Server/Event
3
0
Fork 0
Code Issues Pull Requests 7 Actions Packages Projects Releases Wiki Activity

deps: bump com.github.spotbugs:spotbugs-annotations from 4.9.3 to 4.9.5 #25

Closed
dependabot[bot] wants to merge 1 commits from dependabot/gradle/main/com.github.spotbugs-spotbugs-annotations-4.9.5 into main
pull from: dependabot/gradle/main/com.github.spotbugs-spotbugs-annotations-4.9.5
merge into: :main
Conversation 1 Commits 1 Files Changed 1
+2 -2
dependabot[bot] commented 2025-09-15 04:27:18 +00:00 (Migrated from github.com)
Copy Link
Copy Source

Bumps com.github.spotbugs:spotbugs-annotations from 4.9.3 to 4.9.5.

Release notes

Sourced from com.github.spotbugs:spotbugs-annotations's releases.

SpotBugs 4.9.5

CHANGELOG

CHECKSUM

file checksum (sha256)
spotbugs-4.9.5-javadoc.jar e615f45f056f39d543f0b35b2e855755c332cdf70b2ae9d3317d8d92bdf1ba14
spotbugs-4.9.5-sources.jar 3d8bf289f16288d9e5412a4dc3b8ce36cf035edbddc5b0bca0e979990bec5a95
spotbugs-4.9.5.tgz 6c55c38f28a76dd11946117c175a520fbbc0abdfe6e62fdc3291fe449e8e3202
spotbugs-4.9.5.zip 064da05951ca2d93a54bef9990b0d61328fa681a3e026cab99ad850edf945204
spotbugs-annotations-4.9.5-javadoc.jar 6d5865f18b091eef7349c1557c24d30e3ad8bb05666cd76b3a00d1debdd4424a
spotbugs-annotations-4.9.5-sources.jar 075b2eed660c2fe2fb1ad1de028f8fdff5f358e25c1318706b95ab17bb28be44
spotbugs-annotations.jar 946451cdd75fd3c5a99d5ed8d783a9eb0dbf4f570c10b7b8f8473f381a47b03d
spotbugs-ant-4.9.5-javadoc.jar 05582d9d6671cc7ef96d8fe384fe6dc120a1e3a1e96e412984862ded945d6a87
spotbugs-ant-4.9.5-sources.jar 91477d93b1fd1bebae35d318427b5238fb458e726478dc1a8ac41ce74838a1e6
spotbugs-ant.jar 22f2fa397e86663adcd4828cc1c91e63aa6cc2bfc56832885b749a86fac5c784
spotbugs.jar 50f0f825d184e6843bca36a3c55a61e5e99f852ec7063b5f21a15c420cb4d0a3
test-harness-4.9.5-javadoc.jar 9c6b872bfeb5ac1e7078da2a26ff2816a690f4e728219b619d7c47f4092f9947
test-harness-4.9.5-sources.jar 805d2d124b0d4ea513ee9262d4ad6027c3471d45defd80fd7d20e23425d17df7
test-harness-4.9.5.jar 0076a3bc9602c78d73edb048e625a96ee6a182fa3dd39300aa739af67b954189
test-harness-core-4.9.5-javadoc.jar f371500e18eeb0c3fe5318d741800e125741efe558234550d2951601ef07b195
test-harness-core-4.9.5-sources.jar 656579431db1b2714faeeca3c3d59426e2ffdfdb0725546b4090f993d2413eeb
test-harness-core-4.9.5.jar 66db286ae1dd056458c1e0303a8e2f81fe95a2c5d2888172a3ed17e993434bf1
test-harness-jupiter-4.9.5-javadoc.jar aa21348a1bbab2fb65bf19dbeb9a884eeb5223c9f9395b29636802fab32d2e52
test-harness-jupiter-4.9.5-sources.jar 59bbb8581ed4bdd212a669d94ec363b6c1d6df9276a608359c66d7f0c1688279
test-harness-jupiter-4.9.5.jar 0582a99bdc66e24c7e36753014729149189fd27129ec5a2f38a8d67457bc9696

