1 → 3.3.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317224&version=12353735>`__
308 * maven-dependency-plugin `3.6.0 → 3.6.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12353360>`__
310 * maven-surefire-plugin `3.1.2 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12353730>`__
312 * properties-maven-plugin `1.2.0 → 1.2.1 <https://github.com/mojohaus/properties-maven-plugin/releases/tag/1.2.1>`__
316 This is a bug-fix upgrade from version 13.0.5.
318 Third-party dependencies
319 ~~~~~~~~~~~~~~~~~~~~~~~~
320 * checker-qual 3.38.0 → 3.39.0
322 * Checkstyle `10.12.3 → 10.12.4 <https://checkstyle.org/releasenotes.html#Release_10.12.4>`__
324 * Dropwizard Metrics `4.2.20 → 4.2.21 <https://github.com/dropwizard/metrics/releases/tag/v4.2.21>`__
326 * Guava `32.1.2 → 32.1.3 <https://github.com/google/guava/releases/tag/v32.1.3>`__
328 * immutables.org `2.9.3 → 2.10.0 <https://github.com/immutables/immutables/releases/tag/2.10.0>`__
330 * Jackson `2.15.2 → 2.15.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15.3>`__
332 * Jersey `2.40 → 2.41 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.41>`__
334 * Log4J `2.17.1 → 2.17.2 <https://logging.apache.org/log4j/2.x/release-notes/2.17.2.html>`__
336 * Logback `1.2.11 → 1.2.12 <https://logback.qos.ch/news.html#1.2.12>`__
338 * Mockito `5.5.0 → 5.6.0 <https://github.com/mockito/mockito/releases/tag/v5.6.0>`__
340 * Netty `4.1.99 → 4.1.100 <https://netty.io/news/2023/10/10/4-1-100-Final.html>`__
342 * stax2-api `4.2.1 → 4.2.2 <https://github.com/FasterXML/stax2-api/blob/master/release-notes/VERSION>`__
346 * bnd-maven-plugin `6.4.0 → 7.0.0 <https://github.com/bndtools/bnd/wiki/Changes-in-7.0.0>`__
348 * Jacoco Maven plugin `0.8.10 → 0.8.11 <https://github.com/jacoco/jacoco/releases/tag/v0.8.11>`__
352 This is a bug-fix upgrade from version 13.0.4.
354 Third-party dependencies
355 ~~~~~~~~~~~~~~~~~~~~~~~~
356 * Antlr `4.13.0 → 4.13.1 <https://github.com/antlr/antlr4/releases/tag/4.13.1>`__
358 * checker-qual 3.37.0 → 3.38.0
360 * Dropwizard Metrics `4.2.19 → 4.2.20 <https://github.com/dropwizard/metrics/releases/tag/v4.2.20>`__
362 * Jetty 9.4.50.v20221201 → 9.4.52.v20230823, release notes:
363 * `9.4.51.v20230217 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.51.v20230217>`__
364 * `9.4.52.v20230823 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.52.v20230823>`__
366 * Karaf `4.4.3 → 4.4.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12352693>`__
368 * Netty 4.1.97 → 4.1.99, release notes:
369 * `4.1.98 <https://netty.io/news/2023/09/21/4-1-98-Final.html>`__
370 * `4.1.99 <https://netty.io/news/2023/09/21/4-1-99-Final.html>`__
374 * asciidoctor-jdiagram `2.2.11 → 2.2.13 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.13>`__
376 * maven-enforcer-plugin `3.4.0 → 3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12353576>`__
378 * maven-javadoc-plugin `3.5.0 → 3.6.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12352956>`__
380 * maven-share-plugin `3.5.0 → 3.5.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12353341>`__
382 * modernizer-maven-plugin `2.6.0 → 2.7.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.7.0>`__
384 * spotbugs-maven-plugin `4.7.3.5 → 4.7.3.6 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.6>`__
386 * versions-maven-plugin `2.16.0 → 2.16.1 <https://github.com/mojohaus/versions/releases/tag/2.16.1>`__
390 This is a bug-fix upgrade from version 13.0.3.
392 Third-party dependencies
393 ~~~~~~~~~~~~~~~~~~~~~~~~
394 * Bouncy Castle `1.75 → 1.76 <https://www.bouncycastle.org/releasenotes.html#r1rv76>`__
396 * checker-qual 3.35.0 → 3.37.0
398 * commons-lang3 `3.12.0 → 3.13.0 <https://commons.apache.org/proper/commons-lang/changes-report.html#a3.13.0>`__
400 * Checkstyle 10.12.0 → 10.12.3, release notes:
401 * `10.12.1 <https://checkstyle.org/releasenotes.html#Release_10.12.1>`__
402 * `10.12.2 <https://checkstyle.org/releasenotes.html#Release_10.12.2>`__
403 * `10.12.3 <https://checkstyle.org/releasenotes.html#Release_10.12.3>`__
405 * Guava 32.0.1 → 32.1.2, release notes:
406 * `32.1.0 <https://github.com/google/guava/releases/tag/v32.1.0>`__
407 * `32.1.1 <https://github.com/google/guava/releases/tag/v32.1.1>`__
408 * `32.1.2 <https://github.com/google/guava/releases/tag/v32.1.2>`__
410 * JUnit `5.9.3 → 5.10.0 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.10.0>`__
412 * Mockito `5.4.0 → 5.5.0 <https://github.com/mockito/mockito/releases/tag/v5.5.0>`__
414 * Netty 4.1.94 → 4.1.97, release notes:
415 * `4.1.95 <https://netty.io/news/2023/07/20/4-1-95-Final.html>`__
416 * `4.1.96 <https://netty.io/news/2023/07/27/4-1-96-Final.html>`__
417 * `4.1.97 <https://netty.io/news/2023/08/23/4-1-97-Final.html>`__
421 * asciidoctor-jdiagram 2.2.9 → 2.2.11, release notes:
422 * `2.2.10 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.10>`__
423 * `2.2.11 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.11>`__
425 * depends-maven-plugin `1.4.0 → 1.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311206&version=12339645>`__
427 * maven-enforcer-plugin `3.3.0 → 3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12353101>`__
429 * maven-remote-resources-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317825&version=12352115>`__
431 * metainf-services 1.9 → 1.11
433 * properties-maven-plugin `1.1.0 → 1.2.0 <https://github.com/mojohaus/properties-maven-plugin/releases/tag/1.2.0>`__
437 This is a bug-fix upgrade from version 13.0.2.
441 * The upgrade of ``javax.inject`` to ``1.2.2.1`` is a silent switch to Jakarta EE and has been rolled back
442 to version ``1.0.20.2``.
446 This is a bug-fix upgrade from version 13.0.1.
448 Third-party dependencies
449 ~~~~~~~~~~~~~~~~~~~~~~~~
450 * Antlr `4.12.0 → 4.13.0 <https://github.com/antlr/antlr4/releases/tag/4.13.0>`__
452 * Bouncy Castle 1.73 → 1.75, release notes:
453 * `1.74 <https://www.bouncycastle.org/releasenotes.html#r1rv74>`__
454 * `1.75 <https://www.bouncycastle.org/releasenotes.html#r1rv75>`__
456 * checker-qual 3.34.0 → 3.35.0
458 * commons-io `2.12.0 → 2.13.0, <https://commons.apache.org/proper/commons-io/changes-report.html#a2.13.0>`__
460 * Dropwizard Metrics `4.2.18 → 4.2.19 <https://github.com/dropwizard/metrics/releases/tag/v4.2.19>`__
462 * Guava `32.0.0 → 32.0.1 <https://github.com/google/guava/releases/tag/v32.0.1>`__
464 * Jackson `2.15.1 → 2.15.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15.2>`__
466 * Jersey `2.39.1 → 2.40 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.40>`__
468 * javax.inject 1.0.20.0 → 1.2.2.1
470 * Mockito `5.3.1 → 5.4.0 <https://github.com/mockito/mockito/releases/tag/v5.4.0>`__
472 * Netty `4.1.93 → 4.1.94 <https://netty.io/news/2023/06/19/4-1-94-Final.html>`__
476 * asciidoctor-jdiagram `2.2.8 → 2.2.9 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.9>`__
478 * duplicate-finder-maven-plugin 1.5.1 → 2.0.1, release notes:
479 * `2.0.0 <https://github.com/basepom/duplicate-finder-maven-plugin/blob/main/CHANGES.md#200---2023-05-21>`__
480 * `2.0.1 <https://github.com/basepom/duplicate-finder-maven-plugin/blob/main/CHANGES.md#201---2023-05-28>`__
482 * echo-maven-plugin `2.0.1 → 2.1.0 <https://github.com/Ekryd/echo-maven-plugin/releases/tag/echo-plugin-2.1.0>`__
484 * maven-clean-plugin `3.2.0 → 3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317224&version=12351541>`__
486 * maven-invoker-plugin `3.5.1 → 3.6.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12353076>`__
488 * maven-project-info-reports-plugin 3.4.3 → 3.4.5, release notes:
489 * `3.4.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12353222>`__
490 * `3.4.5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12353297>`__
492 * maven-release-plugin 2.5.3 → 3.0.1, release notes:
493 * `3.0.0-M1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12331214>`__
494 * `3.0.0-M4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12348079>`__
495 * `3.0.0-M5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12346565>`__
496 * `3.0.0-M6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12351336>`__
497 * `3.0.0-M7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12351828>`__
498 * `3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12352981>`__
499 * `3.0.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12353136>`__
501 * maven-shade-plugin `3.4.1 → 3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12352951>`__
503 * maven-surefire-plugin `3.1.0 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12353294>`__
505 * spotbugs-maven-plugin `4.7.3.4 → 4.7.3.5 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.5>`__
507 * versions-maven-plugin `2.15.0 → 2.16.0 <https://github.com/mojohaus/versions/releases/tag/2.16.0>`__
511 This is a bug-fix upgrade from version 13.0.0.
515 * Generated features included ``org.eclipse.jdt.annotation`` and ``value`` annotation JARs. This has been corrected by
516 excluding from generation See `ODLPARENT-302 <https://jira.opendaylight.org/browse/ODLPARENT-302>`__ for details.
520 This is a major upgrade from version 12, with breaking changes; downstream projects may need to make changes to upgrade
525 * Declaration of annotation artifacts for ``spotbugs-annotations``, ``org.eclipse.jdt.annotation`` and
526 ``modernizer-maven-annotations`` are no longer by default as ``<scope>provided</scope>``. This means that users
527 of these annotations need to explicitly depend on them. Note that ``spotbugs-annotations`` are not provided
528 at runtime and therefore should be used with ``<optional>true</optional>``.
529 See `ODLPARENT-300 <https://jira.opendaylight.org/browse/ODLPARENT-300>`__ for details.
531 * Default configuration now includes test-scoped dependency to ``jassert-core``. Users are encouraged to migrate
532 assertions from Hamcrest to AssertJ. See `ODLPARENT-295 <https://jira.opendaylight.org/browse/ODLPARENT-295>`__ for details.
534 Upstream version removals
535 ~~~~~~~~~~~~~~~~~~~~~~~~~
536 The following upstream dependencies have been removed from dependency/plugin management:
538 * Declaration of ``commons-lang`` has been removed. This dependency is not used by any active downstream and ``commons-lang3``
539 already provides better or equivalent replacements.
541 Third-party dependencies
542 ~~~~~~~~~~~~~~~~~~~~~~~~
543 * Checkstyle `10.11.0 → 10.12.0 <https://checkstyle.org/releasenotes.html#Release_10.12.0>`__
545 * Guava `31.1 → 32.0.0 <https://github.com/google/guava/releases/tag/v32.0.0>`__
547 * Jackson 2.14.3 → 2.15.1, release notes:
548 * `2.15 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15>`__
549 * `2.15.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15.1>`__
553 * asciidoctor-maven-plugin `2.2.3 → 2.2.4 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.4>`__
555 * maven-bundle-plugin `5.1.8 → 5.1.9 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12353241>`__
559 This is a bug-fix upgrade from version 12.0.5.
561 Third-party dependencies
562 ~~~~~~~~~~~~~~~~~~~~~~~~
563 * asciidoctor-jdiagram `2.2.4 → 2.2.8 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.8>`__
565 * checker-qual 3.33.0 → 3.34.0
567 * Checkstyle 10.9.3 → 10.11.0, release notes:
568 * `10.10.0 <https://checkstyle.org/releasenotes.html#Release_10.10.0>`__
569 * `10.11.0 <https://checkstyle.org/releasenotes.html#Release_10.11.0>`__
571 * commons-io `2.11.0 → 2.12.0, <https://commons.apache.org/proper/commons-io/changes-report.html#a2.12.0>`__
573 * Jackson `2.14.2 → 2.14.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14.3>`__
575 * JUnit `5.9.2 → 5.9.3 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.3>`__
577 * Mockito `5.3.0 → 5.3.1 <https://github.com/mockito/mockito/releases/tag/v5.3.1>`__
579 * Netty 4.1.91 → 4.1.93, release notes:
580 * `4.1.92 <https://netty.io/news/2023/04/25/4-1-92-Final.html>`__
581 * `4.1.93 <https://netty.io/news/2023/05/25/4-1-93-Final.html>`__
583 * TrieMap `1.3.0 → 1.3.1 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.3.1>`__
585 * Woodstox 6.4.0 → 6.5.1, release notes:
586 * `6.5.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.5#650-14-jan-2023>`__
587 * `6.5.1 <https://github.com/FasterXML/woodstox/issues/170>`__
591 * asciidoctor-maven-plugin `2.2.2 → 2.2.3 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.3>`__
593 * builder-helper-maven-plugin `3.3.0 → 3.4.0 <https://github.com/mojohaus/build-helper-maven-plugin/releases/tag/build-helper-maven-plugin-3.4.0>`__
595 * cyclonedx-maven-plugin 2.7.5 → 2.7.9, release notes:
596 * `2.7.6 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.6>`__
597 * `2.7.7 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.7>`__
598 * `2.7.8 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.8>`__
599 * `2.7.9 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.9>`__
601 * git-commit-id-maven-plugin `5.0.0 → 6.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v6.0.0>`__
603 * Jacoco Maven plugin 0.8.8 → 0.8.10, release notes:
604 * `0.8.9 <https://github.com/jacoco/jacoco/releases/tag/v0.8.9>`__
605 * `0.8.10 <https://github.com/jacoco/jacoco/releases/tag/v0.8.10>`__
607 * maven-assembly-plugin 3.4.2 → 3.6.0, release notes:
608 * `3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352065>`__
609 * `3.6.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352952>`__
611 * maven-checkstyle-plugin 3.2.1 → 3.3.0, release notes:
612 * `3.2.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12352856>`__
613 * `3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12353164>`__
615 * maven-dependency-plugin `3.5.0 → 3.6.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12352921>`__
617 * maven-help-plugin `3.3.0 → 3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317522&version=12352206>`__
619 * maven-invoker-plugin 3.4.0 → 3.5.1, release notes:
620 * `3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12352645>`__
621 * `3.5.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12352974>`__
623 * maven-plugin-plugin 3.7.1 → 3.8.2, release notes:
624 * `3.8.1 <https://issues.apache.org/jira/projects/MPLUGIN/versions/12352545>`__
625 * `3.8.2 <https://issues.apache.org/jira/projects/MPLUGIN/versions/12352508>`__
627 * maven-project-info-reports-plugin 3.4.1 → 3.4.3, release notes:
628 * `3.4.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12352728>`__
629 * `3.4.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12352922>`__
631 * maven-resources-plugin `3.3.0 → 3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317827&version=12352140>`__
633 * maven-source-plugin `3.2.1 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12346658>`__
635 * maven-surefire-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351273>`__
637 * versions-maven-plugin `2.14.2 → 2.15.0 <https://github.com/mojohaus/versions/releases/tag/2.15.0>`__
641 This is a bug-fix upgrade from version 12.0.4.
645 * cyclonedx-maven-plugin has been rolled back to version ``2.7.5`` because newer
646 versions execute incredibly slowly on large dependency graphs.
648 Third-party dependencies
649 ~~~~~~~~~~~~~~~~~~~~~~~~
650 * Bouncy Castle `1.72 → 1.73 <https://www.bouncycastle.org/releasenotes.html#r1rv73>`__
652 * Mockito `5.2.0 → 5.3.0 <https://github.com/mockito/mockito/releases/tag/v5.3.0>`__
654 * TrieMap 1.2.0 → 1.3.0
655 * `1.2.1 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.2.0>`__
656 * `1.3.0 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.3.0>`__
660 This is a bug-fix upgrade from version 12.0.4.
662 Third-party dependencies
663 ~~~~~~~~~~~~~~~~~~~~~~~~
664 * Antlr `4.11.1 → 4.12.0 <https://github.com/antlr/antlr4/releases/tag/4.12.0>`__
666 * checker-qual 3.30.0 → 3.33.0
668 * Checkstyle 10.7.0 → 10.9.3, release notes:
669 * `10.8.0 <https://checkstyle.org/releasenotes.html#Release_10.8.0>`__
670 * `10.8.1 <https://checkstyle.org/releasenotes.html#Release_10.8.1>`__
671 * `10.9.0 <https://checkstyle.org/releasenotes.html#Release_10.9.0>`__
672 * `10.9.1 <https://checkstyle.org/releasenotes.html#Release_10.9.1>`__
673 * `10.9.2 <https://checkstyle.org/releasenotes.html#Release_10.9.2>`__
674 * `10.9.3 <https://checkstyle.org/releasenotes.html#Release_10.9.3>`__
676 * Dropwizard Metrics 4.2.15 → 4.2.18, release notes:
677 * `4.2.16 <https://github.com/dropwizard/metrics/releases/tag/v4.2.16>`__
678 * `4.2.17 <https://github.com/dropwizard/metrics/releases/tag/v4.2.17>`__
679 * `4.2.18 <https://github.com/dropwizard/metrics/releases/tag/v4.2.18>`__
681 * Jersey 2.38 → 2.39.1, release notes:
682 * `2.39 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.39>`__
683 * `2.39.1 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.39.1>`__
685 * Mockito `5.1.1 → 5.2.0 <https://github.com/mockito/mockito/releases/tag/v5.2.0>`__
687 * Netty 4.1.89 → 4.1.91, release notes:
688 * `4.1.90 <https://netty.io/news/2023/03/14/4-1-90-Final.html>`__
689 * `4.1.91 <https://netty.io/news/2023/04/03/4-1-91-Final.html>`__
693 * cyclonedx-maven-plugin `2.7.5 → 2.7.6 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.6>`__
695 * maven-compiler-plugin `3.10.1 → 3.11.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12351444>`__
697 * maven-enforcer-plugin `3.2.1 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12352877>`__
699 * maven-surefire-plugin 3.0.0-M8 → 3.0.0, release notes:
700 * `3.0.0-M9 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12352730>`__
701 * `3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12352998>`__
703 * modernizer-maven-plugin `2.5.0 → 2.6.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.6.0>`__
705 * spotbugs-maven-plugin 4.7.3.0 → 4.7.3.4, release notes:
706 * `4.7.3.1 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.1>`__
707 * `4.7.3.2 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.2>`__
708 * `4.7.3.3 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.3>`__
709 * `4.7.3.4 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.4>`__
713 This is a bug-fix upgrade from version 12.0.2.
717 * The configuration of ``spotbugs-maven-plugin`` was incorrect in that it referenced
718 ``FindBugs`` settings. This issue is reported with ``maven-3.9.0`` and later and has
719 now been corrected. See `ODLPARENT-299 <https://jira.opendaylight.org/browse/ODLPARENT-299>`__
722 Third-party dependencies
723 ~~~~~~~~~~~~~~~~~~~~~~~~
724 * asciidoctor-jdiagram `2.2.3 → 2.2.4 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.4>`__
726 * Checkstyle `10.6.0 → 10.7.0 <https://checkstyle.org/releasenotes.html#Release_10.7.0>`__
728 * Jackson `2.14.1 → 2.14.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14.2>`__
730 * Mockito 4.11.0 → 5.1.1, release notes:
731 * `5.0.0 <https://github.com/mockito/mockito/releases/tag/v5.0.0>`__
732 * `5.1.0 <https://github.com/mockito/mockito/releases/tag/v5.1.0>`__
733 * `5.1.1 <https://github.com/mockito/mockito/releases/tag/v5.1.1>`__
735 * Netty 4.1.86 → 4.1.89, release notes:
736 * `4.1.87 <https://netty.io/news/2023/01/12/4-1-87-Final.html>`__
737 * `4.1.88 <https://netty.io/news/2023/02/12/4-1-88-Final.html>`__
738 * `4.1.89 <https://netty.io/news/2023/02/13/4-1-89-Final.html>`__
742 * cyclonedx-maven-plugin `2.7.4 → 2.7.5 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.5>`__
744 * echo-maven-plugin 1.3.2 → 2.0.1, release notes:
745 * `2.0.0 <https://github.com/Ekryd/echo-maven-plugin/releases/tag/echo-plugin-2.0.0>`__
746 * `2.0.1 <https://github.com/Ekryd/echo-maven-plugin/releases/tag/echo-plugin-2.0.1>`__
748 * maven-checkstyle-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12352729>`__
750 * maven-dependency-plugin `3.4.0 → 3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12352602>`__
752 * maven-enforcer-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12352857>`__
754 * maven-javadoc-plugin `3.4.1 → 3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12352256>`__
756 * maven-plugin-plugin `3.7.0 → 3.7.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12352745>`__
758 * maven-surefire-plugin `3.0.0-M7 → 3.0.0-M8 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351809>`__
762 This is a security bug-fix upgrade from version 12.0.1.
766 * Two new features, ``odl-asm`` and ``odl-apache-spifly`` have been added.
