pashko/apache-poi
1
0
Fork 0
mirror of https://github.com/apache/poi.git synced 2026-02-27 20:40:08 +08:00
Code Issues Packages Projects Releases Wiki Activity
13,716 Commits 30 Branches 105 Tags
Commit Graph

626 Commits

Author SHA1 Message Date
Dominik Stadler
513a805c25 Describe where to get the latest spotbugs 2026-01-24 14:47:26 +01:00
dependabot[bot]
c1fac56998
Bump log4jVersion from 2.24.3 to 2.25.3 (#975) 
Bumps `log4jVersion` from 2.24.3 to 2.25.3.

Updates `org.apache.logging.log4j:log4j-bom` from 2.24.3 to 2.25.3
- [Release notes](https://github.com/apache/logging-log4j2/releases)
- [Changelog](https://github.com/apache/logging-log4j2/blob/2.x/RELEASE-NOTES.adoc)
- [Commits](https://github.com/apache/logging-log4j2/compare/rel/2.24.3...rel/2.25.3)

Updates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.24.3 to 2.25.3

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-bom
  dependency-version: 2.25.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.logging.log4j:log4j-slf4j2-impl
  dependency-version: 2.25.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-29 13:27:00 +01:00
Dominik Stadler
9e1afbbab1 Fix some more Gradle deprecation-warnings in preparation for Gradle 9 
Only signing-handling in poi-ooxml is still remaining, but
this deprecation seems to have been moved to Gradle 10 anyway.

Gradle 9 will require JDK 17, though, so we can only upgrade
when the min. supported JDK is bumped once more.
 2025-12-19 16:15:21 +01:00
dependabot[bot]
3ac160b57d
Bump org.sonarqube from 7.2.1.6560 to 7.2.2.6593 (#983) 
Bumps org.sonarqube from 7.2.1.6560 to 7.2.2.6593.

---
updated-dependencies:
- dependency-name: org.sonarqube
  dependency-version: 7.2.2.6593
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-19 16:09:48 +01:00
Dominik Stadler
2dd124eb42 Fix some Gradle deprecation warnings 
A number of warnings still remain,
they seem a bit more complicated to fix.
 2025-12-17 22:11:29 +01:00
dependabot[bot]
08e9bb00d4
Bump org.sonarqube from 7.2.0.6526 to 7.2.1.6560 (#976) 
Bumps org.sonarqube from 7.2.0.6526 to 7.2.1.6560.

---
updated-dependencies:
- dependency-name: org.sonarqube
  dependency-version: 7.2.1.6560
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-17 21:24:32 +01:00
dependabot[bot]
f476c64179
Bump com.github.spotbugs from 6.4.7 to 6.4.8 (#972) 
Bumps com.github.spotbugs from 6.4.7 to 6.4.8.

---
updated-dependencies:
- dependency-name: com.github.spotbugs
  dependency-version: 6.4.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-16 15:44:28 +01:00
dependabot[bot]
a9bc28a4bb
Bump org.mockito:mockito-core from 5.20.0 to 5.21.0 (#970) 
Bumps [org.mockito:mockito-core](https://github.com/mockito/mockito) from 5.20.0 to 5.21.0.
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](https://github.com/mockito/mockito/compare/v5.20.0...v5.21.0)

---
updated-dependencies:
- dependency-name: org.mockito:mockito-core
  dependency-version: 5.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-15 20:43:46 +01:00
dependabot[bot]
0eb7135f2b
Bump org.sonarqube from 7.1.0.6387 to 7.2.0.6526 (#960) 
Bumps org.sonarqube from 7.1.0.6387 to 7.2.0.6526.

---
updated-dependencies:
- dependency-name: org.sonarqube
  dependency-version: 7.2.0.6526
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-13 13:06:56 +01:00
PJ Fanning
2098df7467 broken javadoc 2025-12-08 14:04:45 +01:00
Dominik Stadler
236784371b Update JavaDoc-references to JDK 11 2025-12-03 21:35:02 +01:00
dependabot[bot]
5d8d3e77bf
Bump com.github.spotbugs from 6.4.6 to 6.4.7 (#959) 
Bumps com.github.spotbugs from 6.4.6 to 6.4.7.