SpotBugs 4.9.4

CHANGELOG

Changed

  • AnnotationMatcher can now ignore bugs if annotation is also applied on methods or fields. Previously only annotations on classes were considered.
  • Add relevant CWE ids to bugs and refer the CWEs in the bug messages (#3354).
  • Replace LOCAL_VARIABLE_UNKNOWN with exact method name for NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE (#3485)

Fixed

  • Widen main method recognition according to JEP 445. (#3371)
  • Do not report US_USELESS_SUPPRESSION_ON_* on methods, fields, parameters, packages or classes with an *.Generated annotation with retention >= class (#3350)(#3409)
  • Rewrite some member in ResourceValueFrame.java to Enum (#2061)
  • Ignore non-interpreted text when looking for FS_BAD_DATE_FORMAT_FLAG_COMBO (#3387)
  • Fix IllegalArgumentException thrown from FindNoSideEffectMethods detector (#3320)
  • Do not report RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT when part of a Mockito doAnswer(), doCallRealMethod(), doNothing(), doThrow() or doReturn() call (#3334)
  • Fix CT_CONSTRUCTOR_THROW false positive with public and private constructors in specific order of methods (#3417)
  • Fix AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE, AT_NONATOMIC_64BIT_PRIMITIVE and AT_STALE_THREAD_WRITE_OF_PRIMITIVE FP when the relevant code is in private method, which is only called with proper synchronization (#3428)
  • Do not report RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT when part of a BDDMockito call (#3441)
  • Fix AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE when field of a local variable is set. (#3459)
  • Fix AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE FP when there was no compound operation (#3363)
  • Fix NM_FIELD_NAMING_CONVENTION crash in the TestASM detector (#3489)
  • Do not report UWF_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR for fields initialized in JUnit 3/4 setUp() method. (#3169)
  • Fix US_USELESS_SUPPRESSION_ON_FIELD/UUF_UNUSED_FIELD false positive (#3496)

... (truncated)

Changelog

Sourced from com.github.spotbugs:spotbugs-annotations's changelog.

4.9.5 - 2025-09-14

Fixed

  • Fix for an error when a record method has the @SuppressFBWarnings annotation (#3622)
  • Fix SF_SWITCH_FALLTHROUGH false positive when continuing a loop (#3617)
  • CWO_CLOSED_WITHOUT_OPENED false positive (#3616)
  • SF_SWITCH_NO_DEFAULT false positive fix for switch-arrow (#3645)
  • Fix the issue with BCEL logging Duplicating value: ... (#3621)
  • Add missing jakarta support for servlets / pre/post destroy (#3694)

Added

  • Add 'java.nio.file.Path.of' to known types for path traversal checks (#3699)

Cleanup

  • S1481: Unused local variables should be removed (#3654)
  • Moved test libraries to jakarta namespace including switching off jsr305 where possible for jakarta.annotatoin (#3695)

4.9.4 - 2025-08-07

Changed

  • AnnotationMatcher can now ignore bugs if annotation is also applied on methods or fields. Previously only annotations on classes were considered.
  • Add relevant CWE ids to bugs and refer the CWEs in the bug messages (#3354).
  • Replace LOCAL_VARIABLE_UNKNOWN with exact method name for NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE (#3485)

