- update tk-fs-watcher to 1.2.6 to compress superfluous events
- update bouncy castle to latest versions
- update ring-middleware to 2.0.4 to add method and uri to unhandled exceptions wrapper
- update ring-middleeware to 2.0.3 to add some new standaard wrappers
- update jruby-utils to 5.2.0 to get JRuby 9.4.8.0 and jruby-openssl 0.15 (and its support for modern BouncyCastle)
- update trapperkeeper to improve
logged?
output to not be so verbose
- update jruby-utils to 5.1.4 for improved jruby instance creation
- roll back jruby-utils to 5.1.2 do to regression
- update kitchensink to 3.4.0 for new java.time JSON encoders
- update host-action-collector client to 0.1.8 to prevent temporary files from being written with execute permissions
- update jruby-utils to 5.1.3 to parallelize instance creation
- update clj-shell-utils to 2.0.1 to allow cwd specification
- update trapperkeeper-filesystem-watcher to 1.2.5 to address stack overflow issue, add interface to watch files
- update trapperkeeper to 4.0.1 for
logged?
test utility changes
- update trapperkeeper-filesystem-watcher to 1.2.4 to fix conditionalization from 1.2.3 and make shutdown more robust
- update trapperkeeper-filesystem-watcher to 1.2.3 to conditionalize potentially expensive logging
- update host-action-collector-client to 0.1.7 to add purging of directories older than 30 days
- update jruby-utils to bring in JRuby 9.4.7
- update dynapath to resolve warnings on Java 9+ (drops support for Java 8)
- update compojure & medley to latest to resolve warnings in clojure 1.11
- update trapperkeeper-metrics to resolve duplicate logback-test.xml files in test classpath
- update jdbc-util to 1.4.3 which included a clj-parent bump
- update clj-kitchensink which adds new time functions
- update jdbc-utils to 1.4.2 to resolve issue with sequence reconciliation
- update host-action-collector-client to 0.1.6 to allow optional date field specification
- update clj-http client to 2.1.3 to fix issue with 204 handling of unbuffered-stream mode
- add the clj-host-action-collector-client version to the set of managed versions
- update commons-io to 2.15.1 for compatibility with commons-compress 1.26.0
- update apache-commons/commons-compress to 1.26.0 to address CVE-2024-25710 CVE-2024-26308 and CVE-2023-42503
- update apache-commons/commons-lang3 to latest
- update apache-commons/commons-exec to latest
- update tk-status to 1.2.0 to remove ring-defaults dependency
- update tk-metrics to 2.0.3 to leverage the version of tk-webserver-jetty-10 from clj-parent
- update tk-jetty10 to include the websocket libraries from jetty 10 so they can be centrally managed
- update tk-jetty10 to bring in a new version of jetty 10 at 10.0.20 to fix some websocket race conditions
- update clj-http-client to 2.1.2 to allow multiple Set-Cookie headers to be returned in the header map of a response separated by newlines
- add license to project.clj so that clojars will accept publishing
- update postgres driver to 42.7.1 from 42.4.3 for bug fixes and performance improvements
- update tk-jetty-10 to 1.0.16 to add server configuration debug logging on service start
- update clj-kitchensink to 3.2.5 to address potential writer leak
- remove jetty9 dependencies, bump tk-metrics to 2.0.1 to move to Jetty10 version
- bump tk-jetty-10 to 1.0.15 to fix previous accidental hard dependency on hato
- update tk-jetty-10 to 1.0.14 to fix a null RequestLogger exception
- update tk-jetty-10 to 1.0.13 to handle and exception when the access log is missing.
- update tk-jetty-10 to 1.0.12 to enable access logging again
- tk-jetty-10 to 1.0.11 to address character-set issues.
- update tk-jetty-10 to 1.0.9 to add optional sni-required config setting with a default of false, 1.0.8 also set default encoding for ring-handler responses to UTF-8
- update tk-jetty-10 to 1.0.7 to address broken ring-handler getRequestCharacterEncoding() function
- update jetty-10 to 1.0.6 to not use logback-access for logging because of incompatibilities
- bump tk-jetty-10 to 1.0.5 to include org.eclipse.jetty.server.Response in ring handler :response key
- fix accidental wrong namespace for tk-jetty-10
- rollback tk-metrics to 1.5.1 until jetty10 is updated in all the things
- add trapperkeeper-webserver-jetty10 version 1.0.4 and trapperkeeper-metrics 2.0.0 using jetty 10
- update kitchensink to 3.2.4 to bring in some new functions, and deprecate old interfaces
- Update clj-rbac-client to 1.1.5, adds configurable connection limits
- update jruby-utils to bring in JRuby 9.4.3
- update trapperkeeper-webserver-jetty9 to 4.5.2 to resolve CVE-2023-36478 and CVE-2023-44487
- update bc-fips to 1.0.2.4 to resolve CVE-2022-45156 and CVE-2023-33202
- update jvm-ssl-utils to 3.5.2 to address a stack overflow in certificates with tags
- roll bouncycastle back to 1.74 to resolve jRuby issues with using deprecated interfaces
- update joda-time
- update bouncycastle versions, remove jdk15on versions as we no longer use them
- update trapperkeeper-webserver-jetty9 to 4.5.1 to address multiple CVEs.
