1 ========================
2 ODL Parent release notes
3 ========================
7 This is a bug-fix upgrade from version 13.0.3.
9 Third-party dependencies
10 ~~~~~~~~~~~~~~~~~~~~~~~~
11 * Bouncy Castle `1.75 → 1.76 <https://www.bouncycastle.org/releasenotes.html#r1rv76>`__
13 * checker-qual 3.35.0 → 3.37.0
15 * commons-lang3 `3.12.0 → 3.13.0 <https://commons.apache.org/proper/commons-lang/changes-report.html#a3.13.0>`__
17 * Checkstyle 10.12.0 → 10.12.3, release notes:
18 * `10.12.1 <https://checkstyle.org/releasenotes.html#Release_10.12.1>`__
19 * `10.12.2 <https://checkstyle.org/releasenotes.html#Release_10.12.2>`__
20 * `10.12.3 <https://checkstyle.org/releasenotes.html#Release_10.12.3>`__
22 * Guava 32.0.1 → 32.1.2, release notes:
23 * `32.1.0 <https://github.com/google/guava/releases/tag/v32.1.0>`__
24 * `32.1.1 <https://github.com/google/guava/releases/tag/v32.1.1>`__
25 * `32.1.2 <https://github.com/google/guava/releases/tag/v32.1.2>`__
27 * JUnit `5.9.3 → 5.10.0 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.10.0>`__
29 * Mockito `5.4.0 → 5.5.0 <https://github.com/mockito/mockito/releases/tag/v5.5.0>`__
31 * Netty 4.1.94 → 4.1.97, release notes:
32 * `4.1.95 <https://netty.io/news/2023/07/20/4-1-95-Final.html>`__
33 * `4.1.96 <https://netty.io/news/2023/07/27/4-1-96-Final.html>`__
34 * `4.1.97 <https://netty.io/news/2023/08/23/4-1-97-Final.html>`__
38 * asciidoctor-jdiagram 2.2.9 → 2.2.11, release notes:
39 * `2.2.10 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.10>`__
40 * `2.2.11 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.11>`__
42 * depends-maven-plugin `1.4.0 → 1.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311206&version=12339645>`__
44 * maven-enforcer-plugin `3.3.0 → 3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12353101>`__
46 * maven-remote-resources-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317825&version=12352115>`__
48 * metainf-services 1.9 → 1.11
50 * properties-maven-plugin `1.1.0 → 1.2.0 <https://github.com/mojohaus/properties-maven-plugin/releases/tag/1.2.0>`__
54 This is a bug-fix upgrade from version 13.0.2.
58 * The upgrade of ``javax.inject`` to ``1.2.2.1`` is a silent switch to Jakarta EE and has been rolled back
59 to version ``1.0.20.2``.
63 This is a bug-fix upgrade from version 13.0.1.
65 Third-party dependencies
66 ~~~~~~~~~~~~~~~~~~~~~~~~
67 * Antlr `4.12.0 → 4.13.0 <https://github.com/antlr/antlr4/releases/tag/4.13.0>`__
69 * Bouncy Castle 1.73 → 1.75, release notes:
70 * `1.74 <https://www.bouncycastle.org/releasenotes.html#r1rv74>`__
71 * `1.75 <https://www.bouncycastle.org/releasenotes.html#r1rv75>`__
73 * checker-qual 3.34.0 → 3.35.0
75 * commons-io `2.12.0 → 2.13.0, <https://commons.apache.org/proper/commons-io/changes-report.html#a2.13.0>`__
77 * Dropwizard Metrics `4.2.18 → 4.2.19 <https://github.com/dropwizard/metrics/releases/tag/v4.2.19>`__
79 * Guava `32.0.0 → 32.0.1 <https://github.com/google/guava/releases/tag/v32.0.1>`__
81 * Jackson `2.15.1 → 2.15.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15.2>`__
83 * Jersey `2.39.1 → 2.40 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.40>`__
85 * javax.inject 1.0.20.0 → 1.2.2.1
87 * Mockito `5.3.1 → 5.4.0 <https://github.com/mockito/mockito/releases/tag/v5.4.0>`__
89 * Netty `4.1.93 → 4.1.94 <https://netty.io/news/2023/06/19/4-1-94-Final.html>`__
93 * asciidoctor-jdiagram `2.2.8 → 2.2.9 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.9>`__
95 * duplicate-finder-maven-plugin 1.5.1 → 2.0.1, release notes:
96 * `2.0.0 <https://github.com/basepom/duplicate-finder-maven-plugin/blob/main/CHANGES.md#200---2023-05-21>`__
97 * `2.0.1 <https://github.com/basepom/duplicate-finder-maven-plugin/blob/main/CHANGES.md#201---2023-05-28>`__
99 * echo-maven-plugin `2.0.1 → 2.1.0 <https://github.com/Ekryd/echo-maven-plugin/releases/tag/echo-plugin-2.1.0>`__
101 * maven-clean-plugin `3.2.0 → 3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317224&version=12351541>`__
103 * maven-invoker-plugin `3.5.1 → 3.6.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12353076>`__
105 * maven-project-info-reports-plugin 3.4.3 → 3.4.5, release notes:
106 * `3.4.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12353222>`__
107 * `3.4.5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12353297>`__
109 * maven-release-plugin 2.5.3 → 3.0.1, release notes:
110 * `3.0.0-M1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12331214>`__
111 * `3.0.0-M4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12348079>`__
112 * `3.0.0-M5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12346565>`__
113 * `3.0.0-M6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12351336>`__
114 * `3.0.0-M7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12351828>`__
115 * `3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12352981>`__
116 * `3.0.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317824&version=12353136>`__
118 * maven-shade-plugin `3.4.1 → 3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12352951>`__
120 * maven-surefire-plugin `3.1.0 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12353294>`__
122 * spotbugs-maven-plugin `4.7.3.4 → 4.7.3.5 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.5>`__
124 * versions-maven-plugin `2.15.0 → 2.16.0 <https://github.com/mojohaus/versions/releases/tag/2.16.0>`__
128 This is a bug-fix upgrade from version 13.0.0.
132 * Generated features included ``org.eclipse.jdt.annotation`` and ``value`` annotation JARs. This has been corrected by
133 excluding from generation See `ODLPARENT-302 <https://jira.opendaylight.org/browse/ODLPARENT-302>`__ for details.
137 This is a major upgrade from version 12, with breaking changes; downstream projects may need to make changes to upgrade
142 * Declaration of annotation artifacts for ``spotbugs-annotations``, ``org.eclipse.jdt.annotation`` and
143 ``modernizer-maven-annotations`` are no longer by default as ``<scope>provided</scope>``. This means that users
144 of these annotations need to explicitly depend on them. Note that ``spotbugs-annotations`` are not provided
145 at runtime and therefore should be used with ``<optional>true</optional>``.
146 See `ODLPARENT-300 <https://jira.opendaylight.org/browse/ODLPARENT-300>`__ for details.
148 * Default configuration now includes test-scoped dependency to ``jassert-core``. Users are encouraged to migrate
149 assertions from Hamcrest to AssertJ. See `ODLPARENT-295 <https://jira.opendaylight.org/browse/ODLPARENT-295>`__ for details.
151 Upstream version removals
152 ~~~~~~~~~~~~~~~~~~~~~~~~~
153 The following upstream dependencies have been removed from dependency/plugin management:
155 * Declaration of ``commons-lang`` has been removed. This dependency is not used by any active downstream and ``commons-lang3``
156 already provides better or equivalent replacements.
158 Third-party dependencies
159 ~~~~~~~~~~~~~~~~~~~~~~~~
160 * Checkstyle `10.11.0 → 10.12.0 <https://checkstyle.org/releasenotes.html#Release_10.12.0>`__
162 * Guava `31.1 → 32.0.0 <https://github.com/google/guava/releases/tag/v32.0.0>`__
164 * Jackson 2.14.3 → 2.15.1, release notes:
165 * `2.15 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15>`__
166 * `2.15.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.15.1>`__
170 * asciidoctor-maven-plugin `2.2.3 → 2.2.4 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.4>`__
172 * maven-bundle-plugin `5.1.8 → 5.1.9 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12353241>`__
176 This is a bug-fix upgrade from version 12.0.5.
178 Third-party dependencies
179 ~~~~~~~~~~~~~~~~~~~~~~~~
180 * asciidoctor-jdiagram `2.2.4 → 2.2.8 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.8>`__
182 * checker-qual 3.33.0 → 3.34.0
184 * Checkstyle 10.9.3 → 10.11.0, release notes:
185 * `10.10.0 <https://checkstyle.org/releasenotes.html#Release_10.10.0>`__
186 * `10.11.0 <https://checkstyle.org/releasenotes.html#Release_10.11.0>`__
188 * commons-io `2.11.0 → 2.12.0, <https://commons.apache.org/proper/commons-io/changes-report.html#a2.12.0>`__
190 * Jackson `2.14.2 → 2.14.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14.3>`__
192 * JUnit `5.9.2 → 5.9.3 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.3>`__
194 * Mockito `5.3.0 → 5.3.1 <https://github.com/mockito/mockito/releases/tag/v5.3.1>`__
196 * Netty 4.1.91 → 4.1.93, release notes:
197 * `4.1.92 <https://netty.io/news/2023/04/25/4-1-92-Final.html>`__
198 * `4.1.93 <https://netty.io/news/2023/05/25/4-1-93-Final.html>`__
200 * TrieMap `1.3.0 → 1.3.1 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.3.1>`__
202 * Woodstox 6.4.0 → 6.5.1, release notes:
203 * `6.5.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.5#650-14-jan-2023>`__
204 * `6.5.1 <https://github.com/FasterXML/woodstox/issues/170>`__
208 * asciidoctor-maven-plugin `2.2.2 → 2.2.3 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.3>`__
210 * builder-helper-maven-plugin `3.3.0 → 3.4.0 <https://github.com/mojohaus/build-helper-maven-plugin/releases/tag/build-helper-maven-plugin-3.4.0>`__
212 * cyclonedx-maven-plugin 2.7.5 → 2.7.9, release notes:
213 * `2.7.6 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.6>`__
214 * `2.7.7 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.7>`__
215 * `2.7.8 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.8>`__
216 * `2.7.9 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.9>`__
218 * git-commit-id-maven-plugin `5.0.0 → 6.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v6.0.0>`__
220 * Jacoco Maven plugin 0.8.8 → 0.8.10, release notes:
221 * `0.8.9 <https://github.com/jacoco/jacoco/releases/tag/v0.8.9>`__
222 * `0.8.10 <https://github.com/jacoco/jacoco/releases/tag/v0.8.10>`__
224 * maven-assembly-plugin 3.4.2 → 3.6.0, release notes:
225 * `3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352065>`__
226 * `3.6.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352952>`__
228 * maven-checkstyle-plugin 3.2.1 → 3.3.0, release notes:
229 * `3.2.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12352856>`__
230 * `3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12353164>`__
232 * maven-dependency-plugin `3.5.0 → 3.6.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12352921>`__
234 * maven-help-plugin `3.3.0 → 3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317522&version=12352206>`__
236 * maven-invoker-plugin 3.4.0 → 3.5.1, release notes:
237 * `3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12352645>`__
238 * `3.5.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12352974>`__
240 * maven-plugin-plugin 3.7.1 → 3.8.2, release notes:
241 * `3.8.1 <https://issues.apache.org/jira/projects/MPLUGIN/versions/12352545>`__
242 * `3.8.2 <https://issues.apache.org/jira/projects/MPLUGIN/versions/12352508>`__
244 * maven-project-info-reports-plugin 3.4.1 → 3.4.3, release notes:
245 * `3.4.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12352728>`__
246 * `3.4.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12352922>`__
248 * maven-resources-plugin `3.3.0 → 3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317827&version=12352140>`__
250 * maven-source-plugin `3.2.1 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12346658>`__
252 * maven-surefire-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351273>`__
254 * versions-maven-plugin `2.14.2 → 2.15.0 <https://github.com/mojohaus/versions/releases/tag/2.15.0>`__
258 This is a bug-fix upgrade from version 12.0.4.
262 * cyclonedx-maven-plugin has been rolled back to version ``2.7.5`` because newer
263 versions execute incredibly slowly on large dependency graphs.
265 Third-party dependencies
266 ~~~~~~~~~~~~~~~~~~~~~~~~
267 * Bouncy Castle `1.72 → 1.73 <https://www.bouncycastle.org/releasenotes.html#r1rv73>`__
269 * Mockito `5.2.0 → 5.3.0 <https://github.com/mockito/mockito/releases/tag/v5.3.0>`__
271 * TrieMap 1.2.0 → 1.3.0
272 * `1.2.1 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.2.0>`__
273 * `1.3.0 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.3.0>`__
277 This is a bug-fix upgrade from version 12.0.4.
279 Third-party dependencies
280 ~~~~~~~~~~~~~~~~~~~~~~~~
281 * Antlr `4.11.1 → 4.12.0 <https://github.com/antlr/antlr4/releases/tag/4.12.0>`__
283 * checker-qual 3.30.0 → 3.33.0
285 * Checkstyle 10.7.0 → 10.9.3, release notes:
286 * `10.8.0 <https://checkstyle.org/releasenotes.html#Release_10.8.0>`__
287 * `10.8.1 <https://checkstyle.org/releasenotes.html#Release_10.8.1>`__
288 * `10.9.0 <https://checkstyle.org/releasenotes.html#Release_10.9.0>`__
289 * `10.9.1 <https://checkstyle.org/releasenotes.html#Release_10.9.1>`__
290 * `10.9.2 <https://checkstyle.org/releasenotes.html#Release_10.9.2>`__
291 * `10.9.3 <https://checkstyle.org/releasenotes.html#Release_10.9.3>`__
293 * Dropwizard Metrics 4.2.15 → 4.2.18, release notes:
294 * `4.2.16 <https://github.com/dropwizard/metrics/releases/tag/v4.2.16>`__
295 * `4.2.17 <https://github.com/dropwizard/metrics/releases/tag/v4.2.17>`__
296 * `4.2.18 <https://github.com/dropwizard/metrics/releases/tag/v4.2.18>`__
298 * Jersey 2.38 → 2.39.1, release notes:
299 * `2.39 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.39>`__
300 * `2.39.1 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.39.1>`__
302 * Mockito `5.1.1 → 5.2.0 <https://github.com/mockito/mockito/releases/tag/v5.2.0>`__
304 * Netty 4.1.89 → 4.1.91, release notes:
305 * `4.1.90 <https://netty.io/news/2023/03/14/4-1-90-Final.html>`__
306 * `4.1.91 <https://netty.io/news/2023/04/03/4-1-91-Final.html>`__
310 * cyclonedx-maven-plugin `2.7.5 → 2.7.6 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.6>`__
312 * maven-compiler-plugin `3.10.1 → 3.11.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12351444>`__
314 * maven-enforcer-plugin `3.2.1 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12352877>`__
316 * maven-surefire-plugin 3.0.0-M8 → 3.0.0, release notes:
317 * `3.0.0-M9 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12352730>`__
318 * `3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12352998>`__
320 * modernizer-maven-plugin `2.5.0 → 2.6.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.6.0>`__
322 * spotbugs-maven-plugin 4.7.3.0 → 4.7.3.4, release notes:
323 * `4.7.3.1 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.1>`__
324 * `4.7.3.2 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.2>`__
325 * `4.7.3.3 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.3>`__
326 * `4.7.3.4 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.4>`__
330 This is a bug-fix upgrade from version 12.0.2.
334 * The configuration of ``spotbugs-maven-plugin`` was incorrect in that it referenced
335 ``FindBugs`` settings. This issue is reported with ``maven-3.9.0`` and later and has
336 now been corrected. See `ODLPARENT-299 <https://jira.opendaylight.org/browse/ODLPARENT-299>`__
339 Third-party dependencies
340 ~~~~~~~~~~~~~~~~~~~~~~~~
341 * asciidoctor-jdiagram `2.2.3 → 2.2.4 <https://github.com/asciidoctor/asciidoctorj-diagram/releases/tag/v2.2.4>`__
343 * Checkstyle `10.6.0 → 10.7.0 <https://checkstyle.org/releasenotes.html#Release_10.7.0>`__
345 * Jackson `2.14.1 → 2.14.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14.2>`__
347 * Mockito 4.11.0 → 5.1.1, release notes:
348 * `5.0.0 <https://github.com/mockito/mockito/releases/tag/v5.0.0>`__
349 * `5.1.0 <https://github.com/mockito/mockito/releases/tag/v5.1.0>`__
350 * `5.1.1 <https://github.com/mockito/mockito/releases/tag/v5.1.1>`__
352 * Netty 4.1.86 → 4.1.89, release notes:
353 * `4.1.87 <https://netty.io/news/2023/01/12/4-1-87-Final.html>`__
354 * `4.1.88 <https://netty.io/news/2023/02/12/4-1-88-Final.html>`__
355 * `4.1.89 <https://netty.io/news/2023/02/13/4-1-89-Final.html>`__
359 * cyclonedx-maven-plugin `2.7.4 → 2.7.5 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.5>`__
361 * echo-maven-plugin 1.3.2 → 2.0.1, release notes:
362 * `2.0.0 <https://github.com/Ekryd/echo-maven-plugin/releases/tag/echo-plugin-2.0.0>`__
363 * `2.0.1 <https://github.com/Ekryd/echo-maven-plugin/releases/tag/echo-plugin-2.0.1>`__
365 * maven-checkstyle-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12352729>`__
367 * maven-dependency-plugin `3.4.0 → 3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12352602>`__
369 * maven-enforcer-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12352857>`__
371 * maven-javadoc-plugin `3.4.1 → 3.5.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12352256>`__
373 * maven-plugin-plugin `3.7.0 → 3.7.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12352745>`__
375 * maven-surefire-plugin `3.0.0-M7 → 3.0.0-M8 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351809>`__
379 This is a security bug-fix upgrade from version 12.0.1.
383 * Two new features, ``odl-asm`` and ``odl-apache-spifly`` have been added.
384 See `ODLPARENT-296 <https://jira.opendaylight.org/browse/ODLPARENT-296>`__
387 Third-party dependencies
388 ~~~~~~~~~~~~~~~~~~~~~~~~
389 * Checkstyle 10.4 → 10.6.0
390 * `10.5.0 <https://checkstyle.org/releasenotes.html#Release_10.5.0>`__
391 * `10.6.0 <https://checkstyle.org/releasenotes.html#Release_10.6.0>`__
393 * Dropwizard Metrics 4.2.13 → 4.2.15, release notes:
394 * `4.2.14 <https://github.com/dropwizard/metrics/releases/tag/v4.2.14>`__
395 * `4.2.15 <https://github.com/dropwizard/metrics/releases/tag/v4.2.15>`__
397 * GSON `2.10.0 → 2.10.1 <https://github.com/google/gson/releases/tag/gson-parent-2.10.1>`__
399 * immutables.org `2.9.2 → 2.9.3 <https://github.com/immutables/immutables/releases/tag/2.9.3>`__
401 * Jackson 2.13.4 → 2.14.1, release notes:
402 * `2.14 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14>`__
403 * `2.14.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.14.1>`__
405 * Jetty `9.4.49.v20220914 → 9.4.50.v20221201 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.50.v20221201>`__
407 * Jolokia 1.7.1 → 1.7.2
409 * Jersey `2.37 → 2.38 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.38>`__
411 * JUnit `5.9.1 → 5.9.2 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.2>`__
413 * Karaf `4.4.2 → 4.4.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12352267>`__
415 * Mockito 4.9.0 → 4.11.0, release notes:
416 * `4.10.0 <https://github.com/mockito/mockito/releases/tag/v4.10.0>`__
417 * `4.11.0 <https://github.com/mockito/mockito/releases/tag/v4.11.0>`__
419 * Netty 4.1.84 → 4.1.86, release notes:
420 * `4.1.85 <https://netty.io/news/2022/11/09/4-1-85-Final.html>`__
421 * `4.1.86 <https://netty.io/news/2022/12/12/4-1-86-Final.html>`__
423 * Sevntu 1.43.0 → 1.44.1, release notes:
424 * `1.44.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.44.0>`__
425 * `1.44.1 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.44.1>`__
427 * ThreeTen `1.7.1 → 1.7.2 <https://www.threeten.org/threeten-extra/changes-report.html#a1.7.2>`__
429 * xmlunit `2.9.0 → 2.9.1 <https://github.com/xmlunit/xmlunit/releases/tag/v2.9.1>`__
433 * bnd-maven-plugin `6.3.1 → 6.4.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.4.0>`__
435 * cyclonedx-maven-plugin 2.7.1 → 2.7.4, release notes:
436 * `2.7.2 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.2>`__
437 * `2.7.3 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.3>`__
438 * `2.7.4 <https://github.com/CycloneDX/cyclonedx-maven-plugin/releases/tag/cyclonedx-maven-plugin-2.7.4>`__
440 * duplicate-finder-maven-plugin `1.5.0 → 1.5.1 <https://github.com/basepom/duplicate-finder-maven-plugin/releases/tag/duplicate-finder-maven-plugin-1.5.1>`__
442 * exec-maven-plugin `3.0.0 → 3.1.0 <https://github.com/mojohaus/exec-maven-plugin/releases/tag/exec-maven-plugin-3.1.0>`__
444 * maven-archetype-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12348615>`__
446 * maven-dependency-plugin `3.3.0 → 3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12351068>`__
448 * maven-help-plugin `3.2.0 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317522&version=12345417>`__
450 * maven-invoker-plugin 3.2.2 → 3.4.0, release notes:
451 * `3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12349728>`__
452 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12330828>`__
454 * maven-plugin-plugin 3.6.2 → 3.7.0, release notes:
455 * `3.6.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12351222>`__
456 * `3.7.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12344367>`__
458 * maven-remote-resources-plugin `1.7.0 → 3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317825&version=12346864>`__
460 * properties-maven-plugin `1.0.0 → 1.1.0 <https://github.com/mojohaus/properties-maven-plugin/releases/tag/properties-maven-plugin-1.1.0>`__
462 * spotbugs-maven-plugin `4.7.2.2 → 4.7.3.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.3.0>`__
464 * versions-maven-plugin 2.8.1 → 2.14.2, release notes:
465 * `2.9.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.9.0>`__
466 * `2.10.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.10.0>`__
467 * `2.11.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.11.0>`__
468 * `2.12.0 <https://github.com/mojohaus/versions/releases/tag/versions-maven-plugin-2.12.0>`__
469 * `2.13.0 <https://github.com/mojohaus/versions/releases/tag/2.13.0>`__
470 * `2.14.0 <https://github.com/mojohaus/versions/releases/tag/2.14.0>`__
471 * `2.14.1 <https://github.com/mojohaus/versions/releases/tag/2.14.1>`__
472 * `2.14.2 <https://github.com/mojohaus/versions/releases/tag/2.14.2>`__
476 This is a security bug-fix upgrade from version 12.0.0.
478 Improvements and new features
479 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
480 * ``junit-jupiter-params`` is now a test dependency. This allows using JUnit 5 parameterized types without further
483 Third-party dependencies
484 ~~~~~~~~~~~~~~~~~~~~~~~~
485 * Checkstyle `10.3.4 → 10.4 <https://checkstyle.org/releasenotes.html#Release_10.4>`__
487 * Dropwizard Metrics `4.2.12 → 4.2.13 <https://github.com/dropwizard/metrics/releases/tag/v4.2.13>`__
489 * GSON `2.9.0 → 2.10.0 <https://github.com/google/gson/releases/tag/gson-parent-2.10.0>`__
491 * Jackson `2.13.4 → 2.13.4.20221013 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.13#micro-patches>`__
493 * Mockito `4.8.1 → 4.9.0 <https://github.com/mockito/mockito/releases/tag/v4.9.0>`__
495 * Netty `4.1.84 → 4.1.85 <https://netty.io/news/2022/11/09/4-1-85-Final.html>`__
497 * Sevntu `1.42.0 → 1.43.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.43.0>`__
499 * Woodstox `6.3.1 → 6.4.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.4#640-24-oct-2022>`__
503 * maven-shade-plugin 3.3.0 → 3.4.1, release notes:
504 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12351491>`__
505 * `3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317921&version=12352285>`__
507 * modernizer-maven-plugin `2.4.0 → 2.5.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.5.0>`__
509 * spotbugs-maven-plugin `4.7.2.1 → 4.7.2.2 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.2.2>`__
513 This is a major upgrade from version 11, with breaking changes; downstream projects may need to make changes to upgrade
516 Upstream version removals
517 ~~~~~~~~~~~~~~~~~~~~~~~~~
518 The following upstream dependencies have been removed from dependency/plugin management:
520 * Declaration of ``Enunciate`` has been removed. This dependency is not used by any active downstream.