Fixed

  • Widen main method recognition according to JEP 445. (#3371)
  • Do not report US_USELESS_SUPPRESSION_ON_* on methods, fields, parameters, packages or classes with an *.Generated annotation with retention >= class (#3350)(#3409)
  • Rewrite some member in ResourceValueFrame.java to Enum (#2061)
  • Ignore non-interpreted text when looking for FS_BAD_DATE_FORMAT_FLAG_COMBO (#3387)
  • Fix IllegalArgumentException thrown from FindNoSideEffectMethods detector (#3320)
  • Do not report RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT when part of a Mockito doAnswer(), doCallRealMethod(), doNothing(), doThrow() or doReturn() call (#3334)
  • Fix CT_CONSTRUCTOR_THROW false positive with public and private constructors in specific order of methods (#3417)
  • Fix AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE, AT_NONATOMIC_64BIT_PRIMITIVE and AT_STALE_THREAD_WRITE_OF_PRIMITIVE FP when the relevant code is in private method, which is only called with proper synchronization (#3428)
  • Do not report RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT when part of a BDDMockito call (#3441)
  • Fix AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE when field of a local variable is set. (#3459)
  • Fix AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE FP when there was no compound operation (#3363)
  • Fix NM_FIELD_NAMING_CONVENTION crash in the TestASM detector (#3489)
  • Do not report UWF_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR for fields initialized in JUnit 3/4 setUp() method. (#3169)
  • Fix US_USELESS_SUPPRESSION_ON_FIELD/UUF_UNUSED_FIELD false positive (#3496)
  • Make the osgi manifest of the annotations jar Java 8 compatible (#3498) (#3500)
  • TextUICommandLine supports all options encoded in Eclipse preferences file (#3520)
  • Unnecessary suppressions fix for records headers (#3471)
  • Dead store fix when switch case contains loops (#3530) (#3449)
  • Consider PUTFIELD and PUTSTATIC when looking for assertions with side effects (#3463)
  • Detect cases when equals() unconditionally returns true or false (#3528)
  • Do not report that an Iterator does not throw NoSuchElementException when hasNext() returns true (#3501)
  • Detect random value cast to int when stored in temporary variable (#3461)
  • Look for interfaces default methods when searching uncalled private methods (#1988)
  • Fixed field self assignment false positive (#2258)
  • Fixed DMI_INVOKING_TOSTRING_ON_ARRAY on newer JDK (#1147)
  • Fix NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE false positive with Objects.requireNonNull (#2965) (#3573)
  • Track inner classes access methods to correctly report the bugs (#2029)

... (truncated)