767 See `ODLPARENT-296 <https://jira.opendaylight.org/browse/ODLPARENT-296>`__
770 Third-party dependencies
771 ~~~~~~~~~~~~~~~~~~~~~~~~
772 * Checkstyle 10.4 → 10.6.0
773 * `10.5.0 <https://checkstyle.org/releasenotes.html#Release_10.5.0>`__
774 * `10.6.0 <https://checkstyle.org/releasenotes.html#Release_10.6.0>`__
776 * Dropwizard Metrics 4.2.13 → 4.2.15, release notes:
777 * `4.2.14 <https://github.com/dropwizard/metrics/releases/tag/v4.2.14>`__
778 * `4.2.15 <https://github.com/dropwizard/metrics/releases/tag/v4.2.15>`__
780 * GSON `2.10.0 → 2.10.1 <https://github.com/google/gson/releases/tag/gson-parent-2.10.1>`__
782 * immutables.org `2.9.2 → 2.9.3 <https://github.com/immutables/immutables/releases/tag/2.9.3>`__
784 * Jackson 2.13.4 → 2.14.1, release notes:
785 * `2.14 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14>`__
786 * `2.14.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14.1>`__
788 * Jetty `9.4.49.v20220914 → 9.4.50.v20221201 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.50.v20221201>`__
790 * Jolokia 1.7.1 → 1.7.2
792 * Jersey `2.37 → 2.38 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.38>`__
794 * JUnit `5.9.1 → 5.9.2 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.2>`__
796 * Karaf `4.4.2 → 4.4.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12352267>`__
798 * Mockito 4.9.0 → 4.11.0, release notes:
799 * `4.10.0 <https://github.com/mockito/mockito/releases/tag/v4.10.0>`__
800 * `4.11.0 <https://github.com/mockito/mockito/releases/tag/v4.11.0>`__
802 * Netty 4.1.84 → 4.1.86, release notes:
803 * `4.1.85 <https://netty.io/news/2022/11/09/4-1-85-Final.html>`__
804 * `4.1.86 <https://netty.io/news/2022/12/12/4-1-86-Final.html>`__
806 * Sevntu 1.43.0 → 1.44.1, release notes:
807 * `1.44.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.44.0>`__
808 * `1.44.1 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.44.1>`__
810 * ThreeTen `1.7.1 → 1.7.2 <https://www.threeten.org/threeten-extra/changes-report.html#a1.7.2>`__
812 * xmlunit `2.9.0 → 2.9.1 <https://github.com/xmlunit/xmlunit/releases/tag/v2.9.1>`__
816 * bnd-maven-plugin `6.3.1 → 6.4.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.4.0>`__
818 * cyclonedx-maven-plugin 2.7.1 → 2.7.4, release notes:
819 * `2.7.2 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.2>`__
820 * `2.7.3 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.3>`__
821 * `2.7.4 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.4>`__
823 * duplicate-finder-maven-plugin `1.5.0 → 1.5.1 <https://github.com/basepom/duplicate-finder-maven-plugin/releases/tag/duplicate-finder-maven-plugin-1.5.1>`__
825 * exec-maven-plugin `3.0.0 → 3.1.0 <https://github.com/mojohaus/exec-maven-plugin/releases/tag/exec-maven-plugin-3.1.0>`__
827 * maven-archetype-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12348615>`__
829 * maven-dependency-plugin `3.3.0 → 3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12351068>`__
831 * maven-help-plugin `3.2.0 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317522&version=12345417>`__
833 * maven-invoker-plugin 3.2.2 → 3.4.0, release notes:
834 * `3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12349728>`__
835 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12330828>`__
837 * maven-plugin-plugin 3.6.2 → 3.7.0, release notes:
838 * `3.6.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12351222>`__
839 * `3.7.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12344367>`__
841 * maven-remote-resources-plugin `1.7.0 → 3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317825&version=12346864>`__
843 * properties-maven-plugin `1.0.0 → 1.1.0 <https://github.com/mojohaus/properties-maven-plugin/releases/tag/properties-maven-plugin-1.1.0>`__
845 * spotbugs-maven-plugin `4.7.2.2 → 4.7.3.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.0>`__
847 * versions-maven-plugin 2.8.1 → 2.14.2, release notes:
848 * `2.9.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.9.0>`__
849 * `2.10.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.10.0>`__
850 * `2.11.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.11.0>`__
851 * `2.12.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.12.0>`__
852 * `2.13.0 <https://github.com/mojohaus/versions/releases/tag/2.13.0>`__
853 * `2.14.0 <https://github.com/mojohaus/versions/releases/tag/2.14.0>`__
854 * `2.14.1 <https://github.com/mojohaus/versions/releases/tag/2.14.1>`__
855 * `2.14.2 <https://github.com/mojohaus/versions/releases/tag/2.14.2>`__
859 This is a security bug-fix upgrade from version 12.0.0.
861 Improvements and new features
862 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
863 * ``junit-jupiter-params`` is now a test dependency. This allows using JUnit 5 parameterized types without further
866 Third-party dependencies
867 ~~~~~~~~~~~~~~~~~~~~~~~~
868 * Checkstyle `10.3.4 → 10.4 <https://checkstyle.org/releasenotes.html#Release_10.4>`__
870 * Dropwizard Metrics `4.2.12 → 4.2.13 <https://github.com/dropwizard/metrics/releases/tag/v4.2.13>`__
872 * GSON `2.9.0 → 2.10.0 <https://github.com/google/gson/releases/tag/gson-parent-2.10.0>`__
874 * Jackson `2.13.4 → 2.13.4.20221013 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.13#micro-patches>`__
876 * Mockito `4.8.1 → 4.9.0 <https://github.com/mockito/mockito/releases/tag/v4.9.0>`__
878 * Netty `4.1.84 → 4.1.85 <https://netty.io/news/2022/11/09/4-1-85-Final.html>`__
880 * Sevntu `1.42.0 → 1.43.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.43.0>`__
882 * Woodstox `6.3.1 → 6.4.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.4#640-24-oct-2022>`__
886 * maven-shade-plugin 3.3.0 → 3.4.1, release notes:
887 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12351491>`__
888 * `3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12352285>`__
890 * modernizer-maven-plugin `2.4.0 → 2.5.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.5.0>`__
892 * spotbugs-maven-plugin `4.7.2.1 → 4.7.2.2 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.2.2>`__
896 This is a major upgrade from version 11, with breaking changes; downstream projects may need to make changes to upgrade
899 Upstream version removals
900 ~~~~~~~~~~~~~~~~~~~~~~~~~
901 The following upstream dependencies have been removed from dependency/plugin management:
903 * Declaration of ``Enunciate`` has been removed. This dependency is not used by any active downstream.
905 * The opt-in for generating HTML4 Javadoc documentation has been removed.
907 Third-party dependencies
908 ~~~~~~~~~~~~~~~~~~~~~~~~
909 * Antlr 4.9.2 → 4.11.1, release notes:
910 * `4.10 <https://github.com/antlr/antlr4/releases/tag/4.10>`__
911 * `4.10.1 <https://github.com/antlr/antlr4/releases/tag/4.10.1>`__
912 * `4.11.0 <https://github.com/antlr/antlr4/releases/tag/4.11.0>`__
913 * `4.11.1 <https://github.com/antlr/antlr4/releases/tag/4.11.1>`__
915 * Bouncy Castle 1.70 → 1.72, release notes:
916 * `1.71 <https://www.bouncycastle.org/releasenotes.html#r1rv71>`__
917 * `1.72 <https://www.bouncycastle.org/releasenotes.html#r1rv72>`__
919 * Checkstyle 10.3.1 → 10.3.4, release notes:
920 * `10.3.2 <https://checkstyle.org/releasenotes.html#Release_10.3.2>`__
921 * `10.3.3 <https://checkstyle.org/releasenotes.html#Release_10.3.3>`__
922 * `10.3.4 <https://checkstyle.org/releasenotes.html#Release_10.3.4>`__
924 * commons-text `1.9 → 1.10.0 <https://commons.apache.org/proper/commons-text/changes-report.html#a1.10.0>`__
926 * Dropwizard Metrics 4.2.10 → 4.2.12, release notes:
927 * `4.2.11 <https://github.com/dropwizard/metrics/releases/tag/v4.2.11>`__
928 * `4.2.12 <https://github.com/dropwizard/metrics/releases/tag/v4.2.12>`__
930 * immutables.org 2.8.8 → 2.9.2, release notes:
931 * `2.9.0 <https://github.com/immutables/immutables/milestone/76?closed=1>`__
932 * `2.9.1 <https://github.com/immutables/immutables/milestone/77?closed=1>`__
933 * `2.9.2 <https://github.com/immutables/immutables/milestone/78?closed=1>`__
935 * Jackson `2.13.3 → 2.13.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.13.4>`__
937 * Javassist 3.28.0-GA → 3.29.2-GA
939 * Jersey `2.36 → 2.37 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.37>`__
941 * Jetty 9.4.46.v20220331 → 9.4.49.v20220914, release notes:
942 * `9.4.47.v20220610 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.47.v20220610>`__
943 * `9.4.48.v20220622 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.48.v20220622>`__
944 * `9.4.49.v20220914 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.49.v20220914>`__
946 * JUnit `5.9.0 → 5.9.1 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.1>`__
948 * Karaf `4.4.1 → 4.4.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12352048>`__
950 * Mockito 4.6.1 → 4.8.1, release notes:
951 * `4.7.0 <https://github.com/mockito/mockito/releases/tag/v4.7.0>`__
952 * `4.8.0 <https://github.com/mockito/mockito/releases/tag/v4.8.0>`__
953 * `4.8.1 <https://github.com/mockito/mockito/releases/tag/v4.8.1>`__
955 * Netty 4.1.76 → 4.1.84, release notes:
956 * `4.1.77 <https://netty.io/news/2022/05/06/2-1-77-Final.html>`__
957 * `4.1.78 <https://netty.io/news/2022/06/14/4-1-78-Final.html>`__
958 * `4.1.79 <https://netty.io/news/2022/07/11/4-1-79-Final.html>`__
959 * `4.1.80 <https://netty.io/news/2022/08/26/4-1-80-Final.html>`__
960 * `4.1.81 <https://netty.io/news/2022/09/08/4-1-81-Final.html>`__
961 * `4.1.82 <https://netty.io/news/2022/09/13/4-1-82-Final.html>`__
962 * `4.1.84 <https://netty.io/news/2022/10/11/4-1-84-Final.html>`__
964 * SpotBugs 4.7.1 → 4.7.3, release notes:
965 * `4.7.2 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.2>`__
966 * `4.7.3 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.3>`__
968 * ThreeTen `1.7.0 → 1.7.1 <https://www.threeten.org/threeten-extra/changes-report.html#a1.7.1>`__
972 * bnd-maven-plugin 6.2.0 → 6.3.1, release notes:
973 * `6.3.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.0>`__
974 * `6.3.1 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.1>`__
976 * maven-bundle-plugin 5.1.6 → 5.1.8, release notes:
977 * `5.1.7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12352061>`__
978 * `5.1.8 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12352145>`__
980 * maven-checkstyle-plugin `3.1.2 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12345559>`__
982 * maven-jar-plugin `3.2.2 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12351126>`__
984 * maven-javadoc-plugin `3.4.0 → 3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12352053>`__
986 * maven-resources-plugin `3.2.0 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317827&version=12348676>`__
988 * maven-site-plugin `3.12.0 → 3.12.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317923&version=12351751>`__
990 * project-info-reports-plugin 3.3.0 → 3.4.1, release notes:
991 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12351758>`__
992 * `3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12352097>`__
996 This is a bug-fix upgrade from version 11.0.0.
998 Improvements and new features
999 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
1000 * An alternative way of defining features has been introduced. This is hosted by the ``template-feature-parent``
1001 and unlike ``single-feature-parent``, only performs replacement of versions in a provided template. See
1002 `ODLPARENT-235 <https://jira.opendaylight.org/browse/ODLPARENT-235>`__ for more information.
1004 Third-party dependencies
1005 ~~~~~~~~~~~~~~~~~~~~~~~~
1006 * Checkstyle `10.3 → 10.3.1 <https://checkstyle.org/releasenotes.html#Release_10.3.1>`__
1008 * Dropwizard Metrics `4.2.9 → 4.2.10 <https://github.com/dropwizard/metrics/releases/tag/v4.2.10>`__
1010 * Jersey `2.35 → 2.36 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.36>`__
1012 * Jetty 9.4.46.v20220331 → 9.4.48.v20220622, release notes:
1013 * `9.4.47.v20220610 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.47.v20220610>`__
1014 * `9.4.48.v20220622 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.48.v20220622>`__
1016 * JUnit `5.8.2 → 5.9.0 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.0>`__
1018 * Karaf `4.4.0 → 4.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12351548>`__
1020 * PAX-URL `2.6.10 → 2.6.11 <https://github.com/ops4j/org.ops4j.pax.url/milestone/76?closed=1>`__
1022 * SpotBugs `4.7.0 → 4.7.1 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.1>`__
1026 * bnd-maven-plugin 6.2.0 → 6.3.1, release notes:
1027 * `6.3.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.0>`__
1028 * `6.3.1 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.1>`__
1030 * cyclonedx-maven-plugin 2.6.2 → 2.7.1
1032 * maven-antrun-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317121&version=12348085>`__
1034 * maven-assebly-plugin 3.3.0 → 3.4.2, release notes:
1035 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12348203>`__
1036 * `3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352049>`__
1037 * `3.4.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352095>`__
1039 * maven-enforcer-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12341008>`__
1041 * maven-site-plugin `3.11.0 → 3.12.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317923&version=12351142>`__
1043 * maven-surefire-plugin `3.0.0-M6 → 3.0.0-M7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351502>`__
1045 * spotbugs-maven-plugin 4.7.0.0 → 4.7.1.1, release notes:
1046 * `4.7.1.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.1.0>`__
1047 * `4.7.1.1 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.1.1>`__
1051 This is a major upgrade from version 10, with breaking changes; downstream projects may need to make changes to upgrade
1054 Improvements and new features
1055 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
1056 * Minimum required ``Java`` version is 17. Attempts to build a downstream project or load in a previous Java version
1057 will result in a failure.
1059 * The declaration for ``argparse4j`` has been addded. See
1060 `ODLPARENT-289 <https://jira.opendaylight.org/browse/ODLPARENT-289>`__ for more information.
1062 Upstream version removals
1063 ~~~~~~~~~~~~~~~~~~~~~~~~~
1064 The following upstream dependencies have been removed from dependency/plugin management:
1066 * Declaration of ``Google Truth`` has been removed. This dependency is not used by any active downstream. See
1067 `ODLPARENT-283 <https://jira.opendaylight.org/browse/ODLPARENT-283>`__ for more information.
1069 * Declaration of ``commons-codec`` has been removed. This dependency is not used by any active downstream. See
1070 `ODLPARENT-285 <https://jira.opendaylight.org/browse/ODLPARENT-285>`__ for more information.
1072 * Declaration of ``commons-fileupload`` has been removed. This dependency is not used by any active downstream. See
1073 `ODLPARENT-286 <https://jira.opendaylight.org/browse/ODLPARENT-286>`__ for more information.
1075 * Declaration of ``commons-net`` has been removed. This dependency is not used by any active downstream. See
1076 `ODLPARENT-287 <https://jira.opendaylight.org/browse/ODLPARENT-287>`__ for more information.
1078 * Declaration of ``jsonassert`` has been removed. This dependency is not used by any active downstream. See
1079 `ODLPARENT-288 <https://jira.opendaylight.org/browse/ODLPARENT-288>`__ for more information.
1081 * Declaration of ``jung`` has been removed. This dependency is not used by any active downstream. See
1082 `ODLPARENT-290 <https://jira.opendaylight.org/browse/ODLPARENT-290>`__ for more information.
1084 * Declaration of ``spring-osgi-mock`` has been removed. This dependency is not used by any active downstream.
1086 Third-party dependencies
1087 ~~~~~~~~~~~~~~~~~~~~~~~~
1088 * Checkstyle `10.2 → 10.3 <https://checkstyle.org/releasenotes.html#Release_10.3>`__
1090 * Jackson `2.13.2 → 2.13.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.13.3>`__
1092 * Jersey 2.27 → 2.35, release notes:
1093 * `2.28 <https://eclipse-ee4j.github.io/jersey.github.io/release-notes/2.28.html>`__
1094 * `2.29 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.29>`__
1095 * `2.29.1 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.29.1>`__
1096 * `2.30 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.30>`__
1097 * `2.30.1 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.30.1>`__
1098 * `2.31 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.31>`__
1099 * `2.32 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.32>`__
1100 * `2.33 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.33>`__
1101 * `2.34 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.34>`__
1102 * `2.35 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.35>`__
1104 * Karaf `4.3.7 → 4.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12349243>`__
1106 * Mockito 4.5.1 → 4.6.1, release notes:
1107 * `4.6.0 <https://github.com/mockito/mockito/releases/tag/v4.6.0>`__
1108 * `4.6.1 <https://github.com/mockito/mockito/releases/tag/v4.6.1>`__
1110 * SpotBugs `4.6.0 → 4.7.0 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.0>`__
1114 * cyclonedx-maven-plugin 2.5.3 → 2.6.2
1116 * maven-bundle-plugin `5.1.5 → 5.1.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12351722>`__
1118 * maven-javadoc-plugin 3.1.1 → 3.4.0, release notes:
1119 * `3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12345698>`__
1120 * `3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12346637>`__
1121 * `3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12347807>`__
1122 * `3.3.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12350586>`__
1123 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12330874>`__
1125 * maven-surefire-plugin 2.22.2 → 3.0.0-M6, release notes:
1126 * `3.0.0-M1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12342871>`__
1127 * `3.0.0-M2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344396>`__
1128 * `3.0.0-M3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12342872>`__
1129 * `3.0.0-M4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344668>`__
1130 * `3.0.0-M5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344612>`__
1131 * `3.0.0-M6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344613>`__
1133 * project-info-reports-plugin `3.2.2 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12351604>`__
1135 * spotbugs-maven-plugin `4.6.0.0 → 4.7.0.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.0.0>`__
1139 This is a major upgrade from version 9, with breaking changes; downstream projects may need to make changes to upgrade
1142 Log4Shell and similar vulnerabilities
1143 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
1144 This release addresses following security issues by its adopting ``log4j-2.17.1``,
1145 ``logback-1.2.10`` and ``pax-logging-2.0.14``:
1147 * `CVE-2021-42550 <https://nvd.nist.gov/vuln/detail/CVE-2021-42550>`__ and related problems
1148 were further mitigated by reducing complexity in ``logback-1.2.10``
1150 * `CVE-2021-44228 <https://nvd.nist.gov/vuln/detail/CVE-2021-44228>`__
1152 * `CVE-2021-44832 <https://nvd.nist.gov/vuln/detail/CVE-2021-44832>`__
1154 * `CVE-2021-45046 <https://nvd.nist.gov/vuln/detail/CVE-2021-45046>`__
1156 * `CVE-2021-45105 <https://nvd.nist.gov/vuln/detail/CVE-2021-45105>`__
1158 Upstream version removals
1159 ~~~~~~~~~~~~~~~~~~~~~~~~~
1160 The following upstream dependencies have been removed from dependency/plugin management:
1162 * Declaration of ``blueprint-maven-plugin`` has been removed. This plugin has not seen a release in 3 years
1163 and its use typically leads to split container definitions. Users are advised to migrate to either
1164 hand-written Blueprint XML files or, preferrably, migrate to OSGi Declarative Services. See
1165 `ODLPARENT-267 <https://jira.opendaylight.org/browse/ODLPARENT-267>`__ for more information.
1167 * The declaration and execution of ``maven-pmd-plugin`` has been removed. See
1168 `ODLPARENT-269 <https://jira.opendaylight.org/browse/ODLPARENT-269>`__ for more information.
1170 * All ``Xtend`` dependency and plugin declarations have been removed. Xtend is currently only used by
1171 a single artifact in MD-SAL, hence the dependency is best managed there. Furthermore Xtend is facing
1172 challenges around maintainership, hence its use is discouraged. See
1173 `ODLPARENT-273 <https://jira.opendaylight.org/browse/ODLPARENT-273>`__ for more information.
1175 * All ``Powermock`` dependency declarations have been removed. We have very few remaining downstream
1176 users, who can manage this dependency themselves. The version of ``Mockito`` we declare has facilities
1177 to cover all use cases previously covered only by PowerMock. See
1178 `ODLPARENT-275 <https://jira.opendaylight.org/browse/ODLPARENT-275>`__ for more information.
1180 * Declarations of ``osgi.annotation``, ``osgi.cmpn`` and ``osgi.core`` have been removed. These are
1181 monolithic JARs providing, which are no longer shipped in OSGi Release 8. Users are advised to use
1182 component dependencies, such as ``org.osgi.annotation.bundle``, ``org.osgi.framework``,
1183 ``org.osgi.service.component.annotations`` and similar. See
1184 `ODLPARENT-277 <https://jira.opendaylight.org/browse/ODLPARENT-277>`__ for more information.
1186 * The ``H2 Database`` version declaration has been removed. It is used only by as single downstream
1187 user, who also provides its OSGi packaging and hence it is best maintained there.
1189 Improvements and new features
1190 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
1191 * Minimum ``Maven`` version required to build projects using ``odlparent`` has been raised to ``3.8.3``.
1192 See `ODLPARENT-260 <https://jira.opendaylight.org/browse/ODLPARENT-260>`__ for more information.
1193 * Unit tests are now using ``JUnit 5 Jupiter Engime`` for unit test execution, with ``JUnit 4`` tests
1194 supported by ``junit-vintage-engine``. This enables downstreams to use the much more modern JUnit 5 APIs
1195 as well as the corresponding Mockito integration out of the box. See
1196 `ODLPARENT-271 <https://jira.opendaylight.org/browse/ODLPARENT-271>`__ for more information.
1197 * A CycloneDX SBOM is generated by default for all artifacts using ``odlparent-lite``. See
1198 `ODLPARENT-280 <https://jira.opendaylight.org/browse/ODLPARENT-280>`__ for more information.
1199 * ``netty-transport-native-epoll`` is now supported on Linux/AArch64. See
1200 `ODLPARENT-241 <https://jira.opendaylight.org/browse/ODLPARENT-241>`__ for more information.
1201 * A number of stale Karaf ``custom.properties`` have been removed. See
1202 `ODLPARENT-34 <https://jira.opendaylight.org/browse/ODLPARENT-34>`__ for more information.
1203 * Karaf features are now tested when building with Java versions up to and including 17.
1204 * SpotBugs analysis is now enabled when building with Java versions up to and including 17.