- update trapperkeeper-authorization to 2.0.1 to remove verbose warnings, and update dependencies
- update snakeyaml to 2.0 from 1.3.3 to address CVE-2022-1471
- update logback to version 1.3.7, 1.2.x is no longer maintained
- update trapperkeeper-webserver-jetty9 to 4.5.0, adds opt-in feature to provide access to pending jetty response.
- update jvm-ssl-utils to bring in the ability to create CSRs (in the simple namepace) with attributes
- update jvm-ssl-utils to bring in the ability to extract attributes from CSRs
- remove use of ring-defaults, update tk-metrics and tk-status to versions without use of ring-defaults
- BREAKING CHANGE: update trapperkeeper to 4.0.0 which removes yaml config support and remove clj-yaml
- Update clj-kitchensink to 3.2.3 to bring in new time conversion and version comparison functions
- Update logback to 1.2.12, to fix logging issues relative to jetty 10
- update versioning for jruby update. 5.x branch created from 5.3.5
- Update jruby-utils which brings in jruby-deps 9.4.2.0-1 & Jruby 9.4.2.0
- update tk-jetty-9 to 4.4.3 to maintain compatibility with FOSS 7.x
- update tk-jetty-9 to 4.4.2 to resolve CVE-2023-26048
- Revert logback upgrade in 5.3.2 until compatibility issue is resolved.
- Upgrade logback to 1.3.5 from 1.2.9, upgrade logback dependencies to 2.0.6.
- Upgrade trapperkeeper to 3.3.0 from 3.2.1.
- Upgrade HikariCP to 5.0.1 from 2.7.4.
- Upgrade trapperkeeper to 3.2.1 to fix crashes on SIGHUP
PDB-5215)
- Upgrade clj-ldap to 0.4.0
- Upgrade kitchensink 3.2.1 for ini4j 0.5.4 to address CVE-2022-41404.
- Upgrade postgresql driver to 42.4.3 to address
CVE-2022-41946
- Update jruby-utils which brings in jruby-deps 9.3.9.0-1 & JRuby 9.3.9
- Update clj-http-client to 2.1.1, fixes connection reuse when using an SSL client certificate
- Update clj-rbac-client to 1.1.4, adds optional identity provider id to RBAC subject
- bump trapperkeeper-webserver-jetty9 to 4.4.1, which makes use of the stylefruits/gniazdo version from this project.
- add stylefruits/gniazdo to avoid version conflicts in dependent projects
- update ssl-utils to 3.5.0 to use the
18on
version of the bouncycastle libraries instead of the recently renamed 15on
- update trapperkeeper-metrics, clj-http-client, trapperkeeper-webserver-jetty9, dujour and the analytics client to new versions that are based on
clj-parent 5.2.6
, and shift to the 18on
version of bouncycastle from the 15on
versions.
- update the bouncycastle fips versions to bcpkix-fips 1.0.6, bc-fips 1.0.2.3, bctls-fips 1.0.13 so the FOSS builds match
- roll bouncycastle jdk18on dependencies back to 1.71 because 1.72 is not currently on maven central.
- Add org.bouncycastle/bcpkix-jdk18on and org.bouncycastle/bctls-jdk18on which were recently added when they dropped support of jdk8
- Add org.bouncycastle/bcprov-jdk18on and jdk15on for completeness
- Add org.bouncycastle/bcutil-jdk18on and jdk15on for completeness
- Add org.bouncycastle/bctls-jdk15on, which was previously being managed per-project
- Update honeysql (v2) to 2.3.911, which includes support for postgres json operators
- update postgres driver to 42.4.1 to address CVE-2022-31197
- Update clj-rbac-client to 1.1.3, which includes an updated parse-subject function
- update tk-jetty9 to 4.3.1 which includes Jetty 9.4.48
- Update tk-jetty9 to 4.3.0, which includes Jetty 9.4.44 and updates to the default cipher suites.
- update jruby-utils to 4.0.1, which unpins jnr-posix in jruby-deps to resolve a pedantic dependency conflict
- Update ssl-utils to 3.4.1, which makes public the
SSUtils.managerFactoriesToSSLContext
helper.