522 * The opt-in for generating HTML4 Javadoc documentation has been removed.
524 Third-party dependencies
525 ~~~~~~~~~~~~~~~~~~~~~~~~
526 * Antlr 4.9.2 → 4.11.1, release notes:
527 * `4.10 <https://github.com/antlr/antlr4/releases/tag/4.10>`__
528 * `4.10.1 <https://github.com/antlr/antlr4/releases/tag/4.10.1>`__
529 * `4.11.0 <https://github.com/antlr/antlr4/releases/tag/4.11.0>`__
530 * `4.11.1 <https://github.com/antlr/antlr4/releases/tag/4.11.1>`__
532 * Bouncy Castle 1.70 → 1.72, release notes:
533 * `1.71 <https://www.bouncycastle.org/releasenotes.html#r1rv71>`__
534 * `1.72 <https://www.bouncycastle.org/releasenotes.html#r1rv72>`__
536 * Checkstyle 10.3.1 → 10.3.4, release notes:
537 * `10.3.2 <https://checkstyle.org/releasenotes.html#Release_10.3.2>`__
538 * `10.3.3 <https://checkstyle.org/releasenotes.html#Release_10.3.3>`__
539 * `10.3.4 <https://checkstyle.org/releasenotes.html#Release_10.3.4>`__
541 * commons-text `1.9 → 1.10.0 <https://commons.apache.org/proper/commons-text/changes-report.html#a1.10.0>`__
543 * Dropwizard Metrics 4.2.10 → 4.2.12, release notes:
544 * `4.2.11 <https://github.com/dropwizard/metrics/releases/tag/v4.2.11>`__
545 * `4.2.12 <https://github.com/dropwizard/metrics/releases/tag/v4.2.12>`__
547 * immutables.org 2.8.8 → 2.9.2, release notes:
548 * `2.9.0 <https://github.com/immutables/immutables/milestone/76?closed=1>`__
549 * `2.9.1 <https://github.com/immutables/immutables/milestone/77?closed=1>`__
550 * `2.9.2 <https://github.com/immutables/immutables/milestone/78?closed=1>`__
552 * Jackson `2.13.3 → 2.13.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.13.4>`__
554 * Javassist 3.28.0-GA → 3.29.2-GA
556 * Jersey `2.36 → 2.37 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.37>`__
558 * Jetty 9.4.46.v20220331 → 9.4.49.v20220914, release notes:
559 * `9.4.47.v20220610 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.47.v20220610>`__
560 * `9.4.48.v20220622 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.48.v20220622>`__
561 * `9.4.49.v20220914 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.49.v20220914>`__
563 * JUnit `5.9.0 → 5.9.1 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.1>`__
565 * Karaf `4.4.1 → 4.4.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12352048>`__
567 * Mockito 4.6.1 → 4.8.1, release notes:
568 * `4.7.0 <https://github.com/mockito/mockito/releases/tag/v4.7.0>`__
569 * `4.8.0 <https://github.com/mockito/mockito/releases/tag/v4.8.0>`__
570 * `4.8.1 <https://github.com/mockito/mockito/releases/tag/v4.8.1>`__
572 * Netty 4.1.76 → 4.1.84, release notes:
573 * `4.1.77 <https://netty.io/news/2022/05/06/2-1-77-Final.html>`__
574 * `4.1.78 <https://netty.io/news/2022/06/14/4-1-78-Final.html>`__
575 * `4.1.79 <https://netty.io/news/2022/07/11/4-1-79-Final.html>`__
576 * `4.1.80 <https://netty.io/news/2022/08/26/4-1-80-Final.html>`__
577 * `4.1.81 <https://netty.io/news/2022/09/08/4-1-81-Final.html>`__
578 * `4.1.82 <https://netty.io/news/2022/09/13/4-1-82-Final.html>`__
579 * `4.1.84 <https://netty.io/news/2022/10/11/4-1-84-Final.html>`__
581 * SpotBugs 4.7.1 → 4.7.3, release notes:
582 * `4.7.2 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.2>`__
583 * `4.7.3 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.3>`__
585 * ThreeTen `1.7.0 → 1.7.1 <https://www.threeten.org/threeten-extra/changes-report.html#a1.7.1>`__
589 * bnd-maven-plugin 6.2.0 → 6.3.1, release notes:
590 * `6.3.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.0>`__
591 * `6.3.1 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.1>`__
593 * maven-bundle-plugin 5.1.6 → 5.1.8, release notes:
594 * `5.1.7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12352061>`__
595 * `5.1.8 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12352145>`__
597 * maven-checkstyle-plugin `3.1.2 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12345559>`__
599 * maven-jar-plugin `3.2.2 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12351126>`__
601 * maven-javadoc-plugin `3.4.0 → 3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12352053>`__
603 * maven-resources-plugin `3.2.0 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317827&version=12348676>`__
605 * maven-site-plugin `3.12.0 → 3.12.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317923&version=12351751>`__
607 * project-info-reports-plugin 3.3.0 → 3.4.1, release notes:
608 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12351758>`__
609 * `3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12352097>`__
613 This is a bug-fix upgrade from version 11.0.0.
615 Improvements and new features
616 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
617 * An alternative way of defining features has been introduced. This is hosted by the ``template-feature-parent``
618 and unlike ``single-feature-parent``, only performs replacement of versions in a provided template. See
619 `ODLPARENT-235 <https://jira.opendaylight.org/browse/ODLPARENT-235>`__ for more information.
621 Third-party dependencies
622 ~~~~~~~~~~~~~~~~~~~~~~~~
623 * Checkstyle `10.3 → 10.3.1 <https://checkstyle.org/releasenotes.html#Release_10.3.1>`__
625 * Dropwizard Metrics `4.2.9 → 4.2.10 <https://github.com/dropwizard/metrics/releases/tag/v4.2.10>`__
627 * Jersey `2.35 → 2.36 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.36>`__
629 * Jetty 9.4.46.v20220331 → 9.4.48.v20220622, release notes:
630 * `9.4.47.v20220610 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.47.v20220610>`__
631 * `9.4.48.v20220622 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.48.v20220622>`__
633 * JUnit `5.8.2 → 5.9.0 <https://junit.org/junit5/docs/snapshot/release-notes/#release-notes-5.9.0>`__
635 * Karaf `4.4.0 → 4.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12351548>`__
637 * PAX-URL `2.6.10 → 2.6.11 <https://github.com/ops4j/org.ops4j.pax.url/milestone/76?closed=1>`__
639 * SpotBugs `4.7.0 → 4.7.1 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.1>`__
643 * bnd-maven-plugin 6.2.0 → 6.3.1, release notes:
644 * `6.3.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.0>`__
645 * `6.3.1 <https://github.com/bndtools/bnd/wiki/Changes-in-6.3.1>`__
647 * cyclonedx-maven-plugin 2.6.2 → 2.7.1
649 * maven-antrun-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317121&version=12348085>`__
651 * maven-assebly-plugin 3.3.0 → 3.4.2, release notes:
652 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12348203>`__
653 * `3.4.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352049>`__
654 * `3.4.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317220&version=12352095>`__
656 * maven-enforcer-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12341008>`__
658 * maven-site-plugin `3.11.0 → 3.12.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317923&version=12351142>`__
660 * maven-surefire-plugin `3.0.0-M6 → 3.0.0-M7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12351502>`__
662 * spotbugs-maven-plugin 4.7.0.0 → 4.7.1.1, release notes:
663 * `4.7.1.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.1.0>`__
664 * `4.7.1.1 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.1.1>`__
668 This is a major upgrade from version 10, with breaking changes; downstream projects may need to make changes to upgrade
671 Improvements and new features
672 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
673 * Minimum required ``Java`` version is 17. Attempts to build a downstream project or load in a previous Java version
674 will result in a failure.
676 * The declaration for ``argparse4j`` has been addded. See
677 `ODLPARENT-289 <https://jira.opendaylight.org/browse/ODLPARENT-289>`__ for more information.
679 Upstream version removals
680 ~~~~~~~~~~~~~~~~~~~~~~~~~
681 The following upstream dependencies have been removed from dependency/plugin management:
683 * Declaration of ``Google Truth`` has been removed. This dependency is not used by any active downstream. See
684 `ODLPARENT-283 <https://jira.opendaylight.org/browse/ODLPARENT-283>`__ for more information.
686 * Declaration of ``commons-codec`` has been removed. This dependency is not used by any active downstream. See
687 `ODLPARENT-285 <https://jira.opendaylight.org/browse/ODLPARENT-285>`__ for more information.
689 * Declaration of ``commons-fileupload`` has been removed. This dependency is not used by any active downstream. See
690 `ODLPARENT-286 <https://jira.opendaylight.org/browse/ODLPARENT-286>`__ for more information.
692 * Declaration of ``commons-net`` has been removed. This dependency is not used by any active downstream. See
693 `ODLPARENT-287 <https://jira.opendaylight.org/browse/ODLPARENT-287>`__ for more information.
695 * Declaration of ``jsonassert`` has been removed. This dependency is not used by any active downstream. See
696 `ODLPARENT-288 <https://jira.opendaylight.org/browse/ODLPARENT-288>`__ for more information.
698 * Declaration of ``jung`` has been removed. This dependency is not used by any active downstream. See
699 `ODLPARENT-290 <https://jira.opendaylight.org/browse/ODLPARENT-290>`__ for more information.
701 * Declaration of ``spring-osgi-mock`` has been removed. This dependency is not used by any active downstream.
703 Third-party dependencies
704 ~~~~~~~~~~~~~~~~~~~~~~~~
705 * Checkstyle `10.2 → 10.3 <https://checkstyle.org/releasenotes.html#Release_10.3>`__
707 * Jackson `2.13.2 → 2.13.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.13.3>`__
709 * Jersey 2.27 → 2.35, release notes:
710 * `2.28 <https://eclipse-ee4j.github.io/jersey.github.io/release-notes/2.28.html>`__
711 * `2.29 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.29>`__
712 * `2.29.1 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.29.1>`__
713 * `2.30 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.30>`__
714 * `2.30.1 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.30.1>`__
715 * `2.31 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.31>`__
716 * `2.32 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.32>`__
717 * `2.33 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.33>`__
718 * `2.34 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.34>`__
719 * `2.35 <https://github.com/eclipse-ee4j/jersey/releases/tag/2.35>`__
721 * Karaf `4.3.7 → 4.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12349243>`__
723 * Mockito 4.5.1 → 4.6.1, release notes:
724 * `4.6.0 <https://github.com/mockito/mockito/releases/tag/v4.6.0>`__
725 * `4.6.1 <https://github.com/mockito/mockito/releases/tag/v4.6.1>`__
727 * SpotBugs `4.6.0 → 4.7.0 <https://github.com/spotbugs/spotbugs/releases/tag/4.7.0>`__
731 * cyclonedx-maven-plugin 2.5.3 → 2.6.2
733 * maven-bundle-plugin `5.1.5 → 5.1.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12351722>`__
735 * maven-javadoc-plugin 3.1.1 → 3.4.0, release notes:
736 * `3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12345698>`__
737 * `3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12346637>`__
738 * `3.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12347807>`__
739 * `3.3.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12350586>`__
740 * `3.4.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12330874>`__
742 * maven-surefire-plugin 2.22.2 → 3.0.0-M6, release notes:
743 * `3.0.0-M1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12342871>`__
744 * `3.0.0-M2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344396>`__
745 * `3.0.0-M3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12342872>`__
746 * `3.0.0-M4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344668>`__
747 * `3.0.0-M5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344612>`__
748 * `3.0.0-M6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317927&version=12344613>`__
750 * project-info-reports-plugin `3.2.2 → 3.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12351604>`__
752 * spotbugs-maven-plugin `4.6.0.0 → 4.7.0.0 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-4.7.0.0>`__
756 This is a major upgrade from version 9, with breaking changes; downstream projects may need to make changes to upgrade
759 Log4Shell and similar vulnerabilities
760 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
761 This release addresses following security issues by its adopting ``log4j-2.17.1``,
762 ``logback-1.2.10`` and ``pax-logging-2.0.14``:
764 * `CVE-2021-42550 <https://nvd.nist.gov/vuln/detail/CVE-2021-42550>`__ and related problems
765 were further mitigated by reducing complexity in ``logback-1.2.10``
767 * `CVE-2021-44228 <https://nvd.nist.gov/vuln/detail/CVE-2021-44228>`__
769 * `CVE-2021-44832 <https://nvd.nist.gov/vuln/detail/CVE-2021-44832>`__
771 * `CVE-2021-45046 <https://nvd.nist.gov/vuln/detail/CVE-2021-45046>`__
773 * `CVE-2021-45105 <https://nvd.nist.gov/vuln/detail/CVE-2021-45105>`__
775 Upstream version removals
776 ~~~~~~~~~~~~~~~~~~~~~~~~~
777 The following upstream dependencies have been removed from dependency/plugin management:
779 * Declaration of ``blueprint-maven-plugin`` has been removed. This plugin has not seen a release in 3 years
780 and its use typically leads to split container definitions. Users are advised to migrate to either
781 hand-written Blueprint XML files or, preferrably, migrate to OSGi Declarative Services. See
782 `ODLPARENT-267 <https://jira.opendaylight.org/browse/ODLPARENT-267>`__ for more information.
784 * The declaration and execution of ``maven-pmd-plugin`` has been removed. See
785 `ODLPARENT-269 <https://jira.opendaylight.org/browse/ODLPARENT-269>`__ for more information.
787 * All ``Xtend`` dependency and plugin declarations have been removed. Xtend is currently only used by
788 a single artifact in MD-SAL, hence the dependency is best managed there. Furthermore Xtend is facing
789 challenges around maintainership, hence its use is discouraged. See
790 `ODLPARENT-273 <https://jira.opendaylight.org/browse/ODLPARENT-273>`__ for more information.
792 * All ``Powermock`` dependency declarations have been removed. We have very few remaining downstream
793 users, who can manage this dependency themselves. The version of ``Mockito`` we declare has facilities
794 to cover all use cases previously covered only by PowerMock. See
795 `ODLPARENT-275 <https://jira.opendaylight.org/browse/ODLPARENT-275>`__ for more information.
797 * Declarations of ``osgi.annotation``, ``osgi.cmpn`` and ``osgi.core`` have been removed. These are
798 monolithic JARs providing, which are no longer shipped in OSGi Release 8. Users are advised to use
799 component dependencies, such as ``org.osgi.annotation.bundle``, ``org.osgi.framework``,
800 ``org.osgi.service.component.annotations`` and similar. See
801 `ODLPARENT-277 <https://jira.opendaylight.org/browse/ODLPARENT-277>`__ for more information.
803 * The ``H2 Database`` version declaration has been removed. It is used only by as single downstream
804 user, who also provides its OSGi packaging and hence it is best maintained there.
806 Improvements and new features
807 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
808 * Minimum ``Maven`` version required to build projects using ``odlparent`` has been raised to ``3.8.3``.
809 See `ODLPARENT-260 <https://jira.opendaylight.org/browse/ODLPARENT-260>`__ for more information.
810 * Unit tests are now using ``JUnit 5 Jupiter Engime`` for unit test execution, with ``JUnit 4`` tests
811 supported by ``junit-vintage-engine``. This enables downstreams to use the much more modern JUnit 5 APIs
812 as well as the corresponding Mockito integration out of the box. See
813 `ODLPARENT-271 <https://jira.opendaylight.org/browse/ODLPARENT-271>`__ for more information.
814 * A CycloneDX SBOM is generated by default for all artifacts using ``odlparent-lite``. See
815 `ODLPARENT-280 <https://jira.opendaylight.org/browse/ODLPARENT-280>`__ for more information.
816 * ``netty-transport-native-epoll`` is now supported on Linux/AArch64. See
817 `ODLPARENT-241 <https://jira.opendaylight.org/browse/ODLPARENT-241>`__ for more information.
818 * A number of stale Karaf ``custom.properties`` have been removed. See
819 `ODLPARENT-34 <https://jira.opendaylight.org/browse/ODLPARENT-34>`__ for more information.
820 * Karaf features are now tested when building with Java versions up to and including 17.
821 * SpotBugs analysis is now enabled when building with Java versions up to and including 17.
823 Third-party dependencies
824 ~~~~~~~~~~~~~~~~~~~~~~~~
825 * Bouncy Castle `1.69 → 1.70 <https://www.bouncycastle.org/releasenotes.html#r1rv70>`__
827 * Checkstyle 8.45.1 → 9.2.1, release notes:
828 * `9.0 <https://checkstyle.org/releasenotes.html#Release_9.0>`__
829 * `9.0 <https://checkstyle.org/releasenotes.html#Release_9.0.1>`__
830 * `9.1 <https://checkstyle.org/releasenotes.html#Release_9.1>`__
831 * `9.2 <https://checkstyle.org/releasenotes.html#Release_9.2>`__
832 * `9.2.1 <https://checkstyle.org/releasenotes.html#Release_9.2.1>`__
834 * Dropwizard Metrics 4.1.25 → 4.2.8, release notes:
835 * `4.2.0 <https://github.com/dropwizard/metrics/releases/tag/v4.2.0>`__
836 * `4.2.1 <https://github.com/dropwizard/metrics/releases/tag/v4.2.1>`__
837 * `4.2.2 <https://github.com/dropwizard/metrics/releases/tag/v4.2.2>`__
838 * `4.2.3 <https://github.com/dropwizard/metrics/releases/tag/v4.2.3>`__
839 * `4.2.4 <https://github.com/dropwizard/metrics/releases/tag/v4.2.4>`__
840 * `4.2.5 <https://github.com/dropwizard/metrics/releases/tag/v4.2.5>`__
841 * `4.2.6 <https://github.com/dropwizard/metrics/releases/tag/v4.2.6>`__
842 * `4.2.7 <https://github.com/dropwizard/metrics/releases/tag/v4.2.7>`__
843 * `4.2.8 <https://github.com/dropwizard/metrics/releases/tag/v4.2.8>`__
845 * GSON `2.8.9 → 2.9.0 <https://github.com/google/gson/releases/tag/gson-parent-2.9.0>`__
847 * Guava 30.1.1 → 31.1, release notes:
848 * `31.0 <https://github.com/google/guava/releases/tag/v31.0>`__
849 * `31.0.1 <https://github.com/google/guava/releases/tag/v31.0.1>`__
850 * `31.1 <https://github.com/google/guava/releases/tag/v31.1>`__
852 * Jackson `2.16.5 → 2.16.6 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.6>`__
854 * Javassist 3.27.0 → 3.28.0
856 * Karaf 4.3.3 → 4.3.6, release notes:
857 * `4.3.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12350547>`__
858 * `4.3.5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12350856>`__
859 * `4.3.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12351123>`__
861 * Log4J 2.14.1 → 2.17.1, release notes:
862 * `2.15.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.15.0>`__
863 * `2.16.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.16.0>`__
864 * `2.17.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.17.0>`__
865 * `2.17.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.17.1>`__
867 * Logback `1.2.5 → 1.2.10 <http://logback.qos.ch/news.html>`__
869 * Mockito 3.12.4 → 4.3.1, release notes:
870 * `4.0.0 <https://github.com/mockito/mockito/releases/tag/v4.0.0>`__
871 * `4.2.0 <https://github.com/mockito/mockito/releases/tag/v4.1.0>`__
872 * `4.3.0 <https://github.com/mockito/mockito/releases/tag/v4.2.0>`__
873 * `4.3.1 <https://github.com/mockito/mockito/releases/tag/v4.3.1>`__
875 * Netty 4.1.67 → 4.1.74, release notes:
876 * `4.1.70 <https://netty.io/news/2021/10/11/4-1-70-Final.html>`__
877 * `4.1.71 <https://netty.io/news/2021/12/09/4-1-71-Final.html>`__
878 * `4.1.72 <https://netty.io/news/2021/12/13/4-1-72-Final.html>`__
879 * `4.1.73 <https://netty.io/news/2022/01/12/4-1-73-Final.html>`__
880 * `4.1.74 <https://netty.io/news/2022/02/08/4-1-74-Final.html>`__
882 * Sevntu `1.40.0 → 1.41.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.41.0>`__
884 * Woodstox 6.2.6 → 6.2.8, release notes:
885 * `6.2.7 <https://github.com/FasterXML/woodstox/milestone/24?closed=1>`__
886 * `6.2.8 <https://github.com/FasterXML/woodstox/milestone/26?closed=1>`__
888 * xmlunit 2.8.3 → 2.9.0, release notes:
889 * `2.8.4 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.4>`__
890 * `2.9.0 <https://github.com/xmlunit/xmlunit/releases/tag/v2.9.0>`__
894 * asciidoctor-maven-plugin `2.2.1 → 2.2.2 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.2.2>`__
896 * bnd-maven-plugin 6.0.0 → 6.2.0, release notes:
897 * `6.1.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.1.0>`__
898 * `6.2.0 <https://github.com/bndtools/bnd/wiki/Changes-in-6.2.0>`__
900 * builder-helper-maven-plugin `3.2.0 → 3.3.0 <https://github.com/mojohaus/build-helper-maven-plugin/releases/tag/build-helper-maven-plugin-3.3.0>`__
902 * git-commit-id-maven-plugin `4.0.5 → 5.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v5.0.0>`__
904 * maven-compiler-plugin 3.8.1 → 3.10.0, release notes:
905 * `3.9.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12345214>`__
906 * `3.10.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12351256>`__
908 * maven-bundle-plugin 5.1.2 → 5.1.4, release notes:
909 * `5.1.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12350117>`__
910 * `5.1.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12351195>`__
912 * maven-jar-plugin 3.2.0 → 3.2.2, release notes:
913 * `3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12348050>`__
914 * `3.2.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12351215>`__
916 * maven-plugin-plugin `3.6.1 → 3.6.2 <https://maven.apache.org/docs/3.6.2/release-notes.html>`__
918 * maven-site-plugin `3.9.1 → 3.10.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317923&version=12348370>`__
920 * modernizer-maven-plugin `2.2.0 → 2.3.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.3.0>`__
922 * spotbugs-maven-plugin 3.12.2 → 4.5.3, release notes:
923 `4.0.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#400---2020-02-15>`__
924 `4.0.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#401---2020-03-19>`__
925 `4.0.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#402---2020-04-15>`__
926 `4.0.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#403---2020-05-13>`__
927 `4.0.4 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#404---2020-06-09>`__
928 `4.0.5 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#405---2020-06-20>`__
929 `4.0.6 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#406---2020-06-23>`__
930 `4.1.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#410---2020-07-30>`__
931 `4.1.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#411---2020-07-31>`__
932 `4.1.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#412---2020-08-18>`__
933 `4.1.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#413---2020-09-25>`__
934 `4.1.4 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#414---2020-10-15>`__
935 `4.2.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#420---2020-11-28>`__
936 `4.2.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#421---2021-02-04>`__
937 `4.2.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#422---2021-03-03>`__
938 `4.2.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#423---2021-04-12>`__
939 `4.3.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#430---2021-07-01>`__
940 `4.4.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#440---2021-08-12>`__
941 `4.4.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#441---2021-09-07>`__
942 `4.4.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#442---2021-10-08>`__
943 `4.5.0 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#450---2021-11-05>`__
944 `4.5.1 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#451---2021-12-08>`__
945 `4.5.2 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#452---2021-12-13>`__
946 `4.5.3 <https://github.com/spotbugs/spotbugs/blob/4.5.3/CHANGELOG.md#453---2022-01-04>`__
950 This is a bug-fix upgrade from version 9.0.7.
954 * The fix for `ODLPARENT-220 <https://jira.opendaylight.org/browse/ODLPARENT-220>`__ ended up
955 changing behavior and packaging ``INFO.yaml`` instead of ``PROJECT_INFO.yaml``. This has now
960 This is a bug-fix upgrade from version 9.0.6.
964 * The upgrade of ``maven-dependency-plugin`` to version 3.2.0 has caused a regression in accuracy
965 of reports, with quite a few false positives being generated. The declaration has been rolled
966 back to version 3.1.2 with a few tweaks to improve JDK compatibility. See
967 `ODLPARENT-270 <https://jira.opendaylight.org/browse/ODLPARENT-270>`__ for more information.