1206 Third-party dependencies
1207 ~~~~~~~~~~~~~~~~~~~~~~~~
1208 * Bouncy Castle `1.69 → 1.70 <https://www.bouncycastle.org/releasenotes.html#r1rv70>`__
1210 * Checkstyle 8.45.1 → 9.2.1, release notes:
1211 * `9.0 <https://checkstyle.org/releasenotes.html#Release_9.0>`__
1212 * `9.0 <https://checkstyle.org/releasenotes.html#Release_9.0.1>`__
1213 * `9.1 <https://checkstyle.org/releasenotes.html#Release_9.1>`__
1214 * `9.2 <https://checkstyle.org/releasenotes.html#Release_9.2>`__
1215 * `9.2.1 <https://checkstyle.org/releasenotes.html#Release_9.2.1>`__
1217 * Dropwizard Metrics 4.1.25 → 4.2.8, release notes:
1218 * `4.2.0 <https://github.com/dropwizard/metrics/releases/tag/v4.2.0>`__
1219 * `4.2.1 <https://github.com/dropwizard/metrics/releases/tag/v4.2.1>`__
1220 * `4.2.2 <https://github.com/dropwizard/metrics/releases/tag/v4.2.2>`__
1221 * `4.2.3 <https://github.com/dropwizard/metrics/releases/tag/v4.2.3>`__
1222 * `4.2.4 <https://github.com/dropwizard/metrics/releases/tag/v4.2.4>`__
1223 * `4.2.5 <https://github.com/dropwizard/metrics/releases/tag/v4.2.5>`__
1224 * `4.2.6 <https://github.com/dropwizard/metrics/releases/tag/v4.2.6>`__
1225 * `4.2.7 <https://github.com/dropwizard/metrics/releases/tag/v4.2.7>`__
1226 * `4.2.8 <https://github.com/dropwizard/metrics/releases/tag/v4.2.8>`__
1228 * GSON `2.8.9 → 2.9.0 <https://github.com/google/gson/releases/tag/gson-parent-2.9.0>`__
1230 * Guava 30.1.1 → 31.1, release notes:
1231 * `31.0 <https://github.com/google/guava/releases/tag/v31.0>`__
1232 * `31.0.1 <https://github.com/google/guava/releases/tag/v31.0.1>`__
1233 * `31.1 <https://github.com/google/guava/releases/tag/v31.1>`__
1235 * Jackson `2.16.5 → 2.16.6 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.6>`__
1237 * Javassist 3.27.0 → 3.28.0
1239 * Karaf 4.3.3 → 4.3.6, release notes:
1240 * `4.3.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12350547>`__
1241 * `4.3.5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12350856>`__
1242 * `4.3.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12351123>`__
1244 * Log4J 2.14.1 → 2.17.1, release notes:
1245 * `2.15.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.15.0>`__
1246 * `2.16.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.16.0>`__
1247 * `2.17.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.17.0>`__
1248 * `2.17.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.17.1>`__
1250 * Logback `1.2.5 → 1.2.10 <http://logback.qos.ch/news.html>`__
1252 * Mockito 3.12.4 → 4.3.1, release notes:
1253 * `4.0.0 <https://github.com/mockito/mockito/releases/tag/v4.0.0>`__
1254 * `4.2.0 <https://github.com/mockito/mockito/releases/tag/v4.1.0>`__
1255 * `4.3.0 <https://github.com/mockito/mockito/releases/tag/v4.2.0>`__
1256 * `4.3.1 <https://github.com/mockito/mockito/releases/tag/v4.3.1>`__
1258 * Netty 4.1.67 → 4.1.74, release notes:
1259 * `4.1.70 <https://netty.io/news/2021/10/11/4-1-70-Final.html>`__
1260 * `4.1.71 <https://netty.io/news/2021/12/09/4-1-71-Final.html>`__
1261 * `4.1.72 <https://netty.io/news/2021/12/13/4-1-72-Final.html>`__
1262 * `4.1.73 <https://netty.io/news/2022/01/12/4-1-73-Final.html>`__
1263 * `4.1.74 <https://netty.io/news/2022/02/08/4-1-74-Final.html>`__
1265 * Sevntu `1.40.0 → 1.41.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.41.0>`__
1267 * Woodstox 6.2.6 → 6.2.8, release notes:
1268 * `6.2.7 <https://github.com/FasterXML/woodstox/milestone/24?closed=1>`__
1269 * `6.2.8 <https://github.com/FasterXML/woodstox/milestone/26?closed=1>`__
1271 * xmlunit 2.8.3 → 2.9.0, release notes:
1272 * `2.8.4 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.4>`__
1273 * `2.9.0 <https://github.com/xmlunit/xmlunit/releases/tag/v2.9.0>`__
1277 * asciidoctor-maven-plugin `2.2.1 → 2.2.2 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.2>`__
1279 * bnd-maven-plugin 6.0.0 → 6.2.0, release notes:
1280 * `6.1.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.1.0>`__
1281 * `6.2.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.2.0>`__
1283 * builder-helper-maven-plugin `3.2.0 → 3.3.0 <https://github.com/mojohaus/build-helper-maven-plugin/releases/tag/build-helper-maven-plugin-3.3.0>`__
1285 * git-commit-id-maven-plugin `4.0.5 → 5.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v5.0.0>`__
1287 * maven-compiler-plugin 3.8.1 → 3.10.0, release notes:
1288 * `3.9.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12345214>`__
1289 * `3.10.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12351256>`__
1291 * maven-bundle-plugin 5.1.2 → 5.1.4, release notes:
1292 * `5.1.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12350117>`__
1293 * `5.1.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12351195>`__
1295 * maven-jar-plugin 3.2.0 → 3.2.2, release notes:
1296 * `3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12348050>`__
1297 * `3.2.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12351215>`__
1299 * maven-plugin-plugin `3.6.1 → 3.6.2 <https://maven.apache.org/docs/3.6.2/release-notes.html>`__
1301 * maven-site-plugin `3.9.1 → 3.10.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317923&version=12348370>`__
1303 * modernizer-maven-plugin `2.2.0 → 2.3.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.3.0>`__
1305 * spotbugs-maven-plugin 3.12.2 → 4.5.3, release notes:
1306 `4.0.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#400---2020-02-15>`__
1307 `4.0.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#401---2020-03-19>`__
1308 `4.0.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#402---2020-04-15>`__
1309 `4.0.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#403---2020-05-13>`__
1310 `4.0.4 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#404---2020-06-09>`__
1311 `4.0.5 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#405---2020-06-20>`__
1312 `4.0.6 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#406---2020-06-23>`__
1313 `4.1.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#410---2020-07-30>`__
1314 `4.1.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#411---2020-07-31>`__
1315 `4.1.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#412---2020-08-18>`__
1316 `4.1.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#413---2020-09-25>`__
1317 `4.1.4 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#414---2020-10-15>`__
1318 `4.2.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#420---2020-11-28>`__
1319 `4.2.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#421---2021-02-04>`__
1320 `4.2.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#422---2021-03-03>`__
1321 `4.2.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#423---2021-04-12>`__
1322 `4.3.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#430---2021-07-01>`__
1323 `4.4.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#440---2021-08-12>`__
1324 `4.4.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#441---2021-09-07>`__
1325 `4.4.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#442---2021-10-08>`__
1326 `4.5.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#450---2021-11-05>`__
1327 `4.5.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#451---2021-12-08>`__
1328 `4.5.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#452---2021-12-13>`__
1329 `4.5.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#453---2022-01-04>`__
1333 This is a bug-fix upgrade from version 9.0.7.
1337 * The fix for `ODLPARENT-220 <https://jira.opendaylight.org/browse/ODLPARENT-220>`__ ended up
1338 changing behavior and packaging ``INFO.yaml`` instead of ``PROJECT_INFO.yaml``. This has now
1343 This is a bug-fix upgrade from version 9.0.6.
1347 * The upgrade of ``maven-dependency-plugin`` to version 3.2.0 has caused a regression in accuracy
1348 of reports, with quite a few false positives being generated. The declaration has been rolled
1349 back to version 3.1.2 with a few tweaks to improve JDK compatibility. See
1350 `ODLPARENT-270 <https://jira.opendaylight.org/browse/ODLPARENT-270>`__ for more information.
1354 * The declaration and invocation of ``script-maven-plugin`` has been replaced with a dedicated
1355 plugin providing the same functionality in a much more performant way. See
1356 `ODLPARENT-220 <https://jira.opendaylight.org/browse/ODLPARENT-220>`__ for more information.
1358 * A new parent pom.xml, ``bnd-parent``, is now available as an alternative to the existing
1359 ``bundle-parent``. It has a more streamlined integration with other plugins, for example
1360 maven-jar-plugin, and a much healthier community. See
1361 `ODLPARENT-258 <https://jira.opendaylight.org/browse/ODLPARENT-258>`__ for more information.
1363 * The definition of ``odl-karaf-feat-jdbc`` feature has been reworked to not pull in the entire
1364 ``enterprise`` feature repository, leading to significant savings in terms of Karaf distribution
1365 size for most downstream projects. See
1366 `ODLPARENT-266 <https://jira.opendaylight.org/browse/ODLPARENT-266>`__ for more information.
1368 * The declaration of ``maven-compiler-plugin`` is now available in ``odlparent-lite``. This is
1369 improves locality, as the JDK version enforcement is already part of odlparent-lite.
1371 Third-party dependencies
1372 ~~~~~~~~~~~~~~~~~~~~~~~~
1373 * GSON 2.8.5 → 2.8.8, release notes:
1374 * `2.8.6 <https://github.com/google/gson/blob/master/CHANGELOG.md#version-286>`__
1375 * `2.8.7 <https://github.com/google/gson/blob/master/CHANGELOG.md#version-287>`__
1376 * `2.8.8 <https://github.com/google/gson/blob/master/CHANGELOG.md#version-288>`__
1378 * Jolokia `1.7.0 → 1.7.1 <https://jolokia.org/changes-report.html#a1.7.1>`__
1380 * Mockito 3.9.0 → 3.12.4, release notes:
1381 * `3.9.2 <https://github.com/mockito/mockito/releases/tag/v3.9.2>`__
1382 * `3.9.3 <https://github.com/mockito/mockito/releases/tag/v3.9.3>`__
1383 * `3.9.7 <https://github.com/mockito/mockito/releases/tag/v3.9.7>`__
1384 * `3.9.9 <https://github.com/mockito/mockito/releases/tag/v3.9.9>`__
1385 * `3.9.10 <https://github.com/mockito/mockito/releases/tag/v3.9.10>`__
1386 * `3.11.0 <https://github.com/mockito/mockito/releases/tag/v3.11.0>`__
1387 * `3.11.1 <https://github.com/mockito/mockito/releases/tag/v3.11.1>`__
1388 * `3.11.2 <https://github.com/mockito/mockito/releases/tag/v3.11.2>`__
1389 * `3.12.0 <https://github.com/mockito/mockito/releases/tag/v3.12.0>`__
1390 * `3.12.1 <https://github.com/mockito/mockito/releases/tag/v3.12.1>`__
1391 * `3.12.2 <https://github.com/mockito/mockito/releases/tag/v3.12.2>`__
1392 * `3.12.3 <https://github.com/mockito/mockito/releases/tag/v3.12.3>`__
1394 * Netty 4.1.67 → 4.1.69, release notes:
1395 * `4.1.68 <https://netty.io/news/2021/09/09/4-1-68-Final.html>`__
1396 * `4.1.69 <https://netty.io/news/2021/10/11/4-1-69-Final.html>`__
1400 This is a bug-fix upgrade from version 9.0.5.
1402 Third-party dependencies
1403 ~~~~~~~~~~~~~~~~~~~~~~~~
1404 * Jackson 2.11.4 → 2.12.5, release notes:
1405 * `2.12 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12>`__
1406 * `2.12.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.1>`__
1407 * `2.12.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.2>`__
1408 * `2.12.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.3>`__
1409 * `2.12.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.4>`__
1410 * `2.12.5 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.5>`__
1412 * Jetty 9.4.40 → 9.4.43.v20210629, release notes:
1413 * `9.4.41.v20210516 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.41.v20210516>`__
1414 * `9.4.42.v20210604 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.42.v20210604>`__
1415 * `9.4.43.v20210629 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.43.v20210629>`__
1417 * Jolokia `1.6.2 → 1.7.0 <https://jolokia.org/changes-report.html#a1.7.0>`__
1419 * Karaf `4.3.2 → 4.3.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12350142>`__
1421 * Pax URL 2.5.4 → 2.6.7, release notes:
1422 * `2.6.0 <https://github.com/ops4j/org.ops4j.pax.url/milestone/67?closed=1>`__
1423 * `2.6.3 <https://github.com/ops4j/org.ops4j.pax.url/milestone/68?closed=1>`__
1424 * `2.6.4 <https://github.com/ops4j/org.ops4j.pax.url/milestone/69?closed=1>`__
1425 * `2.6.6 <https://github.com/ops4j/org.ops4j.pax.url/milestone/71?closed=1>`__
1426 * `2.6.7 <https://github.com/ops4j/org.ops4j.pax.url/milestone/72?closed=1>`__
1430 * maven-enforcer-plugin `3.0.0-M3 → 3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12346527>`__
1432 * asciidoctor-maven-plugin 2.1.0 → 2.2.1
1436 This is a minor upgrade from version 9.0.4.
1440 * Previous patch to address Bouncy Castle missed a critical piece for populating boot class path. This has now
1446 This is a minor upgrade from version 9.0.3.
1450 * The upgrade to Bouncy Castle 1.69 turned out to be broken due to some code movement and introduction of a new
1451 ``bcutil-jdk15on`` artifact. It has also highlighted duplicate packaging, where Karaf's features would install
1452 version 1.66, while we have been on a newer version for some time. Both these issues have now ween resolved.
1453 See `ODLPARENT-254 <https://jira.opendaylight.org/browse/ODLPARENT-254>`__ for more information.
1458 This is a minor upgrade from version 9.0.2.
1460 Third-party dependencies
1461 ~~~~~~~~~~~~~~~~~~~~~~~~
1462 * awaitility `4.0.3 → 4.1.0 <https://raw.githubusercontent.com/awaitility/awaitility/master/changelog.txt>`__
1464 * Bouncy Castle `1.68 → 1.69 <https://www.bouncycastle.org/releasenotes.html>`__
1466 * Checkstyle 8.42 → 8.45.1, release notes:
1467 * `8.43 <https://checkstyle.org/releasenotes.html#Release_8.43>`__
1468 * `8.44 <https://checkstyle.org/releasenotes.html#Release_8.44>`__
1469 * `8.45 <https://checkstyle.org/releasenotes.html#Release_8.45>`__
1470 * `8.45.1 <https://checkstyle.org/releasenotes.html#Release_8.45.1>`__
1472 * commons-io 2.8.0 → 2.11.0, release notes:
1473 * `2.9.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.9.0>`__
1474 * `2.10.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.10.0>`__
1475 * `2.11.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.11.0>`__
1477 * Dropwizard Metrics 4.1.21 → 4.1.25, release notes:
1478 * `4.1.22 <https://github.com/dropwizard/metrics/releases/tag/v4.1.22>`__
1479 * `4.1.23 <https://github.com/dropwizard/metrics/releases/tag/v4.1.23>`__
1480 * `4.1.24 <https://github.com/dropwizard/metrics/releases/tag/v4.1.24>`__
1481 * `4.1.25 <https://github.com/dropwizard/metrics/releases/tag/v4.1.25>`__
1483 * Google Truth `1.1.2 → 1.1.3 <https://github.com/google/truth/releases/tag/release_1_1_3>`__
1485 * logback 1.2.3 → 1.2.5, release notes:
1486 * `1.2.4 <https://jira.qos.ch/issues/?jql=project+%3D+LOGBACK+AND+fixVersion+%3D+1.2.4>`__
1487 * `1.2.5 <https://jira.qos.ch/issues/?jql=project+%3D+LOGBACK+AND+fixVersion+%3D+1.2.5>`__
1489 * Netty 4.1.65 → 4.1.67, release notes:
1490 * `4.1.66 <https://netty.io/news/2021/07/16/4-1-66-Final.html>`__
1491 * `4.1.67 <https://netty.io/news/2021/08/16/4-1-67-Final.html>`__
1493 * Sevntu `1.39.0 → 1.40.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.40.0>`__
1495 * ThreeTen `1.6.0 → 1.7.0 <https://www.threeten.org/threeten-extra/changes-report.html#a1.7.0>`__
1499 * git-commit-id-plugin `4.0.4 → 4.0.5 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.5>`__
1501 * Jacoco Maven plugin `0.8.6 → 0.8.7 <https://github.com/jacoco/jacoco/releases/tag/v0.8.7>`__
1503 * maven-dependency-plugin `3.1.2 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12348705>`__
1505 * maven-plugin-plugin `3.6.0 → 3.6.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12344365>`__
1507 * project-info-reports-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12349521>`__
1511 This is a minor upgrade from version 9.0.1.
1515 * The upgrade to Karaf 4.3.0 caused a slight misalignment of ``org.apache.felix.metatype``
1516 and ``org.osgi.service.event`` versions, leading to an unnecessary rewiring of the container
1517 most notably during Single Feature Test. This has now been corrected.
1518 See `ODLPARENT-253 <https://jira.opendaylight.org/browse/ODLPARENT-253>`__ for more information.
1520 * ``stax-utils`` component has a default dependency on ``com.bea.xml:jsr174-ri``, which is not
1521 resolvable from Maven Central. This artifact is not needed with modern JRE versions, hence add
1522 an explicit exclusion.
1524 Third-party dependencies
1525 ~~~~~~~~~~~~~~~~~~~~~~~~
1526 * Jetty 9.4.38.v20210224 → 9.4.40.v20210413, release notes:
1527 * `9.4.39.v20210325 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.39.v20210325>`__
1528 * `9.4.40.v20210413 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.40.v20210413>`__
1530 * Karaf `4.3.1 → 4.3.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12349968>`__
1532 * Netty `4.1.63 → 4.1.65 <https://netty.io/news/2021/05/19/4-1-65-Final.html>`__
1536 This is a minor upgrade from version 9.0.0.
1540 The upgrade of ``duplicate-finder-maven-plugin`` ended up triggering build failures on ``.api_description``
1541 files packaged in artifacts. This regression has now been fixed.
1543 Third-party dependencies
1544 ~~~~~~~~~~~~~~~~~~~~~~~~
1545 * Checkstyle `8.41 → 8.42 <https://checkstyle.org/releasenotes.html#Release_8.42>`__.
1547 * Dropwizard Metrics 4.1.19 → 4.1.21, release notes:
1548 * `4.1.20 <https://github.com/dropwizard/metrics/releases/tag/v4.1.20>`__
1549 * `4.1.21 <https://github.com/dropwizard/metrics/releases/tag/v4.1.21>`__
1551 * LMAX Disruptor 3.4.2 → 3.4.4, release notes:
1552 * `3.4.3 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.3>`__
1553 * `3.4.3 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.4>`__
1555 * Woodstox `6.2.5 → 6.2.6 <https://github.com/FasterXML/woodstox/milestone/23?closed=1>`__
1557 * XBean finder `4.18 → 4.19 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12348824>`__
1561 * maven-bundle-plugin 4.2.1 → 5.1.2, release notes:
1562 * `5.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12346016>`__
1563 * `5.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12350026>`__
1567 This is a major upgrade from version 8, with breaking changes; downstream projects may need to make changes to upgrade
1570 Upstream version removals
1571 ~~~~~~~~~~~~~~~~~~~~~~~~~
1572 The following upstream dependencies have been removed from dependency management:
1574 * ``javax.inject:javax.inject``. This dependency should be provided by target runtime. Furthermore we provide the same
1575 functionality via ``com.guicedee.services:javax.inject``, which is properly declared and is a JPMS module. See
1576 `ODLPARENT-246 <https://jira.opendaylight.org/browse/ODLPARENT-246>`__ for more information.
1580 * The configuration of ``maven-compiler-plugin`` has been updated to expand ``javac`` warning options to include almost
1582 * The default description in parent ``pom.xml`` has been updated to only include ``${project.artifactId}``, not a generic
1583 blurb. See `ODLPARENT-244 <https://jira.opendaylight.org/browse/ODLPARENT-244>`__ for more information.
1584 * The ``single-feature-test`` substrate has been updated to allow Java Flight Recorder to be enabled during testing runs.
1585 This feature has falled into disrepair as the JFR facility has been productized.
1586 * Configuration of various components has been updated to be deactivated when executing with JDK versions newer than 11,
1587 so that odlparent infrastructure works out of the box with JDK 16, albeit sacrificing some validation. Most notably
1588 ``SpotBugs`` and ``Single Feature Test`` are disabled, with corresponding notices displayed.
1589 * We now expose the ability to check dependency declaration consistency via ``maven-dependency-plugin``'s ``analyze-only``
1590 goal. This functionality is enabled by default, but does not cause the build to fail when inconsistencies are found. It
1591 can be disabled by on a per-artifact basis by definining ``odlparent.dependency.skip`` property to ``true``. It can also
1592 be configured to fail the build on a per-artifact basis by defining ``odlparent.dependency.enforce`` property to ``true``.
1594 Third-party dependencies
1595 ~~~~~~~~~~~~~~~~~~~~~~~~
1596 * Antlr 4.8-1 → 4.9.2, release notes:
1597 * `4.9 <https://github.com/antlr/antlr4/releases/tag/4.9>`__
1598 * `4.9.1 <https://github.com/antlr/antlr4/releases/tag/4.9.1>`__
1599 * `4.9.2 <https://github.com/antlr/antlr4/releases/tag/4.9.2>`__
1601 * Checkstyle 8.39.0 → 8.41.1, release notes:
1602 * `8.40.0 <https://checkstyle.org/releasenotes.html#Release_8.40.0>`__
1603 * `8.41.0 <https://checkstyle.org/releasenotes.html#Release_8.41.0>`__
1604 * `8.41.1 <https://checkstyle.org/releasenotes.html#Release_8.41.1>`__
1606 * commons-lang3 `3.11 → 3.12.0 <https://commons.apache.org/proper/commons-lang/changes-report.html#a3.12.0>`__
1608 * Dropwizard Metrics 4.1.12.1 → 4.1.19, release notes:
1609 * `4.1.13 <https://github.com/dropwizard/metrics/releases/tag/v4.1.13>`__
1610 * `4.1.14 <https://github.com/dropwizard/metrics/releases/tag/v4.1.14>`__
1611 * `4.1.15 <https://github.com/dropwizard/metrics/releases/tag/v4.1.15>`__
1612 * `4.1.16 <https://github.com/dropwizard/metrics/releases/tag/v4.1.16>`__
1613 * `4.1.17 <https://github.com/dropwizard/metrics/releases/tag/v4.1.17>`__
1614 * `4.1.18 <https://github.com/dropwizard/metrics/releases/tag/v4.1.18>`__
1615 * `4.1.19 <https://github.com/dropwizard/metrics/releases/tag/v4.1.19>`__
1617 * Enunciate `2.13.2 → 2.13.3 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.3>`__
1619 * Google Truth 1.1 → 1.1.2, release notes:
1620 * `1.1.1 <https://github.com/google/truth/releases/tag/release_1_1_1>`__
1621 * `1.1.2 <https://github.com/google/truth/releases/tag/release_1_1_2>`__
1623 * Guava 29.0 → 30.1.1, release notes:
1624 * `30.0 <https://github.com/google/guava/releases/tag/v30.0>`__
1625 * `30.1 <https://github.com/google/guava/releases/tag/v30.1>`__
1626 * `30.1.1 <https://github.com/google/guava/releases/tag/v30.1.1>`__
1628 * JUnit `4.13.1 → 4.13.2 <https://github.com/junit-team/junit4/blob/HEAD/doc/ReleaseNotes4.13.2.md>`__
1630 * Karaf `4.3.0 → 4.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12348818>`__
1632 * Log4J 2.13.3 → 2.14.1, release notes:
1633 * `2.14.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.14.0>`__
1634 * `2.14.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.14.1>`__
1636 * Netty 4.1.59 → 4.1.63, release notes:
1637 * `4.1.60 <https://netty.io/news/2021/03/09/4-1-60-Final.html>`__
1638 * `4.1.61 <https://netty.io/news/2021/03/30/4-1-61-Final.html>`__
1639 * `4.1.62 <https://netty.io/news/2021/03/31/4-1-62-Final.html>`__
1640 * `4.1.63 <https://netty.io/news/2021/04/01/4-1-63-Final.html>`__
1642 * Sevntu `1.38.0 → 1.39.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.39.0>`__
1644 * ThreeTen `1.5.0 → 1.6.0 <https://www.threeten.org/threeten-extra/changes-report.html#a1.6.0>`__
1646 * Woodstox `6.2.4 → 6.2.5 <https://github.com/FasterXML/woodstox/milestone/22?closed=1>`__
1648 * Xtend `2.24.0 → 2.25.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2021/03/02/version-2-25-0>`__
1652 * Asciidoctor 1.5.7.1 → 2.1.0 (with related AsciidoctorJ upgrades)
1653 * `2.0.0 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.0.0>`__
1654 * `2.1.0 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.1.0>`__
1656 * git-commit-id-plugin 3.0.1 → 4.0.4, release notes:
1657 * `4.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.0>`__
1658 * `4.0.1 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.1>`__
1659 * `4.0.2 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.2>`__
1660 * `4.0.3 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.3>`__
1661 * `4.0.4 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.4>`__
1663 * modernizer-maven-plugin `2.1.0 → 2.2.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.2.0>`__
1667 This is a minor upgrade from version 8.1.0.
1671 * Support for building a `static Karaf distribution <https://karaf.apache.org/manual/latest/#_instances_and_distributions_goals>`__
1672 has been added. It is driven by a new parent pom.xml, ``karaf-dist-static``. For more information
1673 see Karaf documentation and `ODLPARENT-251 <https://jira.opendaylight.org/browse/ODLPARENT-251>`__.
1674 * Support for `improved documentation tags <https://bugs.openjdk.java.net/browse/JDK-8068562>`__ has
1675 been added to default ``maven-javadoc-plugin`` configuration. See
1676 `ODLPARENT-252 <https://jira.opendaylight.org/browse/ODLPARENT-252>`__ for more information.
1677 * Version declaration for ``osgi.annotation`` has been added.
1679 Third-party dependencies
1680 ~~~~~~~~~~~~~~~~~~~~~~~~
1681 * commons-net `3.7.2 → 3.8.0 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.8.0>`__
1683 * Netty `4.1.58 → 4.1.59 <https://netty.io/news/2021/02/08/4-1-59-Final.html>`__
1685 * Woodstox `6.2.3 → 6.2.4 <https://github.com/FasterXML/woodstox/milestone/21?closed=1>`__
1689 * maven-checkstyle-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12347024>`__
1691 * maven-invoker-plugin `3.2.1 → 3.2.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12346157>`__
1695 This is a minor upgrade from version 8.0.1, with some potentially-breaking
1698 The most prominent is the upgrade to Karaf 4.3.0, which brings in a host of
1699 updates to related components -- including OSGi Release 7 and Jackson 2.11.x.
