Bump spotbugs-annotations from 3.1.8 to 4.1.2

[dependabot-preview]

Bumps spotbugs-annotations from 3.1.8 to 4.1.2.

Release notes

Sourced from spotbugs-annotations's releases.

SpotBugs 4.1.2

CHANGELOG

• https://github.com/spotbugs/spotbugs/blob/4.1.2/CHANGELOG.md

CHECKSUM

file	checksum (sha256)
spotbugs-4.1.2-javadoc.jar	f21a06ae973f06611a18617c9daae5b238c40bb45e1b1adcf92594a55a5e334c
spotbugs-4.1.2-sources.jar	404096315daacd555d4003b062d5098300d961a554b4844b3f57b867c3d970ae
spotbugs-4.1.2.tgz	575dd1aa4b25b0a5f9766c35ee6ca1d40a3bec8ad02f9f7bb3037f467c60c76f
spotbugs-4.1.2.zip	c104f6aaa95d7c5d1bd9040d38b7f80038995e663f8c84ac8b32423362d290eb
spotbugs-annotations-4.1.2-javadoc.jar	24767403128c0ecf1f96a6309d243ac471c2ba6686d945d90c7e5a4435244ca5
spotbugs-annotations-4.1.2-sources.jar	b338136e3e82d585348cde58a8fe3a678e16f51a35c31c1463e05fefef557aad
spotbugs-annotations.jar	f5cc685edd99ccae7e9b851613146cf49f2557a4e056dfdd8e7906fe919f826f
spotbugs-ant-4.1.2-javadoc.jar	c0f510848cb6729531353898c3e3256d2ea68e3b21bcb305a1a2b8db581b7f85
spotbugs-ant-4.1.2-sources.jar	c74dec42c0ed0dd1ae02a7410d8e0f0dbbee23e8e7da4a21910863677fcdbc8e
spotbugs-ant.jar	a9f1c4ea228ce3c4bb11065b26806f5e2d4ffe457a95a012166b11a58164cc19
spotbugs.jar	819963733311a55503e185bee7debed6983aa54ca7a7cb91643e0fe18287bf0e
test-harness-4.1.2-javadoc.jar	f1f94b227af60404f0b4634aa60bf68ef963d23c46e26b3a704822164fe70002
test-harness-4.1.2-sources.jar	2c1f5ef929453f3b682c7eb7c1e22db3082b5f74c5a5be439be5dc31dd7a31aa
test-harness-4.1.2.jar	e6d72665dcaed1afd413541f211992924ffc2d4d64dc54f1a8f0bfa494853596
test-harness-core-4.1.2-javadoc.jar	cc9dcfee824f7a245f34e9988e432b44784e0ba27712805a67919501d8eb5179
test-harness-core-4.1.2-sources.jar	f320f5eb4069e9686b760b2a6a0760989753225f9e9ce1226e3258ec64795d8a
test-harness-core-4.1.2.jar	de97934146238f9ae23707bd14e3cea3f12bd89f3dde2b6b0648e41f11815418
test-harness-jupiter-4.1.2-javadoc.jar	84e341982a3f3c8020a47fc7879a0ad9036169b3859165b53a9d7990168dcc4b
test-harness-jupiter-4.1.2-sources.jar	210353a57016e26b1a654d936a15f039613fa1ac532d485c1b1d03902f6c6315
test-harness-jupiter-4.1.2.jar	17e8d78d1868f86e63f3e5e3d878e86f3d7fb1b8cf1a8d5f893333c982bfd3e2

