Bump com.fasterxml.jackson.core:jackson-annotations from 2.18.3 to 2.19.0 #1775
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Bumps [com.fasterxml.jackson.core:jackson-annotations](https://github.com/FasterXML/jackson) from 2.18.3 to 2.19.0. - [Commits](https://github.com/FasterXML/jackson/commits) --- updated-dependencies: - dependency-name: com.fasterxml.jackson.core:jackson-annotations dependency-version: 2.19.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
dependencies
SummaryUpdated the version of the
|
![stanzabot[bot]](https://avatars.githubusercontent.com/in/939320?s=60&v=4){kind=small}
There was a problem hiding this comment.
The proposed change updates jackson-annotations from 2.18.3 to 2.19.0. While this update is likely safe based on the Dependabot compatibility score, there are important considerations regarding version consistency across Jackson dependencies.
Key observations:
- The project uses multiple Jackson dependencies, all currently at version 2.18.3
- There's an explicit comment in pom.xml stating "Match your Jackson core version"
- Jackson components are tightly integrated in the codebase for JSON/XML processing, REST APIs, and object mapping
Recommendations:
- Update all Jackson dependencies to 2.19.0 together to maintain version consistency:
- jackson-datatype-jsr310
- jackson-dataformat-xml
- jackson-databind
- jackson-annotations
This ensures compatibility and follows the project's documented convention of matching Jackson core versions.
Powered by Stanza
Available commands
`@stanza-ai review` - Re-review the PR `@stanza-ai ` - Chat with the code review agent| @@ -1095,7 +1095,7 @@ | |||
| <dependency> | |||
| <groupId>com.fasterxml.jackson.core</groupId> | |||
| <artifactId>jackson-annotations</artifactId> | |||
| <version>2.18.3</version> | |||
| <version>2.19.0</version> | |||
There was a problem hiding this comment.
While updating jackson-annotations is good, this should be coordinated with other Jackson dependencies to maintain version consistency. The codebase has multiple Jackson dependencies (jackson-datatype-jsr310, jackson-dataformat-xml, jackson-databind) that should all be updated together to version 2.19.0 to ensure compatibility and follow the project convention of matching Jackson core versions.
dependabot
bot
deleted the
dependabot/maven/development/com.fasterxml.jackson.core-jackson-annotations-2.19.0
branch
Bumps com.fasterxml.jackson.core:jackson-annotations from 2.18.3 to 2.19.0.
Commits
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)