---
updated-dependencies:
- dependency-name: com.github.spotbugs
  dependency-version: 6.4.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-02 15:53:44 +01:00
dependabot[bot]
c5c2540abb
Bump com.github.spotbugs from 6.4.5 to 6.4.6 (#957) 
Bumps com.github.spotbugs from 6.4.5 to 6.4.6.

---
updated-dependencies:
- dependency-name: com.github.spotbugs
  dependency-version: 6.4.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-28 16:19:53 +01:00
dependabot[bot]
c4e0cde59c
Bump bouncyCastleVersion from 1.82 to 1.83 (#953) 
Bumps `bouncyCastleVersion` from 1.82 to 1.83.

Updates `org.bouncycastle:bcpkix-jdk18on` from 1.82 to 1.83
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.bouncycastle:bcutil-jdk18on` from 1.82 to 1.83
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

---
updated-dependencies:
- dependency-name: org.bouncycastle:bcpkix-jdk18on
  dependency-version: '1.83'
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.bouncycastle:bcutil-jdk18on
  dependency-version: '1.83'
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-26 15:42:57 +01:00
dependabot[bot]
5a7cd39393
Bump org.sonarqube from 7.0.1.6134 to 7.1.0.6387 (#948) 
Bumps org.sonarqube from 7.0.1.6134 to 7.1.0.6387.

---
updated-dependencies:
- dependency-name: org.sonarqube
  dependency-version: 7.1.0.6387
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-21 20:08:49 +01:00
dependabot[bot]
2cb8c4020e
Bump commons-codec:commons-codec from 1.19.0 to 1.20.0 (#946) 
Bumps [commons-codec:commons-codec](https://github.com/apache/commons-codec) from 1.19.0 to 1.20.0.
- [Changelog](https://github.com/apache/commons-codec/blob/master/RELEASE-NOTES.txt)
- [Commits](https://github.com/apache/commons-codec/compare/rel/commons-codec-1.19.0...rel/commons-codec-1.20.0)

---
updated-dependencies:
- dependency-name: commons-codec:commons-codec
  dependency-version: 1.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-20 15:28:12 +01:00
dependabot[bot]
4b38ab5401
Bump com.github.spotbugs from 6.4.4 to 6.4.5 (#944) 
Bumps com.github.spotbugs from 6.4.4 to 6.4.5.

---
updated-dependencies:
- dependency-name: com.github.spotbugs
  dependency-version: 6.4.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-19 17:45:37 +01:00
dependabot[bot]
e7c0389865
Bump de.thetaphi.forbiddenapis from 3.9 to 3.10 (#945) 
Bumps de.thetaphi.forbiddenapis from 3.9 to 3.10.

---
updated-dependencies:
- dependency-name: de.thetaphi.forbiddenapis
  dependency-version: '3.10'
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-19 15:40:28 +01:00
dependabot[bot]
789fcc29bb
Bump org.apache.pdfbox:pdfbox from 3.0.5 to 3.0.6 (#938) 
Bumps org.apache.pdfbox:pdfbox from 3.0.5 to 3.0.6.

---
updated-dependencies:
- dependency-name: org.apache.pdfbox:pdfbox
  dependency-version: 3.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-18 17:26:01 +01:00
dependabot[bot]
1c4f68f262
Bump commons-io:commons-io from 2.20.0 to 2.21.0 (#937) 
Bumps [commons-io:commons-io](https://github.com/apache/commons-io) from 2.20.0 to 2.21.0.
- [Changelog](https://github.com/apache/commons-io/blob/master/RELEASE-NOTES.txt)
- [Commits](https://github.com/apache/commons-io/compare/rel/commons-io-2.20.0...rel/commons-io-2.21.0)

---
updated-dependencies:
- dependency-name: commons-io:commons-io
  dependency-version: 2.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-18 15:56:39 +01:00
PJ Fanning
7631eae9b2 try to fix issue with missing module-info classes 2025-11-17 14:17:51 +01:00
PJ Fanning
1604c410d1 java 11 2025-11-15 12:33:21 +01:00
dependabot[bot]
709bfd4305
Bump org.sonarqube from 4.0.0.2929 to 7.0.1.6134 (#923) 
Bumps org.sonarqube from 4.0.0.2929 to 7.0.1.6134.