1703 * The ``odl-jackson-2.10`` feature and artifact were renamed to ``odl-jackson-2.11``
1704 to reflect the bump in Jackson version.
1706 Third-party dependencies
1707 ~~~~~~~~~~~~~~~~~~~~~~~~
1708 * Bouncy Castle `1.66 → 1.68 <https://www.bouncycastle.org/releasenotes.html>`__
1710 * Checkstyle 8.36.1 → 8.39.0, release notes:
1711 * `8.36.2 <https://checkstyle.org/releasenotes.html#Release_8.36.2>`__
1712 * `8.37.0 <https://checkstyle.org/releasenotes.html#Release_8.37.0>`__
1713 * `8.38.0 <https://checkstyle.org/releasenotes.html#Release_8.38.0>`__
1714 * `8.39.0 <https://checkstyle.org/releasenotes.html#Release_8.39.0>`__
1716 * commons-net 3.7 → 3.7.2, release notes:
1717 * `3.7.1 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.7.1>`__
1718 * `3.7.2 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.7.2>`__
1720 * enunciate `2.13.1 → 2.13.2 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.2>`__
1722 * Jackson 2.10.5 → 2.11.4, release notes:
1723 * `2.11.0 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11>`__
1724 * `2.11.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.1>`__
1725 * `2.11.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.2>`__
1726 * `2.11.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.3>`__
1727 * `2.11.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.4>`__
1729 * Karaf `4.2.10 → 4.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12343304>`__
1731 * Netty 4.1.53 → 4.1.58, release notes:
1732 * `4.1.54 <https://netty.io/news/2020/11/11/4-1-54-Final.html>`__
1733 * `4.1.55 <https://netty.io/news/2020/12/08/4-1-55-Final.html>`__
1734 * `4.1.56 <https://netty.io/news/2020/12/17/4-1-56-Final.html>`__
1735 * `4.1.57 <https://netty.io/news/2021/01/12/4-1-57-Final.html>`__
1736 * `4.1.58 <https://netty.io/news/2021/01/13/4-1-58-Final.html>`__
1738 * Google Truth `1.0.1 → 1.1 <https://github.com/google/truth/releases/tag/release_1_1>`__
1740 * Powermock 2.0.7 → 2.0.9, release notes:
1741 * `2.0.8 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#208>`__
1742 * `2.0.9 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#209>`__
1744 * Sevntu `1.37.1 → 1.38.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.38.0>`__
1746 * XBean finder `4.17 → 4.18 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12348171>`__
1748 * xmlunit 2.7.0 → 2.8.2, release notes:
1749 * `2.8.0 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.0>`__
1750 * `2.8.1 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.1>`__
1751 * `2.8.2 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.2>`__
1753 * Xtend `2.23.0 → 2.24.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2020/12/01/version-2-24-0>`__
1757 * build-helper-maven-plugin `3.1.0 → 3.2.0 <https://github.com/mojohaus/build-helper-maven-plugin/issues?q=is%3Aissue+milestone%3A3.1.0+is%3Aclosed>`__
1759 * duplicate-finder-maven-plugin `1.4.0 → 1.5.0 <https://github.com/basepom/duplicate-finder-maven-plugin/releases/tag/duplicate-finder-maven-plugin-1.5.0>`__
1761 * exec-maven-plugin `1.6.0 → 3.0.0 <https://github.com/mojohaus/exec-maven-plugin/releases/tag/exec-maven-plugin-3.0.0>`__
1763 * maven-pmd-plugin `3.13.0 → 3.14.0 <https://www.mail-archive.com/announce@maven.apache.org/msg00978.html>`__
1765 * maven-resource-plugin `3.9.0 → 3.9.1 <https://www.mail-archive.com/announce@maven.apache.org/msg00972.html>`__
1767 * maven-site-plugin `3.9.0 → 3.9.1 <https://www.mail-archive.com/announce@maven.apache.org/msg00966.html>`__
1769 * versions-maven-plugin `2.7 → 2.8.1 <https://github.com/mojohaus/versions-maven-plugin/releases/tag/versions-maven-plugin-2.8.1>`__
1774 This is a minor big-fix/enhancement update from verision 8.0.0.
1778 * ``javax.inject`` is now provided by the artifact from `GuicedEE <https://guicedee.com/>`__.
1779 This improves things a lot, as it is a proper jar (not MANIFEST.MF warning), it also is
1780 a JPMS module, hence can be used for linkage. This dependency is properly ``scope=provided``,
1781 so it should not leak into runtimes where it should not be.
1782 See `ODLPARENT-247 <https://jira.opendaylight.org/browse/ODLPARENT-247>`__ for details.
1784 * Transitive dependencies of Guava are now mostly filtered from runtime, so that we do not
1785 require ``wrap`` for them. We still retain checker-qual, as we are actively using those
1786 and it is a proper bundle.
1787 See `ODLPARENT-248 <https://jira.opendaylight.org/browse/ODLPARENT-248>`__ for details.
1789 Third-party dependencies
1790 ~~~~~~~~~~~~~~~~~~~~~~~~
1791 * Jackson `2.10.4 → 2.10.5 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10.5>`__
1793 * JaCoCo `0.8.5 → 0.8.6 <https://github.com/jacoco/jacoco/releases/tag/v0.8.6>`__
1795 * JUnit `4.13.0 → 4.13.1 <https://github.com/junit-team/junit4/blob/HEAD/doc/ReleaseNotes4.13.1.md>`__
1797 * Karaf `4.2.9 → 4.2.10 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12348288>`__
1799 * Netty `4.1.52 → 4.1.53 <https://netty.io/news/2020/10/13/4-1-53-Final.html>`__
1801 * Pax-Exam `4.13.3 → 4.13.4 <https://ops4j1.jira.com/secure/ReleaseNote.jspa?projectId=10170&version=24393>`__
1803 * Woodstox 6.2.1 → 6.2.3, fixed issues:
1804 * `6.2.2 <https://github.com/FasterXML/woodstox/issues/112>`__
1805 * `6.2.3 <https://github.com/FasterXML/woodstox/issues/117>`__
1810 This is a major upgrade from version 7, with breaking changes; downstream projects may need to make changes to upgrade
1815 * ``modernizer-maven-plugin`` configuration has been updated to issue warnings for constructs
1816 improved in all Java versions up to and including Java 11.
1818 * ``modernizer-maven-plugin`` is configured by default to fail the build when it issues any
1819 warnings. This behavior can be opted-out of on a per-artifact basis by defining
1820 ``odlparent.modernizer.enforce`` property to ``false``.
1822 Upstream version removals
1823 ~~~~~~~~~~~~~~~~~~~~~~~~~
1824 The following upstream dependencies have been removed from dependency management:
1826 * ``javax.json``. This dependency is used only in Neutron project, hence this version is best
1827 maintained there. See `ODLPARENT-238 <https://jira.opendaylight.org/browse/ODLPARENT-238>`__
1830 * All ``org.eclipse.persistence`` artifacts. These dependencies are only used in Neutron,
1831 which actually duplicates the declarations, hence they are best maintained there.
1832 See `ODLPARENT-237 <https://jira.opendaylight.org/browse/ODLPARENT-237>`__ for details.
1834 * All ``org.apache.sshd`` and ``net.i2p.crypto`` artifacts. Overriding versions does not play
1835 nice with Karaf's versions during ``feature:install``, causing issues when the installing
1836 over an SSH connection. NETCONF project is providing a repackaged version in OpenDaylight
1837 namespace. See `ODLPARENT-233 <https://jira.opendaylight.org/browse/ODLPARENT-233>`__ for
1840 * ``jettison``. This dependency is used only in LISP Flow Mapping project for integration
1841 tests, hence this version is best maintained there.
1842 See `ODLPARENT-239 <https://jira.opendaylight.org/browse/ODLPARENT-239>`__ for details.
1844 * All ``com.typesafe``, ``io.aeron``, ``org.agrona``, ``org.scala-lang`` declarations. Akka is
1845 removing their support for OSGi, with no working releases in their current ``2.6.x.`` branch.
1846 Since dealing with these requires quite a bit of dance, which needs to sit outside of odlparent POM,
1847 the controller project will package Akka to the extent it needs.
1848 See `ODLPARENT-243 <https://jira.opendaylight.org/browse/ODLPARENT-243>`__ for details.
1850 * ``org.apache.felix.dependencymanager`` and ``org.apache.felix.dependencymanager.shell``. These
1851 components are ancient, having been replaced by either Blueprint or Declarative Services. The only
1852 project using these is AAA, hence it is best to maintain these declarations there.
1856 * ``odl-apache-sshd`` feature has been removed, mirroring the removal of related dependency
1857 declarations. See `ODLPARENT-233 <https://jira.opendaylight.org/browse/ODLPARENT-233>`__ for details.
1859 * ``odl-akka-all``, ``odl-akka-scala-2.13``, ``odl-akka-system-2.5``, ``odl-akka-clustering-2.5``
1860 and ``odl-akka-persistence-2.5`` features. mirroring the removal of related dependency declarations.
1861 See `ODLPARENT-243 <https://jira.opendaylight.org/browse/ODLPARENT-243>`__ for details.
1863 Third-party dependencies
1864 ~~~~~~~~~~~~~~~~~~~~~~~~
1865 * awaitility `3.0.0 → 4.0.3 <https://github.com/awaitility/awaitility/wiki/ReleaseNotes40>`__
1867 * checkstyle 8.34 → 8.36.1, release notes:
1868 * `8.35 <https://checkstyle.org/releasenotes.html#Release_8.35>`__
1869 * `8.36 <https://checkstyle.org/releasenotes.html#Release_8.36>`__
1870 * `8.36.1 <https://checkstyle.org/releasenotes.html#Release_8.36.1>`__
1872 * commons-codec `1.14 → 1.15 <https://commons.apache.org/proper/commons-codec/changes-report.html#a1.15>`__
1874 * commons-io `2.7 → 2.8.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.8.0>`__
1876 * commons-net `3.6 → 3.7 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.7>`__
1878 * dropwizard-metrics 4.1.9 → 4.1.12.1, release notes:
1879 * `4.1.10 <https://github.com/dropwizard/metrics/releases/tag/v4.1.10>`__
1880 * `4.1.10.1 <https://github.com/dropwizard/metrics/releases/tag/v4.1.10.1>`__
1881 * `4.1.11 <https://github.com/dropwizard/metrics/releases/tag/v4.1.11>`__
1882 * `4.1.12 <https://github.com/dropwizard/metrics/releases/tag/v4.1.12>`__
1883 * `4.1.12.1 <https://github.com/dropwizard/metrics/releases/tag/v4.1.12.1>`__
1885 * Guava `28.2 → 29.0 <https://github.com/google/guava/releases/tag/v29.0>`__
1887 * immutables.org → 2.8.8, release notes:
1888 * `2.8.0 <https://github.com/immutables/immutables/releases/tag/2.8.0>`__
1889 * `2.8.1 <https://github.com/immutables/immutables/releases/tag/2.8.1>`__
1890 * `2.8.2 <https://github.com/immutables/immutables/releases/tag/2.8.2>`__
1891 * `2.8.3 <https://github.com/immutables/immutables/releases/tag/2.8.3>`__
1892 * `2.8.4 <https://github.com/immutables/immutables/releases/tag/2.8.4>`__
1893 * `2.8.8 <https://github.com/immutables/immutables/releases/tag/2.8.8>`__
1895 * mockito `3.3.3 → 3.5.11 <https://github.com/mockito/mockito/blob/release/3.x/doc/release-notes/official.md>`__
1897 * Netty `4.1.51 → 4.1.52 <https://netty.io/news/2020/09/08/4-1-52-Final.html>`__
1899 * Xtend `2.22.0 → 2.23.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2020/09/01/version-2-23-0>`__
1903 * maven-archetype-plugin `3.1.2 → 3.2.0 <https://blogs.apache.org/maven/entry/apache-maven-archetype-plugin-version1>`__
1905 * project-info-reports-plugin `3.1.0 → 3.1.1 <https://blogs.apache.org/maven/entry/apache-maven-project-info-reports1>`__
1909 This is a bug-fix upgrade from version 7.0.4.
1913 * ``odl-netty-4`` feature definition specified both ``x86_64`` and ``aarch64`` artifacts
1914 for ``netty-native-epoll``. This actually results only in ``aarch64`` package being
1915 installed, rendering epoll unavailable on ``x86_64`` architecture. This has been corrected
1916 by removing the ``aarch64`` package.
1917 See `ODLPARENT-240 <https://jira.opendaylight.org/browse/ODLPARENT-240>`__ for details.
1921 This is a security/bug-fix upgrade from version 7.0.3.
1925 * ``Single Feature Test`` setup of the JVM for Karaf container ended up using
1926 wrong versions of Karaf components, leading to a failure to initialize
1927 OSGiLocator and subsequent warnings with stack traces. This has now been
1929 See `ODLPARENT-228 <https://jira.opendaylight.org/browse/ODLPARENT-228>`__ for details.
1930 * Pax-Exam setup interacts badly with pipes used by maven-surefire plugin,
1931 leading to pauses lasting around 30 seconds after SFT test success.
1932 This has now been worked around by using maven-surefire-plugin version 3.0.0-M5,
1933 with TCP sockets used for communication.
1934 See `ODLPARENT-179 <https://jira.opendaylight.org/browse/ODLPARENT-179>`__ for details.
1935 * Our Jersey dependency was held back on version 2.25.1 during Neon upgrade cycle, mostly
1936 due to large-scale incompatibilities around JAX-RS version. We have upgraded to Karaf-4.2.8+,
1937 which pulls in JAX-RS 2.1, hence re-aligning to a more modern version, 2.27, is now
1939 See `ODLPARENT-208 <https://jira.opendaylight.org/browse/ODLPARENT-208>`__ for details.
1941 Third-party dependencies
1942 ~~~~~~~~~~~~~~~~~~~~~~~~
1943 * Bouncy Castle `1.65 → 1.66 <https://www.bouncycastle.org/releasenotes.html>`__
1945 * Checkstyle 8.32 → 8.34, release notes:
1946 * `8.33 <https://checkstyle.org/releasenotes.html#Release_8.33>`__
1947 * `8.34 <https://checkstyle.org/releasenotes.html#Release_8.34>`__
1949 * commons-io `2.6 → 2.7 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.7>`__
1951 * Jersey 2.25.1 → 2.27, release notes:
1952 * `2.26 <https://eclipse-ee4j.github.io/jersey.github.io/release-notes/2.26.html>`__
1953 * `2.27 <https://eclipse-ee4j.github.io/jersey.github.io/release-notes/2.27.html>`__
1955 * Karaf `4.2.8 → 4.2.9, with related upgrades <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345539>`__
1957 * Netty 4.1.49 → 4.1.51, release notes:
1958 * `4.1.50 <https://netty.io/news/2020/05/13/4-1-50-Final.html>`__
1959 * `4.1.51 <https://netty.io/news/2020/07/09/4-1-51-Final.html>`__
1961 * Scala `2.13.2 → 2.13.3 <https://github.com/scala/scala/releases/tag/v2.13.3>`__
1963 * TrieMap `1.1.0 → 1.2.0 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.2.0>`__
1965 * XBean finder 4.14 → 4.17, release notes:
1966 * `4.15 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12345583>`__
1967 * `4.16 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12345584>`__
1968 * `4.17 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12346905>`__
1972 * maven-project-info-reports-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12346620>`__.
1974 * maven-shade-plugin `3.2.3 → 3.2.4 <https://blogs.apache.org/maven/entry/apache-maven-shade-plugin-version5>`__
1978 This is a security/bug-fix upgrade from version 7.0.2. Changes in this release
1979 pertain strictly to Karaf packaging and do not affect other runtimes.
1983 * Felix SCR 2.1.16, as shipping before Karaf-4.2.9, contains a bug, which could
1984 lead to NullPointerException being thrown when components were examined. This
1985 has been rectified via upgrade to Felix SCR 2.1.20.
1986 See `ODLPARENT-236 <https://jira.opendaylight.org/browse/ODLPARENT-236>`__ for details.
1987 * Karaf-4.2.8 changed packaged log4j2 version, rendering the configuration supplied
1988 with ``ODLPARENT-231`` inconsistent. This has led to a warning being printed in the
1989 Karaf console on each startup. This has now been corrected.
1990 * Karaf-4.2.8 is packaging pax-logging-1.11.4, which embeds a a vulnerable version
1991 of log4j2 (2.3.0). This would render the upgrades delivered in version 7.0.2
1992 ineffective at runtime, potentially leading to exposure. This has been corrected
1993 with upgrade of pax-logging to 1.11.6, which is packaging log4j2-2.3.2.
1997 This is a security/bug-fix upgrade from version 7.0.1.
2001 * Infrastructure for identifying confidential log messages was added, along with
2002 Karaf configuration update to routing such messages into a separate log file.
2003 See `ODLPARENT-231 <https://jira.opendaylight.org/browse/ODLPARENT-231>`__ for details.
2005 * Netty has been disconnected from Javassist way back in its 4.1.9 release, but
2006 we failed to notice. This has now been rectified by ``odl-netty-4`` not depending
2007 on ``odl-javassist-3``.
2009 Third-party dependencies
2010 ~~~~~~~~~~~~~~~~~~~~~~~~
2011 * Checkstyle `8.31 → 8.32 <https://checkstyle.org/releasenotes.html#Release_8.32>`__
2013 * Dropwizard Metrics 4.1.5 → 4.1.9, release notes:
2014 * `4.1.6 <https://github.com/dropwizard/metrics/releases/tag/v4.1.6>`__
2015 * `4.1.7 <https://github.com/dropwizard/metrics/releases/tag/v4.1.7>`__
2016 * `4.1.8 <https://github.com/dropwizard/metrics/releases/tag/v4.1.8>`__
2017 * `4.1.9 <https://github.com/dropwizard/metrics/releases/tag/v4.1.9>`__
2019 * Enunciate 2.12.1 → 2.13.1, release notes:
2020 * `2.13.0 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.0>`__
2021 * `2.13.1 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.1>`__
2023 * Jackson 2.10.2 → 2.10.4, release notes:
2024 * `2.10.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10.3>`__
2025 * `2.10.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10.4>`__
2027 * log4j2 2.13.1 → 2.13.3, release notes:
2028 * `2.13.2 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.2>`__
2029 * `2.13.3 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.3>`__
2031 * Netty `4.1.48 → 4.1.49 <https://netty.io/news/2020/02/28/4-1-46-Final.html>`__
2033 * Powermock `2.0.6 → 2.0.7 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#207>`__
2035 * Scala `2.13.1 → 2.13.2 <https://github.com/scala/scala/releases/tag/v2.13.2>`__
2037 * Woodstox 6.1.1 → 6.2.1, release notes:
2038 * `6.2.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.2#620-25-apr-2020>`__
2039 * `6.2.1 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.2#621-13-may-2020>`__
2041 * xmlunit 2.6.3 → 2.7.0, release notes:
2042 * `2.6.4 <https://github.com/xmlunit/xmlunit/releases/tag/v2.6.4>`__
2043 * `2.7.0 <https://github.com/xmlunit/xmlunit/releases/tag/v2.7.0>`__
2047 * builder-helper-maven-plugin `3.0.0 → 3.1.0 <https://github.com/mojohaus/build-helper-maven-plugin/issues?q=is%3Aissue+milestone%3A3.1.0+is%3Aclosed>`__
2049 * duplicate-finder-maven-plugin `1.3.0 → 1.4.0 <https://github.com/basepom/duplicate-finder-maven-plugin/releases/tag/duplicate-finder-maven-plugin-1.4.0>`__
2051 * maven-antrun-plugin `1.8 → 3.0.0 <https://blogs.apache.org/maven/entry/apache-maven-antrun-plugin-version>`__
2053 * maven-assembly-plugin `3.2.0 → 3.3.0 <https://blogs.apache.org/maven/entry/apache-maven-assembly-plugin-version1>`__
2055 * maven-invoker-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12344863>`__
2057 * maven-remote-resources-plugin `1.6.0 → 1.7.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317825&version=12331232>`__
2059 * maven-shade-plugin `3.2.2 → 3.2.3 <https://blogs.apache.org/maven/entry/apache-maven-shade-plugin-version4>`__
2063 This is a bug-fix upgrade from version 7.0.0.
2067 * Upgrade of ``maven-javadoc-plugin`` is causing issues in downstream javadoc jobs and therefore it has been reverted.
2068 See `ODLPARENT-229 <https://jira.opendaylight.org/browse/ODLPARENT-229>`__ for details.
2070 Third-party dependencies
2071 ~~~~~~~~~~~~~~~~~~~~~~~~
2072 * Akka `2.5.30 → 2.5.31 <https://akka.io/blog/news/2020/03/31/akka-2.5.31-released>`__
2074 * Bouncy Castle `1.64 → 1.65 <https://www.bouncycastle.org/releasenotes.html>`__
2076 * Checkstyle `8.30 → 8.31 <https://checkstyle.org/releasenotes.html#Release_8.31>`__
2078 * commons-lang3 `3.9 → 3.10 <https://commons.apache.org/proper/commons-lang/changes-report.html#a3.10>`__
2080 * Xtend 1.19.0 → 1.21.0, release notes:
2081 * `1.20.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/12/03/version-2-20-0>`__
2082 * `1.21.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2020/03/03/version-2-21-0>`__
2086 This is a major upgrade from version 6, with breaking changes; downstream projects may need to make changes to upgrade
2091 * ``enforcer.version`` and ``projectinfo`` properties were removed. These properties do not serve any legal purpose as
2092 the plugins referenced by them are declared in ``pluginManagement`` section.
2094 Upstream version removals
2095 ~~~~~~~~~~~~~~~~~~~~~~~~~
2096 The following upstream dependencies have been removed from dependency management:
2098 * ``immutables.org/value`` without ``<classifier>annotations</classifier>``
2100 * ``javax.xml.bind/jaxb-api``, replaced with ``jakarta.xml.bind/jakarta.xml.bind-api``
2102 * ``com.google.inject/guice``
2104 * ``com.mycila.guice.extensions/mycila-guice-jsr250``
2106 * ``org.apache.shiro/shiro-core``
2108 * ``org.apache.shiro/shiro-web``
2112 * ``odl-akka-leveldb-0.10`` feature was removed. This feature provided leveldb-backed implementation of Akka
2113 Persistence, which is not supported for production environments by upstream. Furthermore this feature relied on a
2114 custom-built binary, which we do not have a means to reproduce -- limiting our portability. The controller project,
2115 which is the only downstream user of persistence provides an alternative implementation, hence we are removing this
2116 historical baggage. See `ODLPARENT-213 <https://jira.opendaylight.org/browse/ODLPARENT-213>`__ for details.
2118 * ``odl-caffeine-2`` feature was removed. This feature provided a ``JSR-107 JCache`` implementation, an API deemed to
2119 be problematic where high-performance and correctness in required.