- update analytics components to use https://updates.puppet.com by default.
- update ssl-utils to enable copying authority key identifiers from certificates during signing and revocation
- update pgjdbc (org.postgresql/postgresql) to 42.3.2, which fixes a bug in choosing the correct signing algorithm when used with Bouncy Castle, and addresses CVE-2022-21724
- add honeysql 2.x dependency
- update jruby-utils to 3.2.3, which pins a JRuby dependency to avoid a CVE
- update bouncy-castle to 1.70, which includes improvements to TLS 1.3 support
- update cheshire to 5.10.1 to update the jackson dependencies
- update puppetlabs/http-client to 1.2.4, which is the public version of the previous security release
- update puppetlabs/http-client to 1.2.3 to resolve minor security issue.
- update comidi to 0.3.3, which doesn't include any new content, but should clear up false positives from the Snyk security scanner.
- update tk-jetty9 to 4.2.1, which adds TLS 1.3 support for FIPS
- update tk-jetty9 to 4.2.0, which adds support for TLS 1.3 by default
- update ring-middleware to 1.3.1 to add support for referrer-policy headers to be added.
- update tk-metrics to 1.4.3, which fixes an issue with its Bouncy Castle dependency that caused issues in FIPS mode. This also reintroduces the jolokia 1.7.0 bump (which was not implicated in the FIPS bug).
- revert update to tk-metrics, the previous update caused issues in FIPS environments
- update jdbc to 0.7.11, update jdbc-util to 1.3.0, due to a change in version for migratus
- update tk-metrics to 1.4.1, which includes Jolokia 1.7.0, a routine maintenance bump that cleans up some reflective accesses that trigger warnings in Java 9 and newer.
- update i18n to 0.9.2 which fixes some reflection issues.
- update trapperkeeper-webserver-jetty9 to 4.1.8 to bring in Jetty v9.4.43 to resolve CVE-2021-34429
- update commons-compress to 1.21 to fix several CVEs
- update jvm-ssl-utils to 3.3.0, which now supports OpenSSL-formatted EC private keys
- update tk-jetty9 to 4.1.7, which resolves CVE-2021-28169
- update BC FIPS libraries to latest versions
- update clojurescript to 1.10.866, which resolves CVEs in several transitive dependencies
- update jvm-ssl-utils to 3.2.2, which contains a fix to stay compatible with both FOSS and FIPS Bouncy Castle APIs and some new extension utilities.
- update jvm-ssl-utils to 3.2.0, which contains more advanced CRL utilities
- update apache httpclient to 4.5.13 (CVE-2020-13956)
- update apache httpcore to 4.4.13 to match httpclient
- update commons-io to 2.8.0 (CVE-2021-29425)
- update jruby-utils to 3.2.2, which brings in JRuby 9.2.17.0
- update tk-jetty9 to 4.1.6, which contains a fix for a connection reset bug
- update tk-jetty9 to 4.1.5, which contains several security fixes
- update clj-kitchensink to bring in the addition of the base-type function for parsing Content-Type headers
- update commons-compress to 1.20, which contains a security fix.
- update clj-commons/fs to 1.6.307, which contains a matching commons-compress version
- update commons-beanutils to 1.9.4, which contains a security fix.
- update nippy to 3.1.1, security fixes. May require adjustments to the usage of
thaw
- update ring-servlet back to 1.8.2 now that our failures have been resolved
- pin ring-servlet back to 1.5.1 until we figure out what is causing binary file test failures
- update tk-jetty9 to 4.1.3, which updates a dependency pin to avoid conflicts with other libs
- update jackson-core, jackson-databind and jackson-module-afterburner to 2.12.1 for security fixes
- update snakeyaml to 1.27, which contains some security fixes
- update clj-yaml to 0.7.2, which will be most compatible with the above version of snakeyaml
- update tk-metrics to 1.4.0, allows remote access to the metrics endpoint
- update tk-jetty9 to 4.1.2, which fixes the artifacts built by the 4.1.1 tag
- update tk-jetty9 to 4.1.1, which contains jetty 9.4.36, a maintenance update with some security fixes
- update bouncy-castle to 1.68, which contains some security fixes
- update clj-typesafe-config to 0.2.0 bringing in typesafe/config 1.4.1, an ABI-compatible feature update from the previous release of 1.2.0.
- update ring dependencies to current latest releases
- update jruby-utils to 3.2.1 bringing in JRuby 9.2.14.0, a minor update that resolves a webrick CVE.
