Updated workflow and libraries: (#24)

Nikita-Smirnov-Exactpro · web-flow · commit e6a095a617e9 · 2025-10-27T18:13:48.000+04:00
+ kotlin: `2.2.21`
+ th2 gradle plugin: `0.3.10` (bom: `4.14.2`)
+ common: `5.16.1-dev`
+ netty-bytebuf-utils: `0.3.0`
+ read-file-common-core: `3.4.0-dev`
+ opencsv: `5.12.0`
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -0,0 +1,10 @@
+# This is a comment.
+# Each line is a file pattern followed by one or more owners.
+
+# more information about CODEOWNERS see by the link https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/customizing-your-repository/about-code-owners
+
+# These owners will be the default owners for everything in
+# the repo. Unless a later match takes precedence,
+# @global-owner1 and @global-owner2 will be requested for
+# review when someone opens a pull request.
+*       @Nikita-Smirnov-Exactpro
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,18 @@
+version: 2
+updates:
+  - package-ecosystem: gradle
+    directory: /
+    labels:
+      - dependencies
+    schedule:
+      interval: daily
+    ignore:
+      - dependency-name: org.junit.jupiter:junit-jupiter
+        update-types:
+          - version-update:semver-major # java 17 is required for junit-jupiter:6.+
+  - package-ecosystem: github-actions
+    directory: /
+    labels:
+      - dependencies
+    schedule:
+      interval: daily
diff --git a/.github/workflows/build-dev-release.yml b/.github/workflows/build-dev-release.yml
@@ -12,4 +12,9 @@ jobs:
       docker-username: ${{ github.actor }}
     secrets:
       docker-password: ${{ secrets.GITHUB_TOKEN }}
-      nvd-api-key: ${{ secrets.NVD_APIKEY }}
+      nvd-api-key: ${{ secrets.NVD_APIKEY }}
+      oss-index-user: ${{ secrets.OSSINDEX_SONATYPE_USER }}
+      oss-index-token: ${{ secrets.OSSINDEX_SONATYPE_TOKEN }}
+      cisa-domain: ${{ secrets.CISA_DOMAIN }}
+      cisa-user: ${{ secrets.CISA_USER }}
+      cisa-password: ${{ secrets.CISA_PWD }}
diff --git a/.github/workflows/build-release.yml b/.github/workflows/build-release.yml
@@ -12,4 +12,9 @@ jobs:
       docker-username: ${{ github.actor }}
     secrets:
       docker-password: ${{ secrets.GITHUB_TOKEN }}
-      nvd-api-key: ${{ secrets.NVD_APIKEY }}
+      nvd-api-key: ${{ secrets.NVD_APIKEY }}
+      oss-index-user: ${{ secrets.OSSINDEX_SONATYPE_USER }}
+      oss-index-token: ${{ secrets.OSSINDEX_SONATYPE_TOKEN }}
+      cisa-domain: ${{ secrets.CISA_DOMAIN }}
+      cisa-user: ${{ secrets.CISA_USER }}
+      cisa-password: ${{ secrets.CISA_PWD }}
diff --git a/.github/workflows/build-sanpshot.yml b/.github/workflows/build-sanpshot.yml
diff --git a/.github/workflows/build-snapshot.yml b/.github/workflows/build-snapshot.yml
@@ -0,0 +1,24 @@
+name: Build and publish jar to sonatype snapshot repository
+
+on:
+  push:
+    branches-ignore:
+      - master
+      - version-*
+    paths-ignore:
+      - README.md
+
+jobs:
+  build-job:
+    uses: th2-net/.github/.github/workflows/compound-java-dev.yml@main
+    with:
+      build-target: 'Docker'
+      docker-username: ${{ github.actor }}
+    secrets:
+      docker-password: ${{ secrets.GITHUB_TOKEN }}
+      nvd-api-key: ${{ secrets.NVD_APIKEY }}
+      oss-index-user: ${{ secrets.OSSINDEX_SONATYPE_USER }}
+      oss-index-token: ${{ secrets.OSSINDEX_SONATYPE_TOKEN }}
+      cisa-domain: ${{ secrets.CISA_DOMAIN }}
+      cisa-user: ${{ secrets.CISA_USER }}
+      cisa-password: ${{ secrets.CISA_PWD }}
diff --git a/.github/workflows/ci-unwelcome-words.yml b/.github/workflows/ci-unwelcome-words.yml
@@ -5,13 +5,14 @@ on:
 
