Bump advanced-security/maven-dependency-submission-action from 4.0.3 to 4.1.1 (#1254)

TuxCoding · web-flow · commit 06e674149309 · 2025-04-23T17:17:02.000+02:00
Bumps [advanced-security/maven-dependency-submission-action](https://github.com/advanced-security/maven-dependency-submission-action) from 4.0.3 to 4.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/advanced-security/maven-dependency-submission-action/releases">advanced-security/maven-dependency-submission-action's releases</a>.</em></p> <blockquote> <h2>v4.1.1</h2> <p>No release notes provided.</p> <h2>v4.1.0</h2> <ul> <li> <p>Adds the ability to change the detector details for the dependency snapshots via the optional input parameters:</p> <ul> <li><code>detector-name</code></li> <li><code>detector-url</code></li> <li><code>detector-version</code></li> </ul> <p>If the <code>detector-name</code> is specified, then all three become mandatory as there are no sensible defaults that can be attributed to the values.</p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/4f64ddab9d742a4806eeb588d238e4c311a8397d"><code>4f64dda</code></a> chore: Updating release files</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/dba3daceddd8132094152784ada089f06c0029b4"><code>dba3dac</code></a> 4.1.1</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/4883574ccf42615ca41ddc3f04e76294e8e537bf"><code>4883574</code></a> Merge pull request <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/issues/89">#89</a> from david-wiggs/hotfix/fix-test</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/33e1d3d801db33e97b25708c5c49d14f36f58ff2"><code>33e1d3d</code></a> Remove reference to undefined function</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/4b85c777030fd03166f2525479eed26affd0fd9c"><code>4b85c77</code></a> Merge pull request <a href="https://redirect.github.com/advanced-security/maven-dependency-submission-action/issues/88">#88</a> from david-wiggs/unique-job-matrix</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/73d9d97f9ff6bfdfea44cf8f059e980e83b3274d"><code>73d9d97</code></a> Update src/snapshot-generator.test.ts</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/967455e178f5d623027c20216347b3550a6840db"><code>967455e</code></a> No need to import getMavenSettingsFile when testing</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/7592e88109687e83d271d484fb2f17a9a466e92c"><code>7592e88</code></a> Use supplied correlator without concatenation</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/2ba839e04be286a1fc7f93ae4a9683f0e1ec335f"><code>2ba839e</code></a> Add some tests</li> <li><a href="https://github.com/advanced-security/maven-dependency-submission-action/commit/5275a08fb435ed6a65f1dc73c5516286888d4780"><code>5275a08</code></a> Address merge conflicts</li> <li>Additional commits viewable in <a href="https://github.com/advanced-security/maven-dependency-submission-action/compare/v4.0.3...v4.1.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=advanced-security/maven-dependency-submission-action&package-manager=github_actions&previous-version=4.0.3&new-version=4.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
@@ -64,4 +64,4 @@ jobs:
 
       - name: Submit Dependency Snapshot
         if: ${{ github.event_name == 'push' }}
-        uses: advanced-security/maven-dependency-submission-action@v4.0.3
+        uses: advanced-security/maven-dependency-submission-action@v4.1.2