2123 * OSGi R6 Declarative Services enabled in Karaf. The ``scr`` feature is now part of startup features, hence Service
2124 Component Runtime can be used without incurring an additional refresh.
2125 See `ODLPARENT-227 <https://jira.opendaylight.org/browse/ODLPARENT-227>`__ for details.
2127 Third-party dependencies
2128 ~~~~~~~~~~~~~~~~~~~~~~~~
2129 * Akka `2.5.29 → 2.5.30 <https://akka.io/blog/news/2020/03/12/akka-2.5.30-released>`__
2131 * antl4r `4.7.2 → 4.8-1 <https://github.com/antlr/antlr4/releases/tag/4.8>`__
2133 * Asciidoctor `1.5.7.1 → 1.5.8 <https://github.com/asciidoctor/asciidoctor/releases/tag/v1.5.8>`__
2135 * Checkstyle 8.26 → 8.30, release notes:
2136 * `8.27 <https://checkstyle.org/releasenotes.html#Release_8.27>`__
2137 * `8.28 <https://checkstyle.org/releasenotes.html#Release_8.28>`__
2138 * `8.29 <https://checkstyle.org/releasenotes.html#Release_8.29>`__
2139 * `8.30 <https://checkstyle.org/releasenotes.html#Release_8.30>`__
2141 * Dropwizard Metrics 4.0.5 → 4.1.5, release notes:
2142 * `4.1.0-rc0 <https://github.com/dropwizard/metrics/releases/tag/v4.1.0-rc0>`__
2143 * `4.1.0-rc2 <https://github.com/dropwizard/metrics/releases/tag/v4.1.0-rc2>`__
2144 * `4.1.0-rc3 <https://github.com/dropwizard/metrics/releases/tag/v4.1.0-rc3>`__
2145 * `4.1.1 <https://github.com/dropwizard/metrics/releases/tag/v4.1.1>`__
2146 * `4.1.2 <https://github.com/dropwizard/metrics/releases/tag/v4.1.2>`__
2147 * `4.1.3 <https://github.com/dropwizard/metrics/releases/tag/v4.1.3>`__
2148 * `4.1.4 <https://github.com/dropwizard/metrics/releases/tag/v4.1.4>`__
2150 * Google Truth 0.43 → 1.0.1, release notes:
2151 * `0.44 <https://github.com/google/truth/releases/tag/release_0_44>`__
2152 * `0.45 <https://github.com/google/truth/releases/tag/release_0_45>`__
2153 * `0.46 <https://github.com/google/truth/releases/tag/release_0_46>`__
2154 * `1.0-rc1 <https://github.com/google/truth/releases/tag/release_1_0_rc1>`__
2155 * `1.0-rc2 <https://github.com/google/truth/releases/tag/release_1_0_rc2>`__
2156 * `1.0 <https://github.com/google/truth/releases/tag/release_1_0>`__
2157 * `1.0.1 <https://github.com/google/truth/releases/tag/release_1_0_1>`__
2159 * Guava 27.1 → 28.2, release notes:
2160 * `28.0 <https://github.com/google/guava/releases/tag/v28.0>`__
2161 * `28.1 <https://github.com/google/guava/releases/tag/v28.1>`__
2162 * `28.2 <https://github.com/google/guava/releases/tag/v28.2>`__
2164 * Javassist 3.26.0 → 3.27.0
2166 * jdt-annotations 2.2.100 → 2.2.400
2168 * Karaf 4.2.6 → 4.2.8, with related upgrades, release notes:
2169 * `4.2.7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345539>`__
2170 * `4.2.8 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12346100>`__
2172 * log4j2 `2.13.0 → 2.13.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.1>`__
2174 * Netty 4.1.45 → 4.1.48, release notes:
2175 * `4.1.46 <https://netty.io/news/2020/02/28/4-1-46-Final.html>`__
2176 * `4.1.47 <https://netty.io/news/2020/03/09/4-1-47-Final.html>`__
2177 * `4.1.48 <https://netty.io/news/2020/03/17/4-1-48-Final.html>`__
2179 * Powermock 2.0.4 → 2.0.6, release notes:
2180 * `2.0.5 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#205>`__
2181 * `2.0.6 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#206>`__
2183 * Scala 2.12.10 → 2.13.1, release notes:
2184 * `2.13.0 <https://github.com/scala/scala/releases/tag/v2.13.0>`__
2185 * `2.13.1 <https://github.com/scala/scala/releases/tag/v2.13.1>`__
2187 * scala-java8-compat 0.8.0 → 0.9.1, release notes:
2188 * `0.9.0 <https://github.com/scala/scala-java8-compat/releases/tag/v0.9.0>`__
2189 * `0.9.1 <https://github.com/scala/scala-java8-compat/releases/tag/v0.9.1>`__
2191 * Sevntu 1.36.0 → 1.37.1, release notes:
2192 * `1.37.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.37.0>`__
2193 * `1.37.1 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.37.1>`__
2195 * woodstox-core 5.3.0 → 6.1.1
2200 * findbugs-slf4j `1.4.0 → 1.5.0 <https://github.com/KengoTODA/findbugs-slf4j/blob/master/CHANGELOG.md#150---2019-07-04>`__
2202 * maven-checkstyle-plugin `3.1.0 → 3.1.1 <https://blogs.apache.org/maven/entry/apache-maven-checkstyle-plugin-version1>`__
2204 * maven-dependency-plugin `3.1.1 → 3.1.2 <https://blogs.apache.org/maven/entry/apache-maven-dependency-plugin-version2>`__
2206 * maven-enforcer-plugin `3.0.0-M2 → 3.0.0-M3 <https://blogs.apache.org/maven/entry/apache-maven-enforcer-version-3>`__
2208 * maven-javadoc-plugin `3.1.1 → 3.2.0 <https://blogs.apache.org/maven/entry/apache-maven-javadoc-plugin-version1>`__
2210 * maven-shade-plugin `3.2.1 → 3.2.2 <https://blogs.apache.org/maven/entry/apache-maven-shade-plugin-version3>`__
2212 * modernizer-maven-plugin `2.0.0 → 2.1.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.1.0>`__
2214 * pmd-maven-plugin `3.12.0 → 3.13.0 <https://blogs.apache.org/maven/entry/apache-maven-pmd-plugin-version2>`__
2218 This is a bug-fix upgrade from version 6.0.4.
2220 Third-party dependencies
2221 ~~~~~~~~~~~~~~~~~~~~~~~~
2222 * Akka 2.5.26 → 2.5.29, release notes:
2223 * `2.5.27 <https://akka.io/blog/news/2019/12/10/akka-2.5.27-released>`__
2224 * `2.5.29 <https://akka.io/blog/news/2020/01/28/akka-2.5.29-released>`__
2226 * commons-codec `1.13 → 1.14 <https://commons.apache.org/proper/commons-codec/changes-report.html#a1.14>`__
2228 * Jackson `2.9.10 → 2.9.10.20200103 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9#micro-patches>`__
2232 * maven-source-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12346480>`__
2236 This is a bug-fix upgrade from version 6.0.3.
2240 * ``single-feature-test`` was using outdated repositories, including Maven Central,
2241 which `broke on Jan 15, 2020 <https://support.sonatype.com/hc/en-us/articles/360041287334-Central-501-HTTPS-Required>`__.
2242 This has been corrected.
2244 Third-party dependencies
2245 ~~~~~~~~~~~~~~~~~~~~~~~~
2247 * JUnit 4.11 → 4.13, release notes:
2248 * `4.12 <https://github.com/junit-team/junit4/blob/master/doc/ReleaseNotes4.12.md>`__
2249 * `4.13 <https://github.com/junit-team/junit4/blob/master/doc/ReleaseNotes4.13.md>`__
2251 * log4j2 2.11.2 → 2.13.0, release notes:
2252 * `2.12.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.0>`__
2253 * `2.12.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.12.1>`__
2254 * `2.13.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.0>`__
2256 * netty 4.1.42 → 4.1.45, release notes:
2257 * `4.1.43 <https://netty.io/news/2019/10/24/4-1-43-Final.html>`__
2258 * `4.1.44 <https://netty.io/news/2019/12/18/4-1-44-Final.html>`__
2259 * `4.1.45 <https://netty.io/news/2020/01/13/4-1-45-Final.html>`__
2263 * maven-assembly-plugin 2.2-beta5 → 3.2.0
2265 * maven-archetype-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12345957>`__
2269 This is a bug-fix upgrade from version 6.0.2.
2273 * The fix for `ODLPARENT-216 <https://jira.opendaylight.org/browse/ODLPARENT-216>`__ ended up
2274 breaking ``org.kohsuke.metainf-services`` integration. While this could be fixed in downstreams
2275 by adding proper </annotationProcessorPaths> entry, it is a regression from 6.0.1.
2279 This is a security/bug-fix upgrade from version 6.0.1.
2283 * ``single-feature-parent`` was setting up Karaf repositories incorrectly, leading to
2284 the test using unpatched Karaf resources. This has now been fixed and the test run
2285 is using environment equivalent to the contents of the distribution. See
2286 `ODLPARENT-209 <https://jira.opendaylight.org/browse/ODLPARENT-209>`__ for details.
2288 * ``immutables.org`` integration relied on pre-JDK9 way of integration, where the annotation processor
2289 was just dropped as a dependency. This does not work with JDK9+ artifacts which are also explicit
2290 JMPS modules. Note that users are advised to switch to depending on the ``annotations``-classified
2291 artifact. See `ODLPARENT-216 <https://jira.opendaylight.org/browse/ODLPARENT-216>`__ for details.
2293 * Assembled Karaf distribution did not perform proper JDK checks and allowed launching with JDK8,
2294 leading to a failure to install OpenDaylight components with an error stack, which confuses users
2295 not familiar with OSGi. The distribution now refuses to start with anything other than JDK11. See
2296 `ODLPARENT-218 <https://jira.opendaylight.org/browse/ODLPARENT-218>`__ for details.
2298 Third-party dependencies
2299 ~~~~~~~~~~~~~~~~~~~~~~~~
2301 * Akka `2.5.25 → 2.5.26 <https://akka.io/blog/news/2019/10/17/akka-2.5.26-released>`__
2303 * Checkstyle 8.20 → 8.26, release notes:
2304 * `8.21 <https://checkstyle.org/releasenotes.html#Release_8.21>`__
2305 * `8.22 <https://checkstyle.org/releasenotes.html#Release_8.22>`__
2306 * `8.23 <https://checkstyle.org/releasenotes.html#Release_8.23>`__
2307 * `8.24 <https://checkstyle.org/releasenotes.html#Release_8.24>`__
2308 * `8.25 <https://checkstyle.org/releasenotes.html#Release_8.25>`__
2309 * `8.26 <https://checkstyle.org/releasenotes.html#Release_8.26>`__
2311 * H2 database `1.4.199 → 1.4.200 <http://www.h2database.com/html/changelog.html>`__
2313 * Hamcrest `2.1 → 2.2 <https://github.com/hamcrest/JavaHamcrest/releases/tag/v2.2>`__
2315 * JaCoCo `0.8.4 → 0.8.5 <https://github.com/jacoco/jacoco/releases/tag/v0.8.5>`__
2317 * Karaf 4.2.2 → 4.2.6, release notes:
2318 * `4.2.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12344587>`__
2319 * `4.2.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12344856>`__
2320 * `4.2.5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345153>`__
2321 * `4.2.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345365>`__
2323 * Powermock `2.0.2 → 2.0.4 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#204>`__
2325 * Sevntu `1.35.0 → 1.36.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.36.0>`__
2330 * maven-bundle-plugin `4.1.0 → 4.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12345491>`__
2332 * maven-jar-plugin `3.1.2 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12345503>`__
2334 * maven-source-plugin `3.1.0 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12345522>`__
2336 * modernizer-maven-plugin `1.9.0 → 2.0.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.0.0>`__
2340 This is a security/bug-fix upgrade from version 6.0.0.
2344 * ``karaf-plugin`` ignored exceptions coming from its failure to resolve ${karaf.etc} variable. This
2345 has now been fixed and the URL handling has been revised to fix build on Windows. See
2346 `ODLPARENT-214 <https://jira.opendaylight.org/browse/ODLPARENT-214>`__ for details.
2348 * ``leveldb-jni`` jar, which has been seeded to nexus.opendaylight.org long time ago is not published
2349 in Maven Central. This has been resolved by repackaging this jar and publishing it from odlparent.
2350 See `ODLPARENT-210 <https://jira.opendaylight.org/browse/ODLPARENT-210>`__ for details.
2352 Third-party dependencies
2353 ~~~~~~~~~~~~~~~~~~~~~~~~
2355 * Bouncy Castle `1.63 → 1.64 <http://www.bouncycastle.org/releasenotes.html>`__
2357 * Jackson `2.9.9 → 2.9.10 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.10>`__
2359 * Javassist 3.24.1-GA → 3.26.0-GA
2361 * Guice 4.1.0 → 4.2.2, release notes:
2362 * `4.2.0 <https://github.com/google/guice/wiki/Guice42>`__
2363 * `4.2.1 <https://github.com/google/guice/wiki/Guice421>`__
2364 * `4.2.2 <https://github.com/google/guice/wiki/Guice422>`__
2366 * Mockito 2.25.1 → 2.28.2, release notes:
2367 * `2.25.2 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2252>`__
2368 * `2.25.3 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2253>`__
2369 * `2.25.4 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2254>`__
2370 * `2.25.5 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2255>`__
2371 * `2.25.6 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2256>`__
2372 * `2.25.7 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2257>`__
2373 * `2.26.1 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2261>`__
2374 * `2.26.2 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2262>`__
2375 * `2.27.1 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2271>`__
2376 * `2.27.2 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2272>`__
2377 * `2.27.3 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2273>`__
2378 * `2.27.4 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2274>`__
2379 * `2.27.5 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2275>`__
2380 * `2.28.0 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2280>`__
2382 * Netty 4.1.39 → 4.1.42, release notes:
2383 * `4.1.41 <https://netty.io/news/2019/09/12/4-1-41-Final.html>`__
2384 * `4.1.42 <https://netty.io/news/2019/09/25/4-1-42-Final.html>`__
2386 * pt-triemap `1.0.6 → 1.1.0 <https://github.com/PantheonTechnologies/triemap/releases/tag/triemap-1.1.0>`__
2388 * reactive-streams `1.0.2 → 1.0.3 <http://www.reactive-streams.org/announce-1.0.3>`__
2390 * stax2-api `3.1.4 → 4.2 <https://github.com/FasterXML/stax2-api/blob/master/release-notes/VERSION>`__
2392 * woodstox-core 5.0.3 → 5.3.0, release notes:
2393 * `5.1.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-5.1>`__
2394 * `5.2.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-5.2>`__
2395 * `5.3.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-5.3>`__
2399 This is a major upgrade from version 5, with breaking changes; projects will
2400 need to make changes to upgrade to this version.
2404 This release sets ``maven.compiler.release=11`` and enforces that the JDK used to build
2405 is Java 11+. As there may be issues with various maven plugins when faced with JDK9+
2406 constructs and JDK11+ classes, target release can be controlled on a per-artifact
2407 basis (i.e. target Java 10 with ``maven.compiler.release=10`` property).
2409 This release has been validated with ``openjdk-11.0.4`` and is not supported on any lower
2410 version. As usual, we recommend using latest available JDK/JRE for Java 11 during development
2413 Checkstyle/SpotBugs/Modernizer run by default
2414 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2415 With this release code artifacts always run ``maven-checkstyle-plugin``, ``spotbugs-maven-plugin``
2416 and ``modernizer-maven-plugin``. Checkstyle and SpotBugs run in enforcing mode, i.e. will fail
2417 build if any violations are found. Modernizer is configured to report Java 8-compatible constructs
2418 and will not fail the build unless instructed to do so.
2420 Behavior of each of these is controlled via a maven property on a per-artifact basis:
2422 * ``odlparent.checkstyle.enforce`` controls checkstyle enforcement: defaults to ``true``, but can be set to ``false``
2423 * ``odlparent.checkstyle.skip`` controls checkstyle invocation: defaults to ``false``, but can be set to ``true``
2424 * ``odlparent.spotbugs.enforce`` controls SpotBugs enforcement: defaults to ``true``, but can be set to ``false``
2425 * ``odlparent.spotbugs.skip`` controls SpotBugs invocation: defaults to ``false``, but can be set to ``true``
2426 * ``odlparent.modernizer.enforce`` controls modernizer enforcement: defaults to ``false``, but can be set to ``true``
2427 * ``odlparent.modernizer.skip`` controls modernizer invocation: defaults to ``false``, but can be set to ``true``
2428 * ``odlparent.modernizer.target`` controls modernizer Java version: defaults to ``1.8``, but can be set to ``1.11`` or similar
2433 * ``blueprint container`` had ``org.apache.aries.blueprint.preemptiveShutdown`` set to false
2434 to enable it to work with Config Subsystem. As that component is long gone, this property has
2435 been removed as part of `ODLPARENT-34 <https://jira.opendaylight.org/browse/ODLPARENT-34>`__.
2436 Furthermore, system properties related to Config Subsystem/NETCONF integration have been removed
2439 Upstream version removals
2440 ~~~~~~~~~~~~~~~~~~~~~~~~~
2442 The following upstream dependencies have been removed from dependency management:
2444 * com.google.code.findbugs/jsr305
2446 Third-party dependencies
2447 ~~~~~~~~~~~~~~~~~~~~~~~~
2449 The dependency on `xmlunit-assertj` and `modernizer-maven-annotations` has been added and the following
2450 dependencies have been upgraded:
2452 * Akka 2.5.23 → 2.5.25, release notes:
2453 * `2.5.24 <https://akka.io/blog/news/2019/08/09/akka-2.5.24-released>`__
2454 * `2.5.25 <https://akka.io/blog/news/2019/08/20/akka-2.5.25-released>`__
2456 * apache-sshd `2.2.0 → 2.3.0 <https://github.com/apache/mina-sshd/blob/master/docs/changes/2.3.0.md>`__
2458 * Bouncy Castle `1.62 → 1.63 <https://www.bouncycastle.org/releasenotes.html>`__
2460 * commons-beanutils `1.9.3 → 1.9.4 <https://www.apache.org/dist/commons/beanutils/RELEASE-NOTES.txt>`__
2462 * commons-codec `1.12 → 1.13 <http://www.apache.org/dist/commons/codec/RELEASE-NOTES.txt>`__
2464 * commons-text 1.6 → 1.8, release notes:
2465 * `1.7 <https://commons.apache.org/proper/commons-text/changes-report.html#a1.7>`__
2466 * `1.8 <https://commons.apache.org/proper/commons-text/changes-report.html#a1.8>`__
2468 * Checkstyle 8.18 → 8.20, release notes:
2469 * `8.19 <https://checkstyle.org/releasenotes.html#Release_8.19>`__
2470 * `8.20 <https://checkstyle.org/releasenotes.html#Release_8.20>`__
2472 * jackson-databind `2.9.9 → 2.9.9.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9#micro-patches>`__
2474 * jaxb-api 2.2.8 → 2.3.0, aligning it with Karaf-provided version
2476 * Netty 4.1.36 → 4.1.39, release notes:
2477 * `4.1.37 <https://netty.io/news/2019/06/28/4-1-37-Final.html>`__
2478 * `4.1.38 <https://netty.io/news/2019/07/24/4-1-38-Final.html>`__
2479 * `4.1.39 <https://netty.io/news/2019/08/13/4-1-39-Final.html>`__
2481 * Sevntu 1.32.0 → 1.35.0, release notes:
2482 * `1.33.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.33.0>`__
2483 * `1.34.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.34.0>`__
2484 * `1.34.1 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.34.1>`__
2485 * `1.35.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.35.0>`__
2487 * Scala 2.12.8 → 2.12.9, release notes:
2488 * `2.12.9 <https://github.com/scala/scala/releases/tag/v2.12.9>`__
2489 * `2.12.10 <https://github.com/scala/scala/releases/tag/v2.12.10>`__
2491 * slf4j `1.7.25 → 1.7.28 <https://www.slf4j.org/news.html>`__
2493 * triemap `1.0.5 → 1.0.6 <https://github.com/PantheonTechnologies/triemap/releases/tag/triemap-1.0.6>`__
2495 * typesafe/ssl-config `0.3.7 → 0.3.8 <https://github.com/lightbend/ssl-config/compare/v0.3.7...v0.3.8>`__
2497 * Xtend 1.17.1 → 1.19.0, release notes:
2498 * `1.18.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/06/04/version-2-18-0>`__
2499 * `1.19.0 <https://www.eclipse.org/Xtext/releasenotes.html#/releasenotes/2019/09/03/version-2-19-0>`__
2504 * git-commit-id-plugin 2.2.6 → 3.0.1, release notes:
2505 * `3.0.0 <https://github.com/git-commit-id/maven-git-commit-id-plugin/releases/tag/v3.0.0>`__
2506 * `3.0.1 <https://github.com/git-commit-id/maven-git-commit-id-plugin/releases/tag/v3.0.1>`__
2508 * maven-javadoc-plugin `3.1.0 → 3.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12345060>`__
2510 * pmd-maven-plugin `3.11.0 → 3.12.0 <https://blogs.apache.org/maven/entry/apache-maven-pmd-plugin-version1>`__
2512 * spotbugs-maven-plugin 3.1.11 → 3.1.12.2, release notes:
2513 * `3.1.12 <https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-3.1.11...spotbugs-maven-plugin-3.1.12>`__
2514 * `3.1.12.1 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-3.1.12.1>`__
2515 * `3.1.12.2 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-3.1.12.2>`__
2520 This is a bug-fix upgrade from version 5.0.0.
2522 Third-party dependencies
2523 ~~~~~~~~~~~~~~~~~~~~~~~~
2525 The following dependencies have been upgraded:
2527 * Akka 2.5.21 → 2.5.23, release notes:
2528 * `2.5.22 <https://akka.io/blog/news/2019/04/03/akka-2.5.22-released>`__
2529 * `2.5.23 <https://akka.io/blog/news/2019/05/21/akka-2.5.23-released>`__
2531 * asciidoctorj-diagram 1.5.12 → 1.5.16
2533 * Bouncy Castle `1.61 → 1.62 <http://www.bouncycastle.org/releasenotes.html>`__
2535 * commons-lang3 `3.8.1 → 3.9 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`__
2537 * JaCoCo `0.8.3 → 0.8.4 <https://github.com/jacoco/jacoco/releases/tag/v0.8.4>`__
2539 * Jackson `2.9.8 → 2.9.9 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9>`__
2541 * Jolokia 1.6.0 → 1.6.2, release notes:
2542 * `1.6.1 <https://jolokia.org/changes-report.html#a1.6.1>`__
2543 * `1.6.2 <https://jolokia.org/changes-report.html#a1.6.2>`__
2545 * Mockito `2.25.0 → 2.25.1 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2251>`__
2547 * Netty 4.1.34 → 4.1.36, release notes:
2548 * `4.1.35 <https://netty.io/news/2019/04/17/4-1-35-Final.html>`__
2549 * `4.1.36 <https://netty.io/news/2019/04/30/4-1-36-Final.html>`__
2551 * PowerMock 2.0.0 → 2.0.2, release notes:
2552 * `2.0.1 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.1>`__
2553 * `2.0.2 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.2>`__
2555 * Reactive Streams `1.0.1 → 1.0.2 <https://www.lightbend.com/blog/update-reactive-streams-102-released>`__
2557 * scala-parser-combinators `1.1.1 → 1.1.2 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.1.2>`__
2559 * Sevntu `1.32.0 → 1.33.0 <http://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.33.0>`__
2561 * Typesafe Config `1.3.2 → 1.3.3 <https://github.com/lightbend/config/releases/tag/v1.3.3>`__
2563 * triemap `1.0.4 → 1.0.5 <https://github.com/PantheonTechnologies/triemap/releases/tag/triemap-1.0.5>`__
2565 * XBean finder 4.12 → 4.14, release notes:
2566 * `4.13 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12344253&projectId=12310312>`__
2567 * `4.14 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12345220>`__
2569 * xmlunit `2.6.2 → 2.6.3 <https://github.com/xmlunit/xmlunit/releases/tag/v2.6.3>`__
2571 * Xtend `2.17.0 → 2.17.1 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/04/03/version-2-17-1>`__
2576 * maven-archetype-plugin 3.0.1 → 3.1.1, release notes:
2577 * `3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12340346>`__
2578 * `3.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12345450>`__
2580 * maven-bundle-plugin `4.1.0 → 4.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12345047>`__
2582 * maven-checkstyle-plugin `3.1.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12342397>`__
2584 * maven-compiler-plugin `3.8.0 → 3.8.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12343484>`__
2586 * maven-help-plugin `3.1.1 → 3.2.0 <https://blog.soebes.de/blog/2019/04/22/apache-maven-help-plugin-version-3-dot-2-0-released/>`__
2588 * maven-jar-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12344629>`__
2590 * maven-plugin-plugin `3.5.2 → 3.6.0 <https://blogs.apache.org/maven/entry/apache-maven-plugin-tools-version1>`__
2592 * maven-source-plugin `3.0.1 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12336941>`__
2594 * maven-surefire-plugin 2.22.1 → 2.22.2
2599 * ``modernizer-maven-plugin`` declared, allowing downstreams to more easily activate it,
2600 and so detect code which should be updated to more modern equivalent.