---
updated-dependencies:
- dependency-name: org.sonarqube
  dependency-version: 7.0.1.6134
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-15 12:09:02 +01:00
dependabot[bot]
7b5fe9c42b
Bump org.mockito:mockito-core from 4.11.0 to 5.20.0 (#906) 
Bumps [org.mockito:mockito-core](https://github.com/mockito/mockito) from 4.11.0 to 5.20.0.
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](https://github.com/mockito/mockito/compare/v4.11.0...v5.20.0)

---
updated-dependencies:
- dependency-name: org.mockito:mockito-core
  dependency-version: 5.20.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-15 11:39:14 +01:00
dependabot[bot]
dd0d6deb81
Bump com.github.spotbugs from 6.1.13 to 6.4.4 (#922) 
Bumps com.github.spotbugs from 6.1.13 to 6.4.4.

---
updated-dependencies:
- dependency-name: com.github.spotbugs
  dependency-version: 6.4.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-15 11:38:48 +01:00
PJ Fanning
16ecbc7d48 build issues 2025-11-15 11:34:52 +01:00
PJ Fanning
323b5c8c6b start move to require java 11 min 2025-11-15 11:26:19 +01:00
PJ Fanning
7ec830f892 set version to 6.0.0-SNAPSHOT 2025-11-15 10:52:57 +01:00
PJ Fanning
67c8284f35 prep 5.5.0 release 2025-10-27 17:31:34 +00:00
PJ Fanning
782d187b10
Update targetCompatibility to use JavaVersion.VERSION_23 2025-10-22 22:18:45 +01:00
dependabot[bot]
22b78e1887
Bump de.rototor.pdfbox:graphics2d from 3.0.3 to 3.0.5 (#914) 
Bumps [de.rototor.pdfbox:graphics2d](https://github.com/rototor/pdfbox-graphics2d) from 3.0.3 to 3.0.5.
- [Commits](https://github.com/rototor/pdfbox-graphics2d/compare/pdfboxgraphics2d-parent-3.0.3...pdfboxgraphics2d-parent-3.0.5)

---
updated-dependencies:
- dependency-name: de.rototor.pdfbox:graphics2d
  dependency-version: 3.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-09-29 19:46:17 +01:00
dependabot[bot]
b50946307e
Bump org.cyclonedx.bom from 2.3.1 to 2.4.1 (#908) 
Bumps org.cyclonedx.bom from 2.3.1 to 2.4.1.

---
updated-dependencies:
- dependency-name: org.cyclonedx.bom
  dependency-version: 2.4.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-09-23 19:40:29 +01:00
dependabot[bot]
c048ba53fe
Bump bouncyCastleVersion from 1.81 to 1.82 (#903) 
Bumps `bouncyCastleVersion` from 1.81 to 1.82.

Updates `org.bouncycastle:bcpkix-jdk18on` from 1.81 to 1.82
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.bouncycastle:bcutil-jdk18on` from 1.81 to 1.82
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

---
updated-dependencies:
- dependency-name: org.bouncycastle:bcpkix-jdk18on
  dependency-version: '1.82'
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.bouncycastle:bcutil-jdk18on
  dependency-version: '1.82'
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-09-20 09:12:58 +01:00
dependabot[bot]
f2267c0668
Bump net.sf.saxon:Saxon-HE from 12.8 to 12.9 (#902) 
Bumps net.sf.saxon:Saxon-HE from 12.8 to 12.9.