971 * The declaration and invocation of ``script-maven-plugin`` has been replaced with a dedicated
972 plugin providing the same functionality in a much more performant way. See
973 `ODLPARENT-220 <https://jira.opendaylight.org/browse/ODLPARENT-220>`__ for more information.
975 * A new parent pom.xml, ``bnd-parent``, is now available as an alternative to the existing
976 ``bundle-parent``. It has a more streamlined integration with other plugins, for example
977 maven-jar-plugin, and a much healthier community. See
978 `ODLPARENT-258 <https://jira.opendaylight.org/browse/ODLPARENT-258>`__ for more information.
980 * The definition of ``odl-karaf-feat-jdbc`` feature has been reworked to not pull in the entire
981 ``enterprise`` feature repository, leading to significant savings in terms of Karaf distribution
982 size for most downstream projects. See
983 `ODLPARENT-266 <https://jira.opendaylight.org/browse/ODLPARENT-266>`__ for more information.
985 * The declaration of ``maven-compiler-plugin`` is now available in ``odlparent-lite``. This is
986 improves locality, as the JDK version enforcement is already part of odlparent-lite.
988 Third-party dependencies
989 ~~~~~~~~~~~~~~~~~~~~~~~~
990 * GSON 2.8.5 → 2.8.8, release notes:
991 * `2.8.6 <https://github.com/google/gson/blob/master/CHANGELOG.md#version-286>`__
992 * `2.8.7 <https://github.com/google/gson/blob/master/CHANGELOG.md#version-287>`__
993 * `2.8.8 <https://github.com/google/gson/blob/master/CHANGELOG.md#version-288>`__
995 * Jolokia `1.7.0 → 1.7.1 <https://jolokia.org/changes-report.html#a1.7.1>`__
997 * Mockito 3.9.0 → 3.12.4, release notes:
998 * `3.9.2 <https://github.com/mockito/mockito/releases/tag/v3.9.2>`__
999 * `3.9.3 <https://github.com/mockito/mockito/releases/tag/v3.9.3>`__
1000 * `3.9.7 <https://github.com/mockito/mockito/releases/tag/v3.9.7>`__
1001 * `3.9.9 <https://github.com/mockito/mockito/releases/tag/v3.9.9>`__
1002 * `3.9.10 <https://github.com/mockito/mockito/releases/tag/v3.9.10>`__
1003 * `3.11.0 <https://github.com/mockito/mockito/releases/tag/v3.11.0>`__
1004 * `3.11.1 <https://github.com/mockito/mockito/releases/tag/v3.11.1>`__
1005 * `3.11.2 <https://github.com/mockito/mockito/releases/tag/v3.11.2>`__
1006 * `3.12.0 <https://github.com/mockito/mockito/releases/tag/v3.12.0>`__
1007 * `3.12.1 <https://github.com/mockito/mockito/releases/tag/v3.12.1>`__
1008 * `3.12.2 <https://github.com/mockito/mockito/releases/tag/v3.12.2>`__
1009 * `3.12.3 <https://github.com/mockito/mockito/releases/tag/v3.12.3>`__
1011 * Netty 4.1.67 → 4.1.69, release notes:
1012 * `4.1.68 <https://netty.io/news/2021/09/09/4-1-68-Final.html>`__
1013 * `4.1.69 <https://netty.io/news/2021/10/11/4-1-69-Final.html>`__
1017 This is a bug-fix upgrade from version 9.0.5.
1019 Third-party dependencies
1020 ~~~~~~~~~~~~~~~~~~~~~~~~
1021 * Jackson 2.11.4 → 2.12.5, release notes:
1022 * `2.12 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12>`__
1023 * `2.12.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.1>`__
1024 * `2.12.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.2>`__
1025 * `2.12.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.3>`__
1026 * `2.12.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.4>`__
1027 * `2.12.5 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.12.5>`__
1029 * Jetty 9.4.40 → 9.4.43.v20210629, release notes:
1030 * `9.4.41.v20210516 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.41.v20210516>`__
1031 * `9.4.42.v20210604 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.42.v20210604>`__
1032 * `9.4.43.v20210629 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.43.v20210629>`__
1034 * Jolokia `1.6.2 → 1.7.0 <https://jolokia.org/changes-report.html#a1.7.0>`__
1036 * Karaf `4.3.2 → 4.3.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12350142>`__
1038 * Pax URL 2.5.4 → 2.6.7, release notes:
1039 * `2.6.0 <https://github.com/ops4j/org.ops4j.pax.url/milestone/67?closed=1>`__
1040 * `2.6.3 <https://github.com/ops4j/org.ops4j.pax.url/milestone/68?closed=1>`__
1041 * `2.6.4 <https://github.com/ops4j/org.ops4j.pax.url/milestone/69?closed=1>`__
1042 * `2.6.6 <https://github.com/ops4j/org.ops4j.pax.url/milestone/71?closed=1>`__
1043 * `2.6.7 <https://github.com/ops4j/org.ops4j.pax.url/milestone/72?closed=1>`__
1047 * maven-enforcer-plugin `3.0.0-M3 → 3.0.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317520&version=12346527>`__
1049 * asciidoctor-maven-plugin 2.1.0 → 2.2.1
1053 This is a minor upgrade from version 9.0.4.
1057 * Previous patch to address Bouncy Castle missed a critical piece for populating boot class path. This has now
1063 This is a minor upgrade from version 9.0.3.
1067 * The upgrade to Bouncy Castle 1.69 turned out to be broken due to some code movement and introduction of a new
1068 ``bcutil-jdk15on`` artifact. It has also highlighted duplicate packaging, where Karaf's features would install
1069 version 1.66, while we have been on a newer version for some time. Both these issues have now ween resolved.
1070 See `ODLPARENT-254 <https://jira.opendaylight.org/browse/ODLPARENT-254>`__ for more information.
1075 This is a minor upgrade from version 9.0.2.
1077 Third-party dependencies
1078 ~~~~~~~~~~~~~~~~~~~~~~~~
1079 * awaitility `4.0.3 → 4.1.0 <https://raw.githubusercontent.com/awaitility/awaitility/master/changelog.txt>`__
1081 * Bouncy Castle `1.68 → 1.69 <https://www.bouncycastle.org/releasenotes.html>`__
1083 * Checkstyle 8.42 → 8.45.1, release notes:
1084 * `8.43 <https://checkstyle.org/releasenotes.html#Release_8.43>`__
1085 * `8.44 <https://checkstyle.org/releasenotes.html#Release_8.44>`__
1086 * `8.45 <https://checkstyle.org/releasenotes.html#Release_8.45>`__
1087 * `8.45.1 <https://checkstyle.org/releasenotes.html#Release_8.45.1>`__
1089 * commons-io 2.8.0 → 2.11.0, release notes:
1090 * `2.9.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.9.0>`__
1091 * `2.10.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.10.0>`__
1092 * `2.11.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.11.0>`__
1094 * Dropwizard Metrics 4.1.21 → 4.1.25, release notes:
1095 * `4.1.22 <https://github.com/dropwizard/metrics/releases/tag/v4.1.22>`__
1096 * `4.1.23 <https://github.com/dropwizard/metrics/releases/tag/v4.1.23>`__
1097 * `4.1.24 <https://github.com/dropwizard/metrics/releases/tag/v4.1.24>`__
1098 * `4.1.25 <https://github.com/dropwizard/metrics/releases/tag/v4.1.25>`__
1100 * Google Truth `1.1.2 → 1.1.3 <https://github.com/google/truth/releases/tag/release_1_1_3>`__
1102 * logback 1.2.3 → 1.2.5, release notes:
1103 * `1.2.4 <https://jira.qos.ch/issues/?jql=project+%3D+LOGBACK+AND+fixVersion+%3D+1.2.4>`__
1104 * `1.2.5 <https://jira.qos.ch/issues/?jql=project+%3D+LOGBACK+AND+fixVersion+%3D+1.2.5>`__
1106 * Netty 4.1.65 → 4.1.67, release notes:
1107 * `4.1.66 <https://netty.io/news/2021/07/16/4-1-66-Final.html>`__
1108 * `4.1.67 <https://netty.io/news/2021/08/16/4-1-67-Final.html>`__
1110 * Sevntu `1.39.0 → 1.40.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.40.0>`__
1112 * ThreeTen `1.6.0 → 1.7.0 <https://www.threeten.org/threeten-extra/changes-report.html#a1.7.0>`__
1116 * git-commit-id-plugin `4.0.4 → 4.0.5 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.5>`__
1118 * Jacoco Maven plugin `0.8.6 → 0.8.7 <https://github.com/jacoco/jacoco/releases/tag/v0.8.7>`__
1120 * maven-dependency-plugin `3.1.2 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317227&version=12348705>`__
1122 * maven-plugin-plugin `3.6.0 → 3.6.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317820&version=12344365>`__
1124 * project-info-reports-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12349521>`__
1128 This is a minor upgrade from version 9.0.1.
1132 * The upgrade to Karaf 4.3.0 caused a slight misalignment of ``org.apache.felix.metatype``
1133 and ``org.osgi.service.event`` versions, leading to an unnecessary rewiring of the container
1134 most notably during Single Feature Test. This has now been corrected.
1135 See `ODLPARENT-253 <https://jira.opendaylight.org/browse/ODLPARENT-253>`__ for more information.
1137 * ``stax-utils`` component has a default dependency on ``com.bea.xml:jsr174-ri``, which is not
1138 resolvable from Maven Central. This artifact is not needed with modern JRE versions, hence add
1139 an explicit exclusion.
1141 Third-party dependencies
1142 ~~~~~~~~~~~~~~~~~~~~~~~~
1143 * Jetty 9.4.38.v20210224 → 9.4.40.v20210413, release notes:
1144 * `9.4.39.v20210325 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.39.v20210325>`__
1145 * `9.4.40.v20210413 <https://github.com/eclipse/jetty.project/releases/tag/jetty-9.4.40.v20210413>`__
1147 * Karaf `4.3.1 → 4.3.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12349968>`__
1149 * Netty `4.1.63 → 4.1.65 <https://netty.io/news/2021/05/19/4-1-65-Final.html>`__
1153 This is a minor upgrade from version 9.0.0.
1157 The upgrade of ``duplicate-finder-maven-plugin`` ended up triggering build failures on ``.api_description``
1158 files packaged in artifacts. This regression has now been fixed.
1160 Third-party dependencies
1161 ~~~~~~~~~~~~~~~~~~~~~~~~
1162 * Checkstyle `8.41 → 8.42 <https://checkstyle.org/releasenotes.html#Release_8.42>`__.
1164 * Dropwizard Metrics 4.1.19 → 4.1.21, release notes:
1165 * `4.1.20 <https://github.com/dropwizard/metrics/releases/tag/v4.1.20>`__
1166 * `4.1.21 <https://github.com/dropwizard/metrics/releases/tag/v4.1.21>`__
1168 * LMAX Disruptor 3.4.2 → 3.4.4, release notes:
1169 * `3.4.3 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.3>`__
1170 * `3.4.3 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.4>`__
1172 * Woodstox `6.2.5 → 6.2.6 <https://github.com/FasterXML/woodstox/milestone/23?closed=1>`__
1174 * XBean finder `4.18 → 4.19 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12348824>`__
1178 * maven-bundle-plugin 4.2.1 → 5.1.2, release notes:
1179 * `5.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12346016>`__
1180 * `5.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12350026>`__
1184 This is a major upgrade from version 8, with breaking changes; downstream projects may need to make changes to upgrade
1187 Upstream version removals
1188 ~~~~~~~~~~~~~~~~~~~~~~~~~
1189 The following upstream dependencies have been removed from dependency management:
1191 * ``javax.inject:javax.inject``. This dependency should be provided by target runtime. Furthermore we provide the same
1192 functionality via ``com.guicedee.services:javax.inject``, which is properly declared and is a JPMS module. See
1193 `ODLPARENT-246 <https://jira.opendaylight.org/browse/ODLPARENT-246>`__ for more information.
1197 * The configuration of ``maven-compiler-plugin`` has been updated to expand ``javac`` warning options to include almost
1199 * The default description in parent ``pom.xml`` has been updated to only include ``${project.artifactId}``, not a generic
1200 blurb. See `ODLPARENT-244 <https://jira.opendaylight.org/browse/ODLPARENT-244>`__ for more information.
1201 * The ``single-feature-test`` substrate has been updated to allow Java Flight Recorder to be enabled during testing runs.
1202 This feature has falled into disrepair as the JFR facility has been productized.
1203 * Configuration of various components has been updated to be deactivated when executing with JDK versions newer than 11,
1204 so that odlparent infrastructure works out of the box with JDK 16, albeit sacrificing some validation. Most notably
1205 ``SpotBugs`` and ``Single Feature Test`` are disabled, with corresponding notices displayed.
1206 * We now expose the ability to check dependency declaration consistency via ``maven-dependency-plugin``'s ``analyze-only``
1207 goal. This functionality is enabled by default, but does not cause the build to fail when inconsistencies are found. It
1208 can be disabled by on a per-artifact basis by definining ``odlparent.dependency.skip`` property to ``true``. It can also
1209 be configured to fail the build on a per-artifact basis by defining ``odlparent.dependency.enforce`` property to ``true``.
1211 Third-party dependencies
1212 ~~~~~~~~~~~~~~~~~~~~~~~~
1213 * Antlr 4.8-1 → 4.9.2, release notes:
1214 * `4.9 <https://github.com/antlr/antlr4/releases/tag/4.9>`__
1215 * `4.9.1 <https://github.com/antlr/antlr4/releases/tag/4.9.1>`__
1216 * `4.9.2 <https://github.com/antlr/antlr4/releases/tag/4.9.2>`__
1218 * Checkstyle 8.39.0 → 8.41.1, release notes:
1219 * `8.40.0 <https://checkstyle.org/releasenotes.html#Release_8.40.0>`__
1220 * `8.41.0 <https://checkstyle.org/releasenotes.html#Release_8.41.0>`__
1221 * `8.41.1 <https://checkstyle.org/releasenotes.html#Release_8.41.1>`__
1223 * commons-lang3 `3.11 → 3.12.0 <https://commons.apache.org/proper/commons-lang/changes-report.html#a3.12.0>`__
1225 * Dropwizard Metrics 4.1.12.1 → 4.1.19, release notes:
1226 * `4.1.13 <https://github.com/dropwizard/metrics/releases/tag/v4.1.13>`__
1227 * `4.1.14 <https://github.com/dropwizard/metrics/releases/tag/v4.1.14>`__
1228 * `4.1.15 <https://github.com/dropwizard/metrics/releases/tag/v4.1.15>`__
1229 * `4.1.16 <https://github.com/dropwizard/metrics/releases/tag/v4.1.16>`__
1230 * `4.1.17 <https://github.com/dropwizard/metrics/releases/tag/v4.1.17>`__
1231 * `4.1.18 <https://github.com/dropwizard/metrics/releases/tag/v4.1.18>`__
1232 * `4.1.19 <https://github.com/dropwizard/metrics/releases/tag/v4.1.19>`__
1234 * Enunciate `2.13.2 → 2.13.3 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.3>`__
1236 * Google Truth 1.1 → 1.1.2, release notes:
1237 * `1.1.1 <https://github.com/google/truth/releases/tag/release_1_1_1>`__
1238 * `1.1.2 <https://github.com/google/truth/releases/tag/release_1_1_2>`__
1240 * Guava 29.0 → 30.1.1, release notes:
1241 * `30.0 <https://github.com/google/guava/releases/tag/v30.0>`__
1242 * `30.1 <https://github.com/google/guava/releases/tag/v30.1>`__
1243 * `30.1.1 <https://github.com/google/guava/releases/tag/v30.1.1>`__
1245 * JUnit `4.13.1 → 4.13.2 <https://github.com/junit-team/junit4/blob/HEAD/doc/ReleaseNotes4.13.2.md>`__
1247 * Karaf `4.3.0 → 4.3.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12348818>`__
1249 * Log4J 2.13.3 → 2.14.1, release notes:
1250 * `2.14.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.14.0>`__
1251 * `2.14.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.14.1>`__
1253 * Netty 4.1.59 → 4.1.63, release notes:
1254 * `4.1.60 <https://netty.io/news/2021/03/09/4-1-60-Final.html>`__
1255 * `4.1.61 <https://netty.io/news/2021/03/30/4-1-61-Final.html>`__
1256 * `4.1.62 <https://netty.io/news/2021/03/31/4-1-62-Final.html>`__
1257 * `4.1.63 <https://netty.io/news/2021/04/01/4-1-63-Final.html>`__
1259 * Sevntu `1.38.0 → 1.39.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.39.0>`__
1261 * ThreeTen `1.5.0 → 1.6.0 <https://www.threeten.org/threeten-extra/changes-report.html#a1.6.0>`__
1263 * Woodstox `6.2.4 → 6.2.5 <https://github.com/FasterXML/woodstox/milestone/22?closed=1>`__
1265 * Xtend `2.24.0 → 2.25.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2021/03/02/version-2-25-0>`__
1269 * Asciidoctor 1.5.7.1 → 2.1.0 (with related AsciidoctorJ upgrades)
1270 * `2.0.0 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.0.0>`__
1271 * `2.1.0 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases/tag/asciidoctor-maven-plugin-2.1.0>`__
1273 * git-commit-id-plugin 3.0.1 → 4.0.4, release notes:
1274 * `4.0.0 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.0>`__
1275 * `4.0.1 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.1>`__
1276 * `4.0.2 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.2>`__
1277 * `4.0.3 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.3>`__
1278 * `4.0.4 <https://github.com/git-commit-id/git-commit-id-maven-plugin/releases/tag/v4.0.4>`__
1280 * modernizer-maven-plugin `2.1.0 → 2.2.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.2.0>`__
1284 This is a minor upgrade from version 8.1.0.
1288 * Support for building a `static Karaf distribution <https://karaf.apache.org/manual/latest/#_instances_and_distributions_goals>`__
1289 has been added. It is driven by a new parent pom.xml, ``karaf-dist-static``. For more information
1290 see Karaf documentation and `ODLPARENT-251 <https://jira.opendaylight.org/browse/ODLPARENT-251>`__.
1291 * Support for `improved documentation tags <https://bugs.openjdk.java.net/browse/JDK-8068562>`__ has
1292 been added to default ``maven-javadoc-plugin`` configuration. See
1293 `ODLPARENT-252 <https://jira.opendaylight.org/browse/ODLPARENT-252>`__ for more information.
1294 * Version declaration for ``osgi.annotation`` has been added.
1296 Third-party dependencies
1297 ~~~~~~~~~~~~~~~~~~~~~~~~
1298 * commons-net `3.7.2 → 3.8.0 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.8.0>`__
1300 * Netty `4.1.58 → 4.1.59 <https://netty.io/news/2021/02/08/4-1-59-Final.html>`__
1302 * Woodstox `6.2.3 → 6.2.4 <https://github.com/FasterXML/woodstox/milestone/21?closed=1>`__
1306 * maven-checkstyle-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12347024>`__
1308 * maven-invoker-plugin `3.2.1 → 3.2.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12346157>`__
1312 This is a minor upgrade from version 8.0.1, with some potentially-breaking
1315 The most prominent is the upgrade to Karaf 4.3.0, which brings in a host of
1316 updates to related components -- including OSGi Release 7 and Jackson 2.11.x.
1320 * The ``odl-jackson-2.10`` feature and artifact were renamed to ``odl-jackson-2.11``
1321 to reflect the bump in Jackson version.
1323 Third-party dependencies
1324 ~~~~~~~~~~~~~~~~~~~~~~~~
1325 * Bouncy Castle `1.66 → 1.68 <https://www.bouncycastle.org/releasenotes.html>`__
1327 * Checkstyle 8.36.1 → 8.39.0, release notes:
1328 * `8.36.2 <https://checkstyle.org/releasenotes.html#Release_8.36.2>`__
1329 * `8.37.0 <https://checkstyle.org/releasenotes.html#Release_8.37.0>`__
1330 * `8.38.0 <https://checkstyle.org/releasenotes.html#Release_8.38.0>`__
1331 * `8.39.0 <https://checkstyle.org/releasenotes.html#Release_8.39.0>`__
1333 * commons-net 3.7 → 3.7.2, release notes:
1334 * `3.7.1 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.7.1>`__
1335 * `3.7.2 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.7.2>`__
1337 * enunciate `2.13.1 → 2.13.2 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.2>`__
1339 * Jackson 2.10.5 → 2.11.4, release notes:
1340 * `2.11.0 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11>`__
1341 * `2.11.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.1>`__
1342 * `2.11.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.2>`__
1343 * `2.11.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.3>`__
1344 * `2.11.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.11.4>`__
1346 * Karaf `4.2.10 → 4.3.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12343304>`__
1348 * Netty 4.1.53 → 4.1.58, release notes:
1349 * `4.1.54 <https://netty.io/news/2020/11/11/4-1-54-Final.html>`__
1350 * `4.1.55 <https://netty.io/news/2020/12/08/4-1-55-Final.html>`__
1351 * `4.1.56 <https://netty.io/news/2020/12/17/4-1-56-Final.html>`__
1352 * `4.1.57 <https://netty.io/news/2021/01/12/4-1-57-Final.html>`__
1353 * `4.1.58 <https://netty.io/news/2021/01/13/4-1-58-Final.html>`__
1355 * Google Truth `1.0.1 → 1.1 <https://github.com/google/truth/releases/tag/release_1_1>`__
1357 * Powermock 2.0.7 → 2.0.9, release notes:
1358 * `2.0.8 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#208>`__
1359 * `2.0.9 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#209>`__
1361 * Sevntu `1.37.1 → 1.38.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.38.0>`__
1363 * XBean finder `4.17 → 4.18 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12348171>`__
1365 * xmlunit 2.7.0 → 2.8.2, release notes:
1366 * `2.8.0 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.0>`__
1367 * `2.8.1 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.1>`__
1368 * `2.8.2 <https://github.com/xmlunit/xmlunit/releases/tag/v2.8.2>`__
1370 * Xtend `2.23.0 → 2.24.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2020/12/01/version-2-24-0>`__
1374 * build-helper-maven-plugin `3.1.0 → 3.2.0 <https://github.com/mojohaus/build-helper-maven-plugin/issues?q=is%3Aissue+milestone%3A3.1.0+is%3Aclosed>`__
1376 * duplicate-finder-maven-plugin `1.4.0 → 1.5.0 <https://github.com/basepom/duplicate-finder-maven-plugin/releases/tag/duplicate-finder-maven-plugin-1.5.0>`__
1378 * exec-maven-plugin `1.6.0 → 3.0.0 <https://github.com/mojohaus/exec-maven-plugin/releases/tag/exec-maven-plugin-3.0.0>`__
1380 * maven-pmd-plugin `3.13.0 → 3.14.0 <https://www.mail-archive.com/announce@maven.apache.org/msg00978.html>`__
1382 * maven-resource-plugin `3.9.0 → 3.9.1 <https://www.mail-archive.com/announce@maven.apache.org/msg00972.html>`__
1384 * maven-site-plugin `3.9.0 → 3.9.1 <https://www.mail-archive.com/announce@maven.apache.org/msg00966.html>`__
1386 * versions-maven-plugin `2.7 → 2.8.1 <https://github.com/mojohaus/versions-maven-plugin/releases/tag/versions-maven-plugin-2.8.1>`__
1391 This is a minor big-fix/enhancement update from verision 8.0.0.
1395 * ``javax.inject`` is now provided by the artifact from `GuicedEE <https://guicedee.com/>`__.
