========================
ODL Parent release notes
========================
Version 8.0.1
-------------
This is a minor big-fix/enhancement update from verision 8.0.0.
Improvements
~~~~~~~~~~~~
* ``javax.inject`` is now provided by the artifact from `GuicedEE `__.
This improves things a lot, as it is a proper jar (not MANIFEST.MF warning), it also is
a JPMS module, hence can be used for linkage. This dependency is properly ``scope=provided``,
so it should not leak into runtimes where it should not be.
See `ODLPARENT-247 `__ for details.
* Transitive dependencies of Guava are now mostly filtered from runtime, so that we do not
require ``wrap`` for them. We still retain checker-qual, as we are actively using those
and it is a proper bundle.
See `ODLPARENT-248 `__ for details.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Jackson `2.10.4 → 2.10.5 `__
* JaCoCo `0.8.5 → 0.8.6 `__
* JUnit `4.13.0 → 4.13.1 `__
* Karaf `4.2.9 → 4.2.10 `__
* Netty `4.1.52 → 4.1.53 `__
* Pax-Exam `4.13.3 → 4.13.4 `__
* Woodstox 6.2.1 → 6.2.3, fixed issues:
* `6.2.2 `__
* `6.2.3 `__
Version 8.0.0
-------------
This is a major upgrade from version 7, with breaking changes; downstream projects may need to make changes to upgrade
to this version.
Improvements
~~~~~~~~~~~~
* ``modernizer-maven-plugin`` configuration has been updated to issue warnings for constructs
improved in all Java versions up to and including Java 11.
* ``modernizer-maven-plugin`` is configured by default to fail the build when it issues any
warnings. This behavior can be opted-out of on a per-artifact basis by defining
``odlparent.modernizer.enforce`` property to ``false``.
Upstream version removals
~~~~~~~~~~~~~~~~~~~~~~~~~
The following upstream dependencies have been removed from dependency management:
* ``javax.json``. This dependency is used only in Neutron project, hence this version is best
maintained there. See `ODLPARENT-238 `__
for details.
* All ``org.eclipse.persistence`` artifacts. These dependencies are only used in Neutron,
which actually duplicates the declarations, hence they are best maintained there.
See `ODLPARENT-237 `__ for details.
* All ``org.apache.sshd`` and ``net.i2p.crypto`` artifacts. Overriding versions does not play
nice with Karaf's versions during ``feature:install``, causing issues when the installing
over an SSH connection. NETCONF project is providing a repackaged version in OpenDaylight
namespace. See `ODLPARENT-233 `__ for
details.
* ``jettison``. This dependency is used only in LISP Flow Mapping project for integration
tests, hence this version is best maintained there.
See `ODLPARENT-239 `__ for details.
* All ``com.typesafe``, ``io.aeron``, ``org.agrona``, ``org.scala-lang`` declarations. Akka is
removing their support for OSGi, with no working releases in their current ``2.6.x.`` branch.
Since dealing with these requires quite a bit of dance, which needs to sit outside of odlparent POM,
the controller project will package Akka to the extent it needs.
See `ODLPARENT-243 `__ for details.
* ``org.apache.felix.dependencymanager`` and ``org.apache.felix.dependencymanager.shell``. These
components are ancient, having been replaced by either Blueprint or Declarative Services. The only
project using these is AAA, hence it is best to maintain these declarations there.
Feature removals
~~~~~~~~~~~~~~~~
* ``odl-apache-sshd`` feature has been removed, mirroring the removal of related dependency
declarations. See `ODLPARENT-233 `__ for details.
* ``odl-akka-all``, ``odl-akka-scala-2.13``, ``odl-akka-system-2.5``, ``odl-akka-clustering-2.5``
and ``odl-akka-persistence-2.5`` features. mirroring the removal of related dependency declarations.
See `ODLPARENT-243 `__ for details.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* awaitility `3.0.0 → 4.0.3 `__
* checkstyle 8.34 → 8.36.1, release notes:
* `8.35 `__
* `8.36 `__
* `8.36.1 `__
* commons-codec `1.14 → 1.15 `__
* commons-io `2.7 → 2.8.0 `__
* commons-net `3.6 → 3.7 `__
* dropwizard-metrics 4.1.9 → 4.1.12.1, release notes:
* `4.1.10 `__
* `4.1.10.1 `__
* `4.1.11 `__
* `4.1.12 `__
* `4.1.12.1 `__
* Guava `28.2 → 29.0 `__
* immutables.org → 2.8.8, release notes:
* `2.8.0 `__
* `2.8.1 `__
* `2.8.2 `__
* `2.8.3 `__
* `2.8.4 `__
* `2.8.8 `__
* mockito `3.3.3 → 3.5.11 `__
* Netty `4.1.51 → 4.1.52 `__
* Xtend `2.22.0 → 2.23.0 `__
Plugin upgrades
~~~~~~~~~~~~~~~
* maven-archetype-plugin `3.1.2 → 3.2.0 `__
* project-info-reports-plugin `3.1.0 → 3.1.1 `__
Version 7.0.5
-------------
This is a bug-fix upgrade from version 7.0.4.
Bug fixes
~~~~~~~~~
* ``odl-netty-4`` feature definition specified both ``x86_64`` and ``aarch64`` artifacts
for ``netty-native-epoll``. This actually results only in ``aarch64`` package being
installed, rendering epoll unavailable on ``x86_64`` architecture. This has been corrected
by removing the ``aarch64`` package.
See `ODLPARENT-240 `__ for details.
Version 7.0.4
-------------
This is a security/bug-fix upgrade from version 7.0.3.
Bug fixes
~~~~~~~~~
* ``Single Feature Test`` setup of the JVM for Karaf container ended up using
wrong versions of Karaf components, leading to a failure to initialize
OSGiLocator and subsequent warnings with stack traces. This has now been
corrected.
See `ODLPARENT-228 `__ for details.
* Pax-Exam setup interacts badly with pipes used by maven-surefire plugin,
leading to pauses lasting around 30 seconds after SFT test success.
This has now been worked around by using maven-surefire-plugin version 3.0.0-M5,
with TCP sockets used for communication.
See `ODLPARENT-179 `__ for details.
* Our Jersey dependency was held back on version 2.25.1 during Neon upgrade cycle, mostly
due to large-scale incompatibilities around JAX-RS version. We have upgraded to Karaf-4.2.8+,
which pulls in JAX-RS 2.1, hence re-aligning to a more modern version, 2.27, is now
feasible.
See `ODLPARENT-208 `__ for details.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Bouncy Castle `1.65 → 1.66 `__
* Checkstyle 8.32 → 8.34, release notes:
* `8.33 `__
* `8.34 `__
* commons-io `2.6 → 2.7 `__
* Jersey 2.25.1 → 2.27, release notes:
* `2.26 `__
* `2.27 `__
* Karaf `4.2.8 → 4.2.9, with related upgrades `__
* Netty 4.1.49 → 4.1.51, release notes:
* `4.1.50 `__
* `4.1.51 `__
* Scala `2.13.2 → 2.13.3 `__
* TrieMap `1.1.0 → 1.2.0 `__
* XBean finder 4.14 → 4.17, release notes:
* `4.15 `__
* `4.16 `__
* `4.17 `__
Plugin upgrades
~~~~~~~~~~~~~~~
* maven-project-info-reports-plugin `3.0.0 → 3.1.0 `__.
* maven-shade-plugin `3.2.3 → 3.2.4 `__
Version 7.0.3
-------------
This is a security/bug-fix upgrade from version 7.0.2. Changes in this release
pertain strictly to Karaf packaging and do not affect other runtimes.
Bug fixes
~~~~~~~~~
* Felix SCR 2.1.16, as shipping before Karaf-4.2.9, contains a bug, which could
lead to NullPointerException being thrown when components were examined. This
has been rectified via upgrade to Felix SCR 2.1.20.
See `ODLPARENT-236 `__ for details.
* Karaf-4.2.8 changed packaged log4j2 version, rendering the configuration supplied
with ``ODLPARENT-231`` inconsistent. This has led to a warning being printed in the
Karaf console on each startup. This has now been corrected.
* Karaf-4.2.8 is packaging pax-logging-1.11.4, which embeds a a vulnerable version
of log4j2 (2.3.0). This would render the upgrades delivered in version 7.0.2
ineffective at runtime, potentially leading to exposure. This has been corrected
with upgrade of pax-logging to 1.11.6, which is packaging log4j2-2.3.2.
Version 7.0.2
-------------
This is a security/bug-fix upgrade from version 7.0.1.
Improvements
~~~~~~~~~~~~
* Infrastructure for identifying confidential log messages was added, along with
Karaf configuration update to routing such messages into a separate log file.
See `ODLPARENT-231 `__ for details.
* Netty has been disconnected from Javassist way back in its 4.1.9 release, but
we failed to notice. This has now been rectified by ``odl-netty-4`` not depending
on ``odl-javassist-3``.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Checkstyle `8.31 → 8.32 `__
* Dropwizard Metrics 4.1.5 → 4.1.9, release notes:
* `4.1.6 `__
* `4.1.7 `__
* `4.1.8 `__
* `4.1.9 `__
* Enunciate 2.12.1 → 2.13.1, release notes:
* `2.13.0 `__
* `2.13.1 `__
* Jackson 2.10.2 → 2.10.4, release notes:
* `2.10.3 `__
* `2.10.4 `__
* log4j2 2.13.1 → 2.13.3, release notes:
* `2.13.2 `__
* `2.13.3 `__
* Netty `4.1.48 → 4.1.49 `__
* Powermock `2.0.6 → 2.0.7 `__
* Scala `2.13.1 → 2.13.2 `__
* Woodstox 6.1.1 → 6.2.1, release notes:
* `6.2.0 `__
* `6.2.1 `__
* xmlunit 2.6.3 → 2.7.0, release notes:
* `2.6.4 `__
* `2.7.0 `__
Plugin upgrades
~~~~~~~~~~~~~~~
* builder-helper-maven-plugin `3.0.0 → 3.1.0 `__
* duplicate-finder-maven-plugin `1.3.0 → 1.4.0 `__
* maven-antrun-plugin `1.8 → 3.0.0 `__
* maven-assembly-plugin `3.2.0 → 3.3.0 `__
* maven-invoker-plugin `3.2.0 → 3.2.1 `__
* maven-remote-resources-plugin `1.6.0 → 1.7.0 `__
* maven-shade-plugin `3.2.2 → 3.2.3 `__
Version 7.0.1
-------------
This is a bug-fix upgrade from version 7.0.0.
Bug fixes
~~~~~~~~~
* Upgrade of ``maven-javadoc-plugin`` is causing issues in downstream javadoc jobs and therefore it has been reverted.
See `ODLPARENT-229 `__ for details.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Akka `2.5.30 → 2.5.31 `__
* Bouncy Castle `1.64 → 1.65 `__
* Checkstyle `8.30 → 8.31 `__
* commons-lang3 `3.9 → 3.10 `__
* Xtend 1.19.0 → 1.21.0, release notes:
* `1.20.0 `__
* `1.21.0 `__
Version 7.0.0
-------------
This is a major upgrade from version 6, with breaking changes; downstream projects may need to make changes to upgrade
to this version.
Property removals
~~~~~~~~~~~~~~~~~
* ``enforcer.version`` and ``projectinfo`` properties were removed. These properties do not serve any legal purpose as
the plugins referenced by them are declared in ``pluginManagement`` section.
Upstream version removals
~~~~~~~~~~~~~~~~~~~~~~~~~
The following upstream dependencies have been removed from dependency management:
* ``immutables.org/value`` without ``annotations``
* ``javax.xml.bind/jaxb-api``, replaced with ``jakarta.xml.bind/jakarta.xml.bind-api``
* ``com.google.inject/guice``
* ``com.mycila.guice.extensions/mycila-guice-jsr250``
* ``org.apache.shiro/shiro-core``
* ``org.apache.shiro/shiro-web``
Feature removals
~~~~~~~~~~~~~~~~
* ``odl-akka-leveldb-0.10`` feature was removed. This feature provided leveldb-backed implementation of Akka
Persistence, which is not supported for production environments by upstream. Furthermore this feature relied on a
custom-built binary, which we do not have a means to reproduce -- limiting our portability. The controller project,
which is the only downstream user of persistence provides an alternative implementation, hence we are removing this
historical baggage. See `ODLPARENT-213 `__ for details.
* ``odl-caffeine-2`` feature was removed. This feature provided a ``JSR-107 JCache`` implementation, an API deemed to
be problematic where high-performance and correctness in required.
New features
~~~~~~~~~~~~
* OSGi R6 Declarative Services enabled in Karaf. The ``scr`` feature is now part of startup features, hence Service
Component Runtime can be used without incurring an additional refresh.