---
updated-dependencies:
- dependency-name: net.sf.saxon:Saxon-HE
  dependency-version: '12.9'
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-09-16 17:35:51 +01:00
PJ Fanning
49fd564023
log4j bom (#897) 2025-09-11 10:52:01 +01:00
Dominik Stadler
009b6501f2 Fix a Gradle warning 2025-08-10 17:00:11 +02:00
buaazyl
9ebec77aca
Bump commons-compress from 1.27.1 to 1.28.0 (#868) 
https://github.com/apache/poi/issues/867
There is a security vulnerability in commons-lang3, with the vulnerability number CVE-2025-48924.
 2025-07-30 08:07:10 +01:00
PJ Fanning
e18b5576f0 call next release 5.5.0 2025-07-25 15:31:25 +01:00
PJ Fanning
6bc4a6ebd6 commons-codec 1.19.0 2025-07-23 15:39:11 +01:00
PJ Fanning
1a86f27e7b
junit 5.13.4 (#852) 2025-07-21 17:58:03 +01:00
PJ Fanning
ca104f4be7 commons-io 2.20.0 2025-07-20 01:17:41 +01:00
PJ Fanning
2d4ee2ebef Update build.gradle 2025-07-17 22:21:49 +01:00
PJ Fanning
22d2efaf5b
Gradle: avoid deprecated buildDir property (#838) 
* Gradle: avoid deprecated buildDir property

* try again
 2025-07-11 21:40:19 +01:00
PJ Fanning
4fb39a6b09 gradle 8.14.3 2025-07-07 22:58:42 +01:00
dependabot[bot]
521aab62da
Bump net.sf.saxon:Saxon-HE from 12.7 to 12.8 (#835) 
Bumps net.sf.saxon:Saxon-HE from 12.7 to 12.8.

---
updated-dependencies:
- dependency-name: net.sf.saxon:Saxon-HE
  dependency-version: '12.8'
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-07-07 11:21:50 +01:00
dependabot[bot]
10675900c6
Bump org.junit.jupiter:junit-jupiter from 5.13.2 to 5.13.3 (#836) 
Bumps [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit-framework) from 5.13.2 to 5.13.3.
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](https://github.com/junit-team/junit-framework/compare/r5.13.2...r5.13.3)

---
updated-dependencies:
- dependency-name: org.junit.jupiter:junit-jupiter
  dependency-version: 5.13.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-07-07 11:21:34 +01:00
dependabot[bot]
e2a9a66428
Bump junitVersion from 5.13.2 to 5.13.3 (#834) 
Bumps `junitVersion` from 5.13.2 to 5.13.3.

Updates `org.junit:junit-bom` from 5.13.2 to 5.13.3
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](https://github.com/junit-team/junit-framework/compare/r5.13.2...r5.13.3)

Updates `org.junit.jupiter:junit-jupiter-api` from 5.13.2 to 5.13.3
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](https://github.com/junit-team/junit-framework/compare/r5.13.2...r5.13.3)

Updates `org.junit.jupiter:junit-jupiter-engine` from 5.13.2 to 5.13.3
- [Release notes](https://github.com/junit-team/junit-framework/releases)
- [Commits](https://github.com/junit-team/junit-framework/compare/r5.13.2...r5.13.3)

---
updated-dependencies:
- dependency-name: org.junit:junit-bom
  dependency-version: 5.13.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.junit.jupiter:junit-jupiter-api
  dependency-version: 5.13.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.junit.jupiter:junit-jupiter-engine
  dependency-version: 5.13.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-07-07 11:21:05 +01:00
PJ Fanning
b6f3fa0c42 junit 5.13.2 
git-svn-id: https://svn.apache.org/repos/asf/poi/trunk@1926703 13f79535-47bb-0310-9956-ffa450edef68
 2025-06-24 15:13:35 +00:00
PJ Fanning
73c4de16e4 try to tidy up jupiter dependency by using the junit-bom 
git-svn-id: https://svn.apache.org/repos/asf/poi/trunk@1926702 13f79535-47bb-0310-9956-ffa450edef68
 2025-06-24 13:51:52 +00:00
Dominik Stadler
f6c1cbd229 Revert spotbugs to keep compatible with JDK 8 
git-svn-id: https://svn.apache.org/repos/asf/poi/trunk@1926442 13f79535-47bb-0310-9956-ffa450edef68
 2025-06-15 13:40:07 +00:00