1396 This improves things a lot, as it is a proper jar (not MANIFEST.MF warning), it also is
1397 a JPMS module, hence can be used for linkage. This dependency is properly ``scope=provided``,
1398 so it should not leak into runtimes where it should not be.
1399 See `ODLPARENT-247 <https://jira.opendaylight.org/browse/ODLPARENT-247>`__ for details.
1401 * Transitive dependencies of Guava are now mostly filtered from runtime, so that we do not
1402 require ``wrap`` for them. We still retain checker-qual, as we are actively using those
1403 and it is a proper bundle.
1404 See `ODLPARENT-248 <https://jira.opendaylight.org/browse/ODLPARENT-248>`__ for details.
1406 Third-party dependencies
1407 ~~~~~~~~~~~~~~~~~~~~~~~~
1408 * Jackson `2.10.4 → 2.10.5 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10.5>`__
1410 * JaCoCo `0.8.5 → 0.8.6 <https://github.com/jacoco/jacoco/releases/tag/v0.8.6>`__
1412 * JUnit `4.13.0 → 4.13.1 <https://github.com/junit-team/junit4/blob/HEAD/doc/ReleaseNotes4.13.1.md>`__
1414 * Karaf `4.2.9 → 4.2.10 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12348288>`__
1416 * Netty `4.1.52 → 4.1.53 <https://netty.io/news/2020/10/13/4-1-53-Final.html>`__
1418 * Pax-Exam `4.13.3 → 4.13.4 <https://ops4j1.jira.com/secure/ReleaseNote.jspa?projectId=10170&version=24393>`__
1420 * Woodstox 6.2.1 → 6.2.3, fixed issues:
1421 * `6.2.2 <https://github.com/FasterXML/woodstox/issues/112>`__
1422 * `6.2.3 <https://github.com/FasterXML/woodstox/issues/117>`__
1427 This is a major upgrade from version 7, with breaking changes; downstream projects may need to make changes to upgrade
1432 * ``modernizer-maven-plugin`` configuration has been updated to issue warnings for constructs
1433 improved in all Java versions up to and including Java 11.
1435 * ``modernizer-maven-plugin`` is configured by default to fail the build when it issues any
1436 warnings. This behavior can be opted-out of on a per-artifact basis by defining
1437 ``odlparent.modernizer.enforce`` property to ``false``.
1439 Upstream version removals
1440 ~~~~~~~~~~~~~~~~~~~~~~~~~
1441 The following upstream dependencies have been removed from dependency management:
1443 * ``javax.json``. This dependency is used only in Neutron project, hence this version is best
1444 maintained there. See `ODLPARENT-238 <https://jira.opendaylight.org/browse/ODLPARENT-238>`__
1447 * All ``org.eclipse.persistence`` artifacts. These dependencies are only used in Neutron,
1448 which actually duplicates the declarations, hence they are best maintained there.
1449 See `ODLPARENT-237 <https://jira.opendaylight.org/browse/ODLPARENT-237>`__ for details.
1451 * All ``org.apache.sshd`` and ``net.i2p.crypto`` artifacts. Overriding versions does not play
1452 nice with Karaf's versions during ``feature:install``, causing issues when the installing
1453 over an SSH connection. NETCONF project is providing a repackaged version in OpenDaylight
1454 namespace. See `ODLPARENT-233 <https://jira.opendaylight.org/browse/ODLPARENT-233>`__ for
1457 * ``jettison``. This dependency is used only in LISP Flow Mapping project for integration
1458 tests, hence this version is best maintained there.
1459 See `ODLPARENT-239 <https://jira.opendaylight.org/browse/ODLPARENT-239>`__ for details.
1461 * All ``com.typesafe``, ``io.aeron``, ``org.agrona``, ``org.scala-lang`` declarations. Akka is
1462 removing their support for OSGi, with no working releases in their current ``2.6.x.`` branch.
1463 Since dealing with these requires quite a bit of dance, which needs to sit outside of odlparent POM,
1464 the controller project will package Akka to the extent it needs.
1465 See `ODLPARENT-243 <https://jira.opendaylight.org/browse/ODLPARENT-243>`__ for details.
1467 * ``org.apache.felix.dependencymanager`` and ``org.apache.felix.dependencymanager.shell``. These
1468 components are ancient, having been replaced by either Blueprint or Declarative Services. The only
1469 project using these is AAA, hence it is best to maintain these declarations there.
1473 * ``odl-apache-sshd`` feature has been removed, mirroring the removal of related dependency
1474 declarations. See `ODLPARENT-233 <https://jira.opendaylight.org/browse/ODLPARENT-233>`__ for details.
1476 * ``odl-akka-all``, ``odl-akka-scala-2.13``, ``odl-akka-system-2.5``, ``odl-akka-clustering-2.5``
1477 and ``odl-akka-persistence-2.5`` features. mirroring the removal of related dependency declarations.
1478 See `ODLPARENT-243 <https://jira.opendaylight.org/browse/ODLPARENT-243>`__ for details.
1480 Third-party dependencies
1481 ~~~~~~~~~~~~~~~~~~~~~~~~
1482 * awaitility `3.0.0 → 4.0.3 <https://github.com/awaitility/awaitility/wiki/ReleaseNotes40>`__
1484 * checkstyle 8.34 → 8.36.1, release notes:
1485 * `8.35 <https://checkstyle.org/releasenotes.html#Release_8.35>`__
1486 * `8.36 <https://checkstyle.org/releasenotes.html#Release_8.36>`__
1487 * `8.36.1 <https://checkstyle.org/releasenotes.html#Release_8.36.1>`__
1489 * commons-codec `1.14 → 1.15 <https://commons.apache.org/proper/commons-codec/changes-report.html#a1.15>`__
1491 * commons-io `2.7 → 2.8.0 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.8.0>`__
1493 * commons-net `3.6 → 3.7 <https://commons.apache.org/proper/commons-net/changes-report.html#a3.7>`__
1495 * dropwizard-metrics 4.1.9 → 4.1.12.1, release notes:
1496 * `4.1.10 <https://github.com/dropwizard/metrics/releases/tag/v4.1.10>`__
1497 * `4.1.10.1 <https://github.com/dropwizard/metrics/releases/tag/v4.1.10.1>`__
1498 * `4.1.11 <https://github.com/dropwizard/metrics/releases/tag/v4.1.11>`__
1499 * `4.1.12 <https://github.com/dropwizard/metrics/releases/tag/v4.1.12>`__
1500 * `4.1.12.1 <https://github.com/dropwizard/metrics/releases/tag/v4.1.12.1>`__
1502 * Guava `28.2 → 29.0 <https://github.com/google/guava/releases/tag/v29.0>`__
1504 * immutables.org → 2.8.8, release notes:
1505 * `2.8.0 <https://github.com/immutables/immutables/releases/tag/2.8.0>`__
1506 * `2.8.1 <https://github.com/immutables/immutables/releases/tag/2.8.1>`__
1507 * `2.8.2 <https://github.com/immutables/immutables/releases/tag/2.8.2>`__
1508 * `2.8.3 <https://github.com/immutables/immutables/releases/tag/2.8.3>`__
1509 * `2.8.4 <https://github.com/immutables/immutables/releases/tag/2.8.4>`__
1510 * `2.8.8 <https://github.com/immutables/immutables/releases/tag/2.8.8>`__
1512 * mockito `3.3.3 → 3.5.11 <https://github.com/mockito/mockito/blob/release/3.x/doc/release-notes/official.md>`__
1514 * Netty `4.1.51 → 4.1.52 <https://netty.io/news/2020/09/08/4-1-52-Final.html>`__
1516 * Xtend `2.22.0 → 2.23.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2020/09/01/version-2-23-0>`__
1520 * maven-archetype-plugin `3.1.2 → 3.2.0 <https://blogs.apache.org/maven/entry/apache-maven-archetype-plugin-version1>`__
1522 * project-info-reports-plugin `3.1.0 → 3.1.1 <https://blogs.apache.org/maven/entry/apache-maven-project-info-reports1>`__
1526 This is a bug-fix upgrade from version 7.0.4.
1530 * ``odl-netty-4`` feature definition specified both ``x86_64`` and ``aarch64`` artifacts
1531 for ``netty-native-epoll``. This actually results only in ``aarch64`` package being
1532 installed, rendering epoll unavailable on ``x86_64`` architecture. This has been corrected
1533 by removing the ``aarch64`` package.
1534 See `ODLPARENT-240 <https://jira.opendaylight.org/browse/ODLPARENT-240>`__ for details.
1538 This is a security/bug-fix upgrade from version 7.0.3.
1542 * ``Single Feature Test`` setup of the JVM for Karaf container ended up using
1543 wrong versions of Karaf components, leading to a failure to initialize
1544 OSGiLocator and subsequent warnings with stack traces. This has now been
1546 See `ODLPARENT-228 <https://jira.opendaylight.org/browse/ODLPARENT-228>`__ for details.
1547 * Pax-Exam setup interacts badly with pipes used by maven-surefire plugin,
1548 leading to pauses lasting around 30 seconds after SFT test success.
1549 This has now been worked around by using maven-surefire-plugin version 3.0.0-M5,
1550 with TCP sockets used for communication.
1551 See `ODLPARENT-179 <https://jira.opendaylight.org/browse/ODLPARENT-179>`__ for details.
1552 * Our Jersey dependency was held back on version 2.25.1 during Neon upgrade cycle, mostly
1553 due to large-scale incompatibilities around JAX-RS version. We have upgraded to Karaf-4.2.8+,
1554 which pulls in JAX-RS 2.1, hence re-aligning to a more modern version, 2.27, is now
1556 See `ODLPARENT-208 <https://jira.opendaylight.org/browse/ODLPARENT-208>`__ for details.
1558 Third-party dependencies
1559 ~~~~~~~~~~~~~~~~~~~~~~~~
1560 * Bouncy Castle `1.65 → 1.66 <https://www.bouncycastle.org/releasenotes.html>`__
1562 * Checkstyle 8.32 → 8.34, release notes:
1563 * `8.33 <https://checkstyle.org/releasenotes.html#Release_8.33>`__
1564 * `8.34 <https://checkstyle.org/releasenotes.html#Release_8.34>`__
1566 * commons-io `2.6 → 2.7 <https://commons.apache.org/proper/commons-io/changes-report.html#a2.7>`__
1568 * Jersey 2.25.1 → 2.27, release notes:
1569 * `2.26 <https://eclipse-ee4j.github.io/jersey.github.io/release-notes/2.26.html>`__
1570 * `2.27 <https://eclipse-ee4j.github.io/jersey.github.io/release-notes/2.27.html>`__
1572 * Karaf `4.2.8 → 4.2.9, with related upgrades <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345539>`__
1574 * Netty 4.1.49 → 4.1.51, release notes:
1575 * `4.1.50 <https://netty.io/news/2020/05/13/4-1-50-Final.html>`__
1576 * `4.1.51 <https://netty.io/news/2020/07/09/4-1-51-Final.html>`__
1578 * Scala `2.13.2 → 2.13.3 <https://github.com/scala/scala/releases/tag/v2.13.3>`__
1580 * TrieMap `1.1.0 → 1.2.0 <https://github.com/PANTHEONtech/triemap/releases/tag/triemap-1.2.0>`__
1582 * XBean finder 4.14 → 4.17, release notes:
1583 * `4.15 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12345583>`__
1584 * `4.16 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12345584>`__
1585 * `4.17 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12346905>`__
1589 * maven-project-info-reports-plugin `3.0.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317821&version=12346620>`__.
1591 * maven-shade-plugin `3.2.3 → 3.2.4 <https://blogs.apache.org/maven/entry/apache-maven-shade-plugin-version5>`__
1595 This is a security/bug-fix upgrade from version 7.0.2. Changes in this release
1596 pertain strictly to Karaf packaging and do not affect other runtimes.
1600 * Felix SCR 2.1.16, as shipping before Karaf-4.2.9, contains a bug, which could
1601 lead to NullPointerException being thrown when components were examined. This
1602 has been rectified via upgrade to Felix SCR 2.1.20.
1603 See `ODLPARENT-236 <https://jira.opendaylight.org/browse/ODLPARENT-236>`__ for details.
1604 * Karaf-4.2.8 changed packaged log4j2 version, rendering the configuration supplied
1605 with ``ODLPARENT-231`` inconsistent. This has led to a warning being printed in the
1606 Karaf console on each startup. This has now been corrected.
1607 * Karaf-4.2.8 is packaging pax-logging-1.11.4, which embeds a a vulnerable version
1608 of log4j2 (2.3.0). This would render the upgrades delivered in version 7.0.2
1609 ineffective at runtime, potentially leading to exposure. This has been corrected
1610 with upgrade of pax-logging to 1.11.6, which is packaging log4j2-2.3.2.
1614 This is a security/bug-fix upgrade from version 7.0.1.
1618 * Infrastructure for identifying confidential log messages was added, along with
1619 Karaf configuration update to routing such messages into a separate log file.
1620 See `ODLPARENT-231 <https://jira.opendaylight.org/browse/ODLPARENT-231>`__ for details.
1622 * Netty has been disconnected from Javassist way back in its 4.1.9 release, but
1623 we failed to notice. This has now been rectified by ``odl-netty-4`` not depending
1624 on ``odl-javassist-3``.
1626 Third-party dependencies
1627 ~~~~~~~~~~~~~~~~~~~~~~~~
1628 * Checkstyle `8.31 → 8.32 <https://checkstyle.org/releasenotes.html#Release_8.32>`__
1630 * Dropwizard Metrics 4.1.5 → 4.1.9, release notes:
1631 * `4.1.6 <https://github.com/dropwizard/metrics/releases/tag/v4.1.6>`__
1632 * `4.1.7 <https://github.com/dropwizard/metrics/releases/tag/v4.1.7>`__
1633 * `4.1.8 <https://github.com/dropwizard/metrics/releases/tag/v4.1.8>`__
1634 * `4.1.9 <https://github.com/dropwizard/metrics/releases/tag/v4.1.9>`__
1636 * Enunciate 2.12.1 → 2.13.1, release notes:
1637 * `2.13.0 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.0>`__
1638 * `2.13.1 <https://github.com/stoicflame/enunciate/releases/tag/v2.13.1>`__
1640 * Jackson 2.10.2 → 2.10.4, release notes:
1641 * `2.10.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10.3>`__
1642 * `2.10.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.10.4>`__
1644 * log4j2 2.13.1 → 2.13.3, release notes:
1645 * `2.13.2 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.2>`__
1646 * `2.13.3 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.3>`__
1648 * Netty `4.1.48 → 4.1.49 <https://netty.io/news/2020/02/28/4-1-46-Final.html>`__
1650 * Powermock `2.0.6 → 2.0.7 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#207>`__
1652 * Scala `2.13.1 → 2.13.2 <https://github.com/scala/scala/releases/tag/v2.13.2>`__
1654 * Woodstox 6.1.1 → 6.2.1, release notes:
1655 * `6.2.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.2#620-25-apr-2020>`__
1656 * `6.2.1 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-6.2#621-13-may-2020>`__
1658 * xmlunit 2.6.3 → 2.7.0, release notes:
1659 * `2.6.4 <https://github.com/xmlunit/xmlunit/releases/tag/v2.6.4>`__
1660 * `2.7.0 <https://github.com/xmlunit/xmlunit/releases/tag/v2.7.0>`__
1664 * builder-helper-maven-plugin `3.0.0 → 3.1.0 <https://github.com/mojohaus/build-helper-maven-plugin/issues?q=is%3Aissue+milestone%3A3.1.0+is%3Aclosed>`__
1666 * duplicate-finder-maven-plugin `1.3.0 → 1.4.0 <https://github.com/basepom/duplicate-finder-maven-plugin/releases/tag/duplicate-finder-maven-plugin-1.4.0>`__
1668 * maven-antrun-plugin `1.8 → 3.0.0 <https://blogs.apache.org/maven/entry/apache-maven-antrun-plugin-version>`__
1670 * maven-assembly-plugin `3.2.0 → 3.3.0 <https://blogs.apache.org/maven/entry/apache-maven-assembly-plugin-version1>`__
1672 * maven-invoker-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317525&version=12344863>`__
1674 * maven-remote-resources-plugin `1.6.0 → 1.7.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317825&version=12331232>`__
1676 * maven-shade-plugin `3.2.2 → 3.2.3 <https://blogs.apache.org/maven/entry/apache-maven-shade-plugin-version4>`__
1680 This is a bug-fix upgrade from version 7.0.0.
1684 * Upgrade of ``maven-javadoc-plugin`` is causing issues in downstream javadoc jobs and therefore it has been reverted.
1685 See `ODLPARENT-229 <https://jira.opendaylight.org/browse/ODLPARENT-229>`__ for details.
1687 Third-party dependencies
1688 ~~~~~~~~~~~~~~~~~~~~~~~~
1689 * Akka `2.5.30 → 2.5.31 <https://akka.io/blog/news/2020/03/31/akka-2.5.31-released>`__
1691 * Bouncy Castle `1.64 → 1.65 <https://www.bouncycastle.org/releasenotes.html>`__
1693 * Checkstyle `8.30 → 8.31 <https://checkstyle.org/releasenotes.html#Release_8.31>`__
1695 * commons-lang3 `3.9 → 3.10 <https://commons.apache.org/proper/commons-lang/changes-report.html#a3.10>`__
1697 * Xtend 1.19.0 → 1.21.0, release notes:
1698 * `1.20.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/12/03/version-2-20-0>`__
1699 * `1.21.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2020/03/03/version-2-21-0>`__
1703 This is a major upgrade from version 6, with breaking changes; downstream projects may need to make changes to upgrade
1708 * ``enforcer.version`` and ``projectinfo`` properties were removed. These properties do not serve any legal purpose as
1709 the plugins referenced by them are declared in ``pluginManagement`` section.
1711 Upstream version removals
1712 ~~~~~~~~~~~~~~~~~~~~~~~~~
1713 The following upstream dependencies have been removed from dependency management:
1715 * ``immutables.org/value`` without ``<classifier>annotations</classifier>``
1717 * ``javax.xml.bind/jaxb-api``, replaced with ``jakarta.xml.bind/jakarta.xml.bind-api``
1719 * ``com.google.inject/guice``
1721 * ``com.mycila.guice.extensions/mycila-guice-jsr250``
1723 * ``org.apache.shiro/shiro-core``
1725 * ``org.apache.shiro/shiro-web``
1729 * ``odl-akka-leveldb-0.10`` feature was removed. This feature provided leveldb-backed implementation of Akka
1730 Persistence, which is not supported for production environments by upstream. Furthermore this feature relied on a
1731 custom-built binary, which we do not have a means to reproduce -- limiting our portability. The controller project,
1732 which is the only downstream user of persistence provides an alternative implementation, hence we are removing this
1733 historical baggage. See `ODLPARENT-213 <https://jira.opendaylight.org/browse/ODLPARENT-213>`__ for details.
1735 * ``odl-caffeine-2`` feature was removed. This feature provided a ``JSR-107 JCache`` implementation, an API deemed to
1736 be problematic where high-performance and correctness in required.
