Skip to content

chore(deps): bump com.github.mwiede:jsch from 2.27.3 to 2.28.2#1529

Closed
dependabot[bot] wants to merge 1 commit into
2.xfrom
dependabot/gradle/com.github.mwiede-jsch-2.28.2
Closed

chore(deps): bump com.github.mwiede:jsch from 2.27.3 to 2.28.2#1529
dependabot[bot] wants to merge 1 commit into
2.xfrom
dependabot/gradle/com.github.mwiede-jsch-2.28.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 18, 2026

Copy link
Copy Markdown
Contributor

Bumps com.github.mwiede:jsch from 2.27.3 to 2.28.2.

Release notes

Sourced from com.github.mwiede:jsch's releases.

jsch-2.28.2

What's Changed

Dependency Updates

Full Changelog: mwiede/jsch@jsch-2.28.1...jsch-2.28.2

jsch-2.28.1

What's Changed

  • Bump log4j.version from 2.25.3 to 2.25.4 by @​dependabot[bot] in mwiede/jsch#1028
  • Bump actions/cache from 5.0.4 to 5.0.5 by @​dependabot[bot] in mwiede/jsch#1036
  • Bump org.testcontainers:testcontainers-junit-jupiter from 2.0.4 to 2.0.5 by @​dependabot[bot] in mwiede/jsch#1039
  • 2.28.1 changes by @​norrisjeremy in mwiede/jsch#1027
    • Add impsort-maven-plugin to organize imports correctly according to Google Java Style.
    • Fix unit tests when run in certain timezones.
    • Fix integration test failures on Apple Silicon by using Alpine 3.7.
    • Run tests on Java 26.
    • Update to Maven 3.9.15.
    • Bump org.bouncycastle:bcprov-jdk18on from 1.83 to 1.84 -- This is cherry-picked from #1035.
    • Update for new deprecations in Bouncy Castle 1.84. -- This fixes the deprecation warnings that cause failures for #1035.
    • #1037 deprecate JSch.addIdentity(), KeyPair.decrypt() & Session.setPassword() methods that take String inputs instead of byte[] inputs for passphrases/passwords.
  • Bump dependabot/fetch-metadata from 2.5.0 to 3.1.0 by @​dependabot[bot] in mwiede/jsch#1038
  • Bump actions/upload-artifact from 7.0.0 to 7.0.1 by @​dependabot[bot] in mwiede/jsch#1034
  • Bump github/codeql-action from 4.32.6 to 4.35.2 by @​dependabot[bot] in mwiede/jsch#1033
  • Bump errorprone.version from 2.48.0 to 2.49.0 by @​dependabot[bot] in mwiede/jsch#1031

Full Changelog: mwiede/jsch@jsch-2.28.0...jsch-2.28.1

jsch-2.28.0

What's Changed

Dependency Updates

New Contributors

... (truncated)

Commits
  • 2616ef6 [maven-release-plugin] prepare release jsch-2.28.2
  • ff3bd43 Bump net.revelc.code:impsort-maven-plugin from 1.12.0 to 1.13.0
  • 33d864a Bump commons-io:commons-io from 2.21.0 to 2.22.0
  • 45091ee Bump commons-codec:commons-codec from 1.21.0 to 1.22.0
  • 4e23365 Merge pull request #1046 from luigidemasi/fix/issue-1045-rsa-cert-signature-a...
  • 7a9f709 Fix #1045: RSA certificate auth ignores negotiated signature algorithm
  • d114297 Update Javadoc deployment folder path [skip ci]
  • 2257235 Merge pull request #1044 from mwiede/release
  • b6cc46b Merge pull request #1041 from mwiede/dependabot/maven/org.junit.jupiter-junit...
  • 2593a32 Bump org.junit.jupiter:junit-jupiter from 5.14.3 to 5.14.4
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [com.github.mwiede:jsch](https://github.com/mwiede/jsch) from 2.27.3 to 2.28.2.
- [Release notes](https://github.com/mwiede/jsch/releases)
- [Changelog](https://github.com/mwiede/jsch/blob/master/ChangeLog)
- [Commits](mwiede/jsch@jsch-2.27.3...jsch-2.28.2)

---
updated-dependencies:
- dependency-name: com.github.mwiede:jsch
  dependency-version: 2.28.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels May 18, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #1552.

@dependabot dependabot Bot closed this Jun 15, 2026
@dependabot dependabot Bot deleted the dependabot/gradle/com.github.mwiede-jsch-2.28.2 branch June 15, 2026 02:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants