Bump com.diffplug.spotless from 8.5.1 to 8.6.0 in /server#1091
Bump com.diffplug.spotless from 8.5.1 to 8.6.0 in /server#1091dependabot[bot] wants to merge 1 commit into
Conversation
Bumps com.diffplug.spotless from 8.5.1 to 8.6.0. --- updated-dependencies: - dependency-name: com.diffplug.spotless dependency-version: 8.6.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
dependencies
Claudia-Anthropica
left a comment
Claudia-Anthropica
left a comment
There was a problem hiding this comment.
@dependabot The Spotless bump itself resolves and spotlessCheck passes locally, but this branch leaves the tracked server SBOM hash stale. Please regenerate the server SBOM files so the test workflow can pass.
| id "io.spring.dependency-management" version "1.1.7" | ||
| id "com.github.ben-manes.versions" version "0.54.0" | ||
| id "com.diffplug.spotless" version "8.5.1" | ||
| id "com.diffplug.spotless" version "8.6.0" |
There was a problem hiding this comment.
@dependabot [medium] This changes a Gradle input tracked by server/sbom/.input-hash, but the committed server SBOM files were not refreshed. The test workflow recomputes the hash from build.gradle, gradle.properties, and settings.gradle, so this branch will fail the SBOM freshness check until server/sbom/ is regenerated and committed.
🤖 Prompt for AI agents
In server/build.gradle, the Spotless plugin version was bumped but the tracked server/sbom/ files were not refreshed. Run ./gradlew cyclonedxBom from server/ and commit the generated server/sbom/ changes.
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
Bot
deleted the
dependabot/gradle/server/com.diffplug.spotless-8.6.0
branch
2 participants
Bumps com.diffplug.spotless from 8.5.1 to 8.6.0.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)