- update tk-scheduler to 1.1.3, which updates the quartz library to the latest z, and adds checks to
prevent null functions from being passed to the scheduler
- update ring-middleware to 1.3.0, which updates
wrap-add-cache-headers
to use
the "no-store" cache-control directive instead of "private, max-age=0, no-cache"
- update clj-kitchensink to 3.1.1, which changes the open-port-num function to select a port
in the 16384 - 32767 range. This should decrease port binding collisions in some cases.
- update clj-http-client to 1.2.0, which allows retrieving the message from a response status
- update clj-rbac-client to 1.1.1 to fix a bug introduced in 1.1.0
- update clj-rbac-client to 1.1.0 to remove harmful language and add a method to the rbac consumer protocol
- update tk-status to 1.1.1 which includes additional java memory info
- update jvm-ssl-utils to 3.1.0, which contains a function to revoke multiple certs at once
- update prismatic-schema to 1.1.12, which has a few bug fixes
- update jruby-utils to 3.2.0, which updates JRuby to 9.2.13.0
- update clj-rbac-client to 1.0.0 to add support for the activity service v2 submission endpoint
- update bctls-fips to 1.0.10
- update non-FIPS Bouncy Castle to 1.66
- update jvm-ssl-utils to 3.0.5, fixing a bug introduced in BC 1.64
- update ring-middleware to 1.2.0, which includes
wrap-params
,
which used to live in the puppetserver repo.
- update ring-middleware to 1.1.0, which adds
new wrappers for use in console-ui.
- update trapperkeeper-metrics to 1.3.1, which adds tk-authorization
support
- update postgres jdbc driver to 4.2.14, which has security fixes
- update jruby-utils to 3.1.4 which disables invokedynamic.yield
- revert i18n to 0.8.0 as it appeared to be causing problems with
reloading trapperkeeper
- update i18n to 0.9.0, which removes the plugin hook.
- update trapperkeeper-webserver-jetty9 to 4.1.0, which bumps jetty to 9.4.28 to
ensure we are on the latest supported version.
- update trapperkeeper-metrics to 1.2.3, which deprecates the v1 metrics endpoint.
- update jruby-utils to 3.1.3, which reverts the JRuby downgrade and brings back 9.2.11.1
- update jruby-utils to 3.1.2, which downgrades JRuby to 9.2.8.0 to avoid a potential bug in 9.2.11.1
- update clj-ldap to 0.3.0, which allows passing an array of trust-managers in the connection options
- update kitchensink to 3.1.0, which contains a function for doing atomic file writes
- update tk-metrics to 1.2.2, which is available on clojars. tk-metrics 1.2.1 was an internal-only release
- update jruby-utils to 3.1.1, which updates JRuby to 9.2.11.1. See commit history for details about the impact of this update on gem installs and docs.
- update trapperkeeper to 3.1.0, which contains support for custom exit statuses
- update trapperkeeper-metrics to 1.2.1, fixes CVE-2020-7943
- update tk-jetty9 to fix a type inference ambiguity in Java 11
- update tk-filesystem-watcher to ignore lock directories that disappear when registering.
- update jruby-utils to 3.0.4 to include the new single-instance jruby pool in support of thread-safe puppet.
- update http-client to 1.1.3 to remove ambiguity around RequestObject construction under java 11
- update com.taoensso/nippy to 2.14.0 in order to address some clojure warnings
- update com.taoensso/encore to 2.115.0
- update org.postgresql/postgresql to 42.2.8 to address a connection closure issue
- update jruby-utils to 2.3.2 to downgrade JRuby to 9.2.8.0 to avoid a bug in 9.2.9.0.
- update jruby-utils to 2.3.1 to support usage of the multithreaded key for JRubyConfig
- updates tk-filesystem-watcher to 1.2.1, which has better error handling
- updates jackson-xml to 2.10 (see PE-27458)
- updates trapperkeeper-webserver-jetty9 to 4.0.2 for logging fixups &
FIPS cipher-suite changes
- updates dujour-version-check and analytics-client for FIPS & Java 11 support
- update clj-http-client to 1.1.2 to support running in fully restricted
FIPS mode.
- update trapperkeeper-webserver-jetty9 to 4.0.1 to support running in fully
restricted FIPS mode. This will also install the SLF4JBridgeHandler at runtime,
which will forward all java.util.logging calls to SLF4J automatically, meaning
they can be controlled via the logback configuration files (logback.xml, etc)
- Adds jul-to-slf4j dependency definition for forwarding java.util.logging messages
to SLF4J. The bouncycastle FIPS provider logs exclusively through java.util.logging.
- Adds httpasyncclient version, as opposed to specifying it directly in clj-http-client.
- update bc-fips to version 1.0.2, which is certified for use with JDK 11.
- adds bctls-fips to support TLS transactions via the bouncycastle provider.