See `ODLPARENT-227 `__ for details.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Akka `2.5.29 → 2.5.30 `__
* antl4r `4.7.2 → 4.8-1 `__
* Asciidoctor `1.5.7.1 → 1.5.8 `__
* Checkstyle 8.26 → 8.30, release notes:
* `8.27 `__
* `8.28 `__
* `8.29 `__
* `8.30 `__
* Dropwizard Metrics 4.0.5 → 4.1.5, release notes:
* `4.1.0-rc0 `__
* `4.1.0-rc2 `__
* `4.1.0-rc3 `__
* `4.1.1 `__
* `4.1.2 `__
* `4.1.3 `__
* `4.1.4 `__
* Google Truth 0.43 → 1.0.1, release notes:
* `0.44 `__
* `0.45 `__
* `0.46 `__
* `1.0-rc1 `__
* `1.0-rc2 `__
* `1.0 `__
* `1.0.1 `__
* Guava 27.1 → 28.2, release notes:
* `28.0 `__
* `28.1 `__
* `28.2 `__
* Javassist 3.26.0 → 3.27.0
* jdt-annotations 2.2.100 → 2.2.400
* Karaf 4.2.6 → 4.2.8, with related upgrades, release notes:
* `4.2.7 `__
* `4.2.8 `__
* log4j2 `2.13.0 → 2.13.1 `__
* Netty 4.1.45 → 4.1.48, release notes:
* `4.1.46 `__
* `4.1.47 `__
* `4.1.48 `__
* Powermock 2.0.4 → 2.0.6, release notes:
* `2.0.5 `__
* `2.0.6 `__
* Scala 2.12.10 → 2.13.1, release notes:
* `2.13.0 `__
* `2.13.1 `__
* scala-java8-compat 0.8.0 → 0.9.1, release notes:
* `0.9.0 `__
* `0.9.1 `__
* Sevntu 1.36.0 → 1.37.1, release notes:
* `1.37.0 `__
* `1.37.1 `__
* woodstox-core 5.3.0 → 6.1.1
Plugin upgrades
~~~~~~~~~~~~~~~
* findbugs-slf4j `1.4.0 → 1.5.0 `__
* maven-checkstyle-plugin `3.1.0 → 3.1.1 `__
* maven-dependency-plugin `3.1.1 → 3.1.2 `__
* maven-enforcer-plugin `3.0.0-M2 → 3.0.0-M3 `__
* maven-javadoc-plugin `3.1.1 → 3.2.0 `__
* maven-shade-plugin `3.2.1 → 3.2.2 `__
* modernizer-maven-plugin `2.0.0 → 2.1.0 `__
* pmd-maven-plugin `3.12.0 → 3.13.0 `__
Version 6.0.5
-------------
This is a bug-fix upgrade from version 6.0.4.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Akka 2.5.26 → 2.5.29, release notes:
* `2.5.27 `__
* `2.5.29 `__
* commons-codec `1.13 → 1.14 `__
* Jackson `2.9.10 → 2.9.10.20200103 `__
Plugin upgrades
~~~~~~~~~~~~~~~
* maven-source-plugin `3.2.0 → 3.2.1 `__
Version 6.0.4
-------------
This is a bug-fix upgrade from version 6.0.3.
Bug fixes
~~~~~~~~~
* ``single-feature-test`` was using outdated repositories, including Maven Central,
which `broke on Jan 15, 2020 `__.
This has been corrected.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* JUnit 4.11 → 4.13, release notes:
* `4.12 `__
* `4.13 `__
* log4j2 2.11.2 → 2.13.0, release notes:
* `2.12.0 `__
* `2.12.1 `__
* `2.13.0 `__
* netty 4.1.42 → 4.1.45, release notes:
* `4.1.43 `__
* `4.1.44 `__
* `4.1.45 `__
Plugin upgrades
~~~~~~~~~~~~~~~
* maven-assembly-plugin 2.2-beta5 → 3.2.0
* maven-archetype-plugin `3.1.1 → 3.1.2 `__
Version 6.0.3
-------------
This is a bug-fix upgrade from version 6.0.2.
Bug fixes
~~~~~~~~~
* The fix for `ODLPARENT-216 `__ ended up
breaking ``org.kohsuke.metainf-services`` integration. While this could be fixed in downstreams
by adding proper entry, it is a regression from 6.0.1.
Version 6.0.2
-------------
This is a security/bug-fix upgrade from version 6.0.1.
Bug fixes
~~~~~~~~~
* ``single-feature-parent`` was setting up Karaf repositories incorrectly, leading to
the test using unpatched Karaf resources. This has now been fixed and the test run
is using environment equivalent to the contents of the distribution. See
`ODLPARENT-209 `__ for details.