1740 * OSGi R6 Declarative Services enabled in Karaf. The ``scr`` feature is now part of startup features, hence Service
1741 Component Runtime can be used without incurring an additional refresh.
1742 See `ODLPARENT-227 <https://jira.opendaylight.org/browse/ODLPARENT-227>`__ for details.
1744 Third-party dependencies
1745 ~~~~~~~~~~~~~~~~~~~~~~~~
1746 * Akka `2.5.29 → 2.5.30 <https://akka.io/blog/news/2020/03/12/akka-2.5.30-released>`__
1748 * antl4r `4.7.2 → 4.8-1 <https://github.com/antlr/antlr4/releases/tag/4.8>`__
1750 * Asciidoctor `1.5.7.1 → 1.5.8 <https://github.com/asciidoctor/asciidoctor/releases/tag/v1.5.8>`__
1752 * Checkstyle 8.26 → 8.30, release notes:
1753 * `8.27 <https://checkstyle.org/releasenotes.html#Release_8.27>`__
1754 * `8.28 <https://checkstyle.org/releasenotes.html#Release_8.28>`__
1755 * `8.29 <https://checkstyle.org/releasenotes.html#Release_8.29>`__
1756 * `8.30 <https://checkstyle.org/releasenotes.html#Release_8.30>`__
1758 * Dropwizard Metrics 4.0.5 → 4.1.5, release notes:
1759 * `4.1.0-rc0 <https://github.com/dropwizard/metrics/releases/tag/v4.1.0-rc0>`__
1760 * `4.1.0-rc2 <https://github.com/dropwizard/metrics/releases/tag/v4.1.0-rc2>`__
1761 * `4.1.0-rc3 <https://github.com/dropwizard/metrics/releases/tag/v4.1.0-rc3>`__
1762 * `4.1.1 <https://github.com/dropwizard/metrics/releases/tag/v4.1.1>`__
1763 * `4.1.2 <https://github.com/dropwizard/metrics/releases/tag/v4.1.2>`__
1764 * `4.1.3 <https://github.com/dropwizard/metrics/releases/tag/v4.1.3>`__
1765 * `4.1.4 <https://github.com/dropwizard/metrics/releases/tag/v4.1.4>`__
1767 * Google Truth 0.43 → 1.0.1, release notes:
1768 * `0.44 <https://github.com/google/truth/releases/tag/release_0_44>`__
1769 * `0.45 <https://github.com/google/truth/releases/tag/release_0_45>`__
1770 * `0.46 <https://github.com/google/truth/releases/tag/release_0_46>`__
1771 * `1.0-rc1 <https://github.com/google/truth/releases/tag/release_1_0_rc1>`__
1772 * `1.0-rc2 <https://github.com/google/truth/releases/tag/release_1_0_rc2>`__
1773 * `1.0 <https://github.com/google/truth/releases/tag/release_1_0>`__
1774 * `1.0.1 <https://github.com/google/truth/releases/tag/release_1_0_1>`__
1776 * Guava 27.1 → 28.2, release notes:
1777 * `28.0 <https://github.com/google/guava/releases/tag/v28.0>`__
1778 * `28.1 <https://github.com/google/guava/releases/tag/v28.1>`__
1779 * `28.2 <https://github.com/google/guava/releases/tag/v28.2>`__
1781 * Javassist 3.26.0 → 3.27.0
1783 * jdt-annotations 2.2.100 → 2.2.400
1785 * Karaf 4.2.6 → 4.2.8, with related upgrades, release notes:
1786 * `4.2.7 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345539>`__
1787 * `4.2.8 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12346100>`__
1789 * log4j2 `2.13.0 → 2.13.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.1>`__
1791 * Netty 4.1.45 → 4.1.48, release notes:
1792 * `4.1.46 <https://netty.io/news/2020/02/28/4-1-46-Final.html>`__
1793 * `4.1.47 <https://netty.io/news/2020/03/09/4-1-47-Final.html>`__
1794 * `4.1.48 <https://netty.io/news/2020/03/17/4-1-48-Final.html>`__
1796 * Powermock 2.0.4 → 2.0.6, release notes:
1797 * `2.0.5 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#205>`__
1798 * `2.0.6 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#206>`__
1800 * Scala 2.12.10 → 2.13.1, release notes:
1801 * `2.13.0 <https://github.com/scala/scala/releases/tag/v2.13.0>`__
1802 * `2.13.1 <https://github.com/scala/scala/releases/tag/v2.13.1>`__
1804 * scala-java8-compat 0.8.0 → 0.9.1, release notes:
1805 * `0.9.0 <https://github.com/scala/scala-java8-compat/releases/tag/v0.9.0>`__
1806 * `0.9.1 <https://github.com/scala/scala-java8-compat/releases/tag/v0.9.1>`__
1808 * Sevntu 1.36.0 → 1.37.1, release notes:
1809 * `1.37.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.37.0>`__
1810 * `1.37.1 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.37.1>`__
1812 * woodstox-core 5.3.0 → 6.1.1
1817 * findbugs-slf4j `1.4.0 → 1.5.0 <https://github.com/KengoTODA/findbugs-slf4j/blob/master/CHANGELOG.md#150---2019-07-04>`__
1819 * maven-checkstyle-plugin `3.1.0 → 3.1.1 <https://blogs.apache.org/maven/entry/apache-maven-checkstyle-plugin-version1>`__
1821 * maven-dependency-plugin `3.1.1 → 3.1.2 <https://blogs.apache.org/maven/entry/apache-maven-dependency-plugin-version2>`__
1823 * maven-enforcer-plugin `3.0.0-M2 → 3.0.0-M3 <https://blogs.apache.org/maven/entry/apache-maven-enforcer-version-3>`__
1825 * maven-javadoc-plugin `3.1.1 → 3.2.0 <https://blogs.apache.org/maven/entry/apache-maven-javadoc-plugin-version1>`__
1827 * maven-shade-plugin `3.2.1 → 3.2.2 <https://blogs.apache.org/maven/entry/apache-maven-shade-plugin-version3>`__
1829 * modernizer-maven-plugin `2.0.0 → 2.1.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.1.0>`__
1831 * pmd-maven-plugin `3.12.0 → 3.13.0 <https://blogs.apache.org/maven/entry/apache-maven-pmd-plugin-version2>`__
1835 This is a bug-fix upgrade from version 6.0.4.
1837 Third-party dependencies
1838 ~~~~~~~~~~~~~~~~~~~~~~~~
1839 * Akka 2.5.26 → 2.5.29, release notes:
1840 * `2.5.27 <https://akka.io/blog/news/2019/12/10/akka-2.5.27-released>`__
1841 * `2.5.29 <https://akka.io/blog/news/2020/01/28/akka-2.5.29-released>`__
1843 * commons-codec `1.13 → 1.14 <https://commons.apache.org/proper/commons-codec/changes-report.html#a1.14>`__
1845 * Jackson `2.9.10 → 2.9.10.20200103 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9#micro-patches>`__
1849 * maven-source-plugin `3.2.0 → 3.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12346480>`__
1853 This is a bug-fix upgrade from version 6.0.3.
1857 * ``single-feature-test`` was using outdated repositories, including Maven Central,
1858 which `broke on Jan 15, 2020 <https://support.sonatype.com/hc/en-us/articles/360041287334-Central-501-HTTPS-Required>`__.
1859 This has been corrected.
1861 Third-party dependencies
1862 ~~~~~~~~~~~~~~~~~~~~~~~~
1864 * JUnit 4.11 → 4.13, release notes:
1865 * `4.12 <https://github.com/junit-team/junit4/blob/master/doc/ReleaseNotes4.12.md>`__
1866 * `4.13 <https://github.com/junit-team/junit4/blob/master/doc/ReleaseNotes4.13.md>`__
1868 * log4j2 2.11.2 → 2.13.0, release notes:
1869 * `2.12.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.0>`__
1870 * `2.12.1 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.12.1>`__
1871 * `2.13.0 <https://logging.apache.org/log4j/2.x/changes-report.html#a2.13.0>`__
1873 * netty 4.1.42 → 4.1.45, release notes:
1874 * `4.1.43 <https://netty.io/news/2019/10/24/4-1-43-Final.html>`__
1875 * `4.1.44 <https://netty.io/news/2019/12/18/4-1-44-Final.html>`__
1876 * `4.1.45 <https://netty.io/news/2020/01/13/4-1-45-Final.html>`__
1880 * maven-assembly-plugin 2.2-beta5 → 3.2.0
1882 * maven-archetype-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12345957>`__
1886 This is a bug-fix upgrade from version 6.0.2.
1890 * The fix for `ODLPARENT-216 <https://jira.opendaylight.org/browse/ODLPARENT-216>`__ ended up
1891 breaking ``org.kohsuke.metainf-services`` integration. While this could be fixed in downstreams
1892 by adding proper </annotationProcessorPaths> entry, it is a regression from 6.0.1.
1896 This is a security/bug-fix upgrade from version 6.0.1.
1900 * ``single-feature-parent`` was setting up Karaf repositories incorrectly, leading to
1901 the test using unpatched Karaf resources. This has now been fixed and the test run
1902 is using environment equivalent to the contents of the distribution. See
1903 `ODLPARENT-209 <https://jira.opendaylight.org/browse/ODLPARENT-209>`__ for details.
1905 * ``immutables.org`` integration relied on pre-JDK9 way of integration, where the annotation processor
1906 was just dropped as a dependency. This does not work with JDK9+ artifacts which are also explicit
1907 JMPS modules. Note that users are advised to switch to depending on the ``annotations``-classified
1908 artifact. See `ODLPARENT-216 <https://jira.opendaylight.org/browse/ODLPARENT-216>`__ for details.
1910 * Assembled Karaf distribution did not perform proper JDK checks and allowed launching with JDK8,
1911 leading to a failure to install OpenDaylight components with an error stack, which confuses users
1912 not familiar with OSGi. The distribution now refuses to start with anything other than JDK11. See
1913 `ODLPARENT-218 <https://jira.opendaylight.org/browse/ODLPARENT-218>`__ for details.
1915 Third-party dependencies
1916 ~~~~~~~~~~~~~~~~~~~~~~~~
1918 * Akka `2.5.25 → 2.5.26 <https://akka.io/blog/news/2019/10/17/akka-2.5.26-released>`__
1920 * Checkstyle 8.20 → 8.26, release notes:
1921 * `8.21 <https://checkstyle.org/releasenotes.html#Release_8.21>`__
1922 * `8.22 <https://checkstyle.org/releasenotes.html#Release_8.22>`__
1923 * `8.23 <https://checkstyle.org/releasenotes.html#Release_8.23>`__
1924 * `8.24 <https://checkstyle.org/releasenotes.html#Release_8.24>`__
1925 * `8.25 <https://checkstyle.org/releasenotes.html#Release_8.25>`__
1926 * `8.26 <https://checkstyle.org/releasenotes.html#Release_8.26>`__
1928 * H2 database `1.4.199 → 1.4.200 <http://www.h2database.com/html/changelog.html>`__
1930 * Hamcrest `2.1 → 2.2 <https://github.com/hamcrest/JavaHamcrest/releases/tag/v2.2>`__
1932 * JaCoCo `0.8.4 → 0.8.5 <https://github.com/jacoco/jacoco/releases/tag/v0.8.5>`__
1934 * Karaf 4.2.2 → 4.2.6, release notes:
1935 * `4.2.3 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12344587>`__
1936 * `4.2.4 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12344856>`__
1937 * `4.2.5 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345153>`__
1938 * `4.2.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12345365>`__
1940 * Powermock `2.0.2 → 2.0.4 <https://github.com/powermock/powermock/blob/release/2.x/docs/release-notes/official.md#204>`__
1942 * Sevntu `1.35.0 → 1.36.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.36.0>`__
1947 * maven-bundle-plugin `4.1.0 → 4.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12345491>`__
1949 * maven-jar-plugin `3.1.2 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12345503>`__
1951 * maven-source-plugin `3.1.0 → 3.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12345522>`__
1953 * modernizer-maven-plugin `1.9.0 → 2.0.0 <https://github.com/gaul/modernizer-maven-plugin/releases/tag/modernizer-maven-plugin-2.0.0>`__
1957 This is a security/bug-fix upgrade from version 6.0.0.
1961 * ``karaf-plugin`` ignored exceptions coming from its failure to resolve ${karaf.etc} variable. This
1962 has now been fixed and the URL handling has been revised to fix build on Windows. See
1963 `ODLPARENT-214 <https://jira.opendaylight.org/browse/ODLPARENT-214>`__ for details.
1965 * ``leveldb-jni`` jar, which has been seeded to nexus.opendaylight.org long time ago is not published
1966 in Maven Central. This has been resolved by repackaging this jar and publishing it from odlparent.
1967 See `ODLPARENT-210 <https://jira.opendaylight.org/browse/ODLPARENT-210>`__ for details.
1969 Third-party dependencies
1970 ~~~~~~~~~~~~~~~~~~~~~~~~
1972 * Bouncy Castle `1.63 → 1.64 <http://www.bouncycastle.org/releasenotes.html>`__
1974 * Jackson `2.9.9 → 2.9.10 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.10>`__
1976 * Javassist 3.24.1-GA → 3.26.0-GA
1978 * Guice 4.1.0 → 4.2.2, release notes:
1979 * `4.2.0 <https://github.com/google/guice/wiki/Guice42>`__
1980 * `4.2.1 <https://github.com/google/guice/wiki/Guice421>`__
1981 * `4.2.2 <https://github.com/google/guice/wiki/Guice422>`__
1983 * Mockito 2.25.1 → 2.28.2, release notes:
1984 * `2.25.2 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2252>`__
1985 * `2.25.3 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2253>`__
1986 * `2.25.4 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2254>`__
1987 * `2.25.5 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2255>`__
1988 * `2.25.6 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2256>`__
1989 * `2.25.7 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2257>`__
1990 * `2.26.1 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2261>`__
1991 * `2.26.2 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2262>`__
1992 * `2.27.1 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2271>`__
1993 * `2.27.2 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2272>`__
1994 * `2.27.3 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2273>`__
1995 * `2.27.4 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2274>`__
1996 * `2.27.5 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2275>`__
1997 * `2.28.0 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2280>`__
1999 * Netty 4.1.39 → 4.1.42, release notes:
2000 * `4.1.41 <https://netty.io/news/2019/09/12/4-1-41-Final.html>`__
2001 * `4.1.42 <https://netty.io/news/2019/09/25/4-1-42-Final.html>`__
2003 * pt-triemap `1.0.6 → 1.1.0 <https://github.com/PantheonTechnologies/triemap/releases/tag/triemap-1.1.0>`__
2005 * reactive-streams `1.0.2 → 1.0.3 <http://www.reactive-streams.org/announce-1.0.3>`__
2007 * stax2-api `3.1.4 → 4.2 <https://github.com/FasterXML/stax2-api/blob/master/release-notes/VERSION>`__
2009 * woodstox-core 5.0.3 → 5.3.0, release notes:
2010 * `5.1.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-5.1>`__
2011 * `5.2.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-5.2>`__
2012 * `5.3.0 <https://github.com/FasterXML/woodstox/wiki/Woodstox-Release-5.3>`__
2016 This is a major upgrade from version 5, with breaking changes; projects will
2017 need to make changes to upgrade to this version.
2021 This release sets ``maven.compiler.release=11`` and enforces that the JDK used to build
2022 is Java 11+. As there may be issues with various maven plugins when faced with JDK9+
2023 constructs and JDK11+ classes, target release can be controlled on a per-artifact
2024 basis (i.e. target Java 10 with ``maven.compiler.release=10`` property).
2026 This release has been validated with ``openjdk-11.0.4`` and is not supported on any lower
2027 version. As usual, we recommend using latest available JDK/JRE for Java 11 during development
2030 Checkstyle/SpotBugs/Modernizer run by default
2031 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2032 With this release code artifacts always run ``maven-checkstyle-plugin``, ``spotbugs-maven-plugin``
2033 and ``modernizer-maven-plugin``. Checkstyle and SpotBugs run in enforcing mode, i.e. will fail
2034 build if any violations are found. Modernizer is configured to report Java 8-compatible constructs
2035 and will not fail the build unless instructed to do so.
2037 Behavior of each of these is controlled via a maven property on a per-artifact basis:
2039 * ``odlparent.checkstyle.enforce`` controls checkstyle enforcement: defaults to ``true``, but can be set to ``false``
2040 * ``odlparent.checkstyle.skip`` controls checkstyle invocation: defaults to ``false``, but can be set to ``true``
2041 * ``odlparent.spotbugs.enforce`` controls SpotBugs enforcement: defaults to ``true``, but can be set to ``false``
2042 * ``odlparent.spotbugs.skip`` controls SpotBugs invocation: defaults to ``false``, but can be set to ``true``
2043 * ``odlparent.modernizer.enforce`` controls modernizer enforcement: defaults to ``false``, but can be set to ``true``
2044 * ``odlparent.modernizer.skip`` controls modernizer invocation: defaults to ``false``, but can be set to ``true``
2045 * ``odlparent.modernizer.target`` controls modernizer Java version: defaults to ``1.8``, but can be set to ``1.11`` or similar
2050 * ``blueprint container`` had ``org.apache.aries.blueprint.preemptiveShutdown`` set to false
2051 to enable it to work with Config Subsystem. As that component is long gone, this property has
2052 been removed as part of `ODLPARENT-34 <https://jira.opendaylight.org/browse/ODLPARENT-34>`__.
2053 Furthermore, system properties related to Config Subsystem/NETCONF integration have been removed
2056 Upstream version removals
2057 ~~~~~~~~~~~~~~~~~~~~~~~~~
2059 The following upstream dependencies have been removed from dependency management:
2061 * com.google.code.findbugs/jsr305
2063 Third-party dependencies
2064 ~~~~~~~~~~~~~~~~~~~~~~~~
2066 The dependency on `xmlunit-assertj` and `modernizer-maven-annotations` has been added and the following
2067 dependencies have been upgraded:
2069 * Akka 2.5.23 → 2.5.25, release notes:
2070 * `2.5.24 <https://akka.io/blog/news/2019/08/09/akka-2.5.24-released>`__
2071 * `2.5.25 <https://akka.io/blog/news/2019/08/20/akka-2.5.25-released>`__
2073 * apache-sshd `2.2.0 → 2.3.0 <https://github.com/apache/mina-sshd/blob/master/docs/changes/2.3.0.md>`__
2075 * Bouncy Castle `1.62 → 1.63 <https://www.bouncycastle.org/releasenotes.html>`__
2077 * commons-beanutils `1.9.3 → 1.9.4 <https://www.apache.org/dist/commons/beanutils/RELEASE-NOTES.txt>`__
2079 * commons-codec `1.12 → 1.13 <http://www.apache.org/dist/commons/codec/RELEASE-NOTES.txt>`__
2081 * commons-text 1.6 → 1.8, release notes:
2082 * `1.7 <https://commons.apache.org/proper/commons-text/changes-report.html#a1.7>`__
2083 * `1.8 <https://commons.apache.org/proper/commons-text/changes-report.html#a1.8>`__
2085 * Checkstyle 8.18 → 8.20, release notes:
2086 * `8.19 <https://checkstyle.org/releasenotes.html#Release_8.19>`__
2087 * `8.20 <https://checkstyle.org/releasenotes.html#Release_8.20>`__
2089 * jackson-databind `2.9.9 → 2.9.9.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9#micro-patches>`__
2091 * jaxb-api 2.2.8 → 2.3.0, aligning it with Karaf-provided version
2093 * Netty 4.1.36 → 4.1.39, release notes:
2094 * `4.1.37 <https://netty.io/news/2019/06/28/4-1-37-Final.html>`__
2095 * `4.1.38 <https://netty.io/news/2019/07/24/4-1-38-Final.html>`__
2096 * `4.1.39 <https://netty.io/news/2019/08/13/4-1-39-Final.html>`__
2098 * Sevntu 1.32.0 → 1.35.0, release notes:
2099 * `1.33.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.33.0>`__
2100 * `1.34.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.34.0>`__
2101 * `1.34.1 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.34.1>`__
2102 * `1.35.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.35.0>`__
2104 * Scala 2.12.8 → 2.12.9, release notes:
2105 * `2.12.9 <https://github.com/scala/scala/releases/tag/v2.12.9>`__
2106 * `2.12.10 <https://github.com/scala/scala/releases/tag/v2.12.10>`__
2108 * slf4j `1.7.25 → 1.7.28 <https://www.slf4j.org/news.html>`__
2110 * triemap `1.0.5 → 1.0.6 <https://github.com/PantheonTechnologies/triemap/releases/tag/triemap-1.0.6>`__
2112 * typesafe/ssl-config `0.3.7 → 0.3.8 <https://github.com/lightbend/ssl-config/compare/v0.3.7...v0.3.8>`__
2114 * Xtend 1.17.1 → 1.19.0, release notes:
2115 * `1.18.0 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/06/04/version-2-18-0>`__
2116 * `1.19.0 <https://www.eclipse.org/Xtext/releasenotes.html#/releasenotes/2019/09/03/version-2-19-0>`__
2121 * git-commit-id-plugin 2.2.6 → 3.0.1, release notes:
2122 * `3.0.0 <https://github.com/git-commit-id/maven-git-commit-id-plugin/releases/tag/v3.0.0>`__
2123 * `3.0.1 <https://github.com/git-commit-id/maven-git-commit-id-plugin/releases/tag/v3.0.1>`__
2125 * maven-javadoc-plugin `3.1.0 → 3.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12345060>`__
2127 * pmd-maven-plugin `3.11.0 → 3.12.0 <https://blogs.apache.org/maven/entry/apache-maven-pmd-plugin-version1>`__
2129 * spotbugs-maven-plugin 3.1.11 → 3.1.12.2, release notes:
2130 * `3.1.12 <https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-3.1.11...spotbugs-maven-plugin-3.1.12>`__
2131 * `3.1.12.1 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-3.1.12.1>`__
2132 * `3.1.12.2 <https://github.com/spotbugs/spotbugs-maven-plugin/releases/tag/spotbugs-maven-plugin-3.1.12.2>`__
2137 This is a bug-fix upgrade from version 5.0.0.
2139 Third-party dependencies
2140 ~~~~~~~~~~~~~~~~~~~~~~~~
2142 The following dependencies have been upgraded:
2144 * Akka 2.5.21 → 2.5.23, release notes:
2145 * `2.5.22 <https://akka.io/blog/news/2019/04/03/akka-2.5.22-released>`__
2146 * `2.5.23 <https://akka.io/blog/news/2019/05/21/akka-2.5.23-released>`__
2148 * asciidoctorj-diagram 1.5.12 → 1.5.16
2150 * Bouncy Castle `1.61 → 1.62 <http://www.bouncycastle.org/releasenotes.html>`__
2152 * commons-lang3 `3.8.1 → 3.9 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`__
2154 * JaCoCo `0.8.3 → 0.8.4 <https://github.com/jacoco/jacoco/releases/tag/v0.8.4>`__
2156 * Jackson `2.9.8 → 2.9.9 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9>`__
2158 * Jolokia 1.6.0 → 1.6.2, release notes:
2159 * `1.6.1 <https://jolokia.org/changes-report.html#a1.6.1>`__
2160 * `1.6.2 <https://jolokia.org/changes-report.html#a1.6.2>`__
2162 * Mockito `2.25.0 → 2.25.1 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2251>`__
2164 * Netty 4.1.34 → 4.1.36, release notes:
2165 * `4.1.35 <https://netty.io/news/2019/04/17/4-1-35-Final.html>`__
2166 * `4.1.36 <https://netty.io/news/2019/04/30/4-1-36-Final.html>`__
2168 * PowerMock 2.0.0 → 2.0.2, release notes:
2169 * `2.0.1 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.1>`__
2170 * `2.0.2 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.2>`__
2172 * Reactive Streams `1.0.1 → 1.0.2 <https://www.lightbend.com/blog/update-reactive-streams-102-released>`__
2174 * scala-parser-combinators `1.1.1 → 1.1.2 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.1.2>`__
2176 * Sevntu `1.32.0 → 1.33.0 <http://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.33.0>`__
2178 * Typesafe Config `1.3.2 → 1.3.3 <https://github.com/lightbend/config/releases/tag/v1.3.3>`__
2180 * triemap `1.0.4 → 1.0.5 <https://github.com/PantheonTechnologies/triemap/releases/tag/triemap-1.0.5>`__
2182 * XBean finder 4.12 → 4.14, release notes:
2183 * `4.13 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12344253&projectId=12310312>`__
2184 * `4.14 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310312&version=12345220>`__
2186 * xmlunit `2.6.2 → 2.6.3 <https://github.com/xmlunit/xmlunit/releases/tag/v2.6.3>`__
2188 * Xtend `2.17.0 → 2.17.1 <https://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/04/03/version-2-17-1>`__
2193 * maven-archetype-plugin 3.0.1 → 3.1.1, release notes:
2194 * `3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12340346>`__
2195 * `3.1.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317122&version=12345450>`__
2197 * maven-bundle-plugin `4.1.0 → 4.2.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310100&version=12345047>`__
2199 * maven-checkstyle-plugin `3.1.0 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317223&version=12342397>`__
2201 * maven-compiler-plugin `3.8.0 → 3.8.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317225&version=12343484>`__
2203 * maven-help-plugin `3.1.1 → 3.2.0 <https://blog.soebes.de/blog/2019/04/22/apache-maven-help-plugin-version-3-dot-2-0-released/>`__
2205 * maven-jar-plugin `3.1.1 → 3.1.2 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317526&version=12344629>`__
2207 * maven-plugin-plugin `3.5.2 → 3.6.0 <https://blogs.apache.org/maven/entry/apache-maven-plugin-tools-version1>`__
2209 * maven-source-plugin `3.0.1 → 3.1.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317924&version=12336941>`__
2211 * maven-surefire-plugin 2.22.1 → 2.22.2
2216 * ``modernizer-maven-plugin`` declared, allowing downstreams to more easily activate it,
2217 and so detect code which should be updated to more modern equivalent.
2222 * ``odl-caffeine-2`` provides a pre-packaged feature for the Caffeine caching framework,
2223 along with the Guava compabitility layer.