Commits
  • 4c0531d release v4.9.5
  • 3e3cd53 chore: Cleanup improper regex usage on replaceAll with replace (#3704)
  • fe5205c chore(deps): update plugin com.github.spotbugs to v6.4.0 (#3703)
  • b1e8fed fix: Correct file handling and potential leaks (#3701)
  • 24f2035 chore: Use Java 11 Path.of instead of Paths.get (#3699)
  • 81cd5c7 Use modifiers in correct order (#3700)
  • 2d7e1b2 ci: formatting (#3698)
  • a46e49a chore: Minor code cleanup in eclipse plugin (#3697)
  • e945b7b ci: Fix comment in build file about spotbugs annotations as they are not rebu...
  • 6013c61 chore: Move spotbugs tests to jakarta (#3695)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps [com.github.spotbugs:spotbugs-annotations](https://github.com/spotbugs/spotbugs) from 4.9.3 to 4.9.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spotbugs/spotbugs/releases">com.github.spotbugs:spotbugs-annotations's releases</a>.</em></p> <blockquote> <h2>SpotBugs 4.9.5</h2> <h3>CHANGELOG</h3> <ul> <li><a href="https://github.com/spotbugs/spotbugs/blob/4.9.5/CHANGELOG.md">https://github.com/spotbugs/spotbugs/blob/4.9.5/CHANGELOG.md</a></li> </ul> <h3>CHECKSUM</h3> <table> <thead> <tr> <th>file</th> <th>checksum (sha256)</th> </tr> </thead> <tbody> <tr> <td>spotbugs-4.9.5-javadoc.jar</td> <td>e615f45f056f39d543f0b35b2e855755c332cdf70b2ae9d3317d8d92bdf1ba14</td> </tr> <tr> <td>spotbugs-4.9.5-sources.jar</td> <td>3d8bf289f16288d9e5412a4dc3b8ce36cf035edbddc5b0bca0e979990bec5a95</td> </tr> <tr> <td>spotbugs-4.9.5.tgz</td> <td>6c55c38f28a76dd11946117c175a520fbbc0abdfe6e62fdc3291fe449e8e3202</td> </tr> <tr> <td>spotbugs-4.9.5.zip</td> <td>064da05951ca2d93a54bef9990b0d61328fa681a3e026cab99ad850edf945204</td> </tr> <tr> <td>spotbugs-annotations-4.9.5-javadoc.jar</td> <td>6d5865f18b091eef7349c1557c24d30e3ad8bb05666cd76b3a00d1debdd4424a</td> </tr> <tr> <td>spotbugs-annotations-4.9.5-sources.jar</td> <td>075b2eed660c2fe2fb1ad1de028f8fdff5f358e25c1318706b95ab17bb28be44</td> </tr> <tr> <td>spotbugs-annotations.jar</td> <td>946451cdd75fd3c5a99d5ed8d783a9eb0dbf4f570c10b7b8f8473f381a47b03d</td> </tr> <tr> <td>spotbugs-ant-4.9.5-javadoc.jar</td> <td>05582d9d6671cc7ef96d8fe384fe6dc120a1e3a1e96e412984862ded945d6a87</td> </tr> <tr> <td>spotbugs-ant-4.9.5-sources.jar</td> <td>91477d93b1fd1bebae35d318427b5238fb458e726478dc1a8ac41ce74838a1e6</td> </tr> <tr> <td>spotbugs-ant.jar</td> <td>22f2fa397e86663adcd4828cc1c91e63aa6cc2bfc56832885b749a86fac5c784</td> </tr> <tr> <td>spotbugs.jar</td> <td>50f0f825d184e6843bca36a3c55a61e5e99f852ec7063b5f21a15c420cb4d0a3</td> </tr> <tr> <td>test-harness-4.9.5-javadoc.jar</td> <td>9c6b872bfeb5ac1e7078da2a26ff2816a690f4e728219b619d7c47f4092f9947</td> </tr> <tr> <td>test-harness-4.9.5-sources.jar</td> <td>805d2d124b0d4ea513ee9262d4ad6027c3471d45defd80fd7d20e23425d17df7</td> </tr> <tr> <td>test-harness-4.9.5.jar</td> <td>0076a3bc9602c78d73edb048e625a96ee6a182fa3dd39300aa739af67b954189</td> </tr> <tr> <td>test-harness-core-4.9.5-javadoc.jar</td> <td>f371500e18eeb0c3fe5318d741800e125741efe558234550d2951601ef07b195</td> </tr> <tr> <td>test-harness-core-4.9.5-sources.jar</td> <td>656579431db1b2714faeeca3c3d59426e2ffdfdb0725546b4090f993d2413eeb</td> </tr> <tr> <td>test-harness-core-4.9.5.jar</td> <td>66db286ae1dd056458c1e0303a8e2f81fe95a2c5d2888172a3ed17e993434bf1</td> </tr> <tr> <td>test-harness-jupiter-4.9.5-javadoc.jar</td> <td>aa21348a1bbab2fb65bf19dbeb9a884eeb5223c9f9395b29636802fab32d2e52</td> </tr> <tr> <td>test-harness-jupiter-4.9.5-sources.jar</td> <td>59bbb8581ed4bdd212a669d94ec363b6c1d6df9276a608359c66d7f0c1688279</td> </tr> <tr> <td>test-harness-jupiter-4.9.5.jar</td> <td>0582a99bdc66e24c7e36753014729149189fd27129ec5a2f38a8d67457bc9696</td> </tr> </tbody> </table> <h2>SpotBugs 4.9.4</h2> <h3>CHANGELOG</h3> <h3>Changed</h3> <ul> <li><code>AnnotationMatcher</code> can now ignore bugs if annotation is also applied on methods or fields. Previously only annotations on classes were considered.</li> <li>Add relevant CWE ids to bugs and refer the CWEs in the bug messages (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3354">#3354</a>).