- update jdbc-util to address issues with scheme-migration table
being creaated on replicas (merge up from 1.7.28 & 2.7.1)
- Update trapperkeeper-webserver-jetty9 to 4.0.0, which further restricts
the available cipher suites.
- (SERVER-2193) Update jruby-utils to 2.2.0, which adds an API for getting
thread dumps of JRuby instances
- Update tk-scheduler to work with Java 11
- Add jruby-utils to managed dependencies
- Update tk-scheduler to create unique schedulers per service start
- Update tk-jetty9 to suppress empty contextPath warnings
- Update ssl-utils to allow loading private keys in pkcs8 format (see SERVER-2019).
- Update tk-filesystem-watcher to take advantage of new clj-commons/fs.
- Update trapperkeeper to take advantage of new kitchensink, clj-commons/fs,
and clj-commons/clj-yaml.
- Update clj-http-client to take advantage of FIPS enabled ssl-utils.
- Update kitchensink to take advantage of clj-commons/fs
Potentially breaking changes for consumers listed below:
- jvm-ssl-utils now supports FIPS bouncy castle, as a consequence it will
no longer bring in bouncycastle to consumers, they will have to specify
the bouncycastle they want (FIPS or FOSS) explicitly.
- upgrade tk-jetty9 to use newer Jetty, changes default supported ciphers
and removes so-linger-seconds option.
- replaced me.raynes/fs w/ maintained clj-commons/fs, all consumers will
need to update their dependencies.
- replaced circleci/clj-yaml w/ maintained clj-commons/clj-yaml, all
consumers will need to update their dependencies.
- update snakeyaml to 1.23, minor breaking changes to Java APIs.
- update tk-filesystem-watcher to ignore lock directories that disappear when registering.
- update org.postgresql/postgresql to 42.2.8 to address a connection closure issue
- update clj-shell-utils to version built with openjdk8
- add clj-shell-utils extracted from puppetserver
Breaking changes - ssl-utils API change in pem->ca-crl
- Update ssl-utils to 2.0.0 to allow unordered certificate bundle
- update tk-filesystem-watcher to ignore lock directories that disappear when registering.
- update tk-filesystem-watcher to 1.1.1, which has improved error handling
- update jackson-xml to 2.10 (see PE-27458)
- merge up changes to jdbc-util and clj-ldap from 1.7.x
- update trapperkeeper to fix a bug with error handling
- use clojure 1.10.1
- provide versions of bouncycastle with fips
- add nrepl/nrepl 0.6.0 to move to mainline development for nrepl
- left org.clojure/tools.nrepl to maintain backwards compatibility
- update to Trapperkeeper 2.0.0 to take advantage of nrepl/nrepl
- add the analytics client to the managed dependencies
- update trapperkeeper-webserver-jetty9 to 2.4.1 which only disconnects if the session is still open
- update trapperkeeper-webserver-jetty9 to 2.4.0 which adds disconnect function for websockets
- Update jdbc-utils to 1.2.4, which includes methods for jsonb type PGObject transformations
- Update jvm-ssl-utils to 1.0.2, which updates BouncyCastle, fixing a security issue
- downgrade dynapath from 1.0.0 to 0.2.5 (See SERVER-2421).
- update trapperkeeper-authorization to 1.0.0, which brings in the ability to specify rules based on RBAC permissions. NOTE: this is not a breaking update.
- update clojure to 1.10.0.
- update dynapath to allow compilation on jdk8 but operation on later java versions.
- update jackson-databind to 2.9.8, fixing several security vulnerabilities
- update clj-rbac-client to 0.9.4 for wrap-cert-only-access authentication middleware.
- update trapperkeeper-webserver-jetty9 to 2.3.1 which suppresses Jetty's default behavior of reporting its version in the server headers.
- update clj-rbac-client to 0.9.3, the first public release of the library
- update trapperkeeper-scheduler to 1.1.0 which adds support for interval based scheduling
- update trapperkeeper-scheduler to 1.0.1 to exclude c3p0 dependency
- update clj-rbac-client to 0.9.2 to increase the number of concurrent request the client will make to activity and rbac services
- update trapperkeeper-scheduler to 1.0.0 to use the quartz scheduler instead of at-at internally.
- update ring-middleware to 1.0.1 for better logging of uncaught exceptions
- update tk-metrics to 1.2.0 for new jolokia version
- Update
ssl-utils
to 1.0.1
- Update
metrics-clojure
from 2.6.1 to 2.10.0 - Update
tk-jetty-version
from 2.2.0 to 2.3.0 - Add
medley
at version 1.0.0
- Update
org.apache.commons/commons-compress
from 1.8 to 1.17 - Update
prismatic/schema
from 1.1.1 to 1.1.9 - Update
liberator
from 0.12.0 to 0.15.2
- update clj-ldap to 0.2.0 to bring in some new versions of dependencies.