2228 This is a major upgrade from version 4, with breaking changes; projects will
2229 need to make changes to upgrade to this version.
2231 The most significant change is `ODLPARENT-198 <https://jira.opendaylight.org/browse/ODLPARENT-198>`__,
2232 which removes JSR305 from default dependencies and does not present it at class path by default.
2237 ``findbugs`` has been removed, as its only purpose was to provide FindBugs
2238 rule definitions. Equivalent definitions are available in ``spotbugs``.
2243 * ``blueprint-maven-plugin`` used to scan the entire classpath, resulting in potential conflicts
2244 across projects. Scanning is now limited to ``${project.groupId}``, limiting conflict domain
2245 to single project. See `ODLPARENT-109 <https://jira.opendaylight.org/browse/ODLPARENT-109>`__.
2247 * ``bundle-maven-plugin`` configuration ignored generated ServiceLoader service entries,
2248 which has now been fixed. See `ODLPARENT-197 <https://jira.opendaylight.org/browse/ODLPARENT-197>`__.
2250 * Bundle tests are now enabled by default. See `ODLPARENT-158 <https://jira.opendaylight.org/browse/ODLPARENT-158>`__
2251 and `ODLPARENT-80 <https://jira.opendaylight.org/browse/ODLPARENT-80>`__ for details.
2253 * Karaf log file rollover was not explictly set up, leading to inability to easily override
2254 the defaults. See `ODLPARENT-153 <https://jira.opendaylight.org/browse/ODLPARENT-153>`__ for details.
2256 * Karaf log file used to use default maximum 16MiB file size, this has now been increased to 64MiB.
2257 See `ODLPARENT-154 <https://jira.opendaylight.org/browse/ODLPARENT-154>`__.
2259 * ``features-test`` excluded opendaylight-karaf-empty's transitive dependencies, leading
2260 to the need to re-declare them in single-feature-parent. This re-declaration was forgotten
2261 in for ``bcpkix-framework-ext`` and ``bcprov-framework-ext`` bundles, which lead to them
2262 not being present in the local repository. See `ODLPARENT-130 <https://jira.opendaylight.org/browse/ODLPARENT-130>`__.
2264 Upstream version removals
2265 ~~~~~~~~~~~~~~~~~~~~~~~~~
2267 The following upstream dependencies have been removed from dependency management:
2269 * cassandra-driver-core
2271 * org.codehaus.enunciate/enunciate-core-annotations
2273 * org.jboss.resteasy/jaxrs-api
2277 * org.osgi/org.osgi.compendium
2284 * ``features-akka`` feature repository has been integrated into ``features-odlparent``
2286 Third-party dependencies
2287 ~~~~~~~~~~~~~~~~~~~~~~~~
2289 The following dependencies have been upgraded:
2291 * apache-sshd `2.0.0 → 2.2.0 <https://github.com/apache/mina-sshd/compare/sshd-2.0.0...sshd-2.2.0>`__
2293 * Aeron 1.12.0 → 1.15.3, release notes:
2294 * `1.13.0 <https://github.com/real-logic/aeron/releases/tag/1.13.0>`__
2295 * `1.14.0 <https://github.com/real-logic/aeron/releases/tag/1.14.0>`__
2296 * `1.15.0 <https://github.com/real-logic/aeron/releases/tag/1.15.0>`__
2297 * `1.15.1 <https://github.com/real-logic/aeron/releases/tag/1.15.1>`__
2298 * `1.15.2 <https://github.com/real-logic/aeron/releases/tag/1.15.2>`__
2299 * `1.15.3 <https://github.com/real-logic/aeron/releases/tag/1.15.3>`__
2301 * Agrona 0.9.27 → 0.9.33, release notes:
2302 * `0.9.28 <https://github.com/real-logic/agrona/releases/tag/0.9.28>`__
2303 * `0.9.29 <https://github.com/real-logic/agrona/releases/tag/0.9.29>`__
2304 * `0.9.30 <https://github.com/real-logic/agrona/releases/tag/0.9.30>`__
2305 * `0.9.31 <https://github.com/real-logic/agrona/releases/tag/0.9.31>`__
2306 * `0.9.32 <https://github.com/real-logic/agrona/releases/tag/0.9.32>`__
2307 * `0.9.33 <https://github.com/real-logic/agrona/releases/tag/0.9.33>`__
2309 * Akka 2.5.19 → 2.5.21, release notes:
2310 * `2.5.20 <https://akka.io/blog/news/2019/01/29/akka-2.5.20-released>`__
2311 * `2.5.21 <https://akka.io/blog/news/2019/02/13/akka-2.5.21-released>`__
2313 * antl4r `4.7.1 → 4.7.2 <https://github.com/antlr/antlr4/releases/tag/4.7.2>`__
2315 * asciidoctorj-diagram 1.5.11 → 1.5.12
2317 * Bouncy Castle `1.60 → 1.61 <http://www.bouncycastle.org/releasenotes.html>`__
2319 * checkstyle 8.16 → 8.18, release notes:
2320 * `8.17 <http://checkstyle.sourceforge.net/releasenotes.html#Release_8.17>`__
2321 * `8.18 <http://checkstyle.sourceforge.net/releasenotes.html#Release_8.18>`__
2323 * commons-codec `1.11 → 1.12 <http://www.apache.org/dist/commons/codec/RELEASE-NOTES.txt>`__
2325 * Google Error Prone 2.3.2 → 2.3.3
2327 * Google Guava 25.1 → 27.1, release notes:
2328 * `26.0 <https://github.com/google/guava/releases/tag/v26.0>`__
2329 * `27.0 <https://github.com/google/guava/releases/tag/v27.0>`__
2330 * `27.0.1 <https://github.com/google/guava/releases/tag/v27.0.1>`__
2331 * `27.1 <https://github.com/google/guava/releases/tag/v27.1>`__
2333 * Google Truth `0.42 → 0.43 <https://github.com/google/truth/releases/tag/release_0_43>`__
2335 * h2 database `1.4.196 → 1.4.199 <http://www.h2database.com/html/changelog.html>`__
2337 * Immutables `2.7.3 → 2.7.5 <https://github.com/immutables/immutables/#changelog>`__
2339 * Javassist `3.24.0-GA → 3.24.1-GA <https://github.com/jboss-javassist/javassist/releases/tag/rel_3_24_1_ga>`__
2341 * log4j2 `2.11.1 → 2.11.2 <https://github.com/apache/logging-log4j2/blob/log4j-2.11.2/RELEASE-NOTES.md>`__
2343 * Mockito 2.23.4 → 2.25.0, release notes:
2344 * `2.24.0 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2240>`__
2345 * `2.25.0 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md#2250>`__
2347 * Netty 4.1.32 → 4.1.34, release notes:
2348 * `4.1.32 <https://netty.io/news/2018/11/29/4-1-32-Final.html>`__
2349 * `4.1.33 <https://netty.io/news/2019/01/21/4-1-33-Final.html>`__
2350 * `4.1.34 <https://netty.io/news/2019/03/08/4-1-34-Final.html>`__
2352 * OSGi 5.0.0 → 6.0.0
2354 * Powermockito 1.7.4 → 2.0.0, release notes:
2355 * `2.0.0-beta.5 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.0-beta.5>`__
2356 * `2.0.0-RC.1 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.0-RC.1>`__
2357 * `2.0.0 <https://github.com/powermock/powermock/releases/tag/powermock-2.0.0>`__
2359 * SpotBugs `3.1.9 → 3.1.12 <https://github.com/spotbugs/spotbugs/blob/3.1.12/CHANGELOG.md>`__
2361 * ThreeTen `1.4.0 → 1.5.0 <https://www.threeten.org/threeten-extra/changes-report.html#a1.5.0>`__
2363 * Xtend `2.16.0 → 2.17.0 <http://www.eclipse.org/xtend/releasenotes.html#/releasenotes/2019/03/05/version-2-17-0>`__
2370 * maven-findbugs-plugin
2375 * jacoco-maven-plugin `0.8.2 → 0.8.3 <https://github.com/jacoco/jacoco/releases/tag/v0.8.3>`__
2377 * maven-invoker-plugin `3.1.0 → 3.2.0 <https://mail-archives.apache.org/mod_mbox/maven-announce/201901.mbox/%3Cop.zvzdg9tbkdkhrr@desktop-2khsk44%3E>`__
2379 * maven-javadoc-plugin `3.0.1 → 3.1.0 <https://mail-archives.apache.org/mod_mbox/maven-announce/201903.mbox/%3C6064d830-474c-4b43-afef-99502c3a305a%40getmailbird.com%3E>`__
2381 * spotbugs-maven-plugin 3.1.8 → 3.1.11
2386 This is a bug-fix upgrade from version 4.0.8.
2391 * ``karaf-plugin`` invocation in ``karaf4-parent`` caused previously
2392 patched features to be overwritten with their stock versions, referencing
2393 bundles which were not populated in the local repository. (See
2394 `ODLPARENT-194 <https://jira.opendaylight.org/browse/ODLPARENT-194>`__.)
2396 * ``karaf-plugin`` version in ``karaf4-parent`` is now provided through
2397 plugin management so downstreams can override it without needing
2398 to repeat its configuration.
2400 * ``karaf-plugin`` no longer reads features twice when running discovery,
2401 speeding up the process a bit.
2403 * Recent versions of the SpotBugs Maven plugin use SLF4J 1.8 beta 2, which
2404 can’t use the 1.7.25 implementation we provide; we therefore provide an
2405 implementation of 1.8 beta 2 when SpotBugs is used. (See
2406 `ODLPARENT-184 <https://jira.opendaylight.org/browse/ODLPARENT-184>`__.)
2411 * ``odl-woodstox`` wraps the Woodstox StAX implementation which is imposed on
2417 This is a bug-fix and minor upstream bump upgrade from version 4.0.7.
2422 * ``bcprov-ext-jdk15on`` is a superset of ``bcprov-jdk15on``, so there’s no
2423 need to ship both; we now only ship the former. In addition, we install the
2424 Bouncy Castle JARs in ``lib/boot`` so that they continue to be available on
2425 the boot classpath (JDK 9 removes the extension mechanism which was used
2426 previously), and provide the corresponding bundles from the boot classpath
2427 instead of using separate JARs in the system repository. (See
2428 `ODLPARENT-183 <https://jira.opendaylight.org/browse/ODLPARENT-183>`__ and
2429 `ODLPARENT-185 <https://jira.opendaylight.org/browse/ODLPARENT-185>`__.)
2431 * A dependency check has been added to ensure that we don’t run into the
2432 TrieMap dependency bug in 4.0.6 again.
2434 * Dependencies pulled in by features are now checked for convergence, and
2435 ``karaf-plugin`` warns when it finds diverging dependencies (the same
2436 artifact with two different versions). Upstream-provided features are
2437 patched to avoid the following divergences (and upgrade some dependencies in
2440 * Aries utilities 1.1.0/1.1.3 (upgraded to 1.1.3).
2441 * Commons Beanutils 1.8.3/1.9.3 (upgraded to 1.9.3).
2442 * Commons Codec 1.8/1.10 (upgraded to 1.11).
2443 * ``javax.mail`` 1.4.4/1.4.7 (upgraded to 1.4.7).
2445 (See `ODLPARENT-189 <https://jira.opendaylight.org/browse/ODLPARENT-189>`__.)
2450 * ``odl-dropwizard-metrics`` provides Dropwizard Metrics (which are also
2451 available in dependency management).
2453 * ``enunciate-maven-plugin`` is added as the replacement for
2454 ``maven-enunciate-plugin``.
2456 Third-party dependencies
2457 ~~~~~~~~~~~~~~~~~~~~~~~~
2459 The following dependencies are no longer provided by the JVM, starting with
2460 version 11, but we make them available via dependency management for projects
2463 * ``javax.annotation-api``.
2465 * JAXB (``jaxb-core``, ``jaxb-impl``).
2467 The following dependencies have been upgraded:
2469 * Checkstyle `8.15 → 8.16 <https://checkstyle.org/releasenotes.html#Release_8.16>`__.
2471 * Dependency Check `4.0.0 → 4.0.2 <https://github.com/jeremylong/DependencyCheck/blob/master/RELEASE_NOTES.md>`__.
2473 * ``git-commit-id`` `2.2.5 → 2.2.6 <https://github.com/ktoso/maven-git-commit-id-plugin/releases>`__.
2475 * Immutables 2.7.1 → 2.7.3:
2477 * `2.7.2 <https://github.com/immutables/immutables#272-2018-11-05>`__.
2478 * `2.7.3 <https://github.com/immutables/immutables#273-2018-11-10>`__.
2480 (2.7.4 breaks our Javadocs.)
2482 * Jackson `2.9.7 → 2.9.8 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.8>`__.
2487 This is a bug-fix release, correcting the ``triemap`` import declaration.
2492 This is a bug-fix and minor upstream packaging upgrade from version 4.0.5.
2497 Single-feature-test was broken with JDK 9 and later and Karaf 4.2.2; this
2498 release adds the additional JVM configuration needed.
2500 Third-party dependencies
2501 ~~~~~~~~~~~~~~~~~~~~~~~~
2503 This release adds the ``triemap`` BOM to dependency management.
2508 This is a bug-fix release: the Karaf Maven plugin, in version 4.2.2, is
2509 `broken <https://issues.apache.org/jira/browse/KARAF-6057>`__ in some cases we
2510 need in OpenDaylight; we revert to 4.2.1 in ``karaf4-parent`` to avoid this.
2515 This is a bug-fix release, reverting the change made in 4.0.3 to handle
2516 building with either ``zip`` or ``tar.gz`` Karaf archives (which breaks
2517 builds in our infrastructure, without the empty Karaf archive).
2522 This is a bug-fix and minor upstream bump upgrade from version 4.0.2.
2527 * Our FindBugs configuration for JDK 9 and later caused the plugin to run
2528 everywhere; instead, this version defines the ``findbugs.skip`` property to
2529 disable the plugin in modules where it would be used otherwise.
2531 * The PowerMock declarations in dependency management missed
2532 ``powermock-api-mockito2``, which is necessary for modules using PowerMock
2535 * The “quick” profile (``-Pq``) now skips SpotBugs.
2537 * JSR-305 annotations are now optional, which fixes a number of issues when
2538 building with newer JDKs.
2540 * We provide JAXB with JDK 11 and later (where it is no longer provided by the
2543 * ``odlparent-artifacts`` has been updated to accurately represent the
2546 * ``javax.activation`` is now excluded from generated features (it’s provided
2547 on Karaf’s boot classpath).
2549 * When the build is configured to build Karaf distributions in ``tar.gz``
2550 archives, but not ``zip`` archives, ``features-test`` used to fail; it will
2551 now used whichever is available
2552 (`ODLPARENT-174 <https://jira.opendaylight.org/browse/ODLPARENT-174>`__).
2554 * Explicit GCs are disabled by default, so that calls to ``System.gc()`` are
2556 (`ODLPARENT-175 <https://jira.opendaylight.org/browse/ODLPARENT-175>`__).
2558 * Null checks are disabled in SpotBugs because of bad interactions with newer
2559 annotations and the bytecode produces by JDK 11 and later for
2560 ``try``-with-resources.
2562 * Akka Persistence expects LevelDB 0.10, so we now pull in that version
2565 Dependency convergence
2566 ~~~~~~~~~~~~~~~~~~~~~~
2568 A number of dependencies have been added or constrained so that projects using
2569 this parent can enforce dependency convergence:
2571 * Karaf’s ``framework`` feature is used as an import POM, so that we converge
2572 by default on the versions used in Karaf.
2574 * The following dependencies have been added to dependency management:
2576 * ``commons-beanutils``
2577 * the Checker Framework
2578 * Error Prone annotations
2579 * ``javax.activation``
2585 The following Karaf features have been added:
2587 * ``odl-antlr4`` (providing ``antlr4-runtime``);
2589 * ``odl-gson`` (providing ``gson``);
2591 * ``odl-jersey-2`` (providing Jersey client, server, and container servlet,
2592 along with the necessary feature dependencies);
2594 * ``odl-servlet-api`` (providing ``javax.servlet-api``);
2596 * ``odl-stax2-api`` (providing ``stax2-api``);
2598 * ``odl-ws-rs-api`` (providing ``javax.ws.rs-api``);
2600 A new ``sonar-jacoco-aggregate`` profile can be used to produce Sonar reports
2601 with aggregated JaCoCo reports. Additionally, Sonar builds (run with
2602 ``-Dsonar``) are detected and run with a number of irrelevant plugins disabled.
2604 Upstream version upgrades
2605 ~~~~~~~~~~~~~~~~~~~~~~~~~
2607 * Akka 2.5.14 → 2.5.19 (and related ``ssl-config``, Aeron and Agrona upgrades):
2609 * `2.5.15 <https://akka.io/blog/news/2018/08/24/akka-2.5.15-released>`__.
2610 * `2.5.16 <https://akka.io/blog/news/2018/08/29/akka-2.5.16-security-fix-released>`__.
2611 * `2.5.17 <https://akka.io/blog/news/2018/09/27/akka-2.5.17-released>`__.
2612 * `2.5.18 <https://akka.io/blog/news/2018/10/07/akka-2.5.18-released>`__.
2613 * `2.5.19 <https://akka.io/blog/news/2018/12/07/akka-2.5.19-released>`__.
2615 * Commons Text `1.4 → 1.6 <http://www.apache.org/dist/commons/text/RELEASE-NOTES.txt>`__.
2617 * Eclipse JDT annotations 2.2.0 → 2.2.100.
2619 * Javassist 3.23.1 → 3.24.0.
2621 * Karaf 4.2.1 → 4.2.2, with related upgrades.
2623 * LMAX Disruptor `3.4.1 → 3.4.2 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.2>`__.
2625 * Mockito `2.20.1 → 2.23.4 <https://github.com/mockito/mockito/blob/release/2.x/doc/release-notes/official.md>`__.
2627 * Netty 4.1.29 → 4.1.31:
2629 * `4.1.30 <https://netty.io/news/2018/09/28/4-1-30-Final.html>`__.
2630 * `4.1.31 <https://netty.io/news/2018/10/30/4-1-31-Final.html>`__.
2632 * Pax Exam 4.12.0 → 4.13.1.
2634 * Scala 2.12.6 → 2.12.8:
2636 * `2.12.7 <https://github.com/scala/scala/releases/tag/v2.12.7>`__.
2637 * `2.12.8 <https://github.com/scala/scala/releases/tag/v2.12.8>`__.
2639 * Wagon HTTP 3.1.0 → 3.2.0.
2641 * Xtend `2.14.0 → 2.16.0 <https://www.eclipse.org/xtend/releasenotes.html>`__.
2643 Plugin version upgrades
2644 ~~~~~~~~~~~~~~~~~~~~~~~
2646 * Asciidoctor `1.5.6 → 1.5.7.1 <https://github.com/asciidoctor/asciidoctor-maven-plugin/releases>`__
2647 (with related AsciidoctorJ upgrades).
2649 * Bundle 4.0.0 → 4.1.0.
2651 * Checkstyle `8.12 → 8.15 <https://checkstyle.org/releasenotes.html#Release_8.13>`__.
2653 * DependencyCheck `3.3.2 → 4.0.0 <https://github.com/jeremylong/DependencyCheck/blob/master/RELEASE_NOTES.md>`__.
2655 * Failsafe / Surefire `2.22.0 → 2.22.1 <https://blogs.apache.org/maven/entry/apache-maven-surefire-plugin-version1>`__.
2657 * Help 3.1.0 → 3.1.1.
2659 * JAR 3.1.0 → 3.1.1.
2661 * PMD `3.10.0 → 3.11.0 <https://blogs.apache.org/maven/entry/apache-maven-pmd-plugin-3>`__.
2663 * Remote Resources `1.5 → 1.6.0 <https://blogs.apache.org/maven/entry/apache-maven-remote-resources-plugin>`__.
2666 `3.2.0 → 3.2.1 <https://blog.soebes.de/blog/2018/11/12/apache-maven-shade-plugin-version-3-dot-2-1-released/>`__.
2668 * SpotBugs `3.1.6 → 3.1.9 <https://github.com/spotbugs/spotbugs/blob/release-3.1/CHANGELOG.md>`__.
2670 * XBean finder 4.9 → 4.12.
2672 * XTend 2.14.0 → 2.16.0.
2677 This is a bug-fix and minor upstream bump upgrade from version 4.0.1.
2682 Previous releases overrode Karaf’s ``jre.properties``; this is no longer
2683 necessary, and was causing failures with Java 9 and later (our version of
2684 ``jre.properties`` didn’t have the appropriate settings for anything after
2685 Java 8). This release drops that override. See
2686 `ODLPARENT-168 <https://jira.opendaylight.org/browse/ODLPARENT-168>`__ for
2689 Upstream version upgrades
2690 ~~~~~~~~~~~~~~~~~~~~~~~~~
2692 * Commons Lang `3.8 → 3.8.1 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`__.
2694 * Jackson `2.9.6 → 2.9.7 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.7>`__.
2696 * Netty `4.1.28 → 4.1.29 <http://netty.io/news/2018/08/24/4-1-29-Final.html>`__.
2698 Plugin version upgrades
2699 ~~~~~~~~~~~~~~~~~~~~~~~
2701 * JAR `3.0.2 → 3.1.0 <https://blog.soebes.de/blog/2018/04/10/apache-maven-jar-plugin-version-3-dot-1-dot-0-released>`__.
2703 * Javadoc `3.0.0 → 3.0.1 <https://blogs.apache.org/maven/entry/apache-maven-javadoc-plugin-version>`__.
2705 * Jersey `2.22.2 → 2.25.1 <https://jersey.github.io/release-notes/2.25.html>`__,
2706 along with Glassfish JSON 1.0.4 → 1.1.2.
2708 * Plugin 3.5 → 3.5.2:
2710 * `3.5.1 <https://blog.soebes.de/blog/2018/01/22/apache-maven-plugin-tools-version-3-dot-5-1-released/>`__.
2711 * `3.5.2 <https://blog.soebes.de/blog/2018/05/26/apache-mave-plugin-tools-version-3-dot-5-2-released/>`__.
2713 * Resources `3.0.1 → 3.1.0 <https://blogs.apache.org/maven/entry/apache-maven-resources-plugin-version>`__.
2718 This is a bug-fix and minor upstream bump upgrade from version 4.0.0.
2723 The JaCoCo execution profile was incorrect, breaking Sonar; the report is now
2724 written correctly, so that Sonar can find it.
2726 The Blueprint Maven plugin fails when it encounters Java 9 classes; this is
2727 fixed by forcefully upgrading its dependency on xbean-finder. See
2728 `ODLPARENT-167 <https://jira.opendaylight.org/browse/ODLPARENT-167>`__ for
2731 Upstream version upgrades
2732 ~~~~~~~~~~~~~~~~~~~~~~~~~
2734 * SpotBugs `3.1.6 → 3.1.7 <https://github.com/spotbugs/spotbugs/blob/release-3.1/CHANGELOG.md>`__.
2736 Upstream version additions
2737 ~~~~~~~~~~~~~~~~~~~~~~~~~~
2739 * Mockito Inline is added alongside Mockito Core, to ensure that the versions
2742 Plugin version upgrades
2743 ~~~~~~~~~~~~~~~~~~~~~~~
2745 * Clean `3.0.0 → 3.1.0 <https://blog.soebes.de/blog/2018/04/14/apache-maven-clean-plugin-version-3-dot-1-0-released/>`__.