</li> <li>Replace <code>LOCAL_VARIABLE_UNKNOWN</code> with exact method name for <code>NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3485">#3485</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Widen main method recognition according to <a href="https://openjdk.org/jeps/445">JEP 445</a>. (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3371">#3371</a>)</li> <li>Do not report <code>US_USELESS_SUPPRESSION_ON_*</code> on methods, fields, parameters, packages or classes with an <code>*.Generated</code> annotation with retention &gt;= class (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3350">#3350</a>)(<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3409">#3409</a>)</li> <li>Rewrite some member in <code>ResourceValueFrame.java</code> to Enum (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/2061">#2061</a>)</li> <li>Ignore non-interpreted text when looking for <code>FS_BAD_DATE_FORMAT_FLAG_COMBO</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3387">#3387</a>)</li> <li>Fix IllegalArgumentException thrown from <code>FindNoSideEffectMethods</code> detector (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3320">#3320</a>)</li> <li>Do not report <code>RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT</code> when part of a Mockito <code>doAnswer()</code>, <code>doCallRealMethod()</code>, <code>doNothing()</code>, <code>doThrow()</code> or <code>doReturn()</code> call (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3334">#3334</a>)</li> <li>Fix <code>CT_CONSTRUCTOR_THROW</code> false positive with public and private constructors in specific order of methods (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3417">#3417</a>)</li> <li>Fix <code>AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE</code>, <code>AT_NONATOMIC_64BIT_PRIMITIVE</code> and <code>AT_STALE_THREAD_WRITE_OF_PRIMITIVE</code> FP when the relevant code is in private method, which is only called with proper synchronization (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3428">#3428</a>)</li> <li>Do not report <code>RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT</code> when part of a BDDMockito call (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3441">#3441</a>)</li> <li>Fix <code>AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE</code> when field of a local variable is set. (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3459">#3459</a>)</li> <li>Fix <code>AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE</code> FP when there was no compound operation (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3363">#3363</a>)</li> <li>Fix <code>NM_FIELD_NAMING_CONVENTION</code> crash in the TestASM detector (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3489">#3489</a>)</li> <li>Do not report <code>UWF_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR</code> for fields initialized in JUnit 3/4 <code>setUp()</code> method. (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3169">#3169</a>)</li> <li>Fix <code>US_USELESS_SUPPRESSION_ON_FIELD</code>/<code>UUF_UNUSED_FIELD</code> false positive (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3496">#3496</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md">com.github.spotbugs:spotbugs-annotations's changelog</a>.</em></p> <blockquote> <h2>4.9.5 - 2025-09-14</h2> <h3>Fixed</h3> <ul> <li>Fix for an error when a record method has the <code>@SuppressFBWarnings</code> annotation (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3622">#3622</a>)</li> <li>Fix <code>SF_SWITCH_FALLTHROUGH</code> false positive when continuing a loop (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3617">#3617</a>)</li> <li><code>CWO_CLOSED_WITHOUT_OPENED</code> false positive (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3616">#3616</a>)</li> <li><code>SF_SWITCH_NO_DEFAULT</code> false positive fix for switch-arrow (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3645">#3645</a>)</li> <li>Fix the issue with BCEL logging <code>Duplicating value: ...</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3621">#3621</a>)</li> <li>Add missing jakarta support for servlets / pre/post destroy (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3694">#3694</a>)</li> </ul> <h3>Added</h3> <ul> <li>Add 'java.nio.file.Path.of' to known types for path traversal checks (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3699">#3699</a>)</li> </ul> <h3>Cleanup</h3> <ul> <li>S1481: Unused local variables should be removed (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3654">#3654</a>)</li> <li>Moved test libraries to jakarta namespace including switching off jsr305 where possible for jakarta.annotatoin (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3695">#3695</a>)</li> </ul> <h2>4.9.4 - 2025-08-07</h2> <h3>Changed</h3> <ul> <li><code>AnnotationMatcher</code> can now ignore bugs if annotation is also applied on methods or fields. Previously only annotations on classes were considered.