 jobs:
   test:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-latest
+    if: github.actor != 'dependabot[bot]'
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v5
       with:
         ref: ${{ github.sha }}
     - name: Checkout tool
-      uses: actions/checkout@v2
+      uses: actions/checkout@v5
       with:
         repository: exactpro-th2/ci-github-action
         ref: master
diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml
@@ -0,0 +1,17 @@
+name: Scan licenses and vulnerabilities in java project
+
+on:
+  workflow_dispatch:
+  schedule:
+    - cron: '0 0 * * 1'
+
+jobs:
+  build:
+    uses: th2-net/.github/.github/workflows/compound-java-scan.yml@main
+    secrets:
+      nvd-api-key: ${{ secrets.NVD_APIKEY }}
+      oss-index-user: ${{ secrets.OSSINDEX_SONATYPE_USER }}
+      oss-index-token: ${{ secrets.OSSINDEX_SONATYPE_TOKEN }}
+      cisa-domain: ${{ secrets.CISA_DOMAIN }}
+      cisa-user: ${{ secrets.CISA_USER }}
+      cisa-password: ${{ secrets.CISA_PWD }}
diff --git a/Dockerfile b/Dockerfile
@@ -1,4 +1,4 @@
-FROM gradle:7.6-jdk11 AS build
+FROM gradle:8.11.1-jdk21 AS build
 ARG release_version
 COPY ./ .
 RUN gradle clean build dockerPrepare -Prelease_version=${release_version}
diff --git a/README.md b/README.md
@@ -1,4 +1,4 @@
-# Csv Reader User Manual 2.5.0
+# Csv Reader User Manual 2.6.0
 
 ## Document Information
 
@@ -91,10 +91,21 @@ spec:
 
 ## Changes
 
+### 2.6.0
+
+#### Updated:
++ kotlin: `2.2.21`
++ th2 gradle plugin: `0.3.10` (bom: `4.14.2`)
++ common: `5.16.1-dev`
++ netty-bytebuf-utils: `0.3.0`
++ read-file-common-core: `3.4.0-dev`
++ opencsv: `5.12.0`
+
 ### 2.5.0
 
-+ Updated to th2 gradle plugin `0.0.8`
-+ Updated common: `5.12.0-dev`
+#### Updated:
+  + th2 gradle plugin `0.0.8`
+  + common: `5.12.0-dev`
 
 ### 2.4.0
 
diff --git a/build.gradle b/build.gradle
@@ -1,46 +1,29 @@
 plugins {
-    id 'application'
-    id 'org.jetbrains.kotlin.jvm' version '1.8.22'
-    id 'com.exactpro.th2.gradle.component' version '0.0.8'
+    id "application"
+    alias(libs.plugins.th2.component)
+    alias(libs.plugins.kotlin.jvm)
 }
 
 group 'com.exactpro.th2'
 version release_version
 
-kotlin {
-    jvmToolchain(11)
-}
-
 repositories {
     mavenCentral()
-    maven {
-        name 'Sonatype_snapshots'
-        url 'https://s01.oss.sonatype.org/content/repositories/snapshots/'
-    }
-    maven {
-        name 'Sonatype_releases'
-        url 'https://s01.oss.sonatype.org/content/repositories/releases/'
-    }
     mavenLocal()
-
-    configurations.configureEach {
-        resolutionStrategy.cacheChangingModulesFor 0, 'seconds'
-        resolutionStrategy.cacheDynamicVersionsFor 0, 'seconds'
-    }
 }
 
 dependencies {
-    implementation ("com.exactpro.th2:common:5.12.0-dev")
+    api(libs.th2.read.file.common.core)
+    implementation(libs.th2.common)
     implementation "org.slf4j:slf4j-api"
 