* ``immutables.org`` integration relied on pre-JDK9 way of integration, where the annotation processor
was just dropped as a dependency. This does not work with JDK9+ artifacts which are also explicit
JMPS modules. Note that users are advised to switch to depending on the ``annotations``-classified
artifact. See `ODLPARENT-216 `__ for details.
* Assembled Karaf distribution did not perform proper JDK checks and allowed launching with JDK8,
leading to a failure to install OpenDaylight components with an error stack, which confuses users
not familiar with OSGi. The distribution now refuses to start with anything other than JDK11. See
`ODLPARENT-218 `__ for details.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Akka `2.5.25 → 2.5.26 `__
* Checkstyle 8.20 → 8.26, release notes:
* `8.21 `__
* `8.22 `__
* `8.23 `__
* `8.24 `__
* `8.25 `__
* `8.26 `__
* H2 database `1.4.199 → 1.4.200 `__
* Hamcrest `2.1 → 2.2 `__
* JaCoCo `0.8.4 → 0.8.5 `__
* Karaf 4.2.2 → 4.2.6, release notes:
* `4.2.3 `__
* `4.2.4 `__
* `4.2.5 `__
* `4.2.6 `__
* Powermock `2.0.2 → 2.0.4 `__
* Sevntu `1.35.0 → 1.36.0 `__
Plugin upgrades
~~~~~~~~~~~~~~~
* maven-bundle-plugin `4.1.0 → 4.2.0 `__
* maven-jar-plugin `3.1.2 → 3.2.0 `__
* maven-source-plugin `3.1.0 → 3.2.0 `__
* modernizer-maven-plugin `1.9.0 → 2.0.0 `__
Version 6.0.1
-------------
This is a security/bug-fix upgrade from version 6.0.0.
Bug fixes
~~~~~~~~~
* ``karaf-plugin`` ignored exceptions coming from its failure to resolve ${karaf.etc} variable. This
has now been fixed and the URL handling has been revised to fix build on Windows. See
`ODLPARENT-214 `__ for details.
* ``leveldb-jni`` jar, which has been seeded to nexus.opendaylight.org long time ago is not published
in Maven Central. This has been resolved by repackaging this jar and publishing it from odlparent.
See `ODLPARENT-210 `__ for details.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
* Bouncy Castle `1.63 → 1.64 `__
* Jackson `2.9.9 → 2.9.10 `__
* Javassist 3.24.1-GA → 3.26.0-GA
* Guice 4.1.0 → 4.2.2, release notes:
* `4.2.0 `__
* `4.2.1 `__
* `4.2.2 `__
* Mockito 2.25.1 → 2.28.2, release notes:
* `2.25.2 `__
* `2.25.3 `__
* `2.25.4 `__
* `2.25.5 `__
* `2.25.6 `__
* `2.25.7 `__
* `2.26.1 `__
* `2.26.2 `__
* `2.27.1 `__
* `2.27.2 `__
* `2.27.3 `__
* `2.27.4 `__
* `2.27.5 `__
* `2.28.0 `__
* Netty 4.1.39 → 4.1.42, release notes:
* `4.1.41 `__
* `4.1.42 `__
* pt-triemap `1.0.6 → 1.1.0 `__
* reactive-streams `1.0.2 → 1.0.3 `__
* stax2-api `3.1.4 → 4.2 `__
* woodstox-core 5.0.3 → 5.3.0, release notes:
* `5.1.0 `__
* `5.2.0 `__
* `5.3.0 `__
Version 6.0.0
-------------
This is a major upgrade from version 5, with breaking changes; projects will
need to make changes to upgrade to this version.
Java 11 is required
~~~~~~~~~~~~~~~~~~~
This release sets ``maven.compiler.release=11`` and enforces that the JDK used to build
is Java 11+. As there may be issues with various maven plugins when faced with JDK9+
constructs and JDK11+ classes, target release can be controlled on a per-artifact
basis (i.e. target Java 10 with ``maven.compiler.release=10`` property).
This release has been validated with ``openjdk-11.0.4`` and is not supported on any lower
version. As usual, we recommend using latest available JDK/JRE for Java 11 during development
and deployment.
Checkstyle/SpotBugs/Modernizer run by default
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
With this release code artifacts always run ``maven-checkstyle-plugin``, ``spotbugs-maven-plugin``
and ``modernizer-maven-plugin``. Checkstyle and SpotBugs run in enforcing mode, i.e. will fail
build if any violations are found. Modernizer is configured to report Java 8-compatible constructs
and will not fail the build unless instructed to do so.