- Update
trapperkeeper-webserver-jetty9
to 2.2.0
(updates Jetty to 9.4.11-20180605) - Update jdbc-util to 1.2.3 to fix some migration / restart issues seen in testing
- Update
rbac-client
to 0.9.1 that adds a new function subject
to the consumer protocol and remote implementation
- Update
jdbc-util
to 1.2.2 - update
org.clojure/java.jdbc
to 0.7.7
- Update
jdbc-util
to 1.2.1
- Update
jdbc-util
to 1.2.0
- Update
trapperkeeper-status
to 1.1.0
- Update
puppetlabs/rbac-client-version
to 0.9.0
- Update
janino
to version 3.0.8 - Update
ssl-utils
to version 1.0.0
Breaking changes -- new version of clojure and changes to ring-mock.
- update clojure to 1.9
- update logback to 1.2.3
- update org.clojure namespaced dependencies to the latest versions
- move from ring-mock to the new namespaced ring/ring-mock version
- update ring-defaults to the latest version
- update postgresql to latest patch version
- update clj-kitchensink to 2.6.0, which adds an function to atomically write files
- update jvm-ssl-utils to 1.1.0, which adds a method for revoking multiple certs
- update postgres jdbc driver to 4.2.14, which has security fixes
- update tk-metrics to 1.2.3, which deprecates the v1 metrics endpoint.
- update tk-metrics to 1.2.2, which is available on clojars. tk-metrics 1.2.1 was an internal-only release
- update trapperkeeper-metrics to 1.2.1, fixes CVE-2020-7943
- update tk-filesystem-watcher to ignore lock directories that disappear when registering.
- update tk-filesystem-watcher to 1.1.1, which has improved error handling
- update jackson-xml to 2.10 (see PE-27458)
- update jdbc-util to address issues with scheme-migration table being creaated on replicas
- update clj-ldap to 0.2.1 to address an issue with base-64 encoded names
- update trapperkeeper to fix a bug with error handling
- update trapperkeeper to 2.0.0, which makes use of the updated nrepl
- add nrepl/nrepl 0.6.0 to move to mainline development for nrepl
- left org.clojure/tools.nrepl to maintain backwards compatibility
- update to Trapperkeeper 2.0.0 to take advantage of nrepl/nrepl
- update trapperkeeper-webserver-jetty9 to 2.4.1 which includes a
disconnect
function for disconnecting websocket connections
- Update jvm-ssl-utils to 1.0.2, which updates BouncyCastle, fixing a security issue
- update trapperkeeper-authorization to 1.0.0, which brings in the ability to specify rules based on RBAC permissions. NOTE: this is not a breaking update.
- update jackson-databind to 2.9.8, fixing several security issues
- update trapperkeeper-webserver-jetty9 to 2.3.1 which suppresses Jetty's default behavior of reporting its version in the server headers.
- update trapperkeeper-webserver-jetty9 to 2.3.0, which fixes some security vulnerabilities
- update clj-rbac-client to 0.8.4 to increase the maximum number of simultaneous connections
- update ring-middleware to 1.0.1 for better logging of uncaught exceptions
- update tk-metrics to 1.2.0 for new jolokia version
- update ssl-utils to 1.0.1 for new SAN ext. parsing
- update clj-http client to 1.0.0 to take advantage of the new persistent client options
- update clj-ldap to 0.2.0 to bring in new versions of dependencies
- update jdbc-util to 1.2.3 to prevent partial migration failure
- update jdbc-util to 1.2.2, and java-jdbc to 0.7.7
- Update clj-rbac-client to add
subject
to the consumer service protocol
- Update trapperkeeper-status to 1.1.0
- Update clj-rbac-client with list-permitted-for method
- Update trapperkeeper to 1.5.6, which causes SIGHUP to be logged at INFO level instead of debug
- Update Jackson to 2.9.4 and pull in the Jackson Afterburner module for use with JrJackson.
- Update jdbc-util to 1.1.1 to fix issue with pglogical activated during migrations.
- Update trapperkeeper-webserver-jetty9 to 2.1.2, which enables gzipping of POST request responses
- Update for Java 9 compatibility, minor version bump because some of these are feature releases
- Update
puppetlabs/jdbc-util
to version 1.1.0 - Update
org.postgresql/postgresql
to version 42.2.0 - Update
com.zaxxer/HikariCP
to version 2.7.4 - Update
org.cojure/java.jdbc
to version 0.7.5 - Update
puppetlabs/trapperkeeper
to version 1.5.5 - Update
puppetlabs/clj-kitchensink
to version 2.5.2
- update bidi to 2.1.3, which avoids a bug when parsing URIs with spaces. Also update comidi to 0.3.2, to be compatible with the new bidi.