2747 * Compiler `3.7.0 → 3.8.0 <https://blog.soebes.de/blog/2018/07/30/apache-maven-compiler-plugin-version-3-dot-8-0-released/>`__.
2749 * Dependency 3.0.2 → 3.1.1:
2751 * `3.1.0 <https://blog.soebes.de/blog/2018/04/06/apache-maven-dependency-plugin-version-3-dot-1-0-released/>`__.
2752 * `3.1.1 <https://blog.soebes.de/blog/2018/05/24/apache-maven-dependency-plugin-version-3-dot-1-1-released/>`__.
2754 * Dependency Check `3.3.1 → 3.3.2 <https://github.com/jeremylong/DependencyCheck/blob/master/RELEASE_NOTES.md>`__.
2756 * Enforcer `3.0.0-M1 → 3.0.0-M2 <https://mail-archives.apache.org/mod_mbox/maven-announce/201806.mbox/%3Cop.zko9b2vhkdkhrr%40desktop-2khsk44.dynamic.ziggo.nl%3E>`__.
2758 * Failsafe 2.20.1 → 2.22:
2760 * `2.21 <https://blog.soebes.de/blog/2018/03/06/apache-maven-surefire-plugin-version-2-dot-21-released/>`__.
2761 * `2.22 <https://blog.soebes.de/blog/2018/06/16/apache-maven-surefire-plugin-version-2-dot-22-released/>`__.
2765 * `3.0.0 <https://blog.soebes.de/blog/2018/03/18/apache-maven-help-plugin-version-3-dot-0-0-released/>`__.
2766 * `3.0.1 <https://blog.soebes.de/blog/2018/03/28/apache-maven-help-plugin-version-3-dot-0-1-released/>`__.
2767 * `3.1.0 <https://blog.soebes.de/blog/2018/06/09/apache-maven-help-plugin-version-3-dot-1-0-released/>`__.
2769 * Invoker 2.0.0 → 3.1.0:
2771 * `3.0.0 <https://blog.soebes.de/blog/2017/05/24/apache-maven-invoker-plugin-version-3-dot-0-0-released/>`__.
2772 * `3.1.0 <https://blog.soebes.de/blog/2018/05/31/apache-maven-invoker-plugin-version-3-dot-1-0-released/>`__.
2774 * JAR `3.0.2 → 3.1.0 <https://blog.soebes.de/blog/2018/04/10/apache-maven-jar-plugin-version-3-dot-1-dot-0-released/>`__.
2776 * Project Info Reports `2.9 → 3.0.0 <https://blog.soebes.de/blog/2018/06/27/apache-maven-project-info-reports-plugin-3-dot-0-0-released/>`__.
2778 * Resources `3.0.1 → 3.1.0 <https://blog.soebes.de/blog/2018/05/01/apache-maven-resources-plugin-version-3-dot-1-0-released/>`__.
2780 * Shade `3.1.0 → 3.2.0 <https://blog.soebes.de/blog/2018/09/13/apache-maven-shade-plugin-version-3-dot-2-0-released/>`__.
2782 * Site `3.7 → 3.7.1 <https://blog.soebes.de/blog/2018/04/29/apache-maven-site-plugin-version-3-dot-7-1-released/>`__.
2784 * Surefire 2.18.1 → 2.22.0:
2786 * `2.19 <https://blog.soebes.de/blog/2015/10/19/apache-maven-surefire-plugin-version-2-dot-19-released/>`__.
2787 * `2.19.1 <https://blog.soebes.de/blog/2016/01/03/apache-maven-surefire-plugin-version-2-dot-19-dot-1-released/>`__.
2788 * `2.20 <https://blog.soebes.de/blog/2017/04/12/apache-maven-surefire-plugin-version-2-dot-20-released/>`__.
2789 * `2.21 <https://blog.soebes.de/blog/2018/03/06/apache-maven-surefire-plugin-version-2-dot-21-released/>`__.
2790 * `2.22 <https://blog.soebes.de/blog/2018/06/16/apache-maven-surefire-plugin-version-2-dot-22-released/>`__.
2796 This is a major upgrade from version 3, with breaking changes; projects will
2797 need to make changes to upgrade to this version.
2799 `This Wiki page <https://wiki.opendaylight.org/view/Neon_platform_upgrade>`__
2800 has detailed step-by-step migration instructions.
2802 ODL Parent 4 requires Maven 3.5.3 or later; this is needed in particular to
2803 enable SpotBugs support with current versions of the SpotBugs plugin.
2808 This release’s SpotBugs support doesn’t handle Guava 25.1 correctly, resulting
2809 in false-positives regarding null handling; see
2810 `ODLPARENT-161 <https://jira.opendaylight.org/browse/ODLPARENT-161>`__ for
2811 details. Until this is fixed, the corresponding warnings are disabled, which
2812 matches our existing FindBugs configuration (which suffers from the a variant
2813 of this, with the same consequences).
2815 We are planning on upgrading Akka during the 4.x cycle, even if it results in
2816 a technically breaking upgrade. This is currently blocked on an OSGi bug in
2817 Akka; see `Akka issue 25579 <https://github.com/akka/akka/issues/25579>`__ for
2820 Blueprint and OSGi service handling
2821 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2823 Previous releases used an OpenDaylight-specific directory for Blueprint XML
2824 files, ``org/opendaylight/blueprint``. It turned out this wasn’t useful, so
2825 version 4 uses the default directory, ``OSGI-INF/blueprint``.
2827 The Maven bundle plugin is now configured to omit the ``Import-Service`` and
2828 ``Export-Service`` headers, since they are deprecated, unnecessary in
2829 OpenDaylight, and liable to cause issues.
2831 With previous releases of OpenDaylight, projects were encouraged to use Pax
2832 CDI API annotations to describe their Blueprint beans, services and injections;
2833 with version 4, Blueprint annotations should be used instead:
2835 * modules should depend on
2836 ``org.apache.aries.blueprint:blueprint-maven-plugin-annotation``, with the
2837 ``<optional>true</optional>`` flag, instead of
2838 ``org.ops4j.pax.cdi:pax-cdi-api``;
2840 * ``@OsgiServiceProvider`` on bean definitions is replaced by ``@Service``;
2842 * ``@OsgiService`` at injection points is replaced by ``@Reference``;
2844 * ``@OsgiService`` on bean definitions, while technically wrong, can be seen in
2845 the OpenDaylight codebase; this is replaced by ``@Service``;
2847 * service lists can be injected using ``@ReferenceList``.
2849 See `this Gerrit patch <https://git.opendaylight.org/gerrit/75699>`__ for an
2855 Builds now warn about unchecked type uses (such as raw types where generics
2858 JUnit and Mockito are always available as test dependencies and no longer need
2859 to be declared in POMs.
2864 An OWASP profile is now available to run OWASP’s dependency checker; this will
2865 check all third-party dependencies against the NVD vulnerability database. To
2866 enable this, run Maven with ``-Powasp``.
2868 Build profile changes
2869 ~~~~~~~~~~~~~~~~~~~~~
2871 ``-Pq`` now skips Modernizer.
2876 ``odl-akka-leveldb-0.10`` wraps LevelDB 0.10 for Akka.
2878 ``odl-apache-commons-codec`` wraps Apache Commons Codec.
2880 ``odl-apache-commons-lang3`` wraps Apache Commons Lang 3.
2882 ``odl-apache-commons-net`` wraps Apache Commons Net.
2884 ``odl-apache-commons-text`` wraps Apache Commons Text.
2886 ``odl-apache-sshd`` wraps Apache SSHD.
2888 ``odl-guava`` provides the default ODL version of Guava; it should be used
2889 instead of ``odl-guava-23`` or the new ``odl-guava-25``.
2891 ``odl-jackson-2.9`` wraps Jackson 2.9.
2893 New FindBugs and SpotBugs settings
2894 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2896 FindBugs and SpotBugs are configured with
2897 `the SLF4J extension <http://kengotoda.github.io/findbugs-slf4j/>`__ (version
2898 1.4.0 for FindBugs, 1.4.1 for SpotBugs). This will flag misused SLF4J calls, in
2899 particular message templates which don’t match the arguments, and invalid
2900 placeholders (*e.g.* ``%s`` instead of ``{}``).
2905 ``aggregator-parent`` was unusable outside ``odlparent`` and has been removed.
2906 Instead, the ``maven.deploy.skip`` and ``maven.install.skip`` properties are
2907 available to disable deploying and installing artifacts.
2909 Upstream version upgrades
2910 ~~~~~~~~~~~~~~~~~~~~~~~~~
2912 This version upgrades the following third-party dependencies:
2914 * Aeron 1.7.0 → 1.9.3:
2916 * `1.8.0 <https://github.com/real-logic/aeron/releases/tag/1.8.0>`__.
2917 * `1.8.1 <https://github.com/real-logic/aeron/releases/tag/1.8.1>`__.
2918 * `1.8.2 <https://github.com/real-logic/aeron/releases/tag/1.8.2>`__.
2919 * `1.9.0 <https://github.com/real-logic/aeron/releases/tag/1.9.0>`__.
2920 * `1.9.1 <https://github.com/real-logic/aeron/releases/tag/1.9.1>`__.
2921 * `1.9.2 <https://github.com/real-logic/aeron/releases/tag/1.9.2>`__.
2922 * `1.9.3 <https://github.com/real-logic/aeron/releases/tag/1.9.3>`__.
2924 * Agrona 0.9.12 → 0.9.21:
2926 * `0.9.13 <https://github.com/real-logic/agrona/releases/tag/0.9.13>`__.
2927 * `0.9.14 <https://github.com/real-logic/agrona/releases/tag/0.9.14>`__.
2928 * `0.9.15 <https://github.com/real-logic/agrona/releases/tag/0.9.15>`__.
2929 * `0.9.16 <https://github.com/real-logic/agrona/releases/tag/0.9.16>`__.
2930 * `0.9.17 <https://github.com/real-logic/agrona/releases/tag/0.9.17>`__.
2931 * `0.9.18 <https://github.com/real-logic/agrona/releases/tag/0.9.18>`__.
2932 * `0.9.19 <https://github.com/real-logic/agrona/releases/tag/0.9.19>`__.
2933 * `0.9.20 <https://github.com/real-logic/agrona/releases/tag/0.9.20>`__.
2934 * `0.9.21 <https://github.com/real-logic/agrona/releases/tag/0.9.21>`__.
2936 * Akka 2.5.11 → 2.5.14:
2938 * `2.5.12 <https://akka.io/blog/news/2018/04/13/akka-2.5.12-released>`__.
2939 * `2.5.13 <https://akka.io/blog/news/2018/06/08/akka-2.5.13-released>`__.
2940 * `2.5.14 <https://akka.io/blog/news/2018/07/13/akka-2.5.14-released>`__.
2942 * ASM 5.1 → 6.2.1 (synchronised with Karaf).
2944 * Bouncy Castle `1.59 → 1.60 <https://www.bouncycastle.org/releasenotes.html>`__.
2946 * Checkstyle `8.4 → 8.12 <http://checkstyle.sourceforge.net/releasenotes.html#Release_8.12>`__.
2948 * Commons Lang `3.7 → 3.8 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`__.
2950 * Commons Text 1.1 → 1.4:
2952 * `1.2 <https://commons.apache.org/proper/commons-text/release-notes/RELEASE-NOTES-1.2.txt>`__.
2953 * `1.3 <https://commons.apache.org/proper/commons-text/release-notes/RELEASE-NOTES-1.3.txt>`__.
2954 * `1.4 <https://commons.apache.org/proper/commons-text/release-notes/RELEASE-NOTES-1.4.txt>`__.
2956 * Eclipse JDT annotations 2.1.150 → 2.2.0.
2958 * EclipseLink Moxy JAXB `2.7.1 → 2.7.3 <https://www.eclipse.org/eclipselink/releases/2.7.php>`__.
2960 * Enunciate core annotations
2961 `2.10.1 → 2.11.1 <https://github.com/stoicflame/enunciate/releases>`__.
2963 * Felix Metatype 1.1.6 → 1.2.0 (synchronised with Karaf).
2965 * Google Truth `0.40 → 0.42 <https://github.com/google/truth/releases>`__.
2967 * Guava 23.6.1 → 25.1:
2969 * `23.4 <https://github.com/google/guava/releases/tag/v23.4>`__.
2970 * `23.5 <https://github.com/google/guava/releases/tag/v23.5>`__.
2971 * `23.6 <https://github.com/google/guava/releases/tag/v23.6>`__.
2972 * `24.0 <https://github.com/google/guava/releases/tag/v24.0>`__.
2973 * `24.1 <https://github.com/google/guava/releases/tag/v24.1>`__.
2974 * `25.0 <https://github.com/google/guava/releases/tag/v25.0>`__.
2975 * `25.1 <https://github.com/google/guava/releases/tag/v25.1>`__.
2977 * Immutables `2.5.6 → 2.7.1 <https://github.com/immutables/immutables/blob/master/README.md#changelog>`__.
2979 * Jackson 2.8.9 → 2.9.6:
2981 * `2.9 feature overview <https://medium.com/@cowtowncoder/jackson-2-9-features-b2a19029e9ff>`__.
2982 * `2.9 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9>`__.
2983 * `2.9.1 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.1>`__.
2984 * `2.9.2 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.2>`__.
2985 * `2.9.3 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.3>`__.
2986 * `2.9.4 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.4>`__.
2987 * `2.9.5 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.5>`__.
2988 * `2.9.6 <https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.6>`__.
2990 * JaCoCo `0.8.1 → 0.8.2 <https://github.com/jacoco/jacoco/releases/tag/v0.8.2>`__.
2992 * Javassist 3.22.0 → 3.23.1. This provides compatibility with Java 9 and later,
2993 and `fixes a file handle leak <https://github.com/jboss-javassist/javassist/issues/165>`__.
2995 * Jettison 1.3.8 → 1.4.0.
2997 * Jetty 9.3.21 → 9.4.11 (synchronised with Karaf):
2999 * `9.4.0 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00097.html>`__.
3000 * `9.4.1 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00100.html>`__.
3001 * `9.4.2 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00101.html>`__.
3002 * `9.4.3 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00102.html>`__.
3003 * `9.4.4 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00105.html>`__.
3004 * `9.4.5 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00107.html>`__.
3005 * `9.4.6 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00109.html>`__.
3006 * `9.4.7 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00111.html>`__.
3007 * `9.4.8 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00114.html>`__.
3008 * `9.4.9 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00117.html>`__.
3009 * `9.4.10 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00119.html>`__.
3010 * `9.4.11 <https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00122.html>`__.
3012 * Jolokia OSGi `1.5.0 → 1.6.0 <https://jolokia.org/changes-report.html#a1.6.0>`__.
3014 * Karaf 4.1.5 → 4.2.1:
3016 * `4.1.6 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12342748>`__.
3017 * `4.2.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12342945>`__.
3019 * LMAX Disruptor 3.3.10 → 3.4.1:
3021 * `3.4.0 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.0>`__.
3022 * `3.4.1 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.4.1>`__.
3024 * META-INF services 1.7 → 1.8.
3026 * Mockito 1.10.19 → 2.20.1; see
3027 `What’s new in Mockito 2 <https://github.com/mockito/mockito/wiki/What%27s-new-in-Mockito-2>`__
3028 for upgrade instructions and
3029 `the list of issues you might run into <https://asolntsev.github.io/en/2016/10/11/mockito-2.1/>`__.
3031 * Netty 4.1.22 → 4.1.28:
3033 * `4.1.17 <http://netty.io/news/2017/11/08/4-0-53-Final-4-1-17-Final.html>`__.
3034 * `4.1.18 <http://netty.io/news/2017/12/11/4-0-54-Final-4-1-18-Final.html>`__.
3035 * `4.1.19 <http://netty.io/news/2017/12/18/4-1-19-Final.html>`__.
3036 * `4.1.20 <http://netty.io/news/2018/01/22/4-0-55-Final-4-1-20-Final.html>`__.
3037 * `4.1.21 <http://netty.io/news/2018/02/05/4-0-56-Final-4-1-21-Final.html>`__.
3038 * `4.1.22 <http://netty.io/news/2018/02/21/4-1-22-Final.html>`__.
3039 * `4.1.23 <http://netty.io/news/2018/04/04/4-1-23-Final.html>`__.
3040 * `4.1.24 <http://netty.io/news/2018/04/19/4-1-24-Final.html>`__.
3041 * `4.1.25 <http://netty.io/news/2018/05/14/4-1-25-Final.html>`__.
3042 * `4.1.26 <http://netty.io/news/2018/07/10/4-1-26-Final.html>`__.
3043 * `4.1.27 <http://netty.io/news/2018/07/11/4-1-27-Final.html>`__.
3044 * `4.1.28 <http://netty.io/news/2018/07/27/4-1-28-Final.html>`__.
3046 * Pax Exam 4.11.0 → 4.12.0.
3048 * Pax URL 2.5.3 → 2.5.4, which only fixes
3049 `a potential NullPointerException <https://ops4j1.jira.com/browse/PAXURL-346>`__.
3051 * PowerMock 1.6.4 → 1.7.4:
3053 * `1.6.5 <https://github.com/powermock/powermock/releases/tag/powermock-1.6.5>`__.
3054 * `1.6.6 <https://github.com/powermock/powermock/releases/tag/powermock-1.6.6>`__.
3055 * `1.7.0 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.0>`__.
3056 * `1.7.1 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.1>`__.
3057 * `1.7.2 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.2>`__.
3058 * `1.7.3 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.3>`__.
3059 * `1.7.4 <https://github.com/powermock/powermock/releases/tag/powermock-1.7.4>`__.
3061 * Scala parser combinators 1.0.7 → 1.1.1:
3063 * `1.1.0 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.1.0>`__.
3064 * `1.1.1 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.1.1>`__.
3066 * SpotBugs `3.1.0 → 3.1.6 <https://github.com/spotbugs/spotbugs/blob/3.1.6/CHANGELOG.md>`__.
3068 * Threeten Extra `1.3.2 → 1.4 <https://github.com/ThreeTen/threeten-extra/releases>`__.
3070 * Typesafe SSL config 0.2.2 → 0.2.4:
3072 * `0.2.3 <https://github.com/lightbend/ssl-config/releases/tag/v0.2.3>`__.
3073 * `0.2.4 <https://github.com/lightbend/ssl-config/releases/tag/v0.2.4>`__.
3076 `2.10 → 3.1.0 <https://lists.apache.org/thread.html/96024c54db7680697cb066e22a37b0ed5b4498386714a8a9ae1ec9cd@%3Cannounce.maven.apache.org%3E>`__.
3078 * XMLUnit `1.6 → 2.6.2 <https://github.com/xmlunit/xmlunit/blob/master/RELEASE_NOTES.md>`__.
3080 Upstream version additions
3081 ~~~~~~~~~~~~~~~~~~~~~~~~~~
3083 The following upstream dependencies have been added to dependency management:
3085 * Apache SSHD 2.0.0, with EdDSA and Netty support (EdDSA is provided by ``net.i2p.crypto:eddsa``).
3087 * Blueprint annotations (``org.apache.aries.blueprint:blueprint-maven-plugin-annotation``).
3091 * Pax Web 7.2.3 (synchronised with Karaf).
3093 Upstream version removals
3094 ~~~~~~~~~~~~~~~~~~~~~~~~~
3096 The following upstream dependencies have been removed from dependency management:
3100 * Our repackaging of Jersey Servlet.
3102 * JUnit’s ``junit-dep``, which has long been obsolete.
3104 * LevelDB (which is still available as features).
3106 * Pax CDI API — Blueprint annotations should be used instead.
3108 Plugin version upgrades
3109 ~~~~~~~~~~~~~~~~~~~~~~~
3111 The following plugins have been upgraded:
3113 * Blueprint 1.4.0 → 1.10.0.
3115 * Build helper 1.12 → 3.0.0.
3117 * Bundle plugin 3.5.0 → 4.0.0.
3120 `2.17 → 3.0.0 <https://mail-archives.apache.org/mod_mbox/maven-announce/201801.mbox/%3Cop.zchs68akkdkhrr%40desktop-2khsk44.mshome.net%3E>`__.
3123 `1.2.1 → 1.3.0 <https://github.com/basepom/duplicate-finder-maven-plugin/blob/master/CHANGES.md>`__.
3125 * Git commit id `2.2.4 → 2.2.5 <https://github.com/ktoso/maven-git-commit-id-plugin/releases/tag/v2.2.5>`__.
3127 * Jacoco Maven plugin `0.8.1 → 0.8.2 <https://github.com/jacoco/jacoco/releases/tag/v0.8.2>`__.
3129 * Javadoc `3.0.0 → 3.0.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12342283>`__.
3133 * `3.10.0 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12342689&styleName=Text&projectId=12317621>`__.
3135 * Sevntu `1.29.0 → 1.32.0 <http://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.32.0>`__.
3137 * SpotBugs 3.1.0-RC6 → 3.1.6 (see the SpotBugs changes above).
3142 This version fixes the following issues:
3144 * `ODLPARENT-156 <https://jira.opendaylight.org/browse/ODLPARENT-156>`_:
3145 ``xtend-maven-plugin``’s dependencies end up pulling in conflicting
3146 dependencies. ODL Parent now constrains part of its dependency tree to avoid
3149 This version adds ``odl-jackson-2.8`` to ``odlparent-artifacts``.
3154 This version fixes the following issues:
3156 * `INFRAUTILS-41 <https://jira.opendaylight.org/browse/INFRAUTILS-41>`_:
3157 ``jre.properties`` includes ``com.sun.management`` so that it can be
3158 enabled if necessary. (This doesn’t add a dependency on
3159 ``com.sun.management``, it allows bundles to use it if it is present.)
3161 * `ODLPARENT-136 <https://jira.opendaylight.org/browse/ODLPARENT-136>`_:
3162 ``SingleFeatureTest`` pulls in ``org.osgi.compendium``.
3164 * `ODLPARENT-144 <https://jira.opendaylight.org/browse/ODLPARENT-144>`_:
3165 ``org.apache.karaf.scr.management`` is whitelisted so that it no longer
3166 affects ``SingleFeatureTest``.
3168 * `ODLPARENT-146 <https://jira.opendaylight.org/browse/ODLPARENT-146>`_:
3169 null-related FindBugs checks which produce false-positives with Guava 23.6
3170 and later are disabled, so that this really is fully backwards-compatible
3173 * `ODLPARENT-148 <https://jira.opendaylight.org/browse/ODLPARENT-148>`_:
3174 ``SingleFeatureTest`` preserves ``target/SFT/karaf.log``.
3176 This version includes the following improvements:
3178 * ``custom.properties`` no longer includes OVSDB-specific configuration.
3180 * The ``odl-jersey-1`` feature includes the Jersey client.
3182 * Redundant bundle dependency declarations in ``SingleFeatureTest`` have been
3183 removed (these are declarations which are also present in our base Karaf
3186 * Build errors involving invalid feature or bundle URLs now indicate which
3187 feature is at fault.
3189 * Obsolete Log4J overrides have been removed from ``SingleFeatureTest``.
3191 When building using JDK 9 or 10, the default settings have been changed as
3192 follows to avoid errors or extraneous warnings:
3194 * SFT is disabled (it needs Karaf 4.2 or later);
3196 * Javadocs are generated as HTML 4;
3198 * SpotBugs is disabled on JDK 10 or later;
3200 * FindBugs is disabled on JDK 9 or later.
3202 The following third-party dependencies have been upgraded:
3204 * `EclipseLink Moxy JAXB 2.6.2 → 2.7.1 <https://www.eclipse.org/eclipselink/releases/2.7.php>`_.