SpotBugs 4.1.1

CHANGELOG

• https://github.com/spotbugs/spotbugs/blob/4.1.1/CHANGELOG.md

CHECKSUM

file	checksum (sha256)
spotbugs-4.1.1-javadoc.jar	c32ee94fb3574b1650d46d9cea024c086ac8ec3e018e74bfb5af3a6827ca3806
spotbugs-4.1.1-sources.jar	fb6c6887a0665d1178575a22603661cb0e8816a16e302a2f47a9ab56d9f505c4
spotbugs-4.1.1.tgz	bc31c8d567067ba646fcd5e2e988b31c6f1ff8c444162b76914388b76b409f27
spotbugs-4.1.1.zip	0d073986bef1016a3feaeadfca97bba46f3eefd98fcfdcba52f8f173eca7c4a7
spotbugs-annotations-4.1.1-javadoc.jar	412920d392c7d433541afb905ffdc7f22998f0c2417c2f697a9c996cef703bc7
spotbugs-annotations-4.1.1-sources.jar	b338136e3e82d585348cde58a8fe3a678e16f51a35c31c1463e05fefef557aad
spotbugs-annotations.jar	347f4c363db00c0a71da23698bdbb2aa8ede321a56aa41eae2e89ad9731d5288
spotbugs-ant-4.1.1-javadoc.jar	2344c3e5a6d4a19211a4ad2b14ecfd0ba8817299ce0b8c4f670b3490e18e3db2
spotbugs-ant-4.1.1-sources.jar	c74dec42c0ed0dd1ae02a7410d8e0f0dbbee23e8e7da4a21910863677fcdbc8e
spotbugs-ant.jar	a9f1c4ea228ce3c4bb11065b26806f5e2d4ffe457a95a012166b11a58164cc19
spotbugs.jar	8cdf641bc6b46fafc856eeaff436996fb7ac8e746b02521329b0b7d4161cad20
test-harness-4.1.1-javadoc.jar	5fae8ea76f9738067091126b8dbb9ba7acafbc99dc0d1645cb75f4ccd3c47277
test-harness-4.1.1-sources.jar	2c1f5ef929453f3b682c7eb7c1e22db3082b5f74c5a5be439be5dc31dd7a31aa
test-harness-4.1.1.jar	e6d72665dcaed1afd413541f211992924ffc2d4d64dc54f1a8f0bfa494853596
test-harness-core-4.1.1-javadoc.jar	25a086a7b45bd89d0ada1ab352b0f2f5b476a901559c503eb3524a9db0bbc81a

Changelog

Sourced from spotbugs-annotations's changelog.

4.1.2 - 2020-08-18

Fixed

• A meaningless exception data from SAXBugCollectionHandler
• Use URI for files instead of converting string to URI each time. Fixes tests on Windows.
• Allow private methods to inherit default annotations from package or class scope. (#374)

Added

• Implement issue 390 as a detector, DontAssertInstanceofInTests, which reports bugs of type JUA_DONT_ASSERT_INSTANCEOF_IN_TESTS.

4.1.1 - 2020-07-31

Fixed

• Missing the version of commons-lang3 for Maven (#1239)

4.1.0 - 2020-07-30

Added

• Support custom bug annotation
• Experimental support for the SARIF 2.1.0 report (discuss#95)

Fixed

• Fixed not working detector 'CbeckMustOverrideSuperAnnotation' and renamed to 'OverridingMethodsMustInvokeSuperDetector'

Changed

• Bump commons-lang3 from 3.10 to 3.11 (#1231)
• Bump commons-text from 1.8 to 1.9

4.0.6 - 2020-06-23

Fixed

• Use method call instead of reflection to get BCEL frame type (#1176)

4.0.5 - 2020-06-20

Fixed

• dependency conflict around apache-commons-lang3 (#1135)
• plain.xsl declares it is a 2.0 stylesheet, but it appears to have issues with a 2.0 processor
• eclipse plugin does not contain lib/spotbugs.jar (#1158)

Changed

• Bump up Apache Commons BCEL to the version 6.5.0

4.0.4 - 2020-06-09

Security

• Update dom4j to 2.1.3 to fix security vulnerability. (#1122)

4.0.3 - 2020-05-13

Fixed

• Avoid changing the SecurityManager when launched as an IntelliJ IDEA plugin.

Commits

• 1a2aa9d release SpotBugs v4.1.2
• 72f9185 Allow private methods to inherit default annotations from package or class sc...
• 6084471 docs: add translate messages for #1256
• 9dea534 build(deps): bump mockito-core from 3.4.6 to 3.5.0
• 5328d7a Use OpcodeStackDetector to take advantage of shouldVisitCode.
• 3d5d1b1 Add a suggestion to fix the reported issue
• e1d0091 Run spotless
• b4a884e Implement issue 390
• 186ad19 build(deps): bump checker-qual from 3.5.0 to 3.6.0
• 60f5ffd docs: add Japanese translation for #1247
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

Superseded by #48.