File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change 1717 java : [8, 11, 17]
1818
1919 steps :
20- - uses : actions/checkout@v4
20+ - uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
2121 - name : Setup java
22- uses : actions/setup-java@v2
22+ uses : actions/setup-java@c1e323688fd81a25caa38c78aa6df2d33d3e20d9 # v4.8.0
2323 with :
2424 distribution : " zulu"
2525 java-version : ${{ matrix.java }}
Original file line number Diff line number Diff line change 77 runs-on : ubuntu-latest
88
99 steps :
10- - uses : actions/checkout@v2
10+ - uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
1111
12- - name : Set up JDK 1.8
13- uses : actions/setup-java@v1
12+ - name : Set up JDK 11
13+ uses : actions/setup-java@c1e323688fd81a25caa38c78aa6df2d33d3e20d9 # v4.8.0
1414 with :
15- java-version : 1.8
15+ java-version : ' 11'
16+ distribution : ' temurin'
1617
1718 - name : Build with Maven
1819 run : mvn -B package
@@ -24,16 +25,17 @@ jobs:
2425 uses : duosecurity/duo_client_python/.github/actions/sbom-convert@master
2526
2627 - name : Archive SBOM artifacts
27- uses : actions/upload-artifact@v4
28+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
2829 with :
2930 name : duo_client_java_sbom
3031 path : spdx.json
3132
3233 - name : Set up Apache Maven Central
33- uses : actions/setup-java@v1
34+ uses : actions/setup-java@c1e323688fd81a25caa38c78aa6df2d33d3e20d9 # v4.8.0
3435 with :
35- java-version : 1.8
36- server-id : ossrh
36+ java-version : ' 11'
37+ distribution : ' temurin'
38+ server-id : central
3739 server-username : MAVEN_USERNAME # env variable for username in deploy
3840 server-password : MAVEN_CENTRAL_TOKEN # env variable for token in deploy
3941 gpg-private-key : ${{ secrets.MAVEN_GPG_PRIVATE_KEY }} # Value of the GPG private key to import
Original file line number Diff line number Diff line change 148148 <id >release</id >
149149 <build >
150150 <plugins >
151- <!-- This is used to release our package to OSSHR and Maven -->
151+ <!-- This is used to release our package to Maven Central via the Central Portal -->
152152 <plugin >
153- <groupId >org.sonatype.plugins </groupId >
154- <artifactId >nexus-staging -maven-plugin</artifactId >
155- <version >1.6.8 </version >
153+ <groupId >org.sonatype.central </groupId >
154+ <artifactId >central-publishing -maven-plugin</artifactId >
155+ <version >0.9.0 </version >
156156 <extensions >true</extensions >
157157 <configuration >
158- <serverId >ossrh</serverId >
159- <nexusUrl >https://oss.sonatype.org/</nexusUrl >
160- <autoReleaseAfterClose >false</autoReleaseAfterClose >
158+ <publishingServerId >central</publishingServerId >
161159 </configuration >
162160 </plugin >
163161 <!-- This plugin is used to sign our package with our GPG keys -->
164162 <plugin >
165163 <groupId >org.apache.maven.plugins</groupId >
166164 <artifactId >maven-gpg-plugin</artifactId >
167- <version >1.5 </version >
165+ <version >3.2.7 </version >
168166 <executions >
169167 <execution >
170168 <id >sign-artifacts</id >
185183 <plugin >
186184 <groupId >org.apache.maven.plugins</groupId >
187185 <artifactId >maven-source-plugin</artifactId >
188- <version >2.2 .1</version >
186+ <version >3.3 .1</version >
189187 <executions >
190188 <execution >
191189 <id >attach-sources</id >
199197 <plugin >
200198 <groupId >org.apache.maven.plugins</groupId >
201199 <artifactId >maven-javadoc-plugin</artifactId >
202- <version >2.9.1 </version >
200+ <version >3.11.2 </version >
203201 <executions >
204202 <execution >
205203 <id >attach-javadocs</id >
You can’t perform that action at this time.
0 commit comments