3206 * `Google Truth 0.36 → 0.40 <https://github.com/google/truth/releases>`_.
3208 * `Gson 2.8.2 → 2.8.5 <https://github.com/google/gson/blob/master/CHANGELOG.md>`_.
3210 * `Guava 23.6 → 23.6.1 <https://github.com/google/guava/compare/v23.6...v23.6.1>`_.
3211 This addresses CVE-2018-10237 (that’s the only change in this release).
3213 * `Jacoco Maven plugin 0.8.0 → 0.8.1 <https://github.com/jacoco/jacoco/releases/tag/v0.8.1>`_.
3215 * JDT annotations 2.1.0 → 2.1.150.
3217 * `Scala 2.12.5 → 2.12.6 <https://github.com/scala/scala/releases/tag/v2.12.6>`_.
3219 * `Scala Parser Combinators 1.0.6 → 1.0.7 <https://github.com/scala/scala-parser-combinators/releases/tag/v1.0.7>`_.
3221 * `Sevntu 1.24.2 → 1.29.0 <https://sevntu-checkstyle.github.io/sevntu.checkstyle/#1.29.0>`_.
3223 * `Xtext and Xtend 2.13.0 → 2.14.0 <https://github.com/eclipse/xtext/blob/website-master/xtend-website/_posts/releasenotes/2018-05-23-version-2-14-0.md>`_.
3225 The following Maven plugin has been upgraded:
3227 * `Javadoc 3.0.0 → 3.0.1 <https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12317529&version=12342283>`_.
3232 This version fixes the following issues:
3234 * `ODLPARENT-137 <https://jira.opendaylight.org/browse/ODLPARENT-137>`_:
3235 restore the OpenDaylight prompt.
3237 * `ODLPARENT-146 <https://jira.opendaylight.org/browse/ODLPARENT-146>`_:
3238 Guava 23.6 switched from @Nullable to @NullableDecl, which causes false
3239 positives in FindBugs’ ``NP_NONNULL_PARAM_VIOLATION`` rule; we’re
3240 disabling the rule for now.
3245 This version fixes the following issues:
3247 * Mycila dependencies are now “compile” scoped rather than “test”; this allows
3248 child projects to use Guice with Mycila more easily.
3250 * The duplicate finder now ignores ``web.xml`` and BluePrint XML files.
3252 This version includes the following improvements:
3254 * The ``-Pq`` profile skips Maven Modernizer, in preparation for its future
3255 integration (and its use in child projects).
3257 * An OWASP profile, ``-Powasp`` is available for vulnerability checking.
3259 * A new ``odl-jackson-2.8`` feature provides Jackson 2.8 to child projects.
3261 The following third-party dependencies have been added to dependency management:
3263 * `ThreeTen-Extra <http://www.threeten.org/threeten-extra/>`_
3265 The following third-party dependencies have been upgraded:
3267 * Aeron 1.2.5 → 1.7.0; release notes:
3269 * `1.3.0 <https://github.com/real-logic/aeron/releases/tag/1.3.0>`_
3270 * `1.4.0 <https://github.com/real-logic/aeron/releases/tag/1.4.0>`_
3271 * `1.5.0 <https://github.com/real-logic/aeron/releases/tag/1.5.0>`_
3272 * `1.5.1 <https://github.com/real-logic/aeron/releases/tag/1.5.1>`_
3273 * `1.5.2 <https://github.com/real-logic/aeron/releases/tag/1.5.2>`_
3274 * `1.6.0 <https://github.com/real-logic/aeron/releases/tag/1.6.0>`_
3275 * `1.7.0 <https://github.com/real-logic/aeron/releases/tag/1.7.0>`_
3277 * Agrona 0.9.5 → 0.9.12; release notes:
3279 * `0.9.6 <https://github.com/real-logic/Agrona/releases/tag/0.9.6>`_
3280 * `0.9.7 <https://github.com/real-logic/Agrona/releases/tag/0.9.7>`_
3281 * `0.9.8 <https://github.com/real-logic/Agrona/releases/tag/0.9.8>`_
3282 * `0.9.9 <https://github.com/real-logic/Agrona/releases/tag/0.9.9>`_
3283 * `0.9.10 <https://github.com/real-logic/Agrona/releases/tag/0.9.10>`_
3284 * `0.9.11 <https://github.com/real-logic/Agrona/releases/tag/0.9.11>`_
3285 * `0.9.12 <https://github.com/real-logic/Agrona/releases/tag/0.9.12>`_
3287 * Akka 2.5.5 → 2.5.11; release notes:
3289 * `2.5.6 <https://akka.io/blog/news/2017/09/28/akka-2.5.6-released>`_
3290 * `2.5.7 <https://akka.io/blog/news/2017/11/17/akka-2.5.7-released>`_
3291 * `2.5.8 <https://akka.io/blog/news/2017/12/08/akka-2.5.8-released>`_
3292 * `2.5.9 <https://akka.io/blog/news/2018/01/11/akka-2.5.9-released-2.4.x-end-of-life>`_
3293 * `2.5.10 <https://akka.io/blog/news/2018/02/23/akka-2.5.10-released>`_
3294 * `2.5.11 <https://akka.io/blog/news/2018/02/28/akka-2.5.11-released>`_
3296 * Commons Lang 3 `3.6 → 3.7 <http://www.apache.org/dist/commons/lang/RELEASE-NOTES.txt>`_
3298 * Guava 23.3 → 23.6; release notes:
3300 * `23.4 <https://github.com/google/guava/releases/tag/v23.4>`_
3301 * `23.5 <https://github.com/google/guava/releases/tag/v23.5>`_
3302 * `23.6 <https://github.com/google/guava/releases/tag/v23.6>`_
3304 * H2 database `1.4.193 → 1.4.196 <http://www.h2database.com/html/changelog.html>`_
3306 * Jacoco `0.7.9 → 0.8.0 <https://github.com/jacoco/jacoco/releases/tag/v0.8.0>`_
3308 * Javassist `3.21.0 → 3.22.0 <https://github.com/jboss-javassist/javassist/compare/rel_3_21_0_ga...rel_3_22_0_ga>`_
3310 * lmax-disruptor 3.3.7 → 3.3.10; release notes:
3312 * `3.3.8 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.8>`_
3313 * `3.3.9 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.9>`_
3314 * `3.3.10 <https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.10>`_
3316 * Netty 4.1.16 → 4.1.22; release notes:
3318 * `4.1.17 <http://netty.io/news/2017/11/08/4-0-53-Final-4-1-17-Final.html>`_
3319 * `4.1.18 <http://netty.io/news/2017/12/11/4-0-54-Final-4-1-18-Final.html>`_
3320 * `4.1.19 <http://netty.io/news/2017/12/18/4-1-19-Final.html>`_
3321 * `4.1.20 <http://netty.io/news/2018/01/22/4-0-55-Final-4-1-20-Final.html>`_
3322 * `4.1.21 <http://netty.io/news/2018/02/05/4-0-56-Final-4-1-21-Final.html>`_
3323 * `4.1.22 <http://netty.io/news/2018/02/21/4-1-22-Final.html>`_
3325 * Scala `2.12.4 → 2.12.5 <http://www.scala-lang.org/news/2.12.5>`_
3327 * Typesafe Config `0.2.1 → 0.2.2 <https://github.com/typesafehub/config/blob/master/NEWS.md>`_
3329 The following Maven plugins have been upgraded:
3331 * FindBugs 3.0.4 → 3.0.5
3333 * Git commit id 2.2.2 → 2.2.4; release notes:
3335 * `2.2.3 <https://github.com/ktoso/maven-git-commit-id-plugin/releases/tag/v2.2.3>`_
3336 * `2.2.4 <https://github.com/ktoso/maven-git-commit-id-plugin/releases/tag/v2.2.4>`_
3341 This version fixes the following issues:
3343 * `ODLPARENT-136`_: ``features-test`` needs ``org.osgi.compendium``.
3345 * Jackson dependencies are declared using ``jackson-bom`` to ensure all they
3348 * ``find-duplicate-classpath-entries`` is run in the “verify” phase rather than
3349 the “validate” phase, which is too early.
3351 * The version of Jetty we pull in is now aligned with that declared in Karaf,
3352 resolving a number of restart and dependency issues.
3354 * Pulling in the ``wrap`` feature unconditionally is no longer necessary, so
3355 ``karaf4-parent`` no longer does so.
3357 * ``metainf-services`` are declared with scope “provided” to avoid their being
3358 included in downstream features (it’s a build-time dependency only).
3360 * ``leveldb-api`` is excluded from ``odl-akka-leveldb-0.7``, and ``jsr250-api``
3361 from ``enunciate-core-annotations``, to avoid duplicate having classes on the
3364 * Since the ``ssh`` feature is excluded from generated features, our Karaf
3365 need to enable it at boot in all cases.
3367 * ``bundle-test-lib`` is now a bundle.
3369 * Since we use static SLF4J loggers, the ``SLF4J_LOGGER_SHOULD_BE_NON_STATIC``
3370 rule needs to be disabled in our FindBugs configuration (this allows
3371 downstream projects to enable ``findbugs-slf4j`` without having to deal with
3372 all the resulting false-positives).
3374 * ``org.apache.karaf.scr.management`` is white-listed in SFT to avoid failures
3375 apparently related to that component (which we don’t care about).
3377 .. _ODLPARENT-136: https://jira.opendaylight.org/browse/ODLPARENT-136
3379 This version upgrades the following third-party dependencies:
3381 * `Antlr 4.7 → 4.7.1`_
3383 * `BouncyCastle 1.58 → 1.59`_
3385 * Jersey 1.17 → 1.19.4 (additionally available as the ``odl-jersey-1`` feature)
3387 * Jolokia 1.3.7 → 1.5.0
3389 * Karaf 4.1.3 → 4.1.5; release notes:
3394 .. _Antlr 4.7 → 4.7.1: https://github.com/antlr/antlr4/releases/tag/4.7.1
3395 .. _BouncyCastle 1.58 → 1.59: https://www.bouncycastle.org/releasenotes.html
3396 .. _Karaf 4.1.4: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12341702
3397 .. _Karaf 4.1.5: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12311140&version=12342294
3402 This version fixes the following issues:
3404 * SingleFeatureTest uses the configured local Maven repository for Pax Exam.
3406 * JavaDoc links are disabled for now to `speed up builds`_. A new
3407 ``javadoc-links`` profile enables the links.
3409 * Conditional feature dependencies are processed, ensuring our
3410 `distribution is complete`_.
3412 * Startup features are `adjusted for Karaf 4.1`_, avoiding unnecessary
3415 * The ``hiddenField`` Checkstyle check is disabled for abstract methods.
3417 * The default logging configuration uses Log4J2, which is the new default in
3420 .. _speed up builds: https://jira.opendaylight.org/browse/ODLPARENT-121
3421 .. _distribution is complete: https://jira.opendaylight.org/browse/ODLPARENT-133
3422 .. _adjusted for Karaf 4.1: https://jira.opendaylight.org/browse/ODLPARENT-134
3424 This version upgrades the following dependencies or plugins:
3426 * ``maven-enforcer-plugin`` 1.4.1 → 3.0.0-M1
3428 * ``maven-javadoc-plugin`` 3.0.0-M1 → 3.0.0
3433 This version fixes the following issues:
3435 * Karaf pulls in an invalid Hibernate feature repository, breaking downstream
3436 dependencies pulling in the “war” feature. ``populate-local-repo`` corrects
3437 the repository dependency.
3446 Build now show compiler warnings and deprecation warnings. This doesn't affect
3447 the result or require any changes currently, it just makes the issues more
3450 New Checkstyle rules
3451 ~~~~~~~~~~~~~~~~~~~~
3453 Checkstyle has been upgraded from 7.6 to 8.4 (see the
3454 `Checkstyle release notes`_ for details), and Sevntu from 1.21.0 to 1.24.2
3455 (note that the latter's group identifier changed from
3456 ``com.github.sevntu.checkstyle`` to ``com.github.sevntu-checkstyle``; you
3457 might need to update your IDE's configuration).
3459 The following Checkstyle rules are enabled; this might require changes in
3460 projects which enforce Checkstyle validation:
3462 * `AvoidHidingCauseExceptionCheck`_
3463 * `FinalClass`_: utility classes must be declared ``final``
3464 * `HiddenField`_: fields must not be shadowed
3465 * `HideUtilityClassConstructor`_: utility classes must hide their constructor
3467 .. _Checkstyle release notes: http://checkstyle.sourceforge.net/releasenotes.html
3469 .. _AvoidHidingCauseExceptionCheck: http://sevntu-checkstyle.github.io/sevntu.checkstyle/apidocs/com/github/sevntu/checkstyle/checks/coding/AvoidHidingCauseExceptionCheck.html
3470 .. _FinalClass: http://checkstyle.sourceforge.net/config_design.html#FinalClass
3471 .. _HiddenField: http://checkstyle.sourceforge.net/config_coding.html#HiddenField
3472 .. _HideUtilityClassConstructor: http://checkstyle.sourceforge.net/config_design.html#HideUtilityClassConstructor
3477 Karaf has been upgraded to 4.1.3. This should be transparent for dependent
3483 * When building a Karaf distribution using ``karaf4-parent``, projects can
3484 specify which archives to build: the ``karaf.archiveZip`` property will
3485 enable ZIP files if true, and ``karaf.archiveTarGz`` will enable
3486 gzip-compressed tarballs if true. By default both are enabled.
3488 * Our Karaf distribution provides Bouncy Castle at startup. Auto-generated
3489 feature descriptors take this into account (they won't embed a Bouncy
3495 * The ``odl-triemap-0.2`` feature wrapping
3496 ``com.github.romix:java-concurrent-hash-trie-map`` was rendered obsolete by
3497 YANG Tools' implementation and has been removed.
3502 * ``odl-javassist-3`` provides Javassist in a feature.
3504 * ``odl-jung-2.1`` provides `JUNG`_ in a feature.
3506 .. _JUNG: http://jung.sourceforge.net/
3508 Upstream version upgrades
3509 ~~~~~~~~~~~~~~~~~~~~~~~~~
3511 The following upstream dependencies have been upgraded:
3513 * Akka 2.4.18 → 2.5.4; release notes:
3521 * `Awaitility 2 → 3`_
3523 * `Bouncy Castle 1.57 → 1.58`_
3525 * `Commons Codec 1.10 → 1.11`_
3527 * `Commons File Upload 1.3.2 → 1.3.3`_
3529 * `Commons IO 2.5 → 2.6`_
3531 * Eclipse JDT annotations 2.0.0 → 2.1.0
3533 * Felix Dependency Manager 4.3.0 → 4.4.1
3534 * Felix Dependency Manager Shell 4.0.4 → 4.0.6
3535 * Felix Metatype 1.1.2 → 1.1.6
3537 * `Google Truth 0.28 → 0.36`_ (with the Java 8 extensions)
3539 * `Gson 2.7 → 2.8.2`_
3541 * Guava 22 → 23.3 along with the associated feature name change from
3542 ``odl-guava-22`` to ``odl-guava-23`` (dependent packages *must* change their
3543 dependency); release notes:
3550 * Immutables 2.4.2 → 2.5.6
3552 * Jackson 2.3.2 → 2.8.9
3554 * Jacoco 0.7.7 → 0.7.9; release notes:
3559 * Jacoco Listeners 2.4 → 3.8
3561 * `Javassist 3.20.0 → 3.21.0`_
3563 * `Jettison 1.3.7 → 1.3.8`_
3565 * `Jolokia 1.3.6 → 1.3.7`_
3567 * `JSONassert 1.3.0 → 1.5.0`_
3569 * `logback 1.2.2 → 1.2.3`_
3571 * `LMAX Disruptor 3.3.6 → 3.3.7`_
3573 * Netty 4.1.8 → 4.1.16; release notes:
3584 * `Pax URL 2.5.2 → 2.5.3`_
3586 * Scala 2.11.11 → 2.12.4; release notes:
3594 * Servlet API 3.0.1 → 3.1.0
3596 * `SLF4J 1.7.21 → 1.7.25`_
3598 * `webcohesion enunciate 2.6.0 → 2.10.1`_
3600 * `Xtend 2.12 → 2.13`_
3602 .. _Akka 2.5.0: http://akka.io/blog/news/2017/04/13/akka-2.5.0-released
3603 .. _Akka 2.5.1: http://akka.io/blog/news/2017/05/02/akka-2.5.1-released
3604 .. _Akka 2.5.2: http://akka.io/blog/news/2017/05/24/akka-2.5.2-released
3605 .. _Akka 2.5.3: http://akka.io/blog/news/2017/06/19/akka-2.5.3-released
3606 .. _Akka 2.5.4: http://akka.io/blog/news/2017/08/10/akka-2.5.4-released
3608 .. _Awaitility 2 → 3: https://github.com/awaitility/awaitility/wiki/ReleaseNotes30
3610 .. _Bouncy Castle 1.57 → 1.58: https://www.bouncycastle.org/releasenotes.html
3612 .. _Commons Codec 1.10 → 1.11: http://www.apache.org/dist/commons/codec/RELEASE-NOTES.txt
3614 .. _Commons File Upload 1.3.2 → 1.3.3: http://www.apache.org/dist/commons/fileupload/RELEASE-NOTES.txt
3616 .. _Commons IO 2.5 → 2.6: http://www.apache.org/dist/commons/io/RELEASE-NOTES.txt
3618 .. _Google Truth 0.28 → 0.36: https://github.com/google/truth/releases
3620 .. _Gson 2.7 → 2.8.2: https://github.com/google/gson/blob/master/CHANGELOG.md
3622 .. _Guava 23: https://github.com/google/guava/wiki/Release23
3623 .. _Guava 23.1: https://github.com/google/guava/releases/tag/v23.1
3624 .. _Guava 23.2: https://github.com/google/guava/releases/tag/v23.2
3625 .. _Guava 23.3: https://github.com/google/guava/releases/tag/v23.3
3627 .. _Jacoco 0.7.8: https://github.com/jacoco/jacoco/releases/tag/v0.7.8
3628 .. _Jacoco 0.7.9: https://github.com/jacoco/jacoco/releases/tag/v0.7.9
3630 .. _Javassist 3.20.0 → 3.21.0: https://github.com/jboss-javassist/javassist/compare/rel_3_20_0_ga...rel_3_21_0_ga
3632 .. _Jettison 1.3.7 → 1.3.8: https://github.com/jettison-json/jettison/compare/jettison-1.3.7...jettison-1.3.8
3634 .. _Jolokia 1.3.6 → 1.3.7: https://github.com/rhuss/jolokia/releases/tag/v1.3.7
3636 .. _JSONassert 1.3.0 → 1.5.0: https://github.com/skyscreamer/JSONassert/releases
3638 .. _logback 1.2.2 → 1.2.3: https://logback.qos.ch/news.html
3640 .. _LMAX Disruptor 3.3.6 → 3.3.7: https://github.com/LMAX-Exchange/disruptor/releases/tag/3.3.7
3642 .. _Netty 4.1.9: http://netty.io/news/2017/03/10/4-0-45-Final-4-1-9-Final.html
3643 .. _Netty 4.1.10: http://netty.io/news/2017/04/30/4-0-46-Final-4-1-10-Final.html
3644 .. _Netty 4.1.11: http://netty.io/news/2017/05/12/4-0-47-Final-4-1-11-Final.html
3645 .. _Netty 4.1.12: http://netty.io/news/2017/06/09/4-0-48-Final-4-1-12-Final.html
3646 .. _Netty 4.1.13: http://netty.io/news/2017/07/06/4-0-49-Final-4-1-13-Final.html
3647 .. _Netty 4.1.14: http://netty.io/news/2017/08/03/4-0-50-Final-4-1-14-Final.html
3648 .. _Netty 4.1.15: http://netty.io/news/2017/08/25/4-0-51-Final-4-1-15-Final.html
3649 .. _Netty 4.1.16: http://netty.io/news/2017/09/25/4-0-52-Final-4-1-16-Final.html
3651 .. _Pax URL 2.5.2 → 2.5.3: https://ops4j1.jira.com/browse/PAXURL-345?jql=project%20%3D%20PAXURL%20AND%20fixVersion%20%3D%202.5.3
3653 .. _Scala 2.12.0: https://github.com/scala/scala/releases/tag/v2.12.0
3654 .. _Scala 2.12.1: https://github.com/scala/scala/releases/tag/v2.12.1
3655 .. _Scala 2.12.2: https://github.com/scala/scala/releases/tag/v2.12.2
3656 .. _Scala 2.12.3: https://github.com/scala/scala/releases/tag/v2.12.3
3657 .. _Scala 2.12.4: https://github.com/scala/scala/releases/tag/v2.12.4
3659 .. _SLF4J 1.7.21 → 1.7.25: https://www.slf4j.org/news.html
3661 .. _webcohesion enunciate 2.6.0 → 2.10.1: https://github.com/stoicflame/enunciate/releases
3663 .. _Xtend 2.12 → 2.13: https://www.eclipse.org/xtend/releasenotes.html
3665 Upstream version additions
3666 ~~~~~~~~~~~~~~~~~~~~~~~~~~
3668 The following upstream dependencies have been added to dependency management:
3670 * Commons Text, ``org.apache.commons:commons-text`` (this will allow downstreams
3671 to migrate from ``commons-lang3``\’s ``WordUtils``, which is deprecated)
3673 Upstream version removals
3674 ~~~~~~~~~~~~~~~~~~~~~~~~~
3676 The following upstream dependencies have been removed from dependency
3677 management (they are obsolete and unused):
3681 * Equinox HTTP service bridge
3682 * ``equinoxSDK381`` artifacts
3683 * Coda Hale Metrics, which are mostly unused and should eventually be wrapped
3685 * ``com.google.code.findbugs:jsr305`` (which *must not* be used; this is
3686 enforced — ``annotations`` should be used instead)
3687 * Felix File Install and Web Console
3690 * ``org.mockito:mockito-all`` (which *must not* be used; this is enforced —
3691 ``mockito-core`` should be used instead)
3697 Plugin version upgrades
3698 ~~~~~~~~~~~~~~~~~~~~~~~
3700 The following plugins have been upgraded:
3702 * ``org.apache.servicemix.tooling:depends-maven-plugin`` 1.3.1 → 1.4.0
3703 * ``org.apache.felix:maven-bundle-plugin`` 2.4.0 → 3.3.0
3704 * ``maven-compiler-plugin`` 3.6.1 → 3.7.0
3705 * ``maven-dependency-plugin`` 3.0.1 → 3.0.2
3706 * ``maven-enforcer-plugin`` 1.4.1 → 3.0.0-M1
3707 * ``maven-failsafe-plugin`` 2.18.1 → 2.20.1
3708 * ``maven-javadoc-plugin`` 2.10.4 → 3.0.0-M1
3709 * ``maven-shade-plugin`` 2.4.3 → 3.1.0
3714 * The `Maven Find Duplicates`_ plugin can be enabled by setting the
3715 ``duplicate-finder.skip`` property to ``false``.
3717 * The SpotBugs_ Maven plugin can now be used instead of the FindBugs plugin
3718 (both are available, so no change is required). To use SpotBugs, replace
3719 ``org.codehaus.mojo:findbugs-maven-plugin`` with
3720 ``com.github.spotbugs:spotbugs-maven-plugin``.
3722 .. _Maven Find Duplicates: https://github.com/basepom/duplicate-finder-maven-plugin/
3724 .. _SpotBugs: https://spotbugs.github.io/