Behavior of each of these is controlled via a maven property on a per-artifact basis:
* ``odlparent.checkstyle.enforce`` controls checkstyle enforcement: defaults to ``true``, but can be set to ``false``
* ``odlparent.checkstyle.skip`` controls checkstyle invocation: defaults to ``false``, but can be set to ``true``
* ``odlparent.spotbugs.enforce`` controls SpotBugs enforcement: defaults to ``true``, but can be set to ``false``
* ``odlparent.spotbugs.skip`` controls SpotBugs invocation: defaults to ``false``, but can be set to ``true``
* ``odlparent.modernizer.enforce`` controls modernizer enforcement: defaults to ``false``, but can be set to ``true``
* ``odlparent.modernizer.skip`` controls modernizer invocation: defaults to ``false``, but can be set to ``true``
* ``odlparent.modernizer.target`` controls modernizer Java version: defaults to ``1.8``, but can be set to ``1.11`` or similar
Bug fixes
~~~~~~~~~
* ``blueprint container`` had ``org.apache.aries.blueprint.preemptiveShutdown`` set to false
to enable it to work with Config Subsystem. As that component is long gone, this property has
been removed as part of `ODLPARENT-34 `__.
Furthermore, system properties related to Config Subsystem/NETCONF integration have been removed
as well.
Upstream version removals
~~~~~~~~~~~~~~~~~~~~~~~~~
The following upstream dependencies have been removed from dependency management:
* com.google.code.findbugs/jsr305
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
The dependency on `xmlunit-assertj` and `modernizer-maven-annotations` has been added and the following
dependencies have been upgraded:
* Akka 2.5.23 → 2.5.25, release notes:
* `2.5.24 `__
* `2.5.25 `__
* apache-sshd `2.2.0 → 2.3.0 `__
* Bouncy Castle `1.62 → 1.63 `__
* commons-beanutils `1.9.3 → 1.9.4 `__
* commons-codec `1.12 → 1.13 `__
* commons-text 1.6 → 1.8, release notes:
* `1.7 `__
* `1.8 `__
* Checkstyle 8.18 → 8.20, release notes:
* `8.19 `__
* `8.20 `__
* jackson-databind `2.9.9 → 2.9.9.3 `__
* jaxb-api 2.2.8 → 2.3.0, aligning it with Karaf-provided version
* Netty 4.1.36 → 4.1.39, release notes:
* `4.1.37 `__
* `4.1.38 `__
* `4.1.39 `__
* Sevntu 1.32.0 → 1.35.0, release notes:
* `1.33.0 `__
* `1.34.0 `__
* `1.34.1 `__
* `1.35.0 `__
* Scala 2.12.8 → 2.12.9, release notes:
* `2.12.9 `__
* `2.12.10 `__
* slf4j `1.7.25 → 1.7.28 `__
* triemap `1.0.5 → 1.0.6 `__
* typesafe/ssl-config `0.3.7 → 0.3.8 `__
* Xtend 1.17.1 → 1.19.0, release notes:
* `1.18.0 `__
* `1.19.0 `__
Plugin upgrades
~~~~~~~~~~~~~~~
* git-commit-id-plugin 2.2.6 → 3.0.1, release notes:
* `3.0.0 `__
* `3.0.1 `__
* maven-javadoc-plugin `3.1.0 → 3.1.1 `__
* pmd-maven-plugin `3.11.0 → 3.12.0 `__
* spotbugs-maven-plugin 3.1.11 → 3.1.12.2, release notes:
* `3.1.12 `__
* `3.1.12.1 `__
* `3.1.12.2 `__
Version 5.0.1
-------------
This is a bug-fix upgrade from version 5.0.0.
Third-party dependencies
~~~~~~~~~~~~~~~~~~~~~~~~
The following dependencies have been upgraded:
* Akka 2.5.21 → 2.5.23, release notes:
* `2.5.22 `__
* `2.5.23 `__
* asciidoctorj-diagram 1.5.12 → 1.5.16
* Bouncy Castle `1.61 → 1.62 `__
* commons-lang3 `3.8.1 → 3.9 `__
* JaCoCo `0.8.3 → 0.8.4 `__
* Jackson `2.9.8 → 2.9.9 `__
* Jolokia 1.6.0 → 1.6.2, release notes:
* `1.6.1 `__
* `1.6.2 `__
* Mockito `2.25.0 → 2.25.1 `__
* Netty 4.1.34 → 4.1.36, release notes:
* `4.1.35 `__
* `4.1.36