- update
com.fasterxml.jackson.core/jackson-databind
to 2.9.1 which remediates CVE-2017-15095
- update
puppetlabs/trapperkeeper-status
to version 1.0.0 which includes additional metrics reporting - update
puppetlabs/trapperkeeper-webserver-jetty9
to version 2.1.1 which appropriately denies content renegotiation.
- update
puppetlabs/jdbc-util
to version 1.0.3 which includes updates for the postgres driver and HikariCP - add a depdendecy to 'org.postgres/postgres' version 42.1.4
- Update
puppetlabs/rbac-client-version
to version 0.8.1 - Breaking change: the new version of the rbac client includes a new method within the RbacConsumerService protocol, and dependent projects will require updating to accommodate for it.
- Update
puppetlabs/clj-kitchensink
to version 2.5.0 - Update
puppetlabs/trapperkeeper
to version 1.5.3
- Add
jackson-databind
at version 2.9.0 - Update
puppetlabs/rbac-client
to version 0.7.1
- Update
trapperkeeper-webserver-jetty9
to version 2.1.0
- Update
cheshire
to 5.8.0 - Update
jackson-core
to 2.9.0 - Update trapperkeeper-filesystem-watcher to version 1.1.0
- Update puppetlabs/clj-kitchensink to version 2.4.0
- Update puppetlabs/jvm-ssl-utils to version 0.9.1
- Update puppetlabs/ssl-utils to version 0.9.0
- Add
honeysql
at version 0.6.3 - Update ring/ring-defaults to version 0.3.0. Projects no longer need to exclude
javax.servlet/servlet-api
.
- Update puppetlabs/http-client to version 0.9.0
- Update trapperkeeper-metrics to version 1.1.0
- Update puppetlabs/jdbc-util to version 1.0.2
- Update io.dropwizard.metrics/metrics-core to version 3.2.2
- Add io.dropwizard.metrics/metrics-graphite locked to the same version as metrics-core
- Update puppetlabs/jdbc-util to version 1.0.1
- Add
metrics-clojure
at version 2.6.1. - Add
org.ow2.asm/asm-all
at version 5.0.3.
- Add
com.taoensso/nippy
at version 2.10.0. - Update
trapperkeeper-webserver-jetty9
to version 2.0.1.
Note: The trapperkeeper-webserver-jetty9
bump also bumps the underlying
Jetty version from 9.2.10 to 9.4.4. Both tk-webserver-jetty9 and Jetty
9.4.x are built using JDK 8 whereas earlier versions were built using JDK 7.
- Add
structured-logging
at version 0.2.0 - Add
instaparse
at version 1.4.1 - Add
bidi
at version 2.0.12 - Add
commons-logging
at version 1.2 - Add
commons-beanutils
at version 1.9.2 - Add
commons-collections
at version 3.2.2
- Update
jdbc-util
to 1.0.0 - Add
com.zaxxer/HikariCP
at version 2.6.1
Note: jdbc-util requires jdk8
- Update
cheshire
to 5.7.1 - Update
jackson-core
to 2.8.6 - Update
jdbc-util
to 0.6.2 - Update
rbac-client
to 0.7.0
Cheshire had a bug that was fixed: https://github.com/dakrone/cheshire/issues/112.
The updates to jdbc-util include some new functions to create databases.
- Update
clj-kitchensink
to 2.3.0 - Update
snakeyaml
to 1.18 - Add a test jar for
puppetlabs/rbac-client
Note that the snakeyaml bump contains some minor breaking changes, which may
affect users who use snakeyaml without clj-yaml.
Merges up 0.4.5:
- Updates
puppetlabs/rbac-client
to 0.6.2. - Updates
puppetlabs/jdbc-util
to 0.6.1.
- Updates
puppetlabs/i18n
to 0.8.0 - Adds
circleci/clj-yaml
0.5.5 - Updates
puppetlabs/jdbc-util
to 0.6.0 - Adds
puppetlabs/rbac-client
0.6.1
This is a Y release due to the replacement of clj-yaml
with
circleci/clj-yaml
.
- Adds dependency for
io.dropwizard.metrics/metrics-core
3.1.2 - Updates
puppetlabs/trapperkeeper-metrics
to 1.0.0 - Updates
puppetlabs/i18n
to 0.7.0 - Removes dependency on
puppetlabs/pe-trapperkeeper-metrics
It should be noted that puppetlabs/trapperkeeper-metrics
1.0.0 introduces
some breaking changes in the metrics
section of its trapperkeeper
configuration. Projects which require trapperkeeper-metrics
will need to be
updated. See the documentation
for details
- Updates
puppetlabs/rbac-client
to 0.6.2. - Updates
puppetlabs/jdbc-util
to 0.6.1.