</li> <li>Add relevant CWE ids to bugs and refer the CWEs in the bug messages (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3354">#3354</a>).</li> <li>Replace <code>LOCAL_VARIABLE_UNKNOWN</code> with exact method name for <code>NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3485">#3485</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Widen main method recognition according to <a href="https://openjdk.org/jeps/445">JEP 445</a>. (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3371">#3371</a>)</li> <li>Do not report <code>US_USELESS_SUPPRESSION_ON_*</code> on methods, fields, parameters, packages or classes with an <code>*.Generated</code> annotation with retention &gt;= class (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3350">#3350</a>)(<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3409">#3409</a>)</li> <li>Rewrite some member in <code>ResourceValueFrame.java</code> to Enum (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/2061">#2061</a>)</li> <li>Ignore non-interpreted text when looking for <code>FS_BAD_DATE_FORMAT_FLAG_COMBO</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3387">#3387</a>)</li> <li>Fix IllegalArgumentException thrown from <code>FindNoSideEffectMethods</code> detector (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3320">#3320</a>)</li> <li>Do not report <code>RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT</code> when part of a Mockito <code>doAnswer()</code>, <code>doCallRealMethod()</code>, <code>doNothing()</code>, <code>doThrow()</code> or <code>doReturn()</code> call (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3334">#3334</a>)</li> <li>Fix <code>CT_CONSTRUCTOR_THROW</code> false positive with public and private constructors in specific order of methods (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3417">#3417</a>)</li> <li>Fix <code>AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE</code>, <code>AT_NONATOMIC_64BIT_PRIMITIVE</code> and <code>AT_STALE_THREAD_WRITE_OF_PRIMITIVE</code> FP when the relevant code is in private method, which is only called with proper synchronization (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3428">#3428</a>)</li> <li>Do not report <code>RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT</code> when part of a BDDMockito call (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3441">#3441</a>)</li> <li>Fix <code>AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE</code> when field of a local variable is set. (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3459">#3459</a>)</li> <li>Fix <code>AT_NONATOMIC_OPERATIONS_ON_SHARED_VARIABLE</code> FP when there was no compound operation (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3363">#3363</a>)</li> <li>Fix <code>NM_FIELD_NAMING_CONVENTION</code> crash in the TestASM detector (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3489">#3489</a>)</li> <li>Do not report <code>UWF_FIELD_NOT_INITIALIZED_IN_CONSTRUCTOR</code> for fields initialized in JUnit 3/4 <code>setUp()</code> method. (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3169">#3169</a>)</li> <li>Fix <code>US_USELESS_SUPPRESSION_ON_FIELD</code>/<code>UUF_UNUSED_FIELD</code> false positive (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3496">#3496</a>)</li> <li>Make the osgi manifest of the annotations jar Java 8 compatible (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3498">#3498</a>) (<a href="https://redirect.github.com/spotbugs/spotbugs/pull/3500">#3500</a>)</li> <li><code>TextUICommandLine</code> supports all options encoded in Eclipse preferences file (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3520">#3520</a>)</li> <li>Unnecessary suppressions fix for records headers (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3471">#3471</a>)</li> <li>Dead store fix when switch case contains loops (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3530">#3530</a>) (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3449">#3449</a>)</li> <li>Consider PUTFIELD and PUTSTATIC when looking for assertions with side effects (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3463">#3463</a>)</li> <li>Detect cases when equals() unconditionally returns true or false (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3528">#3528</a>)</li> <li>Do not report that an Iterator does not throw <code>NoSuchElementException</code> when <code>hasNext()</code> returns true (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3501">#3501</a>)</li> <li>Detect random value cast to int when stored in temporary variable (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3461">#3461</a>)</li> <li>Look