-    api "com.exactpro.th2:read-file-common-core:3.3.0-dev"
-    implementation('com.exactpro.th2:netty-bytebuf-utils:0.2.0') {
+    implementation(libs.th2.netty.bytebuf.utils) {
         because("'asExpandable' method is used")
     }
 
-    implementation "com.opencsv:opencsv:5.9"
+    implementation(libs.opencsv)
 
-    implementation 'jakarta.annotation:jakarta.annotation-api:3.0.0'
+    implementation(libs.jakarta.annotation.api)
     implementation "org.jetbrains.kotlin:kotlin-reflect"
 
     implementation "com.fasterxml.jackson.core:jackson-databind"
@@ -49,8 +32,13 @@ dependencies {
     }
     implementation "com.fasterxml.jackson.module:jackson-module-kotlin"
 
-    testImplementation "org.junit.jupiter:junit-jupiter:5.10.2"
-    testImplementation "org.mockito:mockito-core:5.12.0"
+    testImplementation(platform(libs.junit.bom))
+    testImplementation("org.junit.jupiter:junit-jupiter")
+    testImplementation("org.junit.platform:junit-platform-launcher") {
+        because 'This artifact will not be added automatically since gradle 9.0. You can read more information here:' +
+                'https://docs.gradle.org/8.3/userguide/upgrading_version_8.html#test_framework_implementation_dependencies'
+    }
+    testImplementation(libs.mockito.core)
 }
 
 test {
diff --git a/gradle.properties b/gradle.properties
@@ -1 +1 @@
-release_version = 2.5.0
+release_version = 2.6.0
diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
@@ -0,0 +1,19 @@
+[versions]
+kotlin = "2.2.21"
+
+[libraries]
+
+th2-common = { group = "com.exactpro.th2", name = "common", version = "5.16.1-dev" }
+th2-netty-bytebuf-utils = { group = "com.exactpro.th2", name = "netty-bytebuf-utils", version = "0.3.0" }
+th2-read-file-common-core = { group = "com.exactpro.th2", name = "read-file-common-core", version = "3.3.0-dev" }
+
+opencsv = { group = "com.opencsv", name = "opencsv", version = "5.12.0" }
+
+jakarta-annotation-api = { group = "jakarta.annotation", name = "jakarta.annotation-api", version = "3.0.0" }
+
+junit-bom = { group = "org.junit", name = "junit-bom", version = "5.14.0" }
+mockito-core = { group = "org.mockito", name = "mockito-core", version = "5.20.0" }
+
+[plugins]
+th2-component = { id = "com.exactpro.th2.gradle.component", version = "0.3.9" }
+kotlin-jvm = { id = "org.jetbrains.kotlin.jvm", version.ref = "kotlin" }
diff --git a/gradle/wrapper/gradle-wrapper.jar b/gradle/wrapper/gradle-wrapper.jar
diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties
@@ -1,5 +1,6 @@
 distributionBase=GRADLE_USER_HOME
 distributionPath=wrapper/dists
-distributionUrl=https\://services.gradle.org/distributions/gradle-7.6-bin.zip
+distributionUrl=https\://services.gradle.org/distributions/gradle-8.11.1-bin.zip
+networkTimeout=10000
 zipStoreBase=GRADLE_USER_HOME
 zipStorePath=wrapper/dists
diff --git a/gradlew b/gradlew
diff --git a/gradlew.bat b/gradlew.bat
diff --git a/suppressions.xml b/suppressions.xml

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-FROM gradle:7.6-jdk11 AS build`
	`1`	`+FROM gradle:8.11.1-jdk21 AS build`
`2`	`2`	`ARG release_version`
`3`	`3`	`COPY ./ .`
`4`	`4`	`RUN gradle clean build dockerPrepare -Prelease_version=${release_version}`