- Updates
puppetlabs/i18n
to 0.8.0.
- Updates
puppetlabs/i18n
to 0.7.1.
- Backports
puppetlabs/i18n
0.7.0 to clj-parent 0.4.x
line.
- Updates
puppetlabs/http-client
to 0.8.0.
- Updates
logback
to 1.1.9. - Updates
clj-kitchensink
to 2.2.0. - Updates
trapperkeeper-metrics
to 0.6.0. - Updates
pe-trapperkeeper-metrics
to 0.3.0.
- Updates
trapperkeeper-webserver-jetty9
to 1.7.0. - Updates
clj-i18n
to 0.6.0.
- Updates 'trapperkeeper-webserver-jetty9' to 1.6.0.
- Updates 'trapperkeeper-scheduler' to 0.1.0.
- Updates 'trapperkeeper-status' to 0.7.1.
- Updates org.apache.httpcomponents/http-client to 4.5.2.
Adds the following new dependencies:
- java.classpath 0.2.3
- java.jdbc 0.6.2-alpha3
- core.cache 0.6.5
- core.memoize 0.5.9
- data.priority-map 0.0.7
- org.apache.commons/commons-lang3 3.4
- org.apache.httpcomponents/httpcore 4.4.5
- quoin 0.1.2
- stencil 0.5.0
- Updates
trapperkeeper-metrics
to 0.5.0. - Updates
trapperkeeper-status
to 0.7.0. - Updates
puppetlabs/i18n
to 0.5.1.
- Updates clj-http-client to version 0.7.0.
- Updates jvm-ssl-utils to version 0.8.3.
- Updates tk-status to version 0.6.0.
- Introduces ring/ring-defaults at 0.2.0.
- Introduces puppetlabs/trapperkeeper-metrics at 0.4.2.
- Adds org.clojure/clojurescript at version 1.7.122.
- Updates puppetlabs/dujour-version-check to 0.2.1.
- Adds org.apache.commons/commons-compress, at version 1.8.
- Updates puppetlabs/kitchensink to 2.1.0; this is a major version
bump of kitchensink due to the change in the schema of the slingshot
exceptions (from 'type'/'message' to 'kind'/'msg', to match other PL
HTTP APIs).
- Updates org.clojure/tools.cli from 0.3.3 to 0.3.4
- Updates ring/ring-json from 0.3.1 to 0.4.0
Adds the following new dependencies:
- pe-trapperkeeper-metrics 0.2.1
- org.clojure/data.json 0.2.6
- org.yaml/snakeyaml 1.13
- org.apache.maven.wagon/wagon-provider-api 2.10
- org.apache.httpcomponents/httpclient 4.5.1
- clj-stacktrace 0.2.8
- ring/ring-json 0.3.1
- org.tcrawley/dynapath 0.2.4
- trptcolin/versioneer 0.2.0
- trapperkeeper-filesystem-watcher 1.0.1
- trapperkeeper-comidi-metrics 0.1.1
- cljs-dashboard-widgets 0.1.0
- Updated jdbc-util to 0.5.0
- Update dujour-version-check to 0.1.8
- Updated jvm-ssl-utils to 0.8.2.
- Updated commons-codec to 1.10 and ring-servlet to 1.5.0.
- Updated compojure to 1.5.0 and trapperkeeper-status to 0.5.0.
- Added jdbc-util, version 0.4.15.
- Updated tools.logging to 0.3.1 and tools.macro to 0.1.5.
- KS version was incorrectly set to 1.3.2, fixed to 1.4.0.
- TK version was incorrectly set to 1.5.3, fixed to 1.5.2.
Can you improve this documentation? These fine people already did:
jonathannewman, Maggie Dreyer, Justin Stoller, Molly Waggett, Austin Blatt, Steve Axthelm, rileynewton, Chris Price, Michael Smith, Patrick Carlisle, Rob Browning, Jeremy Barlow, Nick Burgan-Illig, Tony Vu, Ruth Linehan, Jonathan Newman, donoghuc, Arthur Lawson, Nick Lewis, Katie Lawhorn, Enis Inan, Andrew Roetker, Lucy Wyman, Brandon High, Joe Pinsonault, Amy Sahli, Jonathan Morris, Tobi Lehman, Anna Lawley, Molly McGlone, Wyatt Alt, Adrien Thebo, Justin Holguin, speedofdark, Maria McGrew, barriserloth, Neil Anderson, Dan Lidral-Porter, Zachary Kent, libbymo, Robert Roland, Andrei Filipovici & Matthaus OwensEdit on GitHub