for interfaces default methods when searching uncalled private methods (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/1988">#1988</a>)</li> <li>Fixed field self assignment false positive (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/2258">#2258</a>)</li> <li>Fixed <code>DMI_INVOKING_TOSTRING_ON_ARRAY</code> on newer JDK (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/1147">#1147</a>)</li> <li>Fix <code>NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE</code> false positive with <code>Objects.requireNonNull</code> (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/2965">#2965</a>) (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3573">#3573</a>)</li> <li>Track inner classes access methods to correctly report the bugs (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/2029">#2029</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spotbugs/spotbugs/commit/4c0531d77bcafc6d162f483969ad3194471b200f"><code>4c0531d</code></a> release v4.9.5</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/3e3cd53580571ef28cb8c8b5abde4a62b09a4a2b"><code>3e3cd53</code></a> chore: Cleanup improper regex usage on replaceAll with replace (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3704">#3704</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/fe5205c213bc0698eabc0ad878f1494b6a75df49"><code>fe5205c</code></a> chore(deps): update plugin com.github.spotbugs to v6.4.0 (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3703">#3703</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/b1e8fed597988fd8dfc531cd1ebd95faab3a8628"><code>b1e8fed</code></a> fix: Correct file handling and potential leaks (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3701">#3701</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/24f203589950a4ab58eec3e551a360919ad5631b"><code>24f2035</code></a> chore: Use Java 11 Path.of instead of Paths.get (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3699">#3699</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/81cd5c7028a79c82c371ec93cd0a83fafd9a9e0f"><code>81cd5c7</code></a> Use modifiers in correct order (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3700">#3700</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/2d7e1b28ae7d8a8aab916b192921697bfacc5031"><code>2d7e1b2</code></a> ci: formatting (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3698">#3698</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/a46e49aa94df24146c44e13b5259b364fcb436a5"><code>a46e49a</code></a> chore: Minor code cleanup in eclipse plugin (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3697">#3697</a>)</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/e945b7b1e4f1bcb751dae8337c4d8bb0a823a87d"><code>e945b7b</code></a> ci: Fix comment in build file about spotbugs annotations as they are not rebu...</li> <li><a href="https://github.com/spotbugs/spotbugs/commit/6013c61e2ad8730eb5268daaeeef97f649bc8ba2"><code>6013c61</code></a> chore: Move spotbugs tests to jakarta (<a href="https://redirect.github.com/spotbugs/spotbugs/issues/3695">#3695</a>)</li> <li>Additional commits viewable in <a href="https://github.com/spotbugs/spotbugs/compare/4.9.3...4.9.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=com.github.spotbugs:spotbugs-annotations&package-manager=gradle&previous-version=4.9.3&new-version=4.9.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
dependabot[bot] commented 2025-09-22 04:30:17 +00:00 (Migrated from github.com)
Copy Link
Copy Source

Superseded by #27.

Superseded by #27.

Pull request closed

This pull request cannot be reopened because the branch was deleted.
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
bug
Something isn't working
 dependencies
Pull requests that update a dependency file
 documentation
Improvements or additions to documentation
 duplicate
This issue or pull request already exists
 enhancement
New feature or request
 github_actions
Pull requests that update GitHub Actions code
 good first issue
Good for newcomers
 help wanted
Extra attention is needed
 invalid
This doesn't seem right
 java
Pull requests that update java code
 question
Further information is requested
 wontfix
This will not be worked on
No labels dependencies java
Milestone
No items
No Milestone
Projects
Clear projects
No projects
Assignees
Clear assignees
admin deployment hlodan
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Server/Event#25
Delete Branch "dependabot/gradle/main/com.github.spotbugs-spotbugs-annotations-4.9.5"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?