Update dependency org.ossreviewtoolkit:model to v89.3.0#191
Merged
Conversation
sschuberth
approved these changes
Jun 25, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
89.2.0→89.3.0Release Notes
oss-review-toolkit/ort (org.ossreviewtoolkit:model)
v89.3.0Compare Source
What's Changed
🐞 Bug Fixes
bab80cadownloader: Use exit code 2 for non-fatal failures5377fedflox: Make all script error output go tostderr7f56917vulnerable-code: Hard-code "VCIO_API_AGENT" as the User-Agent🎉 New Features
24ed320commands: Print a docs link when outputting rule violationsa10f5bcflox: Add Provenant as a Nix flakea47b842flox: Add a convenience script to run ORT commands096ad4fflox: Add a convenience script to run all testsabc0eecosv: Enable matching purls withtype="github"e06ee35osv: Ensure the purl is valid before using it9fe6942Add mise configuration files⚡ Performance Enhancements
76bec40model: Introduce a lookup cache inDependencyGraphBuilder✅ Tests
a3216e3bazel: Update expected results9ff0122python: Update expected results8bac4b8scanner: Assert copyrights for ScanCode and Provenanta3029bdscanner: Remove passing-on of the test tag9a935afscanner: Support asserting copyright findingsbe7a441vulnerable-code: Enable a test again that works now🐘 Build & ⚙️ CI
0d578cdflox: Add environments for all VCS tools📖 Documentation
7f83577flox: Add a README to explain the idea of using Floxf517511git: Explain why the repo launcher's version is usededda885model: Add a note about threading constraints20c37f1scanner: Use passive voice in a code comment🔧 Chores
5e9b718commands: Remove the unusedOPTION_GROUP_RULE4443bf9docker: Simplify Ruby installation6501425gradle-inspector: Associate two extensions with different typefd6f33egradle-inspector: Move two functions into the class618aa15model: Rename a map property inDependencyGraphBuilderce9007fscanoss: Align mapping functions for findings to return aSet04ebd1bscanoss: Improve the name ofcreateSnippetFindings()d17d6b1vulnerable-code: Set the user agent already in the clientb71cb23Introduce constants for status codes🚀 Dependency Updates
0b3a3dcdocker: Upgrade Provenant to version 0.1.14c7e4d2bdocker: Upgrade licensee to version 10.0.0e810a17update actions/checkout action to v7ff3771dupdate aesecurity to v0.156.24a03063update flox/install-flox-action action to v2.5.20082bc2update flox/install-flox-action action to v2.5.36f8be5dupdate gradle to v9.6.0d77f530update jsonschemavalidator to v3.0.5c3e6e56update kotest to v6.2.1b594d78update logback monorepo1bb032fupdate mavenpublishplugin to v0.37.08336094update sortdependenciesplugin to v0.19.0🚜 Refactorings
a17fb02commands: Move option group constants to a companion object1800943osv: Factor outcreateRequest()331c89aosv: Factor outcreateRequestForPurl()Configuration
📅 Schedule: (UTC)
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.