2605 * ``odl-caffeine-2`` provides a pre-packaged feature for the Caffeine caching framework,
2606 along with the Guava compabitility layer.
2611 This is a major upgrade from version 4, with breaking changes; projects will
2612 need to make changes to upgrade to this version.
2614 The most significant change is `ODLPARENT-198 <https://jira.opendaylight.org/browse/ODLPARENT-198>`__,
2615 which removes JSR305 from default dependencies and does not present it at class path by default.
2620 ``findbugs`` has been removed, as its only purpose was to provide FindBugs
2621 rule definitions. Equivalent definitions are available in ``spotbugs``.
2626 * ``blueprint-maven-plugin`` used to scan the entire classpath, resulting in potential conflicts
2627 across projects. Scanning is now limited to ``${project.groupId}``, limiting conflict domain
2628 to single project. See `ODLPARENT-109 <https://jira.opendaylight.org/browse/ODLPARENT-109>`__.
2630 * ``bundle-maven-plugin`` configuration ignored generated ServiceLoader service entries,
2631 which has now been fixed. See `ODLPARENT-197 <https://jira.opendaylight.org/browse/ODLPARENT-197>`__.
2633 * Bundle tests are now enabled by default. See `ODLPARENT-158 <https://jira.opendaylight.org/browse/ODLPARENT-158>`__
2634 and `ODLPARENT-80 <https://jira.opendaylight.org/browse/ODLPARENT-80>`__ for details.
2636 * Karaf log file rollover was not explictly set up, leading to inability to easily override
2637 the defaults. See `ODLPARENT-153 <https://jira.opendaylight.org/browse/ODLPARENT-153>`__ for details.
2639 * Karaf log file used to use default maximum 16MiB file size, this has now been increased to 64MiB.
2640 See `ODLPARENT-154 <https://jira.opendaylight.org/browse/ODLPARENT-154>`__.
2642 * ``features-test`` excluded opendaylight-karaf-empty's transitive dependencies, leading
2643 to the need to re-declare them in single-feature-parent. This re-declaration was forgotten
2644 in for ``bcpkix-framework-ext`` and ``bcprov-framework-ext`` bundles, which lead to them
2645 not being present in the local repository. See `ODLPARENT-130 <https://jira.opendaylight.org/browse/ODLPARENT-130>`__.
2647 Upstream version removals
2648 ~~~~~~~~~~~~~~~~~~~~~~~~~
2650 The following upstream dependencies have been removed from dependency management:
2652 * cassandra-driver-core
2654 * org.codehaus.enunciate/enunciate-core-annotations
2656 * org.jboss.resteasy/jaxrs-api
2660 * org.osgi/org.osgi.compendium
2667 * ``features-akka`` feature repository has been integrated into ``features-odlparent``
2669 Third-party dependencies
2670 ~~~~~~~~~~~~~~~~~~~~~~~~
2672 The following dependencies have been upgraded:
2674 * apache-sshd `2.0.0 → 2.2.0 <https://github.com/apache/mina-sshd/compare/sshd-2.0.0...sshd-2.2.0>`__
2676 * Aeron 1.12.0 → 1.15.3, release notes:
2677 * `1.13.0 <https://github.com/real-logic/aeron/releases/tag/1.13.0>`__
2678 * `1.14.0 <https://github.com/real-logic/aeron/releases/tag/1.14.0>`__
2679 * `1.15.0 <https://github.com/real-logic/aeron/releases/tag/1.15.0>`__
2680 * `1.15.1 <https://github.com/real-logic/aeron/releases/tag/1.15.1>`__
2681 * `1.15.2 <https://github.com/real-logic/aeron/releases/tag/1.15.2>`__
2682 * `1.15.3 <https://github.com/real-logic/aeron/releases/tag/1.15.3>`__
2684 * Agrona 0.9.27 → 0.9.33, release notes:
2685 * `0.9.28 <https://github.com/real-logic/agrona/releases/tag/0.9.28>`__
2686 * `0.9.29 <https://github.com/real-logic/agrona/releases/tag/0.9.29>`__
2687 * `0.9.30 <https://github.com/real-logic/agrona/releases/tag/0.9.30>`__
2688 * `0.9.31 <https://github.com/real-logic/agrona/releases/tag/0.9.31>`__
2689 * `0.9.32 <https://github.com/real-logic/agrona/releases/tag/0.9.32>`__
2690 * `0.9.33 <https://github.com/real-logic/agrona/releases/tag/0.9.33>`__
2692 * Akka 2.5.19 → 2.5.21, release notes:
2693 * `2.5.20 <https://akka.io/blog/news/2019/01/29/akka-2.5.20-released>`__
2694 * `2.5.21 <https://akka.io/blog/news/2019/02/13/akka-2.5.21-released>`__
2696 * antl4r `4.7.1 → 4.7.2 <https://github.com/antlr/antlr4/releases/tag/4.7.2>`__
2698 * asciidoctorj-diagram 1.5.11 → 1.5.12
2700 * Bouncy Castle `1.60 → 1.61 <http://www.bouncycastle.org/releasenotes.html>`__
2702 * checkstyle 8.16 → 8.18, release notes:
2703 * `8.17 <http://checkstyle.sourceforge.net/releasenotes.html#Release_8.17>`__
2704 * `8.18 <http://checkstyle.sourceforge.net/releasenotes.html#Release_8.18>`__
2706 * commons-codec `1.11 → 1.12 <http://www.apache.org/dist/commons/codec/RELEASE-NOTES.txt>`__
2708 * Google Error Prone 2.3.2 → 2.3.3
2710 * Google Guava 25.1 → 27.1, release notes:
2711 * `26.0 <https://github.com/google/guava/releases/tag/v26.0>`__
2712 * `27.0 <https://github.com/google/guava/releases/tag/v27.0>`__
2713 * `27.0.1 <https://github.com/google/guava/releases/tag/v27.0.1>`__
2714 * `27.1 <https://github.com/google/guava/releases/tag/v27.1>`__
2716 * Google Truth `0.42 → 0.43 <https://github.com/google/truth/releases/tag/release_0_43>`__
2718 * h2 database `1.4.196 → 1.4.199 <http://www.h2database.com/html/changelog.html>`__
2720 * Immutables `2.7.3 → 2.7.5 <https://github.com/immutables/immutables/#changelog>`__
2722 * Javassist `3.24.0-GA → 3.24.1-GA <https://github.com/jboss-javassist/javassist/releases/tag/rel_3_24_1_ga>`__
2724 * log4j2 `2.11.1 → 2.11.2 <https://github.com/apache/logging-log4j2/blob/log4j-2.11.2/RELEASE-NOTES.md>`__
2726 * Mockito 2.23.4 → 2.25.0, release notes:
2727 * `2.24.0 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2240>`__
2728 * `2.25.0 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2250>`__
2730 * Netty 4.1.32 → 4.1.34, release notes:
2731 * `4.1.32 <https://netty.io/news/2018/11/29/4-1-32-Final.html>`__
2732 * `4.1.33 <https://netty.io/news/2019/01/21/4-1-33-Final.html>`__
2733 * `4.1.34 <https://netty.io/news/2019/03/08/4-1-34-Final.html>`__
2735 * OSGi 5.0.0 → 6.0.0
2737 * Powermockito 1.7.4 → 2.0.0, release notes:
2738 * `2.0.0-beta.5 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.0-beta.5>`__
2739 * `2.0.0-RC.1 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.0-RC.1>`__
2740 * `2.0.0 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.0>`__
2742 * SpotBugs `3.1.9 → 3.1.12 <https://github.com/spotbugs/spotbugs/blob/3.1.12/CHANGELOG.md>`__
2744 * ThreeTen `1.4.0 → 1.5.0 <https://www.threeten.org/threeten-extra/changes-report.html#a1.5.0>`__
2746 * Xtend `2.16.0 → 2.17.0 <http://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/03/05/version-2-17-0>`__
2753 * maven-findbugs-plugin
2758 * jacoco-maven-plugin `0.8.2 → 0.8.3 <https://github.com/jacoco/jacoco/releases/tag/v0.8.3>`__
2760 * maven-invoker-plugin `3.1.0 → 3.2.0 <https://mail-archives.apache.org/mod_mbox/maven-announce/201901.mbox/%3Cop.zvzdg9tbkdkhrr@desktop-2khsk44%3E>`__
2762 * maven-javadoc-plugin `3.0.1 → 3.1.0 <https://mail-archives.apache.org/mod_mbox/maven-announce/201903.mbox/%3C6064d830-474c-4b43-afef-99502c3a305a%40getmailbird.com%3E>`__
2764 * spotbugs-maven-plugin 3.1.8 → 3.1.11
2769 This is a bug-fix upgrade from version 4.0.8.
2774 * ``karaf-plugin`` invocation in ``karaf4-parent`` caused previously
2775 patched features to be overwritten with their stock versions, referencing
2776 bundles which were not populated in the local repository. (See
2777 `ODLPARENT-194 <https://jira.opendaylight.org/browse/ODLPARENT-194>`__.)
2779 * ``karaf-plugin`` version in ``karaf4-parent`` is now provided through
2780 plugin management so downstreams can override it without needing
2781 to repeat its configuration.
2783 * ``karaf-plugin`` no longer reads features twice when running discovery,
2784 speeding up the process a bit.
2786 * Recent versions of the SpotBugs Maven plugin use SLF4J 1.8 beta 2, which
2787 can’t use the 1.7.25 implementation we provide; we therefore provide an
2788 implementation of 1.8 beta 2 when SpotBugs is used. (See
2789 `ODLPARENT-184 <https://jira.opendaylight.org/browse/ODLPARENT-184>`__.)
2794 * ``odl-woodstox`` wraps the Woodstox StAX implementation which is imposed on
2800 This is a bug-fix and minor upstream bump upgrade from version 4.0.7.
2805 * ``bcprov-ext-jdk15on`` is a superset of ``bcprov-jdk15on``, so there’s no
2806 need to ship both; we now only ship the former. In addition, we install the
2807 Bouncy Castle JARs in ``lib/boot`` so that they continue to be available on
2808 the boot classpath (JDK 9 removes the extension mechanism which was used
2809 previously), and provide the corresponding bundles from the boot classpath
2810 instead of using separate JARs in the system repository. (See
2811 `ODLPARENT-183 <https://jira.opendaylight.org/browse/ODLPARENT-183>`__ and
2812 `ODLPARENT-185 <https://jira.opendaylight.org/browse/ODLPARENT-185>`__.)
2814 * A dependency check has been added to ensure that we don’t run into the
2815 TrieMap dependency bug in 4.0.6 again.
2817 * Dependencies pulled in by features are now checked for convergence, and
2818 ``karaf-plugin`` warns when it finds diverging dependencies (the same
2819 artifact with two different versions). Upstream-provided features are
2820 patched to avoid the following divergences (and upgrade some dependencies in
2823 * Aries utilities 1.1.0/1.1.3 (upgraded to 1.1.3).
2824 * Commons Beanutils 1.8.3/1.9.3 (upgraded to 1.9.3).
2825 * Commons Codec 1.8/1.10 (upgraded to 1.11).
2826 * ``javax.mail`` 1.4.4/1.4.7 (upgraded to 1.4.7).
2828 (See `ODLPARENT-189 <https://jira.opendaylight.org/browse/ODLPARENT-189>`__.)
2833 * ``odl-dropwizard-metrics`` provides Dropwizard Metrics (which are also
2834 available in dependency management).
2836 * ``enunciate-maven-plugin`` is added as the replacement for
2837 ``maven-enunciate-plugin``.
2839 Third-party dependencies
2840 ~~~~~~~~~~~~~~~~~~~~~~~~
2842 The following dependencies are no longer provided by the JVM, starting with
2843 version 11, but we make them available via dependency management for projects
2846 * ``javax.annotation-api``.
2848 * JAXB (``jaxb-core``, ``jaxb-impl``).
2850 The following dependencies have been upgraded:
2852 * Checkstyle `8.15 → 8.16 <https://checkstyle.org/releasenotes.html#Release_8.16>`__.
2854 * Dependency Check `4.0.0 → 4.0.2 <https://github.com/jeremylong/DependencyCheck/blob/master/RELEASE_NOTES.md>`__.
2856 * ``git-commit-id`` `2.2.5 → 2.2.6 <https://github.com/ktoso/maven-git-commit-id-plugin/releases>`__.
2858 * Immutables 2.7.1 → 2.7.3:
2860 * `2.7.2 <https://github.com/immutables/immutables#272-2018-11-05>`__.
2861 * `2.7.3 <https://github.com/immutables/immutables#273-2018-11-10>`__.
2863 (2.7.4 breaks our Javadocs.)
2865 * Jackson `2.9.7 → 2.9.8 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.8>`__.
2870 This is a bug-fix release, correcting the ``triemap`` import declaration.
2875 This is a bug-fix and minor upstream packaging upgrade from version 4.0.5.
2880 Single-feature-test was broken with JDK 9 and later and Karaf 4.2.2; this
2881 release adds the additional JVM configuration needed.
2883 Third-party dependencies
2884 ~~~~~~~~~~~~~~~~~~~~~~~~
2886 This release adds the ``triemap`` BOM to dependency management.
2891 This is a bug-fix release: the Karaf Maven plugin, in version 4.2.2, is
2892 `broken <https://issues.apache.org/jira/browse/KARAF-6057>`__ in some cases we
2893 need in OpenDaylight; we revert to 4.2.1 in ``karaf4-parent`` to avoid this.
2898 This is a bug-fix release, reverting the change made in 4.0.3 to handle
2899 building with either ``zip`` or ``tar.gz`` Karaf archives (which breaks
2900 builds in our infrastructure, without the empty Karaf archive).
2905 This is a bug-fix and minor upstream bump upgrade from version 4.0.2.
2910 * Our FindBugs configuration for JDK 9 and later caused the plugin to run
2911 everywhere; instead, this version defines the ``findbugs.skip`` property to
2912 disable the plugin in modules where it would be used otherwise.
2914 * The PowerMock declarations in dependency management missed
2915 ``powermock-api-mockito2``, which is necessary for modules using PowerMock
2918 * The “quick” profile (``-Pq``) now skips SpotBugs.
2920 * JSR-305 annotations are now optional, which fixes a number of issues when
2921 building with newer JDKs.
2923 * We provide JAXB with JDK 11 and later (where it is no longer provided by the
2926 * ``odlparent-artifacts`` has been updated to accurately represent the
2929 * ``javax.activation`` is now excluded from generated features (it’s provided
2930 on Karaf’s boot classpath).
2932 * When the build is configured to build Karaf distributions in ``tar.gz``
2933 archives, but not ``zip`` archives, ``features-test`` used to fail; it will
2934 now used whichever is available
2935 (`ODLPARENT-174 <https://jira.opendaylight.org/browse/ODLPARENT-174>`__).
2937 * Explicit GCs are disabled by default, so that calls to ``System.gc()`` are
2939 (`ODLPARENT-175 <https://jira.opendaylight.org/browse/ODLPARENT-175>`__).
2941 * Null checks are disabled in SpotBugs because of bad interactions with newer
2942 annotations and the bytecode produces by JDK 11 and later for
2943 ``try``-with-resources.
2945 * Akka Persistence expects LevelDB 0.10, so we now pull in that version
2948 Dependency convergence
2949 ~~~~~~~~~~~~~~~~~~~~~~
2951 A number of dependencies have been added or constrained so that projects using
2952 this parent can enforce dependency convergence:
2954 * Karaf’s ``framework`` feature is used as an import POM, so that we converge
2955 by default on the versions used in Karaf.
2957 * The following dependencies have been added to dependency management:
2959 * ``commons-beanutils``
2960 * the Checker Framework
2961 * Error Prone annotations
2962 * ``javax.activation``
2968 The following Karaf features have been added:
2970 * ``odl-antlr4`` (providing ``antlr4-runtime``);
2972 * ``odl-gson`` (providing ``gson``);
2974 * ``odl-jersey-2`` (providing Jersey client, server, and container servlet,
2975 along with the necessary feature dependencies);
2977 * ``odl-servlet-api`` (providing ``javax.servlet-api``);
2979 * ``odl-stax2-api`` (providing ``stax2-api``);
2981 * ``odl-ws-rs-api`` (providing ``javax.ws.rs-api``);
2983 A new ``sonar-jacoco-aggregate`` profile can be used to produce Sonar reports
2984 with aggregated JaCoCo reports. Additionally, Sonar builds (run with
2985 ``-Dsonar``) are detected and run with a number of irrelevant plugins disabled.
2987 Upstream version upgrades
2988 ~~~~~~~~~~~~~~~~~~~~~~~~~
2990 * Akka 2.5.14 → 2.5.19 (and related ``ssl-config``, Aeron and Agrona upgrades):
2992 * `2.5.15 <https://akka.io/blog/news/2018/08/24/akka-2.5.15-released>`__.
2993 * `2.5.16 <https://akka.io/blog/news/2018/08/29/akka-2.5.16-security-fix-released>`__.
2994 * `2.5.17 <https://akka.io/blog/news/2018/09/27/akka-2.5.17-released>`__.
2995 * `2.5.18 <https://akka.io/blog/news/2018/10/07/akka-2.5.18-released>`__.
2996 * `2.5.19 <https://akka.io/blog/news/2018/12/07/akka-2.5.19-released>`__.
2998 * Commons Text `1.4 → 1.6 <http://www.apache.org/dist/commons/text/RELEASE-NOTES.txt>`__.
3000 * Eclipse JDT annotations 2.2.0 → 2.2.100.
3002 * Javassist 3.23.1 → 3.24.0.
3004 * Karaf 4.2.1 → 4.2.2, with related upgrades.
3006 * LMAX Disruptor `3.4.1 → 3.4.2 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.2>`__.
3008 * Mockito `2.20.1 → 2.23.4 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md>`__.
3010 * Netty 4.1.29 → 4.1.31:
3012 * `4.1.30 <https://netty.io/news/2018/09/28/4-1-30-Final.html>`__.
3013 * `4.1.31 <https://netty.io/news/2018/10/30/4-1-31-Final.html>`__.
3015 * Pax Exam 4.12.0 → 4.13.1.
3017 * Scala 2.12.6 → 2.12.8:
3019 * `2.12.7 <https://github.com/scala/scala/releases/tag/v2.12.7>`__.
3020 * `2.12.8 <https://github.com/scala/scala/releases/tag/v2.12.8>`__.
3022 * Wagon HTTP 3.1.0 → 3.2.0.
3024 * Xtend `2.14.0 → 2.16.0 <https://www.eclipse.org/xtend/releasenotes.html>`__.
3026 Plugin version upgrades
3027 ~~~~~~~~~~~~~~~~~~~~~~~
3029 * Asciidoctor `1.5.6 → 1.5.7.1 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases>`__
3030 (with related AsciidoctorJ upgrades).
3032 * Bundle 4.0.0 → 4.1.0.
3034 * Checkstyle `8.12 → 8.15 <https://checkstyle.org/releasenotes.html#Release_8.13>`__.
3036 * DependencyCheck `3.3.2 → 4.0.0 <https://github.com/jeremylong/DependencyCheck/blob/master/RELEASE_NOTES.md>`__.
3038 * Failsafe / Surefire `2.22.0 → 2.22.1 <https://blogs.apache.org/maven/entry/apache-maven-surefire-plugin-version1>`__.
3040 * Help 3.1.0 → 3.1.1.
3042 * JAR 3.1.0 → 3.1.1.
3044 * PMD `3.10.0 → 3.11.0 <https://blogs.apache.org/maven/entry/apache-maven-pmd-plugin-3>`__.
3046 * Remote Resources `1.5 → 1.6.0 <https://blogs.apache.org/maven/entry/apache-maven-remote-resources-plugin>`__.
3049 `3.2.0 → 3.2.1 <https://blog.soebes.de/blog/2018/11/12/apache-maven-shade-plugin-version-3-dot-2-1-released/>`__.
3051 * SpotBugs `3.1.6 → 3.1.9 <https://github.com/spotbugs/spotbugs/blob/release-3.1/CHANGELOG.md>`__.
3053 * XBean finder 4.9 → 4.12.
3055 * XTend 2.14.0 → 2.16.0.
3060 This is a bug-fix and minor upstream bump upgrade from version 4.0.1.
3065 Previous releases overrode Karaf’s ``jre.properties``; this is no longer
3066 necessary, and was causing failures with Java 9 and later (our version of
3067 ``jre.properties`` didn’t have the appropriate settings for anything after
3068 Java 8). This release drops that override. See
3069 `ODLPARENT-168 <https://jira.opendaylight.org/browse/ODLPARENT-168>`__ for
3072 Upstream version upgrades
3073 ~~~~~~~~~~~~~~~~~~~~~~~~~
3075 * Commons Lang `3.8 → 3.8.1 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`__.
3077 * Jackson `2.9.6 → 2.9.7 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.7>`__.
3079 * Netty `4.1.28 → 4.1.29 <http://netty.io/news/2018/08/24/4-1-29-Final.html>`__.
3081 Plugin version upgrades
3082 ~~~~~~~~~~~~~~~~~~~~~~~
3084 * JAR `3.0.2 → 3.1.0 <https://blog.soebes.de/blog/2018/04/10/apache-maven-jar-plugin-version-3-dot-1-dot-0-released>`__.
3086 * Javadoc `3.0.0 → 3.0.1 <https://blogs.apache.org/maven/entry/apache-maven-javadoc-plugin-version>`__.
3088 * Jersey `2.22.2 → 2.25.1 <https://jersey.github.io/release-notes/2.25.html>`__,
3089 along with Glassfish JSON 1.0.4 → 1.1.2.
3091 * Plugin 3.5 → 3.5.2:
3093 * `3.5.1 <https://blog.soebes.de/blog/2018/01/22/apache-maven-plugin-tools-version-3-dot-5-1-released/>`__.
3094 * `3.5.2 <https://blog.soebes.de/blog/2018/05/26/apache-mave-plugin-tools-version-3-dot-5-2-released/>`__.
3096 * Resources `3.0.1 → 3.1.0 <https://blogs.apache.org/maven/entry/apache-maven-resources-plugin-version>`__.
3101 This is a bug-fix and minor upstream bump upgrade from version 4.0.0.
3106 The JaCoCo execution profile was incorrect, breaking Sonar; the report is now
3107 written correctly, so that Sonar can find it.
