diff --git a/build.gradle b/build.gradle index bba85b5..9ec77e6 100644 --- a/build.gradle +++ b/build.gradle @@ -4,13 +4,13 @@ plugins { id 'java-library' id 'checkstyle' id 'jacoco' - id 'com.github.spotbugs' version '5.0.14' + id 'com.github.spotbugs' version '5.1.5' id 'maven-publish' id 'signing' - id 'io.github.gradle-nexus.publish-plugin' version '1.1.0' // publish to Maven Central - id 'com.github.ben-manes.versions' version '0.47.0' // check for out-of-date dependencies (run manually) - id 'org.sonatype.gradle.plugins.scan' version '2.6.0' // scan for vulnerabilities - id "org.sonarqube" version "4.2.1.3168"// sonarQube analysis + id 'io.github.gradle-nexus.publish-plugin' version '1.3.0' // publish to Maven Central + id 'com.github.ben-manes.versions' version '0.49.0' // check for out-of-date dependencies (run manually) + id 'org.sonatype.gradle.plugins.scan' version '2.6.1' // scan for vulnerabilities + id "org.sonarqube" version "4.4.1.3373"// sonarQube analysis } group = 'com.imsweb' @@ -33,24 +33,24 @@ dependencies { // retrofit will not update these dependencies to fix vulnerabilities api 'com.squareup.okhttp3:okhttp:4.11.0' - api 'com.squareup.okio:okio:3.4.0' + api 'com.squareup.okio:okio:3.6.0' // newer version of dependency to fix vulnerability until converter-jackson is updated - api 'com.fasterxml.jackson.core:jackson-databind:2.15.2' + api 'com.fasterxml.jackson.core:jackson-databind:2.15.3' testImplementation 'junit:junit:4.13.2' testImplementation 'com.imsweb:seerutils:5.6' - testImplementation 'org.commonmark:commonmark:0.20.0' + testImplementation 'org.commonmark:commonmark:0.21.0' } // enforce UTF-8, display the compilation warnings -tasks.withType(JavaCompile) { +tasks.withType(JavaCompile).configureEach { options.encoding = 'UTF-8' options.compilerArgs << '-Xlint:unchecked' << '-Xlint:deprecation' << '-Xlint:rawtypes' << '-Werror' } // the Javadoc was made way too strict in Java 8 and it's not worth the time fixing everything! -tasks.withType(Javadoc) { +tasks.withType(Javadoc).configureEach { options.addStringOption('Xdoclint:none', '-quiet') } @@ -103,7 +103,7 @@ test.finalizedBy jacocoTestReport // spotbugs plugin settings spotbugs { ignoreFailures = true - excludeFilter = project(':').file("config/spotbugs/spotbugs-exclude.xml") + excludeFilter.set(project(':').file("config/spotbugs/spotbugs-exclude.xml")) } sonarqube { @@ -164,8 +164,8 @@ publishing { // setup JAR signing signing { - def signingKey = project.findProperty('signing.armored.key') ?: '' - def signingPassword = project.findProperty('signing.armored.password') ?: '' + String signingKey = project.findProperty('signing.armored.key') ?: '' + String signingPassword = project.findProperty('signing.armored.password') ?: '' useInMemoryPgpKeys(signingKey, signingPassword) @@ -200,7 +200,7 @@ if (version.endsWith('-SNAPSHOT')) { // Gradle wrapper, this allows to build the project without having to install Gradle! wrapper { - gradleVersion = '8.2.1' + gradleVersion = '8.4' distributionType = Wrapper.DistributionType.ALL } diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties index c747538..8838ba9 100644 --- a/gradle/wrapper/gradle-wrapper.properties +++ b/gradle/wrapper/gradle-wrapper.properties @@ -1,6 +1,6 @@ distributionBase=GRADLE_USER_HOME distributionPath=wrapper/dists -distributionUrl=https\://services.gradle.org/distributions/gradle-8.2.1-all.zip +distributionUrl=https\://services.gradle.org/distributions/gradle-8.4-all.zip networkTimeout=10000 validateDistributionUrl=true zipStoreBase=GRADLE_USER_HOME