Skip to content

Bump checkstyle and spotbug versions (#833)#861

Merged
nishchay21 merged 1 commit intoopensearch-project:2.19from
AjayRajNelapudi:2.19
Oct 29, 2025
Merged

Bump checkstyle and spotbug versions (#833)#861
nishchay21 merged 1 commit intoopensearch-project:2.19from
AjayRajNelapudi:2.19

Conversation

@AjayRajNelapudi
Copy link
Contributor

@AjayRajNelapudi AjayRajNelapudi commented Oct 28, 2025

Description

Bump checkstyle and spotbug versions (#833)

Cherry picking #833

Related Issues

Resolves CVE-2025-48734 and CVE-2025-27820

Check List

  • New functionality includes testing.
  • New functionality has been documented.
  • API changes companion pull request created.
  • Commits are signed per the DCO using --signoff.
  • Public documentation issue/PR created.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@AjayRajNelapudi AjayRajNelapudi marked this pull request as ready for review October 29, 2025 04:34
@AjayRajNelapudi
Copy link
Contributor Author

AjayRajNelapudi commented Oct 29, 2025

Failing build due to bwc test failure where 2.19 snapshot is available in the new maven repo.

@gaiksaya @ajnelapu
Bump checkstyle and spotbug versions (opensearch-project#833)
5d1dc69 
Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>
@nishchay21 nishchay21 merged commit 4a9d2f5 into opensearch-project:2.19 Oct 29, 2025
4 checks passed
opensearch-trigger-bot bot pushed a commit that referenced this pull request Oct 29, 2025
@AjayRajNelapudi @gaiksaya @github-actions
Bump checkstyle and spotbug versions (#833) (#861)
8128b0f 
Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>
Co-authored-by: Sayali Gaikawad <gaiksaya@amazon.com>
(cherry picked from commit 4a9d2f5)
@opensearch-trigger-bot opensearch-trigger-bot bot mentioned this pull request Oct 29, 2025
Open
AjayRajNelapudi added a commit to AjayRajNelapudi/performance-analyzer that referenced this pull request Mar 2, 2026
@AjayRajNelapudi @gaiksaya @ajnelapu
Bump checkstyle and spotbug versions (opensearch-project#833) (opense…
93beb6d 
…arch-project#861)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>
Co-authored-by: Sayali Gaikawad <gaiksaya@amazon.com>
AjayRajNelapudi added a commit to AjayRajNelapudi/performance-analyzer that referenced this pull request Mar 2, 2026
@AjayRajNelapudi @ajnelapu
Bump checkstyle and spotbug versions (opensearch-project#833) (opense…
b55336f 
…arch-project#861)

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>
nishchay21 pushed a commit that referenced this pull request Mar 3, 2026
@AjayRajNelapudi @opensearch-trigger-bot
@zelinh @peterzhuamazon @ajnelapu
Backport all pending commits to 2.x (#918)
eb3e417 
* Update the maven snapshot publish endpoint and credential (#820) (#839)

(cherry picked from commit bc5f69d)

Signed-off-by: Zelin Hao <zelinhao@amazon.com>
Co-authored-by: Zelin Hao <zelinhao@amazon.com>

* [Backport 2.19] Onboarding new maven snapshots publishing to s3 (PA) (#854)

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

* Hardcode BWC to 2.19 to mitigate build failure (#874)

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>
Co-authored-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

* Bump checkstyle and spotbug versions (#833) (#861)

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

* Bump bcpkix-jdk18on and commons-lang3 (#877)

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>
Co-authored-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

* Force io.netty:netty-codec-http2 version (#879)

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>
Co-authored-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

* Update dependency SHAs

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

* Remove Codecov bash uploader dependency

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

* Fix BWC tests with available versions

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

* Add lycheeignore to skip troublesome URLs

Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>

---------

Signed-off-by: Zelin Hao <zelinhao@amazon.com>
Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>
Signed-off-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>
Co-authored-by: opensearch-trigger-bot[bot] <98922864+opensearch-trigger-bot[bot]@users.noreply.github.com>
Co-authored-by: Zelin Hao <zelinhao@amazon.com>
Co-authored-by: Peter Zhu <zhujiaxi@amazon.com>
Co-authored-by: Ajay Raj Nelapudi <ajnelapu@amazon.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Gaganjuneja Gaganjuneja Gaganjuneja approved these changes

@nishchay21 nishchay21 nishchay21 approved these changes

@khushbr khushbr Awaiting requested review from khushbr khushbr is a code owner

@ansjcy ansjcy Awaiting requested review from ansjcy ansjcy is a code owner

@sbcd90 sbcd90 Awaiting requested review from sbcd90 sbcd90 is a code owner

@Shephalimittal Shephalimittal Awaiting requested review from Shephalimittal Shephalimittal is a code owner

@rramachand21 rramachand21 Awaiting requested review from rramachand21 rramachand21 is a code owner

Assignees

No one assigned

Labels

backport 2.x

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@AjayRajNelapudi @Gaganjuneja @nishchay21 @gaiksaya