3109 The Blueprint Maven plugin fails when it encounters Java 9 classes; this is
3110 fixed by forcefully upgrading its dependency on xbean-finder. See
3111 `ODLPARENT-167 <https://jira.opendaylight.org/browse/ODLPARENT-167>`__ for
3114 Upstream version upgrades
3115 ~~~~~~~~~~~~~~~~~~~~~~~~~
3117 * SpotBugs `3.1.6 → 3.1.7 <https://github.com/spotbugs/spotbugs/blob/release-3.1/CHANGELOG.md>`__.
3119 Upstream version additions
3120 ~~~~~~~~~~~~~~~~~~~~~~~~~~
3122 * Mockito Inline is added alongside Mockito Core, to ensure that the versions
3125 Plugin version upgrades
3126 ~~~~~~~~~~~~~~~~~~~~~~~
3128 * Clean `3.0.0 → 3.1.0 <https://blog.soebes.de/blog/2018/04/14/apache-maven-clean-plugin-version-3-dot-1-0-released/>`__.
3130 * Compiler `3.7.0 → 3.8.0 <https://blog.soebes.de/blog/2018/07/30/apache-maven-compiler-plugin-version-3-dot-8-0-released/>`__.
3132 * Dependency 3.0.2 → 3.1.1:
3134 * `3.1.0 <https://blog.soebes.de/blog/2018/04/06/apache-maven-dependency-plugin-version-3-dot-1-0-released/>`__.
3135 * `3.1.1 <https://blog.soebes.de/blog/2018/05/24/apache-maven-dependency-plugin-version-3-dot-1-1-released/>`__.
3137 * Dependency Check `3.3.1 → 3.3.2 <https://github.com/jeremylong/DependencyCheck/blob/master/RELEASE_NOTES.md>`__.
3139 * Enforcer `3.0.0-M1 → 3.0.0-M2 <https://mail-archives.apache.org/mod_mbox/maven-announce/201806.mbox/%3Cop.zko9b2vhkdkhrr%40desktop-2khsk44.dynamic.ziggo.nl%3E>`__.
3141 * Failsafe 2.20.1 → 2.22:
3143 * `2.21 <https://blog.soebes.de/blog/2018/03/06/apache-maven-surefire-plugin-version-2-dot-21-released/>`__.
3144 * `2.22 <https://blog.soebes.de/blog/2018/06/16/apache-maven-surefire-plugin-version-2-dot-22-released/>`__.
3148 * `3.0.0 <https://blog.soebes.de/blog/2018/03/18/apache-maven-help-plugin-version-3-dot-0-0-released/>`__.
3149 * `3.0.1 <https://blog.soebes.de/blog/2018/03/28/apache-maven-help-plugin-version-3-dot-0-1-released/>`__.
3150 * `3.1.0 <https://blog.soebes.de/blog/2018/06/09/apache-maven-help-plugin-version-3-dot-1-0-released/>`__.
3152 * Invoker 2.0.0 → 3.1.0:
3154 * `3.0.0 <https://blog.soebes.de/blog/2017/05/24/apache-maven-invoker-plugin-version-3-dot-0-0-released/>`__.
3155 * `3.1.0 <https://blog.soebes.de/blog/2018/05/31/apache-maven-invoker-plugin-version-3-dot-1-0-released/>`__.
3157 * JAR `3.0.2 → 3.1.0 <https://blog.soebes.de/blog/2018/04/10/apache-maven-jar-plugin-version-3-dot-1-dot-0-released/>`__.
3159 * Project Info Reports `2.9 → 3.0.0 <https://blog.soebes.de/blog/2018/06/27/apache-maven-project-info-reports-plugin-3-dot-0-0-released/>`__.
3161 * Resources `3.0.1 → 3.1.0 <https://blog.soebes.de/blog/2018/05/01/apache-maven-resources-plugin-version-3-dot-1-0-released/>`__.
3163 * Shade `3.1.0 → 3.2.0 <https://blog.soebes.de/blog/2018/09/13/apache-maven-shade-plugin-version-3-dot-2-0-released/>`__.
3165 * Site `3.7 → 3.7.1 <https://blog.soebes.de/blog/2018/04/29/apache-maven-site-plugin-version-3-dot-7-1-released/>`__.
3167 * Surefire 2.18.1 → 2.22.0:
3169 * `2.19 <https://blog.soebes.de/blog/2015/10/19/apache-maven-surefire-plugin-version-2-dot-19-released/>`__.
3170 * `2.19.1 <https://blog.soebes.de/blog/2016/01/03/apache-maven-surefire-plugin-version-2-dot-19-dot-1-released/>`__.
3171 * `2.20 <https://blog.soebes.de/blog/2017/04/12/apache-maven-surefire-plugin-version-2-dot-20-released/>`__.
3172 * `2.21 <https://blog.soebes.de/blog/2018/03/06/apache-maven-surefire-plugin-version-2-dot-21-released/>`__.
3173 * `2.22 <https://blog.soebes.de/blog/2018/06/16/apache-maven-surefire-plugin-version-2-dot-22-released/>`__.
3179 This is a major upgrade from version 3, with breaking changes; projects will
3180 need to make changes to upgrade to this version.
3182 `This Wiki page <https://wiki.opendaylight.org/view/Neon_platform_upgrade>`__
3183 has detailed step-by-step migration instructions.
3185 ODL Parent 4 requires Maven 3.5.3 or later; this is needed in particular to
3186 enable SpotBugs support with current versions of the SpotBugs plugin.
3191 This release’s SpotBugs support doesn’t handle Guava 25.1 correctly, resulting
3192 in false-positives regarding null handling; see
3193 `ODLPARENT-161 <https://jira.opendaylight.org/browse/ODLPARENT-161>`__ for
3194 details. Until this is fixed, the corresponding warnings are disabled, which
3195 matches our existing FindBugs configuration (which suffers from the a variant
3196 of this, with the same consequences).
3198 We are planning on upgrading Akka during the 4.x cycle, even if it results in
3199 a technically breaking upgrade. This is currently blocked on an OSGi bug in
3200 Akka; see `Akka issue 25579 <https://github.com/akka/akka/issues/25579>`__ for
3203 Blueprint and OSGi service handling
3204 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
3206 Previous releases used an OpenDaylight-specific directory for Blueprint XML
3207 files, ``org/opendaylight/blueprint``. It turned out this wasn’t useful, so
3208 version 4 uses the default directory, ``OSGI-INF/blueprint``.
3210 The Maven bundle plugin is now configured to omit the ``Import-Service`` and
3211 ``Export-Service`` headers, since they are deprecated, unnecessary in
3212 OpenDaylight, and liable to cause issues.
3214 With previous releases of OpenDaylight, projects were encouraged to use Pax
3215 CDI API annotations to describe their Blueprint beans, services and injections;
3216 with version 4, Blueprint annotations should be used instead:
3218 * modules should depend on
3219 ``org.apache.aries.blueprint:blueprint-maven-plugin-annotation``, with the
3220 ``<optional>true</optional>`` flag, instead of
3221 ``org.ops4j.pax.cdi:pax-cdi-api``;
3223 * ``@OsgiServiceProvider`` on bean definitions is replaced by ``@Service``;
3225 * ``@OsgiService`` at injection points is replaced by ``@Reference``;
3227 * ``@OsgiService`` on bean definitions, while technically wrong, can be seen in
3228 the OpenDaylight codebase; this is replaced by ``@Service``;
3230 * service lists can be injected using ``@ReferenceList``.
3232 See `this Gerrit patch <https://git.opendaylight.org/gerrit/75699>`__ for an
3238 Builds now warn about unchecked type uses (such as raw types where generics
3241 JUnit and Mockito are always available as test dependencies and no longer need
3242 to be declared in POMs.
3247 An OWASP profile is now available to run OWASP’s dependency checker; this will
3248 check all third-party dependencies against the NVD vulnerability database. To
3249 enable this, run Maven with ``-Powasp``.
3251 Build profile changes
3252 ~~~~~~~~~~~~~~~~~~~~~
3254 ``-Pq`` now skips Modernizer.
3259 ``odl-akka-leveldb-0.10`` wraps LevelDB 0.10 for Akka.
3261 ``odl-apache-commons-codec`` wraps Apache Commons Codec.
3263 ``odl-apache-commons-lang3`` wraps Apache Commons Lang 3.
3265 ``odl-apache-commons-net`` wraps Apache Commons Net.
3267 ``odl-apache-commons-text`` wraps Apache Commons Text.
3269 ``odl-apache-sshd`` wraps Apache SSHD.
3271 ``odl-guava`` provides the default ODL version of Guava; it should be used
3272 instead of ``odl-guava-23`` or the new ``odl-guava-25``.
3274 ``odl-jackson-2.9`` wraps Jackson 2.9.
3276 New FindBugs and SpotBugs settings
3277 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
3279 FindBugs and SpotBugs are configured with
3280 `the SLF4J extension <http://kengotoda.github.io/findbugs-slf4j/>`__ (version
3281 1.4.0 for FindBugs, 1.4.1 for SpotBugs). This will flag misused SLF4J calls, in
3282 particular message templates which don’t match the arguments, and invalid
3283 placeholders (*e.g.* ``%s`` instead of ``{}``).
3288 ``aggregator-parent`` was unusable outside ``odlparent`` and has been removed.
3289 Instead, the ``maven.deploy.skip`` and ``maven.install.skip`` properties are
3290 available to disable deploying and installing artifacts.
3292 Upstream version upgrades
3293 ~~~~~~~~~~~~~~~~~~~~~~~~~
3295 This version upgrades the following third-party dependencies:
3297 * Aeron 1.7.0 → 1.9.3:
3299 * `1.8.0 <https://github.com/real-logic/aeron/releases/tag/1.8.0>`__.
3300 * `1.8.1 <https://github.com/real-logic/aeron/releases/tag/1.8.1>`__.
3301 * `1.8.2 <https://github.com/real-logic/aeron/releases/tag/1.8.2>`__.
3302 * `1.9.0 <https://github.com/real-logic/aeron/releases/tag/1.9.0>`__.
3303 * `1.9.1 <https://github.com/real-logic/aeron/releases/tag/1.9.1>`__.
3304 * `1.9.2 <https://github.com/real-logic/aeron/releases/tag/1.9.2>`__.
3305 * `1.9.3 <https://github.com/real-logic/aeron/releases/tag/1.9.3>`__.
3307 * Agrona 0.9.12 → 0.9.21:
3309 * `0.9.13 <https://github.com/real-logic/agrona/releases/tag/0.9.13>`__.
3310 * `0.9.14 <https://github.com/real-logic/agrona/releases/tag/0.9.14>`__.
3311 * `0.9.15 <https://github.com/real-logic/agrona/releases/tag/0.9.15>`__.
3312 * `0.9.16 <https://github.com/real-logic/agrona/releases/tag/0.9.16>`__.
3313 * `0.9.17 <https://github.com/real-logic/agrona/releases/tag/0.9.17>`__.
3314 * `0.9.18 <https://github.com/real-logic/agrona/releases/tag/0.9.18>`__.
3315 * `0.9.19 <https://github.com/real-logic/agrona/releases/tag/0.9.19>`__.
3316 * `0.9.20 <https://github.com/real-logic/agrona/releases/tag/0.9.20>`__.
3317 * `0.9.21 <https://github.com/real-logic/agrona/releases/tag/0.9.21>`__.
3319 * Akka 2.5.11 → 2.5.14:
3321 * `2.5.12 <https://akka.io/blog/news/2018/04/13/akka-2.5.12-released>`__.
3322 * `2.5.13 <https://akka.io/blog/news/2018/06/08/akka-2.5.13-released>`__.
3323 * `2.5.14 <https://akka.io/blog/news/2018/07/13/akka-2.5.14-released>`__.
3325 * ASM 5.1 → 6.2.1 (synchronised with Karaf).
3327 * Bouncy Castle `1.59 → 1.60 <https://www.bouncycastle.org/releasenotes.html>`__.
3329 * Checkstyle `8.4 → 8.12 <http://checkstyle.sourceforge.net/releasenotes.html#Release_8.12>`__.
3331 * Commons Lang `3.7 → 3.8 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`__.
3333 * Commons Text 1.1 → 1.4:
3335 * `1.2 <https://commons.apache.org/proper/commons-text/release-notes/RELEASE-NOTES-1.2.txt>`__.
3336 * `1.3 <https://commons.apache.org/proper/commons-text/release-notes/RELEASE-NOTES-1.3.txt>`__.
3337 * `1.4 <https://commons.apache.org/proper/commons-text/release-notes/RELEASE-NOTES-1.4.txt>`__.
3339 * Eclipse JDT annotations 2.1.150 → 2.2.0.
3341 * EclipseLink Moxy JAXB `2.7.1 → 2.7.3 <https://www.eclipse.org/eclipselink/releases/2.7.php>`__.
3343 * Enunciate core annotations
3344 `2.10.1 → 2.11.1 <https://github.com/stoicflame/enunciate/releases>`__.
3346 * Felix Metatype 1.1.6 → 1.2.0 (synchronised with Karaf).
3348 * Google Truth `0.40 → 0.42 <https://github.com/google/truth/releases>`__.
3350 * Guava 23.6.1 → 25.1:
3352 * `23.4 <https://github.com/google/guava/releases/tag/v23.4>`__.
3353 * `23.5 <https://github.com/google/guava/releases/tag/v23.5>`__.
3354 * `23.6 <https://github.com/google/guava/releases/tag/v23.6>`__.
3355 * `24.0 <https://github.com/google/guava/releases/tag/v24.0>`__.
3356 * `24.1 <https://github.com/google/guava/releases/tag/v24.1>`__.
3357 * `25.0 <https://github.com/google/guava/releases/tag/v25.0>`__.
3358 * `25.1 <https://github.com/google/guava/releases/tag/v25.1>`__.
3360 * Immutables `2.5.6 → 2.7.1 <https://github.com/immutables/immutables/blob/master/README.md#changelog>`__.
3362 * Jackson 2.8.9 → 2.9.6:
3364 * `2.9 feature overview <https://medium.com/@cowtowncoder/jackson-2-9-features-b2a19029e9ff>`__.
3365 * `2.9 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9>`__.
3366 * `2.9.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.1>`__.
3367 * `2.9.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.2>`__.
3368 * `2.9.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.3>`__.
3369 * `2.9.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.4>`__.
3370 * `2.9.5 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.5>`__.
3371 * `2.9.6 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.6>`__.
3373 * JaCoCo `0.8.1 → 0.8.2 <https://github.com/jacoco/jacoco/releases/tag/v0.8.2>`__.
3375 * Javassist 3.22.0 → 3.23.1. This provides compatibility with Java 9 and later,
3376 and `fixes a file handle leak <https://github.com/jboss-javassist/javassist/issues/165>`__.
3378 * Jettison 1.3.8 → 1.4.0.
3380 * Jetty 9.3.21 → 9.4.11 (synchronised with Karaf):
3382 * `9.4.0 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00097.html>`__.
3383 * `9.4.1 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00100.html>`__.
3384 * `9.4.2 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00101.html>`__.
3385 * `9.4.3 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00102.html>`__.
3386 * `9.4.4 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00105.html>`__.
3387 * `9.4.5 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00107.html>`__.
3388 * `9.4.6 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00109.html>`__.
3389 * `9.4.7 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00111.html>`__.
3390 * `9.4.8 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00114.html>`__.
3391 * `9.4.9 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00117.html>`__.
3392 * `9.4.10 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00119.html>`__.
3393 * `9.4.11 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00122.html>`__.
3395 * Jolokia OSGi `1.5.0 → 1.6.0 <https://jolokia.org/changes-report.html#a1.6.0>`__.
3397 * Karaf 4.1.5 → 4.2.1:
3399 * `4.1.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12342748>`__.
3400 * `4.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12342945>`__.
3402 * LMAX Disruptor 3.3.10 → 3.4.1:
3404 * `3.4.0 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.0>`__.
3405 * `3.4.1 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.1>`__.
3407 * META-INF services 1.7 → 1.8.
3409 * Mockito 1.10.19 → 2.20.1; see
3410 `What’s new in Mockito 2 <https://github.com/mockito/mockito/wiki/What%27s-new-in-Mockito-2>`__
3411 for upgrade instructions and
3412 `the list of issues you might run into <https://asolntsev.github.io/en/2016/10/11/mockito-2.1/>`__.
3414 * Netty 4.1.22 → 4.1.28:
3416 * `4.1.17 <http://netty.io/news/2017/11/08/4-0-53-Final-4-1-17-Final.html>`__.
3417 * `4.1.18 <http://netty.io/news/2017/12/11/4-0-54-Final-4-1-18-Final.html>`__.
3418 * `4.1.19 <http://netty.io/news/2017/12/18/4-1-19-Final.html>`__.
3419 * `4.1.20 <http://netty.io/news/2018/01/22/4-0-55-Final-4-1-20-Final.html>`__.
3420 * `4.1.21 <http://netty.io/news/2018/02/05/4-0-56-Final-4-1-21-Final.html>`__.
3421 * `4.1.22 <http://netty.io/news/2018/02/21/4-1-22-Final.html>`__.
3422 * `4.1.23 <http://netty.io/news/2018/04/04/4-1-23-Final.html>`__.
3423 * `4.1.24 <http://netty.io/news/2018/04/19/4-1-24-Final.html>`__.
3424 * `4.1.25 <http://netty.io/news/2018/05/14/4-1-25-Final.html>`__.
3425 * `4.1.26 <http://netty.io/news/2018/07/10/4-1-26-Final.html>`__.
3426 * `4.1.27 <http://netty.io/news/2018/07/11/4-1-27-Final.html>`__.
3427 * `4.1.28 <http://netty.io/news/2018/07/27/4-1-28-Final.html>`__.
3429 * Pax Exam 4.11.0 → 4.12.0.
3431 * Pax URL 2.5.3 → 2.5.4, which only fixes
3432 `a potential NullPointerException <https://ops4j1.jira.com/browse/PAXURL-346>`__.
3434 * PowerMock 1.6.4 → 1.7.4:
3436 * `1.6.5 <https://github.com/powermock/powermock/releases/tag/powermock-1.6.5>`__.
3437 * `1.6.6 <https://github.com/powermock/powermock/releases/tag/powermock-1.6.6>`__.
3438 * `1.7.0 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.0>`__.
3439 * `1.7.1 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.1>`__.
3440 * `1.7.2 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.2>`__.
3441 * `1.7.3 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.3>`__.
3442 * `1.7.4 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.4>`__.
3444 * Scala parser combinators 1.0.7 → 1.1.1:
3446 * `1.1.0 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.1.0>`__.
3447 * `1.1.1 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.1.1>`__.
3449 * SpotBugs `3.1.0 → 3.1.6 <https://github.com/spotbugs/spotbugs/blob/3.1.6/CHANGELOG.md>`__.
3451 * Threeten Extra `1.3.2 → 1.4 <https://github.com/ThreeTen/threeten-extra/releases>`__.
3453 * Typesafe SSL config 0.2.2 → 0.2.4:
3455 * `0.2.3 <https://github.com/lightbend/ssl-config/releases/tag/v0.2.3>`__.
3456 * `0.2.4 <https://github.com/lightbend/ssl-config/releases/tag/v0.2.4>`__.
3459 `2.10 → 3.1.0 <https://lists.apache.org/thread.html/96024c54db7680697cb066e22a37b0ed5b4498386714a8a9ae1ec9cd@%3Cannounce.maven.apache.org%3E>`__.
3461 * XMLUnit `1.6 → 2.6.2 <https://github.com/xmlunit/xmlunit/blob/master/RELEASE_NOTES.md>`__.
3463 Upstream version additions
3464 ~~~~~~~~~~~~~~~~~~~~~~~~~~
3466 The following upstream dependencies have been added to dependency management:
3468 * Apache SSHD 2.0.0, with EdDSA and Netty support (EdDSA is provided by ``net.i2p.crypto:eddsa``).
3470 * Blueprint annotations (``org.apache.aries.blueprint:blueprint-maven-plugin-annotation``).
3474 * Pax Web 7.2.3 (synchronised with Karaf).
3476 Upstream version removals
3477 ~~~~~~~~~~~~~~~~~~~~~~~~~
3479 The following upstream dependencies have been removed from dependency management:
3483 * Our repackaging of Jersey Servlet.
3485 * JUnit’s ``junit-dep``, which has long been obsolete.
3487 * LevelDB (which is still available as features).
3489 * Pax CDI API — Blueprint annotations should be used instead.
3491 Plugin version upgrades
3492 ~~~~~~~~~~~~~~~~~~~~~~~
3494 The following plugins have been upgraded:
3496 * Blueprint 1.4.0 → 1.10.0.
3498 * Build helper 1.12 → 3.0.0.
3500 * Bundle plugin 3.5.0 → 4.0.0.
3503 `2.17 → 3.0.0 <https://mail-archives.apache.org/mod_mbox/maven-announce/201801.mbox/%3Cop.zchs68akkdkhrr%40desktop-2khsk44.mshome.net%3E>`__.
3506 `1.2.1 → 1.3.0 <https://github.com/basepom/duplicate-finder-maven-plugin/blob/master/CHANGES.md>`__.
3508 * Git commit id `2.2.4 → 2.2.5 <https://github.com/ktoso/maven-git-commit-id-plugin/releases/tag/v2.2.5>`__.
3510 * Jacoco Maven plugin `0.8.1 → 0.8.2 <https://github.com/jacoco/jacoco/releases/tag/v0.8.2>`__.
3512 * Javadoc `3.0.0 → 3.0.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12342283>`__.
3516 * `3.10.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12342689&styleName=Text&projectId=12317621>`__.
3518 * Sevntu `1.29.0 → 1.32.0 <http://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.32.0>`__.
3520 * SpotBugs 3.1.0-RC6 → 3.1.6 (see the SpotBugs changes above).
3525 This version fixes the following issues:
3527 * `ODLPARENT-156 <https://jira.opendaylight.org/browse/ODLPARENT-156>`_:
3528 ``xtend-maven-plugin``’s dependencies end up pulling in conflicting
3529 dependencies. ODL Parent now constrains part of its dependency tree to avoid
3532 This version adds ``odl-jackson-2.8`` to ``odlparent-artifacts``.
3537 This version fixes the following issues:
3539 * `INFRAUTILS-41 <https://jira.opendaylight.org/browse/INFRAUTILS-41>`_:
3540 ``jre.properties`` includes ``com.sun.management`` so that it can be
3541 enabled if necessary. (This doesn’t add a dependency on
3542 ``com.sun.management``, it allows bundles to use it if it is present.)
3544 * `ODLPARENT-136 <https://jira.opendaylight.org/browse/ODLPARENT-136>`_:
3545 ``SingleFeatureTest`` pulls in ``org.osgi.compendium``.
3547 * `ODLPARENT-144 <https://jira.opendaylight.org/browse/ODLPARENT-144>`_:
3548 ``org.apache.karaf.scr.management`` is whitelisted so that it no longer
3549 affects ``SingleFeatureTest``.
3551 * `ODLPARENT-146 <https://jira.opendaylight.org/browse/ODLPARENT-146>`_:
3552 null-related FindBugs checks which produce false-positives with Guava 23.6
3553 and later are disabled, so that this really is fully backwards-compatible
3556 * `ODLPARENT-148 <https://jira.opendaylight.org/browse/ODLPARENT-148>`_:
3557 ``SingleFeatureTest`` preserves ``target/SFT/karaf.log``.
3559 This version includes the following improvements:
3561 * ``custom.properties`` no longer includes OVSDB-specific configuration.
3563 * The ``odl-jersey-1`` feature includes the Jersey client.
3565 * Redundant bundle dependency declarations in ``SingleFeatureTest`` have been
3566 removed (these are declarations which are also present in our base Karaf
3569 * Build errors involving invalid feature or bundle URLs now indicate which
3570 feature is at fault.
3572 * Obsolete Log4J overrides have been removed from ``SingleFeatureTest``.
3574 When building using JDK 9 or 10, the default settings have been changed as
3575 follows to avoid errors or extraneous warnings:
3577 * SFT is disabled (it needs Karaf 4.2 or later);
3579 * Javadocs are generated as HTML 4;
3581 * SpotBugs is disabled on JDK 10 or later;
3583 * FindBugs is disabled on JDK 9 or later.
3585 The following third-party dependencies have been upgraded:
3587 * `EclipseLink Moxy JAXB 2.6.2 → 2.7.1 <https://www.eclipse.org/eclipselink/releases/2.7.php>`_.
3589 * `Google Truth 0.36 → 0.40 <https://github.com/google/truth/releases>`_.
3591 * `Gson 2.8.2 → 2.8.5 <https://github.com/google/gson/blob/master/CHANGELOG.md>`_.
3593 * `Guava 23.6 → 23.6.1 <https://github.com/google/guava/compare/v23.6...v23.6.1>`_.
3594 This addresses CVE-2018-10237 (that’s the only change in this release).
3596 * `Jacoco Maven plugin 0.8.0 → 0.8.1 <https://github.com/jacoco/jacoco/releases/tag/v0.8.1>`_.
3598 * JDT annotations 2.1.0 → 2.1.150.
3600 * `Scala 2.12.5 → 2.12.6 <https://github.com/scala/scala/releases/tag/v2.12.6>`_.
3602 * `Scala Parser Combinators 1.0.6 → 1.0.7 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.0.7>`_.
3604 * `Sevntu 1.24.2 → 1.29.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.29.0>`_.
3606 * `Xtext and Xtend 2.13.0 → 2.14.0 <https://github.com/eclipse/xtext/blob/website-master/xtend-website/_posts/releasenotes/2018-05-23-version-2-14-0.md>`_.
3608 The following Maven plugin has been upgraded:
3610 * `Javadoc 3.0.0 → 3.0.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12342283>`_.
3615 This version fixes the following issues:
3617 * `ODLPARENT-137 <https://jira.opendaylight.org/browse/ODLPARENT-137>`_:
3618 restore the OpenDaylight prompt.
3620 * `ODLPARENT-146 <https://jira.opendaylight.org/browse/ODLPARENT-146>`_:
3621 Guava 23.6 switched from @Nullable to @NullableDecl, which causes false
3622 positives in FindBugs’ ``NP_NONNULL_PARAM_VIOLATION`` rule; we’re
3623 disabling the rule for now.
3628 This version fixes the following issues:
3630 * Mycila dependencies are now “compile” scoped rather than “test”; this allows
3631 child projects to use Guice with Mycila more easily.
3633 * The duplicate finder now ignores ``web.xml`` and BluePrint XML files.
3635 This version includes the following improvements:
3637 * The ``-Pq`` profile skips Maven Modernizer, in preparation for its future
3638 integration (and its use in child projects).
3640 * An OWASP profile, ``-Powasp`` is available for vulnerability checking.
3642 * A new ``odl-jackson-2.8`` feature provides Jackson 2.8 to child projects.
3644 The following third-party dependencies have been added to dependency management:
3646 * `ThreeTen-Extra <http://www.threeten.org/threeten-extra/>`_
3648 The following third-party dependencies have been upgraded:
3650 * Aeron 1.2.5 → 1.7.0; release notes:
3652 * `1.3.0 <https://github.com/real-logic/aeron/releases/tag/1.3.0>`_
3653 * `1.4.0 <https://github.com/real-logic/aeron/releases/tag/1.4.0>`_
3654 * `1.5.0 <https://github.com/real-logic/aeron/releases/tag/1.5.0>`_
3655 * `1.5.1 <https://github.com/real-logic/aeron/releases/tag/1.5.1>`_
3656 * `1.5.2 <https://github.com/real-logic/aeron/releases/tag/1.5.2>`_
3657 * `1.6.0 <https://github.com/real-logic/aeron/releases/tag/1.6.0>`_
3658 * `1.7.0 <https://github.com/real-logic/aeron/releases/tag/1.7.0>`_
3660 * Agrona 0.9.5 → 0.9.12; release notes:
3662 * `0.9.6 <https://github.com/real-logic/Agrona/releases/tag/0.9.6>`_
3663 * `0.9.7 <https://github.com/real-logic/Agrona/releases/tag/0.9.7>`_
3664 * `0.9.8 <https://github.com/real-logic/Agrona/releases/tag/0.9.8>`_
3665 * `0.9.9 <https://github.com/real-logic/Agrona/releases/tag/0.9.9>`_
3666 * `0.9.10 <https://github.com/real-logic/Agrona/releases/tag/0.9.10>`_
3667 * `0.9.11 <https://github.com/real-logic/Agrona/releases/tag/0.9.11>`_
3668 * `0.9.12 <https://github.com/real-logic/Agrona/releases/tag/0.9.12>`_
3670 * Akka 2.5.5 → 2.5.11; release notes:
3672 * `2.5.6 <https://akka.io/blog/news/2017/09/28/akka-2.5.6-released>`_
3673 * `2.5.7 <https://akka.io/blog/news/2017/11/17/akka-2.5.7-released>`_
3674 * `2.5.8 <https://akka.io/blog/news/2017/12/08/akka-2.5.8-released>`_
3675 * `2.5.9 <https://akka.io/blog/news/2018/01/11/akka-2.5.9-released-2.4.x-end-of-life>`_
3676 * `2.5.10 <https://akka.io/blog/news/2018/02/23/akka-2.5.10-released>`_
3677 * `2.5.11 <https://akka.io/blog/news/2018/02/28/akka-2.5.11-released>`_
3679 * Commons Lang 3 `3.6 → 3.7 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`_
3681 * Guava 23.3 → 23.6; release notes:
3683 * `23.4 <https://github.com/google/guava/releases/tag/v23.4>`_
3684 * `23.5 <https://github.com/google/guava/releases/tag/v23.5>`_
3685 * `23.6 <https://github.com/google/guava/releases/tag/v23.6>`_
3687 * H2 database `1.4.193 → 1.4.196 <http://www.h2database.com/html/changelog.html>`_
3689 * Jacoco `0.7.9 → 0.8.0 <https://github.com/jacoco/jacoco/releases/tag/v0.8.0>`_
3691 * Javassist `3.21.0 → 3.22.0 <https://github.com/jboss-javassist/javassist/compare/rel_3_21_0_ga...rel_3_22_0_ga>`_
3693 * lmax-disruptor 3.3.7 → 3.3.10; release notes:
3695 * `3.3.8 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.8>`_
3696 * `3.3.9 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.9>`_
3697 * `3.3.10 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.10>`_
3699 * Netty 4.1.16 → 4.1.22; release notes:
3701 * `4.1.17 <http://netty.io/news/2017/11/08/4-0-53-Final-4-1-17-Final.html>`_
3702 * `4.1.18 <http://netty.io/news/2017/12/11/4-0-54-Final-4-1-18-Final.html>`_
3703 * `4.1.19 <http://netty.io/news/2017/12/18/4-1-19-Final.html>`_
3704 * `4.1.20 <http://netty.io/news/2018/01/22/4-0-55-Final-4-1-20-Final.html>`_
3705 * `4.1.21 <http://netty.io/news/2018/02/05/4-0-56-Final-4-1-21-Final.html>`_
3706 * `4.1.22 <http://netty.io/news/2018/02/21/4-1-22-Final.html>`_
3708 * Scala `2.12.4 → 2.12.5 <http://www.scala-lang.org/news/2.12.5>`_
3710 * Typesafe Config `0.2.1 → 0.2.2 <https://github.com/typesafehub/config/blob/master/NEWS.md>`_
3712 The following Maven plugins have been upgraded:
3714 * FindBugs 3.0.4 → 3.0.5
3716 * Git commit id 2.2.2 → 2.2.4; release notes:
3718 * `2.2.3 <https://github.com/ktoso/maven-git-commit-id-plugin/releases/tag/v2.2.3>`_
3719 * `2.2.4 <https://github.com/ktoso/maven-git-commit-id-plugin/releases/tag/v2.2.4>`_
3724 This version fixes the following issues:
3726 * `ODLPARENT-136`_: ``features-test`` needs ``org.osgi.compendium``.
3728 * Jackson dependencies are declared using ``jackson-bom`` to ensure all they
3731 * ``find-duplicate-classpath-entries`` is run in the “verify” phase rather than
3732 the “validate” phase, which is too early.
3734 * The version of Jetty we pull in is now aligned with that declared in Karaf,
3735 resolving a number of restart and dependency issues.
3737 * Pulling in the ``wrap`` feature unconditionally is no longer necessary, so
3738 ``karaf4-parent`` no longer does so.
3740 * ``metainf-services`` are declared with scope “provided” to avoid their being
3741 included in downstream features (it’s a build-time dependency only).
3743 * ``leveldb-api`` is excluded from ``odl-akka-leveldb-0.7``, and ``jsr250-api``
3744 from ``enunciate-core-annotations``, to avoid duplicate having classes on the
3747 * Since the ``ssh`` feature is excluded from generated features, our Karaf
3748 need to enable it at boot in all cases.
3750 * ``bundle-test-lib`` is now a bundle.
3752 * Since we use static SLF4J loggers, the ``SLF4J_LOGGER_SHOULD_BE_NON_STATIC``
3753 rule needs to be disabled in our FindBugs configuration (this allows
3754 downstream projects to enable ``findbugs-slf4j`` without having to deal with
3755 all the resulting false-positives).
3757 * ``org.apache.karaf.scr.management`` is white-listed in SFT to avoid failures
3758 apparently related to that component (which we don’t care about).
3760 .. _ODLPARENT-136: https://jira.opendaylight.org/browse/ODLPARENT-136
3762 This version upgrades the following third-party dependencies:
3764 * `Antlr 4.7 → 4.7.1`_
3766 * `BouncyCastle 1.58 → 1.59`_
3768 * Jersey 1.17 → 1.19.4 (additionally available as the ``odl-jersey-1`` feature)
3770 * Jolokia 1.3.7 → 1.5.0
3772 * Karaf 4.1.3 → 4.1.5; release notes:
3777 .. _Antlr 4.7 → 4.7.1: https://github.com/antlr/antlr4/releases/tag/4.7.1
3778 .. _BouncyCastle 1.58 → 1.59: https://www.bouncycastle.org/releasenotes.html
3779 .. _Karaf 4.1.4: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12341702
3780 .. _Karaf 4.1.5: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12342294
3785 This version fixes the following issues:
3787 * SingleFeatureTest uses the configured local Maven repository for Pax Exam.
3789 * JavaDoc links are disabled for now to `speed up builds`_. A new
3790 ``javadoc-links`` profile enables the links.
3792 * Conditional feature dependencies are processed, ensuring our
3793 `distribution is complete`_.
3795 * Startup features are `adjusted for Karaf 4.1`_, avoiding unnecessary
3798 * The ``hiddenField`` Checkstyle check is disabled for abstract methods.
3800 * The default logging configuration uses Log4J2, which is the new default in
3803 .. _speed up builds: https://jira.opendaylight.org/browse/ODLPARENT-121
3804 .. _distribution is complete: https://jira.opendaylight.org/browse/ODLPARENT-133
3805 .. _adjusted for Karaf 4.1: https://jira.opendaylight.org/browse/ODLPARENT-134
3807 This version upgrades the following dependencies or plugins:
3809 * ``maven-enforcer-plugin`` 1.4.1 → 3.0.0-M1
3811 * ``maven-javadoc-plugin`` 3.0.0-M1 → 3.0.0
3816 This version fixes the following issues:
3818 * Karaf pulls in an invalid Hibernate feature repository, breaking downstream
3819 dependencies pulling in the “war” feature. ``populate-local-repo`` corrects
3820 the repository dependency.
3829 Build now show compiler warnings and deprecation warnings. This doesn't affect
3830 the result or require any changes currently, it just makes the issues more
3833 New Checkstyle rules
3834 ~~~~~~~~~~~~~~~~~~~~
3836 Checkstyle has been upgraded from 7.6 to 8.4 (see the
3837 `Checkstyle release notes`_ for details), and Sevntu from 1.21.0 to 1.24.2
3838 (note that the latter's group identifier changed from
3839 ``com.github.sevntu.checkstyle`` to ``com.github.sevntu-checkstyle``; you
3840 might need to update your IDE's configuration).
3842 The following Checkstyle rules are enabled; this might require changes in
3843 projects which enforce Checkstyle validation:
3845 * `AvoidHidingCauseExceptionCheck`_
3846 * `FinalClass`_: utility classes must be declared ``final``
3847 * `HiddenField`_: fields must not be shadowed
3848 * `HideUtilityClassConstructor`_: utility classes must hide their constructor
3850 .. _Checkstyle release notes: http://checkstyle.sourceforge.net/releasenotes.html
3852 .. _AvoidHidingCauseExceptionCheck: http://sevntu-checkstyle.github.io/sevntu.checkstyle/apidocs/com/github/sevntu/checkstyle/checks/coding/AvoidHidingCauseExceptionCheck.html
3853 .. _FinalClass: http://checkstyle.sourceforge.net/config_design.html#FinalClass
3854 .. _HiddenField: http://checkstyle.sourceforge.net/config_coding.html#HiddenField
3855 .. _HideUtilityClassConstructor: http://checkstyle.sourceforge.net/config_design.html#HideUtilityClassConstructor
3860 Karaf has been upgraded to 4.1.3. This should be transparent for dependent
3866 * When building a Karaf distribution using ``karaf4-parent``, projects can
3867 specify which archives to build: the ``karaf.archiveZip`` property will
3868 enable ZIP files if true, and ``karaf.archiveTarGz`` will enable
3869 gzip-compressed tarballs if true. By default both are enabled.
3871 * Our Karaf distribution provides Bouncy Castle at startup. Auto-generated
3872 feature descriptors take this into account (they won't embed a Bouncy
3878 * The ``odl-triemap-0.2`` feature wrapping
3879 ``com.github.romix:java-concurrent-hash-trie-map`` was rendered obsolete by
3880 YANG Tools' implementation and has been removed.
3885 * ``odl-javassist-3`` provides Javassist in a feature.
3887 * ``odl-jung-2.1`` provides `JUNG`_ in a feature.
3889 .. _JUNG: http://jung.sourceforge.net/
3891 Upstream version upgrades
3892 ~~~~~~~~~~~~~~~~~~~~~~~~~
3894 The following upstream dependencies have been upgraded:
3896 * Akka 2.4.18 → 2.5.4; release notes:
3904 * `Awaitility 2 → 3`_
3906 * `Bouncy Castle 1.57 → 1.58`_
3908 * `Commons Codec 1.10 → 1.11`_
3910 * `Commons File Upload 1.3.2 → 1.3.3`_
3912 * `Commons IO 2.5 → 2.6`_
3914 * Eclipse JDT annotations 2.0.0 → 2.1.0
3916 * Felix Dependency Manager 4.3.0 → 4.4.1
3917 * Felix Dependency Manager Shell 4.0.4 → 4.0.6
3918 * Felix Metatype 1.1.2 → 1.1.6
3920 * `Google Truth 0.28 → 0.36`_ (with the Java 8 extensions)
3922 * `Gson 2.7 → 2.8.2`_
3924 * Guava 22 → 23.3 along with the associated feature name change from
3925 ``odl-guava-22`` to ``odl-guava-23`` (dependent packages *must* change their
3926 dependency); release notes:
3933 * Immutables 2.4.2 → 2.5.6
3935 * Jackson 2.3.2 → 2.8.9
3937 * Jacoco 0.7.7 → 0.7.9; release notes:
3942 * Jacoco Listeners 2.4 → 3.8
3944 * `Javassist 3.20.0 → 3.21.0`_
3946 * `Jettison 1.3.7 → 1.3.8`_
3948 * `Jolokia 1.3.6 → 1.3.7`_
3950 * `JSONassert 1.3.0 → 1.5.0`_
3952 * `logback 1.2.2 → 1.2.3`_
3954 * `LMAX Disruptor 3.3.6 → 3.3.7`_
3956 * Netty 4.1.8 → 4.1.16; release notes:
3967 * `Pax URL 2.5.2 → 2.5.3`_
3969 * Scala 2.11.11 → 2.12.4; release notes:
3977 * Servlet API 3.0.1 → 3.1.0
3979 * `SLF4J 1.7.21 → 1.7.25`_
3981 * `webcohesion enunciate 2.6.0 → 2.10.1`_
3983 * `Xtend 2.12 → 2.13`_
3985 .. _Akka 2.5.0: http://akka.io/blog/news/2017/04/13/akka-2.5.0-released
3986 .. _Akka 2.5.1: http://akka.io/blog/news/2017/05/02/akka-2.5.1-released
3987 .. _Akka 2.5.2: http://akka.io/blog/news/2017/05/24/akka-2.5.2-released
3988 .. _Akka 2.5.3: http://akka.io/blog/news/2017/06/19/akka-2.5.3-released
3989 .. _Akka 2.5.4: http://akka.io/blog/news/2017/08/10/akka-2.5.4-released
3991 .. _Awaitility 2 → 3: https://github.com/awaitility/awaitility/wiki/ReleaseNotes30
3993 .. _Bouncy Castle 1.57 → 1.58: https://www.bouncycastle.org/releasenotes.html
3995 .. _Commons Codec 1.10 → 1.11: http://www.apache.org/dist/commons/codec/RELEASE-NOTES.txt
3997 .. _Commons File Upload 1.3.2 → 1.3.3: http://www.apache.org/dist/commons/fileupload/RELEASE-NOTES.txt
3999 .. _Commons IO 2.5 → 2.6: http://www.apache.org/dist/commons/io/RELEASE-NOTES.txt
4001 .. _Google Truth 0.28 → 0.36: https://github.com/google/truth/releases
4003 .. _Gson 2.7 → 2.8.2: https://github.com/google/gson/blob/master/CHANGELOG.md
4005 .. _Guava 23: https://github.com/google/guava/wiki/Release23
4006 .. _Guava 23.1: https://github.com/google/guava/releases/tag/v23.1
4007 .. _Guava 23.2: https://github.com/google/guava/releases/tag/v23.2
4008 .. _Guava 23.3: https://github.com/google/guava/releases/tag/v23.3
4010 .. _Jacoco 0.7.8: https://github.com/jacoco/jacoco/releases/tag/v0.7.8
4011 .. _Jacoco 0.7.9: https://github.com/jacoco/jacoco/releases/tag/v0.7.9
4013 .. _Javassist 3.20.0 → 3.21.0: https://github.com/jboss-javassist/javassist/compare/rel_3_20_0_ga...rel_3_21_0_ga
4015 .. _Jettison 1.3.7 → 1.3.8: https://github.com/jettison-json/jettison/compare/jettison-1.3.7...jettison-1.3.8
4017 .. _Jolokia 1.3.6 → 1.3.7: https://github.com/rhuss/jolokia/releases/tag/v1.3.7
4019 .. _JSONassert 1.3.0 → 1.5.0: https://github.com/skyscreamer/JSONassert/releases
4021 .. _logback 1.2.2 → 1.2.3: https://logback.qos.ch/news.html
4023 .. _LMAX Disruptor 3.3.6 → 3.3.7: https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.7
4025 .. _Netty 4.1.9: http://netty.io/news/2017/03/10/4-0-45-Final-4-1-9-Final.html
4026 .. _Netty 4.1.10: http://netty.io/news/2017/04/30/4-0-46-Final-4-1-10-Final.html
4027 .. _Netty 4.1.11: http://netty.io/news/2017/05/12/4-0-47-Final-4-1-11-Final.html
4028 .. _Netty 4.1.12: http://netty.io/news/2017/06/09/4-0-48-Final-4-1-12-Final.html
4029 .. _Netty 4.1.13: http://netty.io/news/2017/07/06/4-0-49-Final-4-1-13-Final.html
4030 .. _Netty 4.1.14: http://netty.io/news/2017/08/03/4-0-50-Final-4-1-14-Final.html
4031 .. _Netty 4.1.15: http://netty.io/news/2017/08/25/4-0-51-Final-4-1-15-Final.html
4032 .. _Netty 4.1.16: http://netty.io/news/2017/09/25/4-0-52-Final-4-1-16-Final.html
4034 .. _Pax URL 2.5.2 → 2.5.3: https://ops4j1.jira.com/browse/PAXURL-345?jql=project%20%3D%20PAXURL%20AND%20fixVersion%20%3D%202.5.3
4036 .. _Scala 2.12.0: https://github.com/scala/scala/releases/tag/v2.12.0
4037 .. _Scala 2.12.1: https://github.com/scala/scala/releases/tag/v2.12.1
4038 .. _Scala 2.12.2: https://github.com/scala/scala/releases/tag/v2.12.2
4039 .. _Scala 2.12.3: https://github.com/scala/scala/releases/tag/v2.12.3
4040 .. _Scala 2.12.4: https://github.com/scala/scala/releases/tag/v2.12.4
4042 .. _SLF4J 1.7.21 → 1.7.25: https://www.slf4j.org/news.html
4044 .. _webcohesion enunciate 2.6.0 → 2.10.1: https://github.com/stoicflame/enunciate/releases
4046 .. _Xtend 2.12 → 2.13: https://www.eclipse.org/xtend/releasenotes.html
4048 Upstream version additions
4049 ~~~~~~~~~~~~~~~~~~~~~~~~~~
4051 The following upstream dependencies have been added to dependency management:
4053 * Commons Text, ``org.apache.commons:commons-text`` (this will allow downstreams
4054 to migrate from ``commons-lang3``\’s ``WordUtils``, which is deprecated)
4056 Upstream version removals
4057 ~~~~~~~~~~~~~~~~~~~~~~~~~
4059 The following upstream dependencies have been removed from dependency
4060 management (they are obsolete and unused):
4064 * Equinox HTTP service bridge
4065 * ``equinoxSDK381`` artifacts
4066 * Coda Hale Metrics, which are mostly unused and should eventually be wrapped
4068 * ``com.google.code.findbugs:jsr305`` (which *must not* be used; this is
4069 enforced — ``annotations`` should be used instead)
4070 * Felix File Install and Web Console
4073 * ``org.mockito:mockito-all`` (which *must not* be used; this is enforced —
4074 ``mockito-core`` should be used instead)
4080 Plugin version upgrades
4081 ~~~~~~~~~~~~~~~~~~~~~~~
4083 The following plugins have been upgraded:
4085 * ``org.apache.servicemix.tooling:depends-maven-plugin`` 1.3.1 → 1.4.0
4086 * ``org.apache.felix:maven-bundle-plugin`` 2.4.0 → 3.3.0
4087 * ``maven-compiler-plugin`` 3.6.1 → 3.7.0
4088 * ``maven-dependency-plugin`` 3.0.1 → 3.0.2
4089 * ``maven-enforcer-plugin`` 1.4.1 → 3.0.0-M1
4090 * ``maven-failsafe-plugin`` 2.18.1 → 2.20.1
4091 * ``maven-javadoc-plugin`` 2.10.4 → 3.0.0-M1
4092 * ``maven-shade-plugin`` 2.4.3 → 3.1.0
4097 * The `Maven Find Duplicates`_ plugin can be enabled by setting the
4098 ``duplicate-finder.skip`` property to ``false``.
4100 * The SpotBugs_ Maven plugin can now be used instead of the FindBugs plugin
4101 (both are available, so no change is required). To use SpotBugs, replace
4102 ``org.codehaus.mojo:findbugs-maven-plugin`` with
4103 ``com.github.spotbugs:spotbugs-maven-plugin``.
4105 .. _Maven Find Duplicates: https://github.com/basepom/duplicate-finder-maven-plugin/
4107 .. _SpotBugs